assets.fs1.app/assets/images/logo.png
104.26.8.127200 OK 12 kB URL GET HTTP/2 assets.fs1.app/assets/images/logo.png
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type PNG image data, 388 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 14480fda80ed2747171678e5ba86b3cb
9c55625b043d5150c810026bad722a49aca38944
07003923ec1c436a45014ae9fba77343c640a0ba410de625a006d3ec75f0bde1
GET /assets/images/logo.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/png
content-length: 12066
last-modified: Sun, 09 Sep 2018 17:11:42 GMT
etag: "5b95544e-2f22"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EIqNZ7HLcR3DYhAdYaHfvzEnB3t8sDBub1mm36wCoeAp6C5N%2Fm3LpNot7F8s7Y38rpMHYIIYxZHcgcCYslnIemVVhkyG79ffALxffOaZhcpSsd6rhk4focWdRU91bgb9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca1e8521c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/theporndude.png
104.26.8.127200 OK 1.6 kB URL GET HTTP/2 assets.fs1.app/assets/images/theporndude.png
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /assets/images/theporndude.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/png
content-length: 1576
last-modified: Mon, 22 Nov 2021 16:44:39 GMT
etag: "619bc8f7-628"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7AKP2K2NJufafvz1UIE5qD4cL5XxhGkYXICFlERSU9YAZnnEzqWF72gdqdCJBygFMam43obtCh%2BXbBS0zgF7r1WpnF3ZpXAzE9MGFUppsX3EfH%2Bz2KWPaD42XifXpD5D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca1e84d1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/placeholder-md.jpg
104.26.8.127200 OK 15 kB URL GET HTTP/2 assets.fs1.app/assets/images/placeholder-md.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 14601
cf-bgj: h2pri
etag: "5ca092b0-3909"
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JYZpid5BpNuIuwjptHWu5e8xpwwPQDAgiWwbeShlUorhQ1YFH3Rcl5MxwMiWBZEm1G%2BTT5JCHVynC%2FxLRLuFR%2BtKsm%2BesaXFPw8S2hkg8Au648hhw8IxG0pnnMZHrc4F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca1f85d1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/models/660/s1_waka-misono.jpg
104.26.8.127200 OK 7.3 kB URL GET HTTP/2 assets.fs1.app/contents/models/660/s1_waka-misono.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 125x125, components 3\012- data
Hash 68c04d391aea27408539d43786acf222
0a1d628d5a159573c899e395af2ecaa0147ef3c7
d441156801605b31d025f2d3bb0cf7cec8cdd03aef9fbf845c01165f61cd4f2d
GET /contents/models/660/s1_waka-misono.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 7278
cf-bgj: h2pri
etag: "5fcc7a3f-1c6e"
last-modified: Sun, 06 Dec 2020 06:29:19 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QBrxricMPNj6KjyWASIOfReNSmUOCwm8MajcvFW1FY33C2LBsP%2Fue2l4IdC1oRhlKuEM2ZlfXl8ojAp4zhXB1DxHoDBTKxsNJrFAKQk8YopYydhDZ8wmhjK%2Fq00Zurm6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca1f85c1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/8000/8062/preview.jpg
104.26.8.127200 OK 190 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/8000/8062/preview.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 190 kB (190146 bytes)
Hash fd3350c7e0f70d9eac367c045c4f3288
b4f719a758e46a5d0d474694256aa759c802b6be
95320b97ff6bf3418a182bc0266610a8c51f102f124659d92ff6c509022d2072
GET /contents/videos_screenshots/8000/8062/preview.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 190146
cf-bgj: h2pri
etag: "5ed03300-2e6c2"
last-modified: Thu, 28 May 2020 21:54:08 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qL4HhvC%2FvyJuSmf1c0uk6YkhYDwCypiZD8Zwe2qxt3LedH0LRaaK8IqUgsSo3%2BuBogF9IgVx2Mb%2B2yVi9mwQZhRWHvibqeTUKWgRwZkp8pCWENhNIB98WwnxFHRrVp%2Fi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca1f85b1c0a-OSL
X-Firefox-Spdy: h2
cdn.tapioni.com/asg_embed.js
104.22.39.71200 OK 53 kB URL GET HTTP/2 cdn.tapioni.com/asg_embed.js
IP 104.22.39.71:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash b69caff74c1008ec300ae5926968890c
96d1fa5764672196b5e3cb1eb7d4e09f5b89c79d
6c6215a9e27411be98a99b2361d048d49a966a5e4faa2fe347cc1a13d4f4e36b
GET /asg_embed.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript
content-length: 53097
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-cf69"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 1012098
accept-ranges: bytes
server: cloudflare
cf-ray: 7b9adca25b252d8c-ARN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 43db2c964498883fd98799a8b1dc6ea4
4814b7cbb03111d02286329392d2735225df3a5c
44b1d4e6c4b4ba2f50b3344787b34e1c8100454ce01eccd79c4c949fb7491690
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
creative.admjmp.com/widgets/Spot/lib.js
104.18.59.150200 OK 80 kB URL GET HTTP/2 creative.admjmp.com/widgets/Spot/lib.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (38727), with LF, NEL line terminators
Hash a3a0862affbba45808421d74f1996a20
7e8783bcae868ca69da78accc3b63d1f4002b3bf
324b16470f27ae96058434fee64360ab1e5a76e27092fd2ad957c4001727392a
GET /widgets/Spot/lib.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Apr 2023 11:32:48 GMT
etag: W/"643696e0-44442"
expires: Tue, 18 Apr 2023 06:31:04 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
set-cookie: __cflb=02DiuDfsBaY2bRYJiCfFUFWhPdBMmYaZ8RwVWNoQkkZ4G; SameSite=None; Secure; path=/; expires=Wed, 19-Apr-23 05:30:55 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca24c5a0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 5711
accept-ranges: bytes
server: cloudflare
cf-ray: 7b9adca33bda2d8c-ARN
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
142.250.74.72200 OK 80 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
IP 142.250.74.72:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT
File type ASCII text, with very long lines (19390)
Hash ea568714ec7ac8d6f73732a4a97e165a
dbbca756f2d9c84f0733eff12f6161a2cc80c476
6131b1827db83c667fa81bb1802f0e2af787df765445be03dbdd0c2274817122
GET /gtag/js?id=G-1DTX7D4FHE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Apr 2023 06:30:55 GMT
expires: Tue, 18 Apr 2023 06:30:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80158
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 43db2c964498883fd98799a8b1dc6ea4
4814b7cbb03111d02286329392d2735225df3a5c
44b1d4e6c4b4ba2f50b3344787b34e1c8100454ce01eccd79c4c949fb7491690
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.fs1.app/assets/js/site.js?date=20190501
104.26.8.127200 OK 126 kB URL GET HTTP/2 assets.fs1.app/assets/js/site.js?date=20190501
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (125980 bytes)
Hash c7ca8ff8fdb856468d6b857a72696f8a
c11439eda786635d762b7495d3cfbbbcb30280ea
9d6ed45b2d3d10eb77547899858942e880de6faa75411cb9d7e5c43dd5f820c4
GET /assets/js/site.js?date=20190501 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 11:21:00 GMT
vary: Accept-Encoding
etag: W/"5ccad29c-61200"
expires: Tue, 25 Apr 2023 06:29:41 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 73
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D5sobNAwVQmQMdzphMIpEzXuoq7Ud87AuhjEW5zwfT%2FF0l%2BxqS6P0%2BCRuOE%2FYxA2BekM4kkwCQIqC3Gnv2qeIf7tNA9Fhq3hdFcwW3k8QtIoipwxJv1iePVIFDZNQ7nS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca1f85e1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets-cdn.jable.tv/assets/images/placeholder-md.jpg
54.39.243.84200 OK 15 kB URL GET HTTP/2 assets-cdn.jable.tv/assets/images/placeholder-md.jpg
IP 54.39.243.84:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectassets-cdn.jable.tv
Fingerprint31:62:94:93:08:6D:08:CA:0D:35:4A:C8:7E:63:0E:8D:D7:53:08:52
ValidityMon, 27 Mar 2023 15:19:14 GMT - Sun, 25 Jun 2023 15:19:13 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets-cdn.jable.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 14601
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
etag: "5ca092b0-3909"
strict-transport-security: max-age=15768000
expires: Thu, 18 May 2023 06:30:55 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Apr 2023 22:31:48 GMT
expires: Sun, 14 Apr 2024 22:31:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 201547
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 14:31:29 GMT
expires: Fri, 12 Apr 2024 14:31:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 403166
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Hash 037d830416495def72b7881024c14b7b
619389190b3cafafb5db94113990350acc8a0278
1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 02:07:56 GMT
expires: Fri, 12 Apr 2024 02:07:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:12 GMT
content-type: font/woff2
age: 447779
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.fs1.app/contents/videos_screenshots/12000/12245/320x180/1.jpg
104.26.8.127200 OK 42 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/12000/12245/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d813c76ff80a1363ce148d1f648298e5
63f9fdc20a71f6ae1ca96a336393a8ffbd181a2f
ae4a9259041aa0df27812afe6102af343f304a7e7fd5dc76da1d2f62e3120f89
GET /contents/videos_screenshots/12000/12245/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 42374
cf-bgj: h2pri
etag: "5fde1254-a586"
last-modified: Sat, 19 Dec 2020 14:46:44 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 73
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ovfwmuxaxa6nSzYN55d47kQvo8u37oPlK08E91%2B%2FqTL8KqF5I3NFLJQqiymt%2FXIHdYf0qzspE9j0y3apwMM%2BcUUMZm3W6xfqnvEES9qz5AT2KOzkgShbk6WZ4%2FPwfF1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca5eb631c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/21000/21418/320x180/1.jpg
104.26.8.127200 OK 40 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/21000/21418/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 9906e41ee47370a0bb5eb1631c70733d
2eb1268bef275a4e38f915de9fd53a6654c6c65a
f504aaaa6f3ee7f550954fe85946d571116bb69d68a246b21ef22ee63b50ca23
GET /contents/videos_screenshots/21000/21418/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 39590
cf-bgj: h2pri
etag: "61ea7e5e-9aa6"
last-modified: Fri, 21 Jan 2022 09:35:26 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pqygxA7Lp8ruKGkOcOLFAjxkJRrLemQ2i58kpLF8%2BhtA3vF8k4I%2FLReaJQOfORz0LoqFttCw6%2BFUAymjjRFI%2BIYHzPZU9fb9AXMTmj9P5y4HOyqp7vzkvbHD14g49cW2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca5eb5f1c0a-OSL
X-Firefox-Spdy: h2
syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Fapsh-003%2F
95.211.229.247200 OK 1.8 kB URL GET HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Fapsh-003%2F
IP 95.211.229.247:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type JSON data\012- , ASCII text, with very long lines (3363), with no line terminators
Hash 81da6b81379c0075e7d773f69fe5c54c
5fd2b051e8e6abfcce733f93c85ee2eb7342e374
b691e53fe624c4602ec47da867ab9f7d38ed9a09ac890f21507a9237c064cfa2
GET /splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Fapsh-003%2F HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:30:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://fs1.app
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22643e391f958156.477674224145659400%22%3B%7D; expires=Thu, 17 Apr 2025 06:30:55 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C41873820%7C0%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C6158584fac1d5fa2b64516797f3f4719%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Wed, 19 Apr 2023 06:30:55 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
assets.fs1.app/contents/videos_screenshots/31000/31600/320x180/1.jpg
104.26.8.127200 OK 45 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/31000/31600/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash dce4545345b4708b51f795f4cd513d6a
31fcca524e27a32dfb259cf12505b43013fecb2d
c69887be51c41e3fbc43ca179abd01d8af1b20edaace12fd4aca44ea5e272e09
GET /contents/videos_screenshots/31000/31600/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 45241
cf-bgj: h2pri
etag: "641c38ee-b0b9"
last-modified: Thu, 23 Mar 2023 11:33:02 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 73
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D1ayEikjdIiCmv1uetCDeGKRRzLg6jG7yyIOeoJHDn31Woa9W5sAVdi8%2BtWyzQNqSjKrFe%2BPCoXxY2O7HgVI18qeg5gE3B1rnifD3302wWXQi2%2BIkYAy8onpYZTpJN39"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca5eb671c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/3000/3992/320x180/1.jpg
104.26.8.127200 OK 36 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/3000/3992/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 9e28a01a001c0396dcdbafa6d8b22bba
68439189bf612a3fbc2be46e6067029b65b58419
3edecee70ae50b85332e0ee0afe5551d1f36caa6302ee2ac842640a276a45356
GET /contents/videos_screenshots/3000/3992/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 35678
cf-bgj: h2pri
etag: "5dda1165-8b5e"
last-modified: Sun, 24 Nov 2019 05:13:09 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=diG8d7xJneG3CUUC3v0efCoySIuzQyuIUDj3VtUUywG4Q%2BUZ1k4AaT6D7jPNlsFCv3kpmRuuZXMEaJ1pfBHlu5ijtWSG0AUsUgFPtpzvXSlKminLcmvF4hqyMHSNW73r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca5eb621c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/26000/26074/320x180/1.jpg
104.26.8.127200 OK 38 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/26000/26074/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 445563de0a27a7f246659e6a41c4068c
38f95761b8cf2def791d00371155048a1a475901
287bd1d29aaf0636493eb640b810b401e0f76afccfeedde607eb5ab499a4a351
GET /contents/videos_screenshots/26000/26074/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/jpeg
content-length: 37648
cf-bgj: h2pri
etag: "62f7e356-9310"
last-modified: Sat, 13 Aug 2022 17:45:58 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 73
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8FlaTtnsuBUsvmXl5KsrDLk6za59WXhSMduXgj0jr15AEe8Kgrh6ob%2B03PyqPB2Bag9uan1jvoWPhzw6%2BKOya1NfAWy6xo7gyutqRHpp3lOeNWbkedDf0T4NKkL3mNAH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca5eb691c0a-OSL
X-Firefox-Spdy: h2
a.labadena.com/api/click/6518123522030351095?c=90
135.181.208.216200 OK 0 B URL GET HTTP/2 a.labadena.com/api/click/6518123522030351095?c=90
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintFE:A0:11:D9:6C:3B:49:F5:25:B8:E2:BA:76:DA:02:7C:1E:08:7D:E2
ValiditySat, 15 Apr 2023 23:27:07 GMT - Fri, 14 Jul 2023 23:27:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/6518123522030351095?c=90 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Cookie: nauid=ymFWYdUMpXFUekfb0OE3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 06:30:55 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: private
X-Firefox-Spdy: h2
fs1.app/cdn-cgi/challenge-platform/h/b/scripts/pica.js
104.26.8.127200 OK 4.4 kB URL GET HTTP/2 fs1.app/cdn-cgi/challenge-platform/h/b/scripts/pica.js
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (5717), with no line terminators
Hash 3eb2b1c0b6fea2f60e59eef93f4c7ee9
17e3b13595b70d4848eacbb8e14687731c0f7d7a
d42e57e8e7567f9676b6af13c32f37ea75e35429f737eeaebc38030b16e140f8
GET /cdn-cgi/challenge-platform/h/b/scripts/pica.js HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/videos/apsh-003/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fj6I1TVhVMD6wb3TsZPlRuqwaBoDdTNM8l7vEq9%2BXBELciA7TSYUX4w%2F1NC88b%2BCC2jLGLfeUJYkQ1%2FTyEFg2820UUR%2F8Jijw6GSJlfLQy8W4SFE2G4zZ1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca60b8e1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
104.26.8.127200 OK 2.2 kB URL GET HTTP/2 assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 289c267b299c6efd9d858dce9265d292
a74380024cb5d750f0e6e5367868b62a2f8da979
95a0926985813fbebd6f14d9f599fc8ce908b347e71a4f8957413cdddda6d554
GET /assets/icon/apple-touch-icon.png?v=8 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/png
content-length: 2222
last-modified: Fri, 26 Apr 2019 13:17:54 GMT
etag: "5cc30502-8ae"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bs5nOQu84OpWnY5kHrhZ78RsEsDNXv%2BIfDHT8gj0fibRCVLPCN5U9R0%2Bb54A5Or94%2BW6ZMfcZtOVfhQsZeovCj5dC9aStsYiAzPlQyCcutDEDr89WJNX86ZI02B41iGq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca76cbf1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/assets/icon/favicon-16x16.png
104.26.8.127200 OK 211 B URL GET HTTP/2 assets.fs1.app/assets/icon/favicon-16x16.png
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0dad7e42fdc1857ca6f410ed2b86fc18
9c10b21666e7e804cf6c721416aa0436419614db
e9ee417839b142602744bd5150311d5229ac9696fdc114b93246f01043fc7dfd
GET /assets/icon/favicon-16x16.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/png
content-length: 211
last-modified: Fri, 26 Apr 2019 13:17:54 GMT
etag: "5cc30502-d3"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I8t0peDa4mpirmicqfUtpX5DpmSQEnjO2yxUPc8crKvbRJn109ooDJgR%2F%2B%2BlNJ50ccgoVi2IVsDGvLZsZfDuBFAddibb6ABvVDBcoY8TPeNkJS6KBz7V%2BC4UDT0%2FtJZM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca76cc21c0a-OSL
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PSU4DQQz8Ch+YVnnrJWfOIIF4QGcyc0AhHHJJpHo8PRMUlyyXF5VthdoEn6S+QA+GQwSbpIbkmiScb+8fdGE/n0/9/p3m3x+KA1GZpZoIS60OoxUrEYWt0U0yPNObZpFcKUEjBjTMfWMJENbKr8/X3WVAWbTeGgbdllJBHxw3MLst1mRtUSVy8lJycVUXjxxtnMN5hvYm0o9Ym6JqX71J1iXWGFlsQuzp3I/9tFz6/gceSPBW9v3/BZq4qSsneSbOYeDe7tf7ZSaf4w/ELjAecd8CcyB6wdyRZUGsNSqwrN39aD1j+QOun99DegEAAA==
95.211.229.247200 OK 20 B URL GET HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz1PSU4DQQz8Ch+YVnnrJWfOIIF4QGcyc0AhHHJJpHo8PRMUlyyXF5VthdoEn6S+QA+GQwSbpIbkmiScb+8fdGE/n0/9/p3m3x+KA1GZpZoIS60OoxUrEYWt0U0yPNObZpFcKUEjBjTMfWMJENbKr8/X3WVAWbTeGgbdllJBHxw3MLst1mRtUSVy8lJycVUXjxxtnMN5hvYm0o9Ym6JqX71J1iXWGFlsQuzp3I/9tFz6/gceSPBW9v3/BZq4qSsneSbOYeDe7tf7ZSaf4w/ELjAecd8CcyB6wdyRZUGsNSqwrN39aD1j+QOun99DegEAAA==
IP 95.211.229.247:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz1PSU4DQQz8Ch+YVnnrJWfOIIF4QGcyc0AhHHJJpHo8PRMUlyyXF5VthdoEn6S+QA+GQwSbpIbkmiScb+8fdGE/n0/9/p3m3x+KA1GZpZoIS60OoxUrEYWt0U0yPNObZpFcKUEjBjTMfWMJENbKr8/X3WVAWbTeGgbdllJBHxw3MLst1mRtUSVy8lJycVUXjxxtnMN5hvYm0o9Ym6JqX71J1iXWGFlsQuzp3I/9tFz6/gceSPBW9v3/BZq4qSsneSbOYeDe7tf7ZSaf4w/ELjAecd8CcyB6wdyRZUGsNSqwrN39aD1j+QOun99DegEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://a.labadena.com
Connection: keep-alive
Referer: https://a.labadena.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22643e391f958156.477674224145659400%22%3B%7D; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C41873820%7C0%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C6158584fac1d5fa2b64516797f3f4719%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:30:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.labadena.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%22643e391f958156.477674224145659400%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%2299.0199%22%7D; expires=Thu, 17 Apr 2025 06:30:55 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8cd9aa01db60293b18dcdbae7d3721db
27cc709e8fbceb5eb651ab77c58678094a323b0b
bdb89cf524c1f48708a3b9cba1b202ee009e534603301b01d94fbafe462c28b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s3t3d2y8.afcdn.net/library/140058/defdee1f238f01447a564bb65bc78fb6e09d9e8b.mp4
185.76.9.14206 Partial Content 19 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/140058/defdee1f238f01447a564bb65bc78fb6e09d9e8b.mp4
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint58:E2:EC:9A:A1:55:22:20:28:3E:43:7C:0D:B9:0A:67:84:6B:EA:FB
ValidityMon, 27 Feb 2023 07:22:15 GMT - Sun, 28 May 2023 07:22:14 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash b7218c556915f3680f044234f0f139f9
defdee1f238f01447a564bb65bc78fb6e09d9e8b
ea7ce093f47119441c389f6dc03971063d2602dbc3ca03fc8cb40cf936f94a7b
GET /library/140058/defdee1f238f01447a564bb65bc78fb6e09d9e8b.mp4 HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: video/mp4
content-length: 18759
last-modified: Thu, 26 Mar 2020 22:23:57 GMT
etag: "5e7d2b7d-4947"
expires: Sun, 24 Mar 2024 05:54:28 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ0KeQX/i6wfAA
x-77-nzt-ray: c0a4cc28f4b621341f393e647d22cf39
x-accel-expires: @1711259668
x-cache: HIT
x-age: 2075787
x-77-pop: stockholmSE
x-77-cache: HIT
content-range: bytes 0-18758/18759
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.170200 OK 124 kB URL GET HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.170:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type ASCII text, with very long lines (2723)
Size 124 kB (123683 bytes)
Hash 903ed5eae35c8eedc023b4ece2d9df47
a6aac63b89fe13d03a44e8ed3f97a5e1c80dfaf7
d75b31791f729fd04be8d47fa59a5409c84fcb4dc9bbf3016d2829a9151434a4
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 123683
date: Tue, 18 Apr 2023 06:30:55 GMT
expires: Tue, 18 Apr 2023 06:30:55 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8cd9aa01db60293b18dcdbae7d3721db
27cc709e8fbceb5eb651ab77c58678094a323b0b
bdb89cf524c1f48708a3b9cba1b202ee009e534603301b01d94fbafe462c28b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imasdk.googleapis.com/js/core/bridge3.568.1_en.html
142.250.74.170 232 kB URL imasdk.googleapis.com/js/core/bridge3.568.1_en.html
IP 142.250.74.170:0
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 232 kB (231485 bytes)
Hash 75135f4b1d8e89d199e90b3dffa9fa9c
d70c3bea7e109d99e77d102d2732fe645f79f40a
c75dc8ffdcf43329123e776e1a8f92a9e71a5ee0cce42ed0fc8335cb618d244c
GET /js/core/bridge3.568.1_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 17:00:28 GMT
expires: Fri, 12 Apr 2024 17:00:28 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 13 Apr 2023 16:56:21 GMT
content-type: text/html
vary: Accept-Encoding
age: 394228
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 456f2594c1be094df8aca381e053c8f6
0a7003d46eac9ca946cd9bff6cf29a3c4c2d2f1a
2d45fa5097990ad2becc19e99b8e4f29ae9ee6f4696e4cc3ec2f5ac1961a1c11
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 2bb32eb287a980b1e3d6225302f2a399
2c5bfdfe6c3b0be4d73096793bdc6167ef920e4d
9fd58d9d6500c88f270ed41816a2d87472ce1fd1332e7a934e37cd499e39104a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
135.181.208.216200 OK 499 kB URL GET HTTP/2 a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintFE:A0:11:D9:6C:3B:49:F5:25:B8:E2:BA:76:DA:02:7C:1E:08:7D:E2
ValiditySat, 15 Apr 2023 23:27:07 GMT - Fri, 14 Jul 2023 23:27:06 GMT
Size 499 kB (498717 bytes)
Hash 57fb9c5dc97681f5e72b1a5d15ea3271
418c9d2bf76e028df935fa5e0b5fb9f1ab2bb99f
97f078080958555a5c25c8c88d39d1d3b37ad16c85307764499e8fabed073df1
GET /api/spots/220808?p=1&s1=%subid1%&kw= HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: nauid=ymFWYdUMpXFUekfb0OE3; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.tapioni.com/adgpt.js
104.22.39.71200 OK 817 B IP 104.22.39.71:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 5712
accept-ranges: bytes
server: cloudflare
cf-ray: 7b9adca9b9cb2d8c-ARN
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
142.250.74.66200 OK 13 kB URL GET HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 142.250.74.66:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint78:0B:8F:93:A7:44:54:C0:E8:E5:A7:23:CC:5E:6C:ED:4E:E6:F6:01
ValidityTue, 28 Mar 2023 16:45:46 GMT - Tue, 20 Jun 2023 16:45:45 GMT
File type ASCII text, with very long lines (1514)
Hash e0a80a7ff607cd6b73373b9d4f2f2785
89da55740e0305bdfc3fabedff5057d1cee93559
0fb653ddef8068310e3fb45204026264c638d12e272aad697da6e9590d85d2a3
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Apr 2023 06:13:26 GMT
expires: Tue, 18 Apr 2023 07:13:26 GMT
cache-control: public, max-age=3600
age: 1050
last-modified: Tue, 14 Mar 2023 20:29:12 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=fs1.app
142.250.74.34200 OK 100 B URL GET HTTP/2 adservice.google.com/adsid/integrator.js?domain=fs1.app
IP 142.250.74.34:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintED:88:16:3C:FE:E3:0A:31:34:FF:BE:21:B4:92:AA:6F:B9:EA:AA:B5
ValidityTue, 28 Mar 2023 16:47:33 GMT - Tue, 20 Jun 2023 16:47:32 GMT
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=fs1.app HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 18 Apr 2023 06:30:56 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/0/307/320x180/1.jpg
104.26.8.127200 OK 26 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/0/307/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 197c604cee06ddbba888fb603e47cf01
9e4269291521d1625bef4a3751cd2068871293db
276db66070016d4bc0a44fc58df1082a3cb6190ee2399fc42df1060d0c937495
GET /contents/videos_screenshots/0/307/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 25601
cf-bgj: h2pri
etag: "5c7ca602-6401"
last-modified: Mon, 04 Mar 2019 04:13:54 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QCA19U26sbYEtlmzDC4WFtoBAh0gGjEmU00S%2BNB8f59bPcmDgBE%2BrPElBQjqcg1Istuk9IS2jOSKCjNoSEmA3yoGvwYj5bQr5vCGMU3lCsqWOj3y3xSjpr5GOEe%2ByV9m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaa1f841c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/23000/23848/320x180/1.jpg
104.26.8.127200 OK 37 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/23000/23848/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d8f0d30f3799a9f154c5abc4bcefa081
1e9813d39cc42461806350fe08974bdb051fd550
c4cb582a210f2c5c37523990613e39f94aa8d81dbb59f2fba806af0ff010e4e9
GET /contents/videos_screenshots/23000/23848/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 37085
cf-bgj: h2pri
etag: "6270f5ab-90dd"
last-modified: Tue, 03 May 2022 09:28:11 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aI9r76KZ5WR%2Bt4%2F1ShoolN0h4xeJqWPV9tjsjPiP%2BXP17FN2vC6NrQXA8N6TYobEN5rMsUhQm6lp1Q8hUHzYCYwj5oQ7vE6RRWPznAbgc2XcBWNJ%2B0ihxOBXDb1DsQwo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaa1f831c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/14000/14332/320x180/1.jpg
104.26.8.127200 OK 39 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/14000/14332/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash c88ac58767622ee170175b5735d210d1
9d5a16f207a8aee12950f941feab9056a7d21147
3f619ba44e71392e6164d650d4d54666d921c4e4e1c7d7173091dde09467b25e
GET /contents/videos_screenshots/14000/14332/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 39351
cf-bgj: h2pri
etag: "605164de-99b7"
last-modified: Wed, 17 Mar 2021 02:09:34 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7QyEYsfFVcLMIr1RM6sbOBjhqb50eDSd7AOL9RFSqlfkW1SAQJXSJwKkVQbYKA3znSuSwUlyIz2SNV9HOhg%2B79swc%2BaJYV2T%2Fau4v8M8G3ko6c5%2F37gdAqRgb3hwOHuM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaa9ff51c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/5000/5814/320x180/1.jpg
104.26.8.127200 OK 36 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/5000/5814/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 039c35ad529d74a260d632634f492031
7506d6987cb3d670448e6a02fb614ae8328d41f3
ac60d4082f6770d4516877f1832cc433eb7d53a3436b08e3418b6ec63b4f7eb0
GET /contents/videos_screenshots/5000/5814/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 36090
cf-bgj: h2pri
etag: "5e4c091f-8cfa"
last-modified: Tue, 18 Feb 2020 15:56:15 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1Bn8RnaKWxASo1MFkFDSIDS3z%2BkULmv2AE7ULUB4G9y%2BE9Z7A6OQIDCasftAO057XhbiidLGiEwWqklNlU96zX73Z9zYxW7OUjPtSrxgOeMXDVsUDzQHUF0XdPKpSjE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaa9ffb1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/11000/11644/320x180/1.jpg
104.26.8.127200 OK 37 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/11000/11644/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d8bd8d5c03d860bb38753181345fa33a
6fc3f27ef406a97cf60cb270f935b4165f825507
d9f0d5369964c1a810b5364c0e6fff5c5511c04b08d4b0c406fb9a2997208524
GET /contents/videos_screenshots/11000/11644/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 37287
cf-bgj: h2pri
etag: "5fbb4dfd-91a7"
last-modified: Mon, 23 Nov 2020 05:51:57 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=79UheDBQZQJsPp81glgZho0X8WIyDQOeSYOCDipOJd1tgMWhK6tff8wkHrldTXfrZaePRUtTWdhBMQoorrqossQ0Xq6B%2BaYblcsM84AbZ1B9Y6xDeeRph%2FTVwFdCLhzi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaa9ffd1c0a-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 456f2594c1be094df8aca381e053c8f6
0a7003d46eac9ca946cd9bff6cf29a3c4c2d2f1a
2d45fa5097990ad2becc19e99b8e4f29ae9ee6f4696e4cc3ec2f5ac1961a1c11
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.fs1.app/contents/videos_screenshots/18000/18154/320x180/1.jpg
104.26.8.127200 OK 39 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/18000/18154/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 59a443a388900bec5b4b31f4e87b0d39
9a5748b5999eab95dbdb8c3fa8cba960a201b822
8d9333f503757776783592c1778feefc5def3254b9360e132779a6e470cfec14
GET /contents/videos_screenshots/18000/18154/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 38793
cf-bgj: h2pri
etag: "61236858-9789"
last-modified: Mon, 23 Aug 2021 09:20:24 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1qEaw4lDKQ9CgFRYEJNnSO%2B%2BBkMmS3sDUuwrzSL9kvvF%2FAwkAdZGGe6SSWIAlbQeqSiICP3%2BNBY9Vd5Cu67LVCVwCyRyXjCA8ohZjSEgNn6%2B4a3OZhQIdVrka72S5wkp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaab8211c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/17000/17114/320x180/1.jpg
104.26.8.127200 OK 36 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/17000/17114/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 319455da17cc6cae06b23825c459e6ed
31f67c0755125dbaa470673975346290279fc304
dccd7a620d99ae3590029842220d77d1291132a6a0b0886995d1d57a5ceae992
GET /contents/videos_screenshots/17000/17114/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 36248
cf-bgj: h2pri
etag: "60e7f0be-8d98"
last-modified: Fri, 09 Jul 2021 06:46:22 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SAKq6vXGagjqK%2FLBHMO21wot%2FQGAtZW0J5dCISDjVV95qgfOVvlXsB1YJo2PszzkUlECEVJIliMeN3fMfYCQf2GRxp9BfHCiUeBK4zJ8PD7oAzDuBhRPhA2zz8eRBNRr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaab8241c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/0/84/320x180/1.jpg
104.26.8.127200 OK 24 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/0/84/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 1d983e89f43f6717b8794227b437dcc3
35e0d62e37adf86e4fdd24917e76dcccb2541b12
89a2740754866a529d72eb5b11588496dad6af6d773b22a162c1f85f3204aaf1
GET /contents/videos_screenshots/0/84/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 23468
cf-bgj: h2pri
etag: "5c7ca444-5bac"
last-modified: Mon, 04 Mar 2019 04:06:28 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=opP3aXY8peHOk0HZJ2ibAqMOCvTeRHAK9yNlc1C%2BpYW9RqYsXIFaMWG60FYjB9wUlZycv3B5sekjkChwi%2F0hs86ROPujv6LGanhfGx6mIaLy2r3SjYxh4k9yS1XLzakl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaab81b1c0a-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 2bb32eb287a980b1e3d6225302f2a399
2c5bfdfe6c3b0be4d73096793bdc6167ef920e4d
9fd58d9d6500c88f270ed41816a2d87472ce1fd1332e7a934e37cd499e39104a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.fs1.app/contents/videos_screenshots/12000/12439/320x180/1.jpg
104.26.8.127200 OK 45 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/12000/12439/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 41a7ce9478322b785d0d5bfe469e958e
46ded45df5bad48c31d516238acd7216e9219894
3b1b6ccdd032b22085d154ec9f7752f10c46a8939abaf33b2a2fd6bf398fa0b8
GET /contents/videos_screenshots/12000/12439/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: image/jpeg
content-length: 45380
cf-bgj: h2pri
etag: "5fe88704-b144"
last-modified: Sun, 27 Dec 2020 13:07:16 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j2hJ%2FOf0LBCH%2BC3yAwIt%2BlD88SO7skTF0Zqg8%2BolxnQ8b8Hbvfwlcc0ZLI%2FARdp5WMK9QferttRxPsvbBNaiGLDiwCyPlSlPpouIQAGvGzSEgjx2B9thwNDa6HccxGTe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaab8271c0a-OSL
X-Firefox-Spdy: h2
ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/8062.m3u8
143.244.50.90200 OK 84 kB URL GET HTTP/2 ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/8062.m3u8
IP 143.244.50.90:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectao-block-ater.mushroomtrack.com
Fingerprint32:44:2E:B7:48:72:6D:31:78:95:10:8C:15:05:69:66:41:CF:0D:F9
ValiditySat, 25 Mar 2023 21:08:38 GMT - Fri, 23 Jun 2023 21:08:37 GMT
Hash 5000f14b9df01f79ecafe2c0a9d66c2a
9b7e7a6d47b4b4342742e0fa90d55bd7e9365457
e1997dc6ddba2b16bd2c62f0a9b86147cffcde8a613403ccb58eda98922e0b8f
GET /bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/8062.m3u8 HTTP/1.1
Host: ao-block-ater.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: audio/x-mpegurl
content-length: 84178
server: BunnyCDN-LA1-992
cdn-pullzone: 1022155
cdn-uid: 586228b8-0c75-4f2e-abf3-9564133d1dd6
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, MOVE, OPTIONS
access-control-max-age: 86400
cache-control: public, max-age=31919000
last-modified: Sat, 12 Nov 2022 21:24:02 GMT
perma-cache: MISS
x-amz-id-2: oGRdoLvrVj+9jqA8DTExan0P2RZW38TAmvxJyEkJOJJNerC1P+6KdGqy1Sm8AtrbGGRztigDXvGO
x-amz-meta-mtime: 1590695069
x-amz-request-id: 71EBC9DE4E42228F
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/17/2022 23:48:07
cdn-edgestorageid: 1002
cdn-status: 200
cdn-requestid: d66619c4638c0bdd6ea696a14568b93f
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ea0b54ae1b5bfc108723473bacced965
c580dca317cbf0257224adfe034998865e841143
8426779a8fc33f4e9f59abbf061c4e9b6a0b16cf3c334160cb5a603cbb05e40f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
142.250.74.70200 OK 17 kB URL GET HTTP/2 s0.2mdn.net/instream/video/client.js
IP 142.250.74.70:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.doubleclick.net
Fingerprint02:D7:C8:FF:D6:CD:00:E7:43:BC:32:BD:C7:29:BB:77:12:F9:D6:D7
ValidityTue, 28 Mar 2023 16:45:45 GMT - Tue, 20 Jun 2023 16:45:44 GMT
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Tue, 18 Apr 2023 06:30:56 GMT
expires: Tue, 18 Apr 2023 06:30:56 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ea0b54ae1b5bfc108723473bacced965
c580dca317cbf0257224adfe034998865e841143
8426779a8fc33f4e9f59abbf061c4e9b6a0b16cf3c334160cb5a603cbb05e40f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:30:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/54d8ca488eecda59.ts
143.244.50.90200 OK 16 B URL GET HTTP/2 ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/54d8ca488eecda59.ts
IP 143.244.50.90:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectao-block-ater.mushroomtrack.com
Fingerprint32:44:2E:B7:48:72:6D:31:78:95:10:8C:15:05:69:66:41:CF:0D:F9
ValiditySat, 25 Mar 2023 21:08:38 GMT - Fri, 23 Jun 2023 21:08:37 GMT
Hash 0e4dc43d306b172eec8a52f928965c5e
5ec36e3817006379133a59cf9da82b9e1fc62204
2d2ac14eeab272e54258debb10bb19977e7d703b3a26b04f96e84a57c87e1c7c
GET /bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/54d8ca488eecda59.ts HTTP/1.1
Host: ao-block-ater.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: text/vnd.trolltech.linguist; charset=utf-8
content-length: 16
server: BunnyCDN-LA1-992
cdn-pullzone: 1022155
cdn-uid: 586228b8-0c75-4f2e-abf3-9564133d1dd6
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
last-modified: Thu, 17 Nov 2022 23:48:09 GMT
cdn-storageserver: LA-355
cdn-requestpullsuccess: True
cdn-fileserver: 286
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 206
cdn-cachedat: 12/16/2022 22:27:36
cdn-edgestorageid: 987
cdn-status: 200
cdn-requestid: 4e87954ad847cb7109bc986eb3a381d8
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cloudlogobox.com/rtbfeed.php?001e67e03bf5
78.128.113.86200 OK 106 B URL GET HTTP/1.1 cloudlogobox.com/rtbfeed.php?001e67e03bf5
IP 78.128.113.86:443
ASN #209160 Miti 2000 EOOD
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectcloudlogobox.com
Fingerprint87:2D:8E:53:41:BA:6E:15:2C:20:A1:71:D0:F7:57:03:26:40:84:F5
ValidityWed, 15 Mar 2023 01:03:48 GMT - Tue, 13 Jun 2023 01:03:47 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 45519216be3b413c13c1bd623990d1b8
f374f2578e498a536085b57c41d3d2299fa84f5e
4742175aa9e5530bd227e6d0ca2e5d2be4aa5b46ec7ee4a7c8f81c74d7d7884c
GET /rtbfeed.php?001e67e03bf5 HTTP/1.1
Host: cloudlogobox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:30:56 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.14
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
syndication.exosrv.com/splash.php?idzone=3377419
95.211.229.247200 OK 72 B URL GET HTTP/1.1 syndication.exosrv.com/splash.php?idzone=3377419
IP 95.211.229.247:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://imasdk.googleapis.com/js/core/bridge3.568.1_en.html#goog_1978148654
Certificate IssuerLet's Encrypt
Subjectexosrv.com
FingerprintB0:32:AF:54:A7:8F:3E:F6:C6:1A:EE:BD:56:D9:24:65:24:82:81:E1
ValidityMon, 27 Feb 2023 07:27:56 GMT - Sun, 28 May 2023 07:27:55 GMT
File type XML 1.0 document text\012- XML document, ASCII text
Hash 229111672553ee333ae1cab96ffdc198
0d1932b6823da8855c7725430510eb0e6f3a437a
1bcc1385db77ac4a507af945d75714920da63f1376ca5f9e1c91bc3742ebd944
GET /splash.php?idzone=3377419 HTTP/1.1
Host: syndication.exosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:30:56 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22643e3920e6c6d1.037097961033128971%22%3B%7D; expires=Thu, 17 Apr 2025 06:30:56 GMT; path=; domain=.exosrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
assets.fs1.app/contents/videos_screenshots/11000/11480/320x180/1.jpg
104.26.8.127200 OK 36 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/11000/11480/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 900f7efaa1bb2cf22df45502e02d35d4
9fc559e9630c4754fd8d95b2d8a97a9262976ad5
3c731c1c3637b6e9dd168ff26e86953e738f3a5b0c1666023bbfd6dca14f8ae0
GET /contents/videos_screenshots/11000/11480/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 35717
cf-bgj: h2pri
etag: "5fb24997-8b85"
last-modified: Mon, 16 Nov 2020 09:42:47 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 73
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RnkyGWjE5SEGJP5hpm%2BeL8t8J45ebjP9lbDF6GVrifMkoZnobTpiC8rgOQcmDrhzA8ZbXXr%2FQXxOf94YKWM%2FHNp0mDzCcfcj7VqdEw5L6YF3eSFc%2FGkq7p1wdbH4f4Q%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaebc3b1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/15000/15302/320x180/1.jpg
104.26.8.127200 OK 38 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/15000/15302/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash e0bc8279ebe173783c5902390d4f9bf9
0a19e4081aaed5a52dd946c4ef282ecb069dc956
17d6996d3167980a3e8330d48f787ae85fa7bb6f982c90584ec2dbdf5a9bb896
GET /contents/videos_screenshots/15000/15302/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 37838
cf-bgj: h2pri
etag: "6086f72b-93ce"
last-modified: Mon, 26 Apr 2021 17:23:55 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UPvZuH42hj%2F9ECmzrHCHNy55Fmb70m0slPCb4LUulG0vu5DMETJxPA1vEBNi992JjBv4ErsG1vMZkn2F8sBro3fr05xbJF7VfvosgWz2AXLaIIsykAKMrazWnaDc0nXr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaebc3d1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/24000/24472/320x180/1.jpg
104.26.8.127200 OK 56 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/24000/24472/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d698a059cb89542c25e604e343795d78
7823e0cea765dcca5abc69f46481f9b40c7999f1
7e90b4e9e5d20f18ddad4940a8b33368b39f05e2e5052b3035b919c65ef4a302
GET /contents/videos_screenshots/24000/24472/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 55976
cf-bgj: h2pri
etag: "629257aa-daa8"
last-modified: Sat, 28 May 2022 17:11:06 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iVAMBNw4bHZms8ZHbjY7Y6zKQ9FzhtYG%2FiD8KyxWBJ7rrNQl0zrL0sT64%2F7WNxZTCwDz3OySDzHV5NadA6owwszZUC%2FYYfTYBaKQftMF96DFBqydapILe10JmAuR3meD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaebc3e1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/26000/26001/320x180/1.jpg
104.26.8.127200 OK 43 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/26000/26001/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash dc9726d74881429bb5aafba14635bb5b
12aa461a26d9c9690c72b0ee8c36928a83bbdce6
080a51e44727af810a0d809c06d099d43e6933f8f29c961644c0b5d30af4e97f
GET /contents/videos_screenshots/26000/26001/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 43018
cf-bgj: h2pri
etag: "62f24542-a80a"
last-modified: Tue, 09 Aug 2022 11:30:10 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aCyxReqA2AnScDXDW7E4mTAqnVZKm7lMBBQVYiH%2FUgZc9QIDqgPJwDDr8Jw0w%2FIhCSs7cjWbImPQuZ%2F42Ol0lgZPkAEkKw5c19ZxJ4MK%2FJGiV8EEEEnZup%2B7cX3sKWzt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaecc431c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/30000/30973/320x180/1.jpg
104.26.8.127200 OK 38 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/30000/30973/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash ffcded5a55d21c769e1529cc9e9bdc79
4ae994e05c72836cee2c486959d1928eef442444
7311fea25860d821de0206be5ea5e7a9550266bc552a0fb16642235839c5e0ca
GET /contents/videos_screenshots/30000/30973/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 38395
cf-bgj: h2pri
etag: "6400adfd-95fb"
last-modified: Thu, 02 Mar 2023 14:09:01 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vymW2eslHPuFkLHv33R0tk676ei2i%2F2O1geJyoxCzSReasd25TB4XBMRB2kxb7XCUSJwaaQ6KCazI%2BaxjkfdTq%2FY2JG%2BaOhCTZOyRs6W6N03G6DZV2tZnGIYcKwjWjVM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaecc441c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/7000/7870/320x180/1.jpg
104.26.8.127200 OK 42 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/7000/7870/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 7d61be5e3f6df49e3cf6b4b29092972e
a41286096a43e122d5b008149a7f8f612c3f2d8a
12a4f8c30cc31d8208c31d37ae39cc0b14ca852cb211e5aa709c6b50178a64cc
GET /contents/videos_screenshots/7000/7870/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 42477
cf-bgj: h2pri
etag: "5ec4a8fa-a5ed"
last-modified: Wed, 20 May 2020 03:50:18 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WuMubS%2BL8p0NGLVaYdzNoo3V2mGuFJ6Vsniqekql9bdZtrer%2BA0PTeFjwXGIh7xuPTWNyoAE0c2L7GqilTVAuMy9kINcZ73is1VgqG00vT%2FADQNm%2FMz5yp3oQ2dV2Cct"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaecc4b1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/26000/26953/320x180/1.jpg
104.26.8.127200 OK 42 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/26000/26953/320x180/1.jpg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 3d33b696ecdf1e62ac8cac10ba22b699
45b82f8a6bc02f809e2bc73ef6e9cab422f7b4cd
ecb8b06d4574ffed403beb8c87cf763bc53555331aeb995a242af6c1700267a2
GET /contents/videos_screenshots/26000/26953/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581; __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 41498
cf-bgj: h2pri
etag: "632393c2-a21a"
last-modified: Thu, 15 Sep 2022 21:06:10 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 72
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m0w6sJmk2DJ%2BcujxU7%2B%2BD6xsADFaA0v0X54AZcKritE2jzZm8k%2FpWjh4whBXExhjzUImCr6rH83IDox%2FVXjXNhorgwH0TWT3RdMvQnj41t6DdhIYfMEpDhAZM2RmyWEq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaecc4a1c0a-OSL
X-Firefox-Spdy: h2
ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80620.ts
143.244.50.90200 OK 203 kB URL GET HTTP/2 ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80620.ts
IP 143.244.50.90:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectao-block-ater.mushroomtrack.com
Fingerprint32:44:2E:B7:48:72:6D:31:78:95:10:8C:15:05:69:66:41:CF:0D:F9
ValiditySat, 25 Mar 2023 21:08:38 GMT - Fri, 23 Jun 2023 21:08:37 GMT
Size 203 kB (202864 bytes)
Hash d44bffb2459b9c32342c8a2e104e540a
28b91b81c1fe5dcdacf25c8efdee672de7587bbe
3456729cfd83836b94b41ac163453e3a32f880669588d2c4b6b093aeaf3d185a
GET /bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80620.ts HTTP/1.1
Host: ao-block-ater.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: text/vnd.trolltech.linguist; charset=utf-8
content-length: 202864
server: BunnyCDN-LA1-992
cdn-pullzone: 1022155
cdn-uid: 586228b8-0c75-4f2e-abf3-9564133d1dd6
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, MOVE, OPTIONS
access-control-max-age: 86400
cache-control: public, max-age=31919000
last-modified: Sat, 12 Nov 2022 21:24:02 GMT
perma-cache: MISS
x-amz-id-2: KAUZHfFwH7ptDc6KTJWyu3mGWT5XSyMu0y8W+4C+e/qIgiqx93zX3HaVVWRt/+SfvPoyzZglf5J5
x-amz-meta-mtime: 1590695071
x-amz-request-id: 63CC2DA75D13E17C
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/17/2022 23:48:09
cdn-edgestorageid: 954
cdn-status: 200
cdn-requestid: 750647f0fffc693a8e98300e3c81559e
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/a?v=3&t=l&pid=408719350&rv=34c0&cid=86650514&l=86650514.TC0.HTC0~*~GA584&qi=0
142.250.74.72200 OK 0 B URL GET HTTP/3 www.googletagmanager.com/a?v=3&t=l&pid=408719350&rv=34c0&cid=86650514&l=86650514.TC0.HTC0~*~GA584&qi=0
IP 142.250.74.72:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?v=3&t=l&pid=408719350&rv=34c0&cid=86650514&l=86650514.TC0.HTC0~*~GA584&qi=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
img.strpst.com/thumbs/1681799400/72074659
104.18.63.132200 OK 55 kB URL GET HTTP/2 img.strpst.com/thumbs/1681799400/72074659
IP 104.18.63.132:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 640x360, components 3\012- data
Hash ee39c0adefa05384479150f739971a99
cc3142ca23c85351d6532b6a99f4f8413d333d4e
dd6149f1ec72f6f7c4a9b234e431d891c49ba05ddda2956f7a46f9a819e22dab
GET /thumbs/1681799400/72074659 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/jpeg
content-length: 55426
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=57138, status=webp_bigger
etag: "e2105b0ea967a72ebc10de979f6cfef1"
last-modified: Tue, 18 Apr 2023 06:29:41 GMT
cf-cache-status: HIT
age: 27
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcaf5d08b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/623611/08383e72ee30f54920b69f036aa7050b9906cf65.webp
185.76.9.14200 OK 10 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/623611/08383e72ee30f54920b69f036aa7050b9906cf65.webp
IP 185.76.9.14:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint58:E2:EC:9A:A1:55:22:20:28:3E:43:7C:0D:B9:0A:67:84:6B:EA:FB
ValidityMon, 27 Feb 2023 07:22:15 GMT - Sun, 28 May 2023 07:22:14 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e456e1fcd5b9782e95a8a4beafdaa6f7
08383e72ee30f54920b69f036aa7050b9906cf65
652ef2a4170f9f3331fa3efbbf4f76a170be4d96c0b22a8ad23b490ccab9b534
GET /library/623611/08383e72ee30f54920b69f036aa7050b9906cf65.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/webp
content-length: 10274
last-modified: Wed, 03 Nov 2021 19:29:43 GMT
etag: "6182e327-2822"
expires: Tue, 24 Oct 2023 13:33:05 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ2FPNn/d4SqAA
x-77-nzt-ray: c0a4cc28f4b6213421393e64d3c89d0a
x-accel-expires: @1702160426
x-cache: HIT
x-age: 11175031
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/a?v=3&t=l&pid=478051715&rv=34c0&cid=G-1DTX7D4FHE&l=G-1DTX7D4FHE.L544.S6.Y186.E1452.TC10.HTC0~gtm.init.S0.E462.TS5ccdemoutboundclick.TE4.TS5ccdemdownload.TE0.TS5ccdemvideo.TE3.TS5ccdemsitesearch.TE2.TS5ccdemscroll.TE1.TS5ccdempageview.TE1.TS5ccdconversionmarking.TE1.TS5setproductsettings.TE0.TS5ogtgooglesignals.TE0~gtm.js.S0.E447.TS5gct.TE1~gtm.dom.S0.E40~gtm.load.S1.E2~gtm.init_consent.S1.E360&qi=0
142.250.74.72200 OK 0 B URL GET HTTP/3 www.googletagmanager.com/a?v=3&t=l&pid=478051715&rv=34c0&cid=G-1DTX7D4FHE&l=G-1DTX7D4FHE.L544.S6.Y186.E1452.TC10.HTC0~gtm.init.S0.E462.TS5ccdemoutboundclick.TE4.TS5ccdemdownload.TE0.TS5ccdemvideo.TE3.TS5ccdemsitesearch.TE2.TS5ccdemscroll.TE1.TS5ccdempageview.TE1.TS5ccdconversionmarking.TE1.TS5setproductsettings.TE0.TS5ogtgooglesignals.TE0~gtm.js.S0.E447.TS5gct.TE1~gtm.dom.S0.E40~gtm.load.S1.E2~gtm.init_consent.S1.E360&qi=0
IP 142.250.74.72:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a?v=3&t=l&pid=478051715&rv=34c0&cid=G-1DTX7D4FHE&l=G-1DTX7D4FHE.L544.S6.Y186.E1452.TC10.HTC0~gtm.init.S0.E462.TS5ccdemoutboundclick.TE4.TS5ccdemdownload.TE0.TS5ccdemvideo.TE3.TS5ccdemsitesearch.TE2.TS5ccdemscroll.TE1.TS5ccdempageview.TE1.TS5ccdconversionmarking.TE1.TS5setproductsettings.TE0.TS5ogtgooglesignals.TE0~gtm.js.S0.E447.TS5gct.TE1~gtm.dom.S0.E40~gtm.load.S1.E2~gtm.init_consent.S1.E360&qi=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
104.18.51.106200 OK 103 B URL GET HTTP/3 go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
IP 104.18.51.106:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: go.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCg3Rc4wrBy1LXpo82JMTrRGeeiQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: image/gif
content-length: 103
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b9adcaf4f7a1c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
csi.gstatic.com/csi?v=2&s=ima&puid=1~lglw1qaj&c=8630767179162&slotId=4315383589581&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
216.239.32.3204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=1~lglw1qaj&c=8630767179162&slotId=4315383589581&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
IP 216.239.32.3:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.568.1_en.html#goog_1978148654
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=1~lglw1qaj&c=8630767179162&slotId=4315383589581&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Tue, 18 Apr 2023 06:30:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_init_NdmIcqrHEgx3m30X.mp4
104.18.55.220200 OK 1.2 kB URL GET HTTP/2 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_init_NdmIcqrHEgx3m30X.mp4
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type ISO Media, MP4 Base Media v5 \012- data
Hash c8a79c758125f0fbfb25db8cfc8ae755
194edcea12e0744ebd59b454cf283842266ebb8e
f9cc739485b057a3fca9d6d1c0e31850592ebeda92603ac53451ef3e3b43c45f
GET /hls/72074659/72074659_480p_init_NdmIcqrHEgx3m30X.mp4 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: video/mp4
content-length: 1217
last-modified: Tue, 18 Apr 2023 04:25:47 GMT
etag: "643e1bcb-4c1"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcb248051c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3750_t0vf1uOPNDl5vt4x_1681799447.mp4
104.18.55.220200 OK 309 kB URL GET HTTP/2 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3750_t0vf1uOPNDl5vt4x_1681799447.mp4
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 309 kB (308973 bytes)
Hash 4c3c0bb5fae584709fbd302a733846dd
39afd118bfdfdfc576faf686724f897142c7e07e
a4c993c4bdf239fe1b345f1757328b24cbbc23aa4139ac2f0d580e55da9ebc05
GET /hls/72074659/72074659_480p_3750_t0vf1uOPNDl5vt4x_1681799447.mp4 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: video/mp4
content-length: 308973
last-modified: Tue, 18 Apr 2023 06:30:49 GMT
etag: "643e3919-4b6ed"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcb288581c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3751_FXfYCPvdNBZOAeb1_1681799449.mp4
104.18.55.220200 OK 314 kB URL GET HTTP/3 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3751_FXfYCPvdNBZOAeb1_1681799449.mp4
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 314 kB (313744 bytes)
Hash d95dd32bfd1696a00c3490162289682e
ed8a191e7063251456c7acee6cfbab30f8be24e1
b0802cf5584b7986d8c725b9b962e61f045498e3fa5ea043331e225562d1b7c5
GET /hls/72074659/72074659_480p_3751_FXfYCPvdNBZOAeb1_1681799449.mp4 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: video/mp4
content-length: 313744
last-modified: Tue, 18 Apr 2023 06:30:51 GMT
etag: "643e391b-4c990"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcb33ed00b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
csi.gstatic.com/csi?v=2&s=ima&puid=2~lglw1qqr&c=8630767179162&slotId=4315383589581&ghmsh_eids=44765701%2C44771449%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991
216.239.32.3204 No Content 0 B URL POST HTTP/3 csi.gstatic.com/csi?v=2&s=ima&puid=2~lglw1qqr&c=8630767179162&slotId=4315383589581&ghmsh_eids=44765701%2C44771449%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991
IP 216.239.32.3:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.568.1_en.html#goog_1978148654
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=2~lglw1qqr&c=8630767179162&slotId=4315383589581&ghmsh_eids=44765701%2C44771449%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: *
date: Tue, 18 Apr 2023 06:30:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
a.labadena.com/api/settings/262182
135.181.208.216200 OK 32 B URL GET HTTP/2 a.labadena.com/api/settings/262182
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintFE:A0:11:D9:6C:3B:49:F5:25:B8:E2:BA:76:DA:02:7C:1E:08:7D:E2
ValiditySat, 15 Apr 2023 23:27:07 GMT - Fri, 14 Jul 2023 23:27:06 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 70e03b2246021ebcd2ca54e5607ab872
04b2d0e74ccb5feec8976d1c6a92eee8a84cdba8
c3cbbee3b165de8cb5725efe3cc7abc569c13214dbc37a70ace8758cc2d5b73f
GET /api/settings/262182 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
video.ktkjmp.com/adsbygoogle.js
104.18.62.235200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP 104.18.62.235:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
FingerprintD6:F4:DC:36:6D:BC:E5:36:F7:AC:71:BE:47:40:06:E8:12:9F:23:EC
ValidityMon, 01 Aug 2022 00:00:00 GMT - Tue, 01 Aug 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 32ef1aa7f21e74d0a741aacc65b5bb7f
462899d8755bdcb82c466d5699f698d2534701a8
20842c632a5b12a9d188fb89b20c544f7d8baa4c1be33817dd8d6684d23c5ef0
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: QUXnNy2w3SVgBBJ04JxjSn5YsvWZNpcO0WhRwsvO5enR4jmqtkkomAFVsVTSR4oLeLnl07S5f78=
x-amz-request-id: ZTWEE1QFDM4B3Q44
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://fs1.app
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: HIT
age: 73
expires: Tue, 18 Apr 2023 10:30:55 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca3ce5cb505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
104.18.55.220200 OK 726 B URL GET HTTP/3 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (744), with no line terminators
Hash 9a66d0ebc9dd74f383674f097734bd15
92146d66f8d5937e68f5f1d9fcfd259a135a03f4
93a067a04ac22d0c29c251920106540b96e23dff6fcbcba602ebc3fa4386ed84
GET /hls/72074659/72074659_480p.m3u8 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:31:05 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:31:04 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adce41cab0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/flag/jp.svg
104.26.8.127200 OK 167 B URL GET HTTP/2 assets.fs1.app/assets/images/flag/jp.svg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 5b006b8f28fc656a790e105d4dbd706f
d0105fc698ca484fd8748e7c0fe883eac45422a9
71980f7ff5280fc9b3c07643bf5466c2ca9258571223213ffa63d834a2936d8c
GET /assets/images/flag/jp.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
etag: W/"5ce03837-a7"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1fhKd%2B7utctL2WS7y5WQwUuTBfETEnx6%2FriiPI%2BI2qn04nJFxhXxFcVbzn51HQWwi8fCxPfCql8lLtyAhD1qutFhnWaognZ2J4wqnb0ro%2BTLyEXiUKZouKEo%2B2s%2F9h%2BS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca1f8541c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/hls.50741c7e234eee284c18.js
104.18.59.150200 OK 61 B URL GET HTTP/3 creative.admjmp.com/widgets/Spot/hls.50741c7e234eee284c18.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 059cfc353c033aee704318a0a67275a2
22d5ea1600df265723b181b484f2e3f85a4bcbbc
68d5bef571c6a9e14d8a182bc2ed9cbe64d353a86dcba0387440760cbeed8f53
GET /widgets/Spot/hls.50741c7e234eee284c18.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCfFUFWhPdBMmYaZ8RwVWNoQkkZ4G
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Apr 2023 11:32:48 GMT
etag: W/"643696e0-3d"
expires: Tue, 18 Apr 2023 06:31:03 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcb12b03b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/js/player.js
104.26.8.127200 OK 424 kB URL GET HTTP/2 assets.fs1.app/assets/js/player.js
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
Size 424 kB (424056 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/js/player.js HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 04:54:14 GMT
vary: Accept-Encoding
etag: W/"5cd260f6-67878"
expires: Mon, 24 Apr 2023 19:50:42 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 38413
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xJ%2BwMBRhA%2BJq38XNoUfUvoSa%2FH%2B%2FwLawuhcV3gDAP8M63q5Bl5HW2%2F%2F1tdteIkxyOVxF1wgeqpb7zI6uK7%2B7vfVvm%2BROn%2F58GdmUH44R%2FovH7OAdLcISyxO6a0hiy8jM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca1f8591c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/core/bridge3.568.1_en.html
142.250.74.170200 OK 724 kB URL GET HTTP/3 imasdk.googleapis.com/js/core/bridge3.568.1_en.html
IP 142.250.74.170:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 724 kB (724398 bytes)
Hash aff8eee216c81dd447f72add44912948
4f8162748e77730dec73a447a1fb3204756501c2
c89bea8f90c7c22749b292948790d7e92ca96053d23e3a6622a1ac33c9061691
GET /js/core/bridge3.568.1_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 17:00:28 GMT
expires: Fri, 12 Apr 2024 17:00:28 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 13 Apr 2023 16:56:21 GMT
content-type: text/html
vary: Accept-Encoding
age: 394228
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
104.18.55.220200 OK 726 B URL GET HTTP/3 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (744), with no line terminators
Hash 6df9c9d1fe70053ece325c66fb7dd59d
915bc716cd4155e72bfa81dc3df559799accc5d5
fc620fb8c6382a685058a7eeaa5455bfb74fedb4ee2f12dd483f91f76a4972f9
GET /hls/72074659/72074659_480p.m3u8 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:31:03 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:31:02 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adcd788fd0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
172.67.211.171200 OK 0 B URL GET HTTP/2 adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
IP 172.67.211.171:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint92:00:26:4C:BE:F6:69:97:38:04:5C:F1:70:10:7D:95:8A:22:0E:61
ValiditySun, 24 Jul 2022 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE HTTP/1.1
Host: adserve.work
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Wed, 17-Apr-2024 06:30:55 GMT; Max-Age=31536000; path=/; secure; SameSite=none
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YbjURKAwQOozwkurl5OuAQDL8OONNh2MufJSxZFVsGfO%2Bs8dq2oX5NqNtbdzTNyQqNa1N18wSflnPlchYhVgNAJ5sl6csCuvOVbLySQMkQ1ExuOGQe2oaPTFv5LiwIE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca52e9bb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fs1.app/cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js
104.26.8.127200 OK 27 kB URL GET HTTP/2 fs1.app/cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (27054), with no line terminators
Hash 93391677b5877e64e987c8cbd50dd3a3
608e66df53b48b50b3dfc73e464948e40bbb2e4f
30a89a126b65ed628e5e60fda24cd27627f3ef44165eb64ccb677a96d7d3049e
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JRO4QbRiHbAmAMgZuWN3vBELhG0Nv45Mt%2FnBJ1xrDDykdu0bNwx2A%2FllW%2BfBMqVa47gFZQ9NiTzcrKyfj%2FFJCj6s3Q7kHIekj5Xe7EHem9%2BOxufXe01SfL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca5bb421c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
go.admjmp.com/thumbs/view
104.18.51.106200 OK 85 B URL POST HTTP/3 go.admjmp.com/thumbs/view
IP 104.18.51.106:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 34daca11eed28469cbc7a3af5f8fea8c
7264953926a452bea0c221570b5bbf5e8a6d3d05
8a242477d3622b725b7128b7801a46cceb17582863224a1bed4ceca46aea2727
POST /thumbs/view HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Content-Type: text/plain;charset=UTF-8
Content-Length: 81
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: application/json
access-control-allow-origin: *
cf-cache-status: DYNAMIC
set-cookie: __cflb=0H28uukSkGJRy5UBr1MAvzNuwf2BatEya5HCavXfzZJ; SameSite=None; Secure; path=/; expires=Wed, 19-Apr-23 05:30:57 GMT; HttpOnly
server: cloudflare
cf-ray: 7b9adcafeff71c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fs1.app/cdn-cgi/challenge-platform/h/b/cv/result/7b9adc9f7e601c0a
104.26.8.127200 OK 2 B URL POST HTTP/2 fs1.app/cdn-cgi/challenge-platform/h/b/cv/result/7b9adc9f7e601c0a
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /cdn-cgi/challenge-platform/h/b/cv/result/7b9adc9f7e601c0a HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12473
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/videos/apsh-003/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799580.1.0.1681799580.0.0.0; _ga=GA1.1.1975828649.1681799581
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=KP1iYOHhe.yJUAeRY_kIJdaQBeYnCzXgmG1ZpWWK41Y-1681799456-0-AeGC0x1QkkwMCFaT+cBBM7VGqJimgVeCV2/zU34TzKLJMOGwMWmF6SxgxmVKbOHYWNi9hqLWRpX1dJu8YuOb69x2E2hVyGmtagWmbz3DVZ1D; path=/; expires=Tue, 18-Apr-23 07:00:56 GMT; domain=.fs1.app; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SUHmkgBU6gVFVVp2lW0tdxsHS1G1Vu5i5yn2jUJbZokFRZvHzppb4S2lyalUhhA%2Bc5VUnOCXY9cdLMmooRQ914DgbcB4PcVIPqkbJYQmYrw7LioKeHb2Neg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca87db01c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
104.18.55.220200 OK 726 B URL GET HTTP/2 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (744), with no line terminators
Hash 670d9504885a50a6189869c6b18d9220
0eccc54b3ae05f2c42b439dee82a377445c4f3a3
9ce1f95eab48da6bfaa395d7b5f44e7c7c2e991530f82921e2eab3d24d94320a
GET /hls/72074659/72074659_480p.m3u8 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:30:56 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adcb20fad1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
edge-hls.doppiocdn.com/hls/72074659/master/72074659_480p.m3u8
104.18.55.220200 OK 153 B URL GET HTTP/2 edge-hls.doppiocdn.com/hls/72074659/master/72074659_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with no line terminators
Hash af43f3aed0c858ac959f9691cb557ab0
8adf7dc158b0918d31c05ab597539d67cad0146d
07093811d9a0ff0168181848c05af39dd854fade9fdddf484c5e34413afbac02
GET /hls/72074659/master/72074659_480p.m3u8 HTTP/1.1
Host: edge-hls.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:30:57 GMT
x-proxy-cache: EXPIRED
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adcb1af4e1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fs1.app/cdn-cgi/challenge-platform/scripts/invisible.js
104.26.8.127302 Found 27 kB URL GET HTTP/2 fs1.app/cdn-cgi/challenge-platform/scripts/invisible.js
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 18 Apr 2023 06:30:55 GMT
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js
vary: accept-encoding
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MIHpQe79DsgXOlKbgfMuNoEoOqC5Wj1HGqun8bszjR0pndgLbPvy9c3xa59K3mbh2H85D3xHVk2PNzUiF42B1M%2FCUK32RzSC%2B0UcXRCSxO6pk1DsiZXQHp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca56b0a1c0a-OSL
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/flag/en.svg
104.26.8.127200 OK 12 kB URL GET HTTP/2 assets.fs1.app/assets/images/flag/en.svg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11831)
Hash 6744dbaa0d1f677a70099be7c55b7322
68e497a197e97ab48d931e3ca4568d920018283f
eb173b50ed398345d10caf5ea90f585196f8d8e51d6b70e63bd02d1087c7febd
GET /assets/images/flag/en.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
vary: Accept-Encoding
etag: W/"5ce03837-2fca"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 73
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q5I7EFkcMTqglhJGMt3wwkto8j3fNDl6HzAcH0xZtkUE19P7yMasrbybp8AA3YwX3DrLaTIUikqN%2FMdPSK7s%2FV%2Fj8zQdUx2sVdIM20etLsmttOgd5HSeti%2BjltqRgxs1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca1f8561c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.plyr.io/3.5.4/plyr.svg
104.27.194.88200 OK 5.5 kB URL GET HTTP/2 cdn.plyr.io/3.5.4/plyr.svg
IP 104.27.194.88:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcdn.plyr.io
FingerprintFF:35:46:8D:1D:83:62:00:F8:34:EB:16:F5:68:58:8E:B1:61:55:A9
ValidityWed, 12 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (5571), with no line terminators
Hash fa8c50a396b6c079f203784329315145
ec0e8a3314dbd6fa6f7a8ac6235d2a811b87ec21
f31a23b983163ccc94cda2a353b33f34c0653037d4ca1f6a536ec400e79565b5
GET /3.5.4/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"d1f4356635795f17eaa9bd377d172997"
last-modified: Wed, 12 Apr 2023 11:15:26 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 73
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ImOUau01QqqAMi7x0Op0g1DaFO05I7Nx93D%2BHLUk%2FZ20o8EcZ9s02jprx2zLkE9Fc%2FJ75Fooy0PIBUim%2BHTZMIsBtTmG4nhtMYqadVaxl9GLxqHOAEMflptEzuq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca53a10b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets-cdn.jable.tv/assets/images/252/427-240-3.gif
54.39.243.84200 OK 495 kB URL GET HTTP/2 assets-cdn.jable.tv/assets/images/252/427-240-3.gif
IP 54.39.243.84:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectassets-cdn.jable.tv
Fingerprint31:62:94:93:08:6D:08:CA:0D:35:4A:C8:7E:63:0E:8D:D7:53:08:52
ValidityMon, 27 Mar 2023 15:19:14 GMT - Sun, 25 Jun 2023 15:19:13 GMT
File type GIF image data, version 89a, 427 x 240\012- data
Size 495 kB (495284 bytes)
Hash 49a3ab4bb1a3b7ca1c17013d50e8ebd8
449d0fc24fe665307e6e62656acd74ce053feaea
f149232ed8aaca10ffa20561b95ef86bc5e739a9501b8d57abdbc2747d9d0ba8
GET /assets/images/252/427-240-3.gif HTTP/1.1
Host: assets-cdn.jable.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/gif
content-length: 495284
last-modified: Thu, 23 Jul 2020 07:47:53 GMT
etag: "5f1940a9-78eb4"
strict-transport-security: max-age=15768000
expires: Thu, 18 May 2023 06:30:55 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
go.admjmp.com/api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1
104.18.51.106200 OK 1.8 kB URL GET HTTP/3 go.admjmp.com/api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1
IP 104.18.51.106:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1935), with no line terminators
Hash 5952630d7606ab3991c05d557eec55a7
53544b1fd5a067f421ac3fb9281e0e3884a44b9c
c3ce09bd884e33a2c19d8f6ffa8ef36df0cecbd30f8ab6ae697daf330fbb7277
GET /api/models?tag=girls%2Fchinese&forceClient=1&stripcashR=0&limit=1 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Alt-Used: go.admjmp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: application/json
access-control-allow-origin: https://fs1.app
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:30:56 GMT
cf-cache-status: MISS
set-cookie: __cflb=02DiuDfsBaY2bRYJiCg3Rc4wrBy1LXpo82JMTrRGeeiQL; SameSite=None; Secure; path=/; expires=Wed, 19-Apr-23 05:30:56 GMT; HttpOnly
server: cloudflare
cf-ray: 7b9adca9cab11c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
syndication.realsrv.com/v1/api.php
95.211.229.247200 OK 1.7 kB URL POST HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.247:443
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1819), with no line terminators
Hash 2d6ef54f28f9b3b171c731166700ac17
8803b4ddb5e4d468028fbf53c43d0e17582e939a
d22f18bfb2fbdc094249df15702b85f7b265f9b81462292f3077d56fa863cacf
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 313
Origin: https://a.labadena.com
Connection: keep-alive
Referer: https://a.labadena.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22643e391f958156.477674224145659400%22%3B%7D; c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C41873820%7C0%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C6158584fac1d5fa2b64516797f3f4719%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:30:55 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://a.labadena.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
a.realsrv.com/ad-provider.js
185.76.9.22200 OK 87 kB URL GET HTTP/2 a.realsrv.com/ad-provider.js
IP 185.76.9.22:443
ASN #60068 Datacamp Limited
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type ASCII text, with very long lines (52920)
Hash 38c529fc8d7692d808e4057b1dd03bf1
bfde54e4391f266a3ee1b0660e41d30fdfe3ba61
14294d5e106ee7a1511e6fd8f89e00143be4d5908a9c34055fbaa4fbee5f4db1
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"bfde54e4391f266a3ee1b0660e4"
expires: Mon, 17 Apr 2023 19:04:21 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRQmN/b/7CAAAA
x-77-nzt-ray: af5856300814df5d1f393e64bf828927
x-accel-expires: @1681801827
x-cache: HIT
x-age: 8428
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
104.18.55.220200 OK 726 B URL GET HTTP/3 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (744), with no line terminators
Hash eb42b18b6592f212f56b193ea77db5fd
35d09341c01b63f046a6df96c38b9d744d7f4b88
e60715fcd7f6e5e0a44cdf675b9f35d606e413f87934e6e31c85f727f4cc0604
GET /hls/72074659/72074659_480p.m3u8 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:59 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:30:58 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adcbe89140b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/avatar.svg
104.26.8.127200 OK 982 B URL GET HTTP/2 assets.fs1.app/assets/images/avatar.svg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1040), with no line terminators
Hash 75d76e0ffcbe2e76c5da7947edb7a598
f5a6bcde0a8ffb4074c4fc821611e18a87ac15f5
fc5cd61e4389b5260c1add7196c68999764d06817d307e632948aff2b6031dc3
GET /assets/images/avatar.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/svg+xml
last-modified: Fri, 09 Nov 2018 19:00:34 GMT
vary: Accept-Encoding
etag: W/"5be5d952-3d6"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qIze%2FxdwtCkwzSITLEs%2BC9XcUoFvTisLcIS%2BL0ref%2BDEaYzkhl9URNGapgiMZC1hhPi4HYKt6nYRW0PIQpu8i6ddUoYjHQPE7VJcSqnzVY0tapv47lZRGKKsg4Oh77v9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca1f8571c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E7%94%B7%E5%8F%8B%E8%A6%96%E8%A7%92%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E9%A1%8F%E5%B0%84%2C%E4%B9%B3%E4%BA%A4%2C%E6%A0%A1%E6%9C%8D%2C%E7%BE%8E%E5%9C%92%E5%92%8C%E8%8A%B1%2C%E4%BB%8A%E4%BA%95%E3%81%BE%E3%81%B2%E3%81%AA%2C%E5%AE%87%E4%BD%90%E6%9C%A8%E3%81%82%E3%81%84%E3%81%8B%2C%E9%87%8E%E3%80%85%E5%AE%AE%E3%81%99%E3%81%9A&s1=%25subid1%25
135.181.208.216200 OK 838 B URL GET HTTP/2 a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E7%94%B7%E5%8F%8B%E8%A6%96%E8%A7%92%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E9%A1%8F%E5%B0%84%2C%E4%B9%B3%E4%BA%A4%2C%E6%A0%A1%E6%9C%8D%2C%E7%BE%8E%E5%9C%92%E5%92%8C%E8%8A%B1%2C%E4%BB%8A%E4%BA%95%E3%81%BE%E3%81%B2%E3%81%AA%2C%E5%AE%87%E4%BD%90%E6%9C%A8%E3%81%82%E3%81%84%E3%81%8B%2C%E9%87%8E%E3%80%85%E5%AE%AE%E3%81%99%E3%81%9A&s1=%25subid1%25
IP 135.181.208.216:443
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintFE:A0:11:D9:6C:3B:49:F5:25:B8:E2:BA:76:DA:02:7C:1E:08:7D:E2
ValiditySat, 15 Apr 2023 23:27:07 GMT - Fri, 14 Jul 2023 23:27:06 GMT
File type ASCII text, with very long lines (890), with no line terminators
Hash 01ce96e92429ad84117469f1706808d0
6f5b3f75ecbc5e10206bff9326ad8775c77699e4
4b745b2271d57bc494df9406cc755a75ece593d7e3e06dc24865c09d82b3e747
GET /api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E7%94%B7%E5%8F%8B%E8%A6%96%E8%A7%92%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E9%A1%8F%E5%B0%84%2C%E4%B9%B3%E4%BA%A4%2C%E6%A0%A1%E6%9C%8D%2C%E7%BE%8E%E5%9C%92%E5%92%8C%E8%8A%B1%2C%E4%BB%8A%E4%BA%95%E3%81%BE%E3%81%B2%E3%81%AA%2C%E5%AE%87%E4%BD%90%E6%9C%A8%E3%81%82%E3%81%84%E3%81%8B%2C%E9%87%8E%E3%80%85%E5%AE%AE%E3%81%99%E3%81%9A&s1=%25subid1%25 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: nauid=ymFWYdUMpXFUekfb0OE3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
104.18.55.220200 OK 726 B URL GET HTTP/3 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (744), with no line terminators
Hash eb3bf45c2403f5e2aff0af2c69c5149f
442a319965a275b1b0ee7598c744d6784c9e1640
c030acc862060aa35b48dc0e3eb6a69728b71e8bc917d08ad0472d3fe13ba764
GET /hls/72074659/72074659_480p.m3u8 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:31:07 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:31:06 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adcf08f380b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
104.18.59.150200 OK 2.8 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (2840), with no line terminators
Hash 81df84b5c4070ad48ee4376955bf78d0
832b74a3b3f32a1e2d3f9588b3b70991174f597d
dc1f6c7efa16517bcb119edeada2e361d18abcae2d565ae077e58ef7e7934115
GET /widgets/Spot/core.db50f5f8fc13cf868bd2.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCfFUFWhPdBMmYaZ8RwVWNoQkkZ4G
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:56 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Apr 2023 11:32:48 GMT
etag: W/"643696e0-ace"
expires: Tue, 18 Apr 2023 06:31:02 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca9ca9db4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
assets.fs1.app/assets/images/flag/zh.svg
104.26.8.127200 OK 1.1 kB URL GET HTTP/2 assets.fs1.app/assets/images/flag/zh.svg
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1069), with no line terminators
Hash 3d250237e5edebaf66f40556017bdc25
13056df14a4944f6015a7aad9887778f0aa9cfcc
a78d037b338761ab5b5e0ad1ace9cfc10403a1a39ecc88fc4eca44dbf6f070f1
GET /assets/images/flag/zh.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
vary: Accept-Encoding
etag: W/"5ce03837-41c"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: HIT
age: 74
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ULOH%2Fuoib4bffoAd0F9Z16z740NiFMhoHBVlRsE9kWg2b%2BsHqwX%2BV09FtRM6zQ937xMMkOsoGbXpSA27Ezla7VMp3OCQ0e%2FAXpZ%2BUUGDN%2Bqif98KkbpXByjLa7itQ8Sk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca1f8531c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.realsrv.com/nativeads-v2.js
185.76.9.22200 OK 61 kB URL GET HTTP/2 a.realsrv.com/nativeads-v2.js
IP 185.76.9.22:443
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type C source, ASCII text, with very long lines (60628), with no line terminators
Hash 16ac675aca0eca4960f7f430fabef329
1e16d6ff16b145ea5560344a5069decb64cf8bf4
630128fd494a3f222996b1631f5e9b721629e9424deb98a2fb8678ecf3594279
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1e16d6ff16b145ea5560344a506"
expires: Mon, 17 Apr 2023 19:04:21 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRT3qp7/7CAAAA
x-77-nzt-ray: af5856300814df5d1f393e64a146a906
x-accel-expires: @1681801827
x-cache: HIT
x-age: 8428
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/lang/en.json
104.18.59.150200 OK 28 B URL GET HTTP/3 creative.admjmp.com/widgets/Spot/lang/en.json
IP 104.18.59.150:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 53f2990deb5fd4c94ea28b906f5a8c90
216badda65964ceda402ae66ceaf98a2e84f1ef1
0ef443083c613a1926d7ccbfc40722ea7022175e55922bcf99bba84664584983
GET /widgets/Spot/lang/en.json HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/json
last-modified: Wed, 12 Apr 2023 11:31:41 GMT
etag: W/"6436969d-1c"
expires: Tue, 18 Apr 2023 06:31:05 GMT
cache-control: max-age=10
access-control-allow-origin: *
cf-cache-status: REVALIDATED
set-cookie: __cflb=02DiuDfsBaY2bRYJiCeSRSGTzNwtDfLbrBonu2LHEJgSg; SameSite=None; Secure; path=/; expires=Wed, 19-Apr-23 05:30:55 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca3ce98b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
104.18.59.150200 OK 178 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
IP 104.18.59.150:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (45140)
Size 178 kB (177865 bytes)
Hash d47dabb4fffc74448f81658667859160
9a309deebefda0376c4f7013fba78ee733620284
e3295b3aee4ac84c9eea9a0b702f69c63d98c5aa253b0152333f4fc0edec5534
GET /widgets/Spot/vendors~hls.18f09cc78016f06b828b.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCfFUFWhPdBMmYaZ8RwVWNoQkkZ4G
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:30:57 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Apr 2023 11:32:48 GMT
etag: W/"643696e0-2b6c9"
expires: Tue, 18 Apr 2023 06:30:59 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adcb12b02b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
104.18.55.220200 OK 726 B URL GET HTTP/3 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
IP 104.18.55.220:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
File type M3U playlist, ASCII text, with very long lines (744), with no line terminators
Hash 9a3d5e35e272b35c0694e0f8abff0a8d
d2d519e666294577104ab7b187ee7aa496822a01
433a9bf8bf63edf3cd17bb25d08557c668e32528e03139ab469456daaa95988e
GET /hls/72074659/72074659_480p.m3u8 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:31:01 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:31:00 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adccb0d4d0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
104.18.51.106200 OK 6.5 kB URL GET HTTP/2 go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
IP 104.18.51.106:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (8472), with no line terminators
Hash 27ffa6114a1950a12ec07cfea0330126
b3df422b663f38eae12ebea8087f1a9ed482465d
cc185c7382b6b6ce3bd252de5c4cf1da62d4892f0a55d77d2ae3526b13381468
GET /config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 17 Apr 2023 19:50:44 GMT
cf-cache-status: HIT
age: 73
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adca3cfc50b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
104.26.8.127200 OK 92 kB URL User Request GET HTTP/2 IP 104.26.8.127:443
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videos/apsh-003/ HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:54 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; path=/; domain=.fs1.app
kt_ips=91.90.42.154; expires=Wed, 19-Apr-2023 06:30:54 GMT; Max-Age=86400; path=/; domain=.fs1.app
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XOuNoqi6QUtpy8U1Qpgee3OhWF3%2Bpxw0b1dmLz7RumeDL%2FgDsbFblK7uHf9%2FZzPZHNpD%2FDc6yeCs%2B0GVoxX6TyfbvpTG3YjjBerFhHWWCDvP2Jt3ZGsG%2F2w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adc9f7e601c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.fs1.app/assets/css/app.css?9
104.26.8.127200 OK 261 kB URL GET HTTP/2 assets.fs1.app/assets/css/app.css?9
IP 104.26.8.127:443
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (65324)
Size 261 kB (260809 bytes)
Hash 8151ec92dd893184b42e6ddf08e9cf55
3e6e91bdfd2a45a977115790e2b1960e1666bd2f
1bb115c4a119478037c970a7a5c7bf43848da34553c9a18f56d1131cb71b640f
GET /assets/css/app.css?9 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=tafdu05gdotr60dpbe4l0uqk83; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:30:55 GMT
content-type: text/css
last-modified: Thu, 16 Feb 2023 05:39:57 GMT
vary: Accept-Encoding
etag: W/"63edc1ad-3fac9"
expires: Tue, 25 Apr 2023 06:29:41 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: HIT
age: 74
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y0oBDW6aB%2F%2BvqaRCHeLxROeyJKkyj0GtY9kSPaILTxbVJBNg0ZFNkPfjXHYCIYWVkLyIaKiH3TP%2B8x7sPH5DtpEMpvNIx4sJseCbxbx0aQdal%2FYWoYgtjAkPTiQ%2FzWUw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adca1e84c1c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2