ocsp.pki.goog/gts1c3
472 B IP
Hash 43db2c964498883fd98799a8b1dc6ea4
4814b7cbb03111d02286329392d2735225df3a5c
44b1d4e6c4b4ba2f50b3344787b34e1c8100454ce01eccd79c4c949fb7491690
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.tapioni.com/asg_embed.js
200 OK 53 kB URL GET HTTP/2 cdn.tapioni.com/asg_embed.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash b69caff74c1008ec300ae5926968890c
96d1fa5764672196b5e3cb1eb7d4e09f5b89c79d
6c6215a9e27411be98a99b2361d048d49a966a5e4faa2fe347cc1a13d4f4e36b
GET /asg_embed.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: application/javascript
content-length: 53097
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-cf69"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 1012024
accept-ranges: bytes
server: cloudflare
cf-ray: 7b9adad70d5c9908-ARN
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
78 kB URL www.googletagmanager.com/gtag/js?id=G-1DTX7D4FHE
IP
File type ASCII text, with very long lines (19390)
Hash cddd4fed81100672691016a444140374
afef6fac6fbeb501285057a8b9f8b48e50465213
2900438adcea4eab0c92bdd6d863fe43b95ba10d0fea52e883ae0e56c62aaa54
GET /gtag/js?id=G-1DTX7D4FHE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Apr 2023 06:29:41 GMT
expires: Tue, 18 Apr 2023 06:29:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78369
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 43db2c964498883fd98799a8b1dc6ea4
4814b7cbb03111d02286329392d2735225df3a5c
44b1d4e6c4b4ba2f50b3344787b34e1c8100454ce01eccd79c4c949fb7491690
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets-cdn.jable.tv/assets/images/placeholder-md.jpg
200 OK 15 kB URL GET HTTP/2 assets-cdn.jable.tv/assets/images/placeholder-md.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerZeroSSL
Subjectassets-cdn.jable.tv
FingerprintA1:56:4A:0F:E4:F6:14:57:AF:38:C7:ED:6A:23:31:9C:4D:91:13:75
ValidityFri, 14 Apr 2023 00:00:00 GMT - Thu, 13 Jul 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets-cdn.jable.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: image/jpeg
content-length: 14601
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
etag: "5ca092b0-3909"
strict-transport-security: max-age=15768000
expires: Thu, 18 May 2023 06:29:41 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/theporndude.png
200 OK 1.6 kB URL GET HTTP/2 assets.fs1.app/assets/images/theporndude.png
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash e05d03cbbf9dc784d2f4a3ecb4ad6987
113aaa3555a1e3646fbfd19b4eb8156084e14db3
fadc546b6a83cd7a968038d42d7dc6b98b25f4c535d95e0607877faaceaa4bad
GET /assets/images/theporndude.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: image/png
content-length: 1576
last-modified: Mon, 22 Nov 2021 16:44:39 GMT
etag: "619bc8f7-628"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dW7jqRPMJAcNQWINInfnmKWI6xyQ%2BFx05dlTt8iU1j7Tvvp4ea1ruMfUhbmhWANq%2FwG7gJjyg8ZzPG6ne78ITj2S7JrwB0cNNzjgHVZKKqpbcl9y2F1L3%2F%2FD9SPik7k5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adad6af4eb517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/logo.png
12 kB URL assets.fs1.app/assets/images/logo.png
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type PNG image data, 388 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 14480fda80ed2747171678e5ba86b3cb
9c55625b043d5150c810026bad722a49aca38944
07003923ec1c436a45014ae9fba77343c640a0ba410de625a006d3ec75f0bde1
GET /assets/images/logo.png HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: image/png
content-length: 12066
last-modified: Sun, 09 Sep 2018 17:11:42 GMT
etag: "5b95544e-2f22"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LNt5C3UYmw0ME87UIPpqZ0XD9Wbkg1G%2F6EiWh5KzHI6IeW2tYgEYfAqKEp3GGvw%2FkakBGZLjhRV7vbKGSpEpIvs6w5L6VxNiriVzn6E0JlabmOTFIcgaGrIhiWdcDaAc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adad6af4fb517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/placeholder-md.jpg
200 OK 15 kB URL GET HTTP/2 assets.fs1.app/assets/images/placeholder-md.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5.1 Windows, datetime=2019:03:31 18:12:59], progressive, precision 8, 336x188, components 3\012- data
Hash ac9ea1a555198470671238d214b2e489
4a22f147e57e2781e0b302ac2c156d1999793cdb
58be1d54819c76bc997fee25de298613a1565c7f6c8ef01629511315422b7468
GET /assets/images/placeholder-md.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: image/jpeg
content-length: 14601
cf-bgj: h2pri
etag: "5ca092b0-3909"
last-modified: Sun, 31 Mar 2019 10:13:04 GMT
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5BGVb58xMnELRbOD6jveASF59ClC%2FTUMTAohDNsXz1WGSQM6Y6sYAym%2BG1lAJbNIFhPT2y6W%2FQ6DV3Ve%2FxkqbKVqdV6%2Fh3Ya%2BgUyruy9ptLQeuiJODH4K17DLrEbiNBz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adad6bf69b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/models/660/s1_waka-misono.jpg
200 OK 7.3 kB URL GET HTTP/2 assets.fs1.app/contents/models/660/s1_waka-misono.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 125x125, components 3\012- data
Hash 68c04d391aea27408539d43786acf222
0a1d628d5a159573c899e395af2ecaa0147ef3c7
d441156801605b31d025f2d3bb0cf7cec8cdd03aef9fbf845c01165f61cd4f2d
GET /contents/models/660/s1_waka-misono.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: image/jpeg
content-length: 7278
last-modified: Sun, 06 Dec 2020 06:29:19 GMT
etag: "5fcc7a3f-1c6e"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=20eoDmvGrFcKp%2FSuY4XpnbA0ASaft%2FieH7OdBBqtjT9PydFa6prmh1fgUOl%2FfFo3Sect8IxbZd9OzK0dIycPJpPi8MRYmDIiXyQ2s9nTElHg6KyoC3ni2tuq%2FsHk1H39"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adad6bf67b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/assets/css/app.css?9
200 OK 43 kB URL GET HTTP/2 assets.fs1.app/assets/css/app.css?9
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (65324)
Hash 702b4ca1dd44ec909eef31d460d45a49
60bcbd491bf1f1c44df6624d8fb29b41ab7ccfff
cae13e8054009af64847bc186f196feee5ada196ee284ca190845b6fefa4ba78
GET /assets/css/app.css?9 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: text/css
last-modified: Thu, 16 Feb 2023 05:39:57 GMT
vary: Accept-Encoding
etag: W/"63edc1ad-3fac9"
expires: Tue, 25 Apr 2023 06:29:41 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lvUMUpNMN5NJkDet%2BI1ytTgDm0%2BOyAcrBbBlbEZkp1TfaanWanwkEWSvnURKKqGK30TXSZ%2FdZlQxz%2FVSGUM19p72VoFZKi%2Fk6Nva9iRXQxdYfyICnmEfCMoloyEZ5f2V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adad6af4cb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.fs1.app/assets/images/flag/jp.svg
200 OK 953 B URL GET HTTP/2 assets.fs1.app/assets/images/flag/jp.svg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 4173cb38e8ebac641ce53102e52c4eb3
88918439ea38ec04be0c1330a6ac9971c9ecf7ac
6ff444507f0f4a285b0d8cd00510c2d57bee9584a2d656a227bcc64535745e77
GET /assets/images/flag/jp.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: image/svg+xml
last-modified: Sat, 18 May 2019 16:52:07 GMT
etag: W/"5ce03837-a7"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dIUNuRt7c9XGaO3px637RFXFxvfDqJ03n0udvQgv5xmlBQcy6VizXbaTTfm9KMojVVVxBeOfPh0focFqG5Ab5hgjLo%2FvexO31d4I3S2V%2B2MB%2FlQ1G7tSFziWEowkfnGi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adad6af53b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
video.ktkjmp.com/adsbygoogle.js
200 OK 16 B URL GET HTTP/2 video.ktkjmp.com/adsbygoogle.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectvideo.ktkjmp.com
FingerprintD6:F4:DC:36:6D:BC:E5:36:F7:AC:71:BE:47:40:06:E8:12:9F:23:EC
ValidityMon, 01 Aug 2022 00:00:00 GMT - Tue, 01 Aug 2023 23:59:59 GMT
Hash 3d7f7a60216d40dea48e495fef6903c9
fecdb5184f55cf012563d78940eb97b10b9cc99b
96d83ac9f20fc0b88404f307f135e212642e02d6ea295c96b28aed0d771a224f
GET /adsbygoogle.js HTTP/1.1
Host: video.ktkjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: application/javascript
content-length: 16
x-amz-id-2: QUXnNy2w3SVgBBJ04JxjSn5YsvWZNpcO0WhRwsvO5enR4jmqtkkomAFVsVTSR4oLeLnl07S5f78=
x-amz-request-id: ZTWEE1QFDM4B3Q44
last-modified: Thu, 10 Mar 2022 13:52:07 GMT
etag: "3d7f7a60216d40dea48e495fef6903c9"
x-amz-meta-s3cmd-attrs: atime:1646920284/ctime:1646920283/gid:20/gname:staff/md5:3d7f7a60216d40dea48e495fef6903c9/mode:33188/mtime:1646920283/uid:501/uname:mikhailchubar
x-amz-version-id: eIgLIBoMMcsEXtxOH6UDjWyfAquRpkIG
access-control-allow-origin: https://fs1.app
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: REVALIDATED
expires: Tue, 18 Apr 2023 10:29:42 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
set-cookie: __cflb=0H28uukSkGJRy5UBr1u9iAwwBfboBLE4j3b93P8Nida; SameSite=None; Secure; path=/; expires=Wed, 19-Apr-23 05:29:42 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adadaece0b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/8000/8062/preview.jpg
190 kB URL assets.fs1.app/contents/videos_screenshots/8000/8062/preview.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 190 kB (190146 bytes)
Hash fd3350c7e0f70d9eac367c045c4f3288
b4f719a758e46a5d0d474694256aa759c802b6be
95320b97ff6bf3418a182bc0266610a8c51f102f124659d92ff6c509022d2072
GET /contents/videos_screenshots/8000/8062/preview.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: image/jpeg
content-length: 190146
last-modified: Thu, 28 May 2020 21:54:08 GMT
etag: "5ed03300-2e6c2"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3wYs6FLv882Z4z4Cn0t3rWPlzcPh1OS9hLDy%2FqAvid2UCOIlTdNyDcCXUf%2FyywT3VdNhZr51ZMBzMOZbRMVgfvIhhBVTlfMILjksVMCH2gNaHL3NCMhhB0k2OL3OLBSR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adad6bf65b517-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.fs1.app/assets/images/avatar.svg
200 OK 16 kB URL GET HTTP/2 assets.fs1.app/assets/images/avatar.svg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 305c5233d6b95a2b98d006a77604fb5b
47dbec06caf7a1b62cdcec28dc51afacf4ce9d29
a5d06768064d7753412bbac7241be0b5c6d9ee791c6c303382673d7c35e90f40
GET /assets/images/avatar.svg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: image/svg+xml
last-modified: Fri, 09 Nov 2018 19:00:34 GMT
vary: Accept-Encoding
etag: W/"5be5d952-3d6"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5MIXg1Cp8szDCVbeRAe52w49Y0QbCvD%2Bm03MOdgxb7oV%2FH8hm1cbnjA%2F86VHVyiLfcAonE4aITYA63xmPgVeO3e4MtQsXgdSlE%2BMAURkSA%2BJrxSXi2qmPoNI3HRFe2vC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adad6bf60b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Apr 2023 22:31:48 GMT
expires: Sun, 14 Apr 2024 22:31:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 201474
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
16 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 14:31:29 GMT
expires: Fri, 12 Apr 2024 14:31:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 403093
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 62cfe57b4773046a41d40cfbc8f044fc
78fcc3231c90a662763e09ff074f01a18e0a4049
84c4c8501ba7c409b0f2f327a55facd956c33066485cf9621b3af195aa6a9344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.labadena.com/api/click/13161543017012311095?c=90
0 B URL a.labadena.com/api/click/13161543017012311095?c=90
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/click/13161543017012311095?c=90 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Cookie: nauid=ScaTwrFVj7vpityZSmQp
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 06:29:42 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: private
X-Firefox-Spdy: h2
syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Fapsh-003%2F
200 OK 1.8 kB URL GET HTTP/1.1 syndication.realsrv.com/splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Fapsh-003%2F
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type JSON data\012- , ASCII text, with very long lines (3414), with no line terminators
Hash f3d6c118f1324ba13552c19294f6581b
adc8e271d205709e69063885bbe10a07845ccdd9
7ea37f137144ead90b4739c11deddae31dae4a9a127d64ae73257ff30005c2bb
GET /splash.php?native-settings=1&idzone=3377859&cookieconsent=true&&p=https%3A%2F%2Ffs1.app%2Fvideos%2Fapsh-003%2F HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:29:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://fs1.app
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%22643e38d6a34e48.01944663681443543%22%3B%7D; expires=Thu, 17 Apr 2025 06:29:42 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-banner%22%3A%22v3%7C%7CNOR%7C3377859%7C41873824%7C0%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C6158584fac1d5fa2b64516797f3f4719%7C0%7Cfs1.app%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Wed, 19 Apr 2023 06:29:42 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
fs1.app/cdn-cgi/challenge-platform/h/b/scripts/pica.js
200 OK 3.6 kB URL GET HTTP/2 fs1.app/cdn-cgi/challenge-platform/h/b/scripts/pica.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (5735), with no line terminators
Hash 9bffebaf017b9db1bee4077eb60e1d56
fce2723bdeca608063750b1977d4e5fa277cace9
9747e3877d36cf21a92204ab37696907a94e544113a1a4e2e8d40e7edaa3bd3f
GET /cdn-cgi/challenge-platform/h/b/scripts/pica.js HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/videos/apsh-003/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eRtvWYKvLqtsZUs64a3Xw%2BjJMtUahDzxiQ0YZQLwRaxbqgrfjTTWZyPb1iOkEG%2FrTtjdJw6qHy9kn8SDYAa6R7gqqCBVTgtchqeVk3U0uTiC7V6oQyqinUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adadde995b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/26000/26074/320x180/1.jpg
200 OK 38 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/26000/26074/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 445563de0a27a7f246659e6a41c4068c
38f95761b8cf2def791d00371155048a1a475901
287bd1d29aaf0636493eb640b810b401e0f76afccfeedde607eb5ab499a4a351
GET /contents/videos_screenshots/26000/26074/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: image/jpeg
content-length: 37648
last-modified: Sat, 13 Aug 2022 17:45:58 GMT
etag: "62f7e356-9310"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DIbDz4Yica%2F%2F5PV%2FNL0vj0YJW2YyltnHc1DGy8iHTTNfpSOVDY5KQw1MBFRSD9WzRlS%2BaLmFe07DPq8FruXD99ZCvk6xcspOroJH5a%2Bq8Os9fmIdVF5X9%2B7NG5l8D4Sz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaddc964b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/12000/12245/320x180/1.jpg
200 OK 42 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/12000/12245/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d813c76ff80a1363ce148d1f648298e5
63f9fdc20a71f6ae1ca96a336393a8ffbd181a2f
ae4a9259041aa0df27812afe6102af343f304a7e7fd5dc76da1d2f62e3120f89
GET /contents/videos_screenshots/12000/12245/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: image/jpeg
content-length: 42374
last-modified: Sat, 19 Dec 2020 14:46:44 GMT
etag: "5fde1254-a586"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pUWnR4w46RcuLhISQ88DnZdTyKsPJx8gHdmKNRk6CCJEeTfF%2BQ3D5aK0Sqq1CoKEvrOV0DuRO08qmkaro1%2Bnx01kihFIdMV9FhgvISMqxoN31tSxCDRiCve7Yqgpc03f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaddb94fb517-OSL
X-Firefox-Spdy: h2
fs1.app/cdn-cgi/challenge-platform/scripts/invisible.js
302 Found 58 kB URL GET HTTP/2 fs1.app/cdn-cgi/challenge-platform/scripts/invisible.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
Hash 1fdd9337f1ba0e52e5014cf351ae6b8d
bff676d4510316b6db5a49ea703e543578620ef9
8d13335c3d455b62ed2c26ecd53d5e175f5ed36c2a4976193b30bd145b81ebac
GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Tue, 18 Apr 2023 06:29:42 GMT
vary: accept-encoding
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TDDXjYwKpCagSXQH6WyLV6YbeUGbN2yOEQkCKIFakkMG2nGIyKV%2FQog%2Bv%2FlTXsbI8cQ4T%2BWj8EjWaTLm24mmj8WKlRO4S%2BbHU9uB5HZz8R7xEb839Zc34OE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adadd58b3b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/3000/3992/320x180/1.jpg
200 OK 36 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/3000/3992/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 9e28a01a001c0396dcdbafa6d8b22bba
68439189bf612a3fbc2be46e6067029b65b58419
3edecee70ae50b85332e0ee0afe5551d1f36caa6302ee2ac842640a276a45356
GET /contents/videos_screenshots/3000/3992/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: image/jpeg
content-length: 35678
last-modified: Sun, 24 Nov 2019 05:13:09 GMT
etag: "5dda1165-8b5e"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F42qrLPfIO05flUzAH%2Fglv3dyhz9XRax%2Fl6BveD9i%2F5HB%2FLMah44K7448i1bniWSvreabvQVjg3VJhOVXo9POs2T0ZYhNBewIgYG1qPhVwujN%2FRWduj8cUlXPHOP2Y1N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaddb94ab517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/21000/21418/320x180/1.jpg
40 kB URL assets.fs1.app/contents/videos_screenshots/21000/21418/320x180/1.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 9906e41ee47370a0bb5eb1631c70733d
2eb1268bef275a4e38f915de9fd53a6654c6c65a
f504aaaa6f3ee7f550954fe85946d571116bb69d68a246b21ef22ee63b50ca23
GET /contents/videos_screenshots/21000/21418/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: image/jpeg
content-length: 39590
last-modified: Fri, 21 Jan 2022 09:35:26 GMT
etag: "61ea7e5e-9aa6"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QDDTQrLMbHFqyY%2FBboNWL72yF4ZV0URCCSXzwHQyfvv8i1Cf8Q0MAPv4y8R5QkncRVwTfKCj5L4RT3ywM0vkO%2B0rv47yWg6p7w2n7r1Gyad%2FneNDq52JlJJE95B6O4Es"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaddb946b517-OSL
X-Firefox-Spdy: h2
go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
497 kB URL go.admjmp.com/config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0
IP
File type JSON data\012- , ASCII text
Size 497 kB (496881 bytes)
Hash 15384ba75ce2d62f30423df548146155
288fcd73cf7e8c1956aa1ad18f86297ac7ce6f0d
a28aaf07a63013024b5dcfee4fa97b1b2b3ab574f94d4dbce41d7b68bb7712e4
GET /config?url=https%3A%2F%2Fcreative.admjmp.com%2Fwidgets%2FSpot%2Flib.js%3Fautoplay%3Dall%26userId%3D4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98%26campaignId%3Dbottomslider%26tag%3Dgirls%252Fchinese%26showModal%3Dsignup%26hideButton%3D1%26autoclose%3D0%26closeButtonDelay%3D0 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: application/json
access-control-allow-origin: *
last-modified: Mon, 17 Apr 2023 19:50:44 GMT
cf-cache-status: EXPIRED
set-cookie: __cflb=0H28uukSkGJRy5UBr1AgJmhafgYhtGbi14naKJMHvdA; SameSite=None; Secure; path=/; expires=Wed, 19-Apr-23 05:29:42 GMT; HttpOnly
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adadaea7eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 8cd9aa01db60293b18dcdbae7d3721db
27cc709e8fbceb5eb651ab77c58678094a323b0b
bdb89cf524c1f48708a3b9cba1b202ee009e534603301b01d94fbafe462c28b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imasdk.googleapis.com/js/sdkloader/ima3.js
200 OK 124 kB URL GET HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type ASCII text, with very long lines (2723)
Size 124 kB (123683 bytes)
Hash 903ed5eae35c8eedc023b4ece2d9df47
a6aac63b89fe13d03a44e8ed3f97a5e1c80dfaf7
d75b31791f729fd04be8d47fa59a5409c84fcb4dc9bbf3016d2829a9151434a4
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 123683
date: Tue, 18 Apr 2023 06:29:43 GMT
expires: Tue, 18 Apr 2023 06:29:43 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fs1.app/cdn-cgi/challenge-platform/h/b/cv/result/7b9adad2396eb517
200 OK 217 B URL POST HTTP/2 fs1.app/cdn-cgi/challenge-platform/h/b/cv/result/7b9adad2396eb517
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with no line terminators
Hash e08816b4af2bcd56537dbf9eadef8493
da27cb0212a54a8bbb65775972cc5f8052a17006
16b3abd391e36f1234b372b62ce81e85f97c8379903254dd1dda46b2ccc59b9b
POST /cdn-cgi/challenge-platform/h/b/cv/result/7b9adad2396eb517 HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12478
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/videos/apsh-003/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; kt_tcookie=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu; path=/; expires=Tue, 18-Apr-23 06:59:42 GMT; domain=.fs1.app; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=94cO4ANaWGwpL86296f6y%2BeNGUmzm8U2RD%2BITp6dqQRe9Lte22KKXapIul6DY4h4Mku%2BrwHV%2F2ui4QusxvQ%2Ft86BVOTeQ911LTGCPXIAZ1E84jzvS%2FMVIuE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adadf7c8eb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 8cd9aa01db60293b18dcdbae7d3721db
27cc709e8fbceb5eb651ab77c58678094a323b0b
bdb89cf524c1f48708a3b9cba1b202ee009e534603301b01d94fbafe462c28b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/8062.m3u8
200 OK 84 kB URL GET HTTP/2 ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/8062.m3u8
IP
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectao-block-ater.mushroomtrack.com
Fingerprint32:44:2E:B7:48:72:6D:31:78:95:10:8C:15:05:69:66:41:CF:0D:F9
ValiditySat, 25 Mar 2023 21:08:38 GMT - Fri, 23 Jun 2023 21:08:37 GMT
Hash 5000f14b9df01f79ecafe2c0a9d66c2a
9b7e7a6d47b4b4342742e0fa90d55bd7e9365457
e1997dc6ddba2b16bd2c62f0a9b86147cffcde8a613403ccb58eda98922e0b8f
GET /bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/8062.m3u8 HTTP/1.1
Host: ao-block-ater.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: audio/x-mpegurl
content-length: 84178
server: BunnyCDN-LA1-900
cdn-pullzone: 1022155
cdn-uid: 586228b8-0c75-4f2e-abf3-9564133d1dd6
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, MOVE, OPTIONS
access-control-max-age: 86400
cache-control: public, max-age=31919000
last-modified: Sat, 12 Nov 2022 21:24:02 GMT
perma-cache: MISS
x-amz-id-2: oGRdoLvrVj+9jqA8DTExan0P2RZW38TAmvxJyEkJOJJNerC1P+6KdGqy1Sm8AtrbGGRztigDXvGO
x-amz-meta-mtime: 1590695069
x-amz-request-id: 71EBC9DE4E42228F
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/17/2022 23:48:07
cdn-edgestorageid: 1002
cdn-status: 200
cdn-requestid: fbcf4b32fd58b8192885ef29b81d2b73
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/core/bridge3.568.1_en.html
232 kB URL imasdk.googleapis.com/js/core/bridge3.568.1_en.html
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 232 kB (231485 bytes)
Hash 75135f4b1d8e89d199e90b3dffa9fa9c
d70c3bea7e109d99e77d102d2732fe645f79f40a
c75dc8ffdcf43329123e776e1a8f92a9e71a5ee0cce42ed0fc8335cb618d244c
GET /js/core/bridge3.568.1_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 17:00:28 GMT
expires: Fri, 12 Apr 2024 17:00:28 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 13 Apr 2023 16:56:21 GMT
content-type: text/html
vary: Accept-Encoding
age: 394155
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash 456f2594c1be094df8aca381e053c8f6
0a7003d46eac9ca946cd9bff6cf29a3c4c2d2f1a
2d45fa5097990ad2becc19e99b8e4f29ae9ee6f4696e4cc3ec2f5ac1961a1c11
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 2bb32eb287a980b1e3d6225302f2a399
2c5bfdfe6c3b0be4d73096793bdc6167ef920e4d
9fd58d9d6500c88f270ed41816a2d87472ce1fd1332e7a934e37cd499e39104a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
200 OK 13 kB URL GET HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint78:0B:8F:93:A7:44:54:C0:E8:E5:A7:23:CC:5E:6C:ED:4E:E6:F6:01
ValidityTue, 28 Mar 2023 16:45:46 GMT - Tue, 20 Jun 2023 16:45:45 GMT
File type ASCII text, with very long lines (1514)
Hash e0a80a7ff607cd6b73373b9d4f2f2785
89da55740e0305bdfc3fabedff5057d1cee93559
0fb653ddef8068310e3fb45204026264c638d12e272aad697da6e9590d85d2a3
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 13208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Apr 2023 06:13:26 GMT
expires: Tue, 18 Apr 2023 07:13:26 GMT
cache-control: public, max-age=3600
age: 977
last-modified: Tue, 14 Mar 2023 20:29:12 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.tapioni.com/adgpt.js
200 OK 817 B IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint98:6F:5C:E6:12:D1:E1:1F:BF:CE:7D:0C:FA:D2:F3:F0:AA:18:B7:66
ValidityThu, 23 Mar 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1681), with no line terminators
Hash fb4582435ef4db24ed703fb6210b46eb
3c94f080e1e2c9b4e59e5a771c0799baf9cea41a
6348c3f7f47eafc18dc6d482df912d0935b144c6cd3f298079b503398c3c4c83
GET /adgpt.js HTTP/1.1
Host: cdn.tapioni.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: application/javascript
content-length: 817
last-modified: Thu, 06 Apr 2023 12:38:07 GMT
vary: Accept-Encoding
etag: "642ebd2f-331"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
cf-cache-status: HIT
age: 5639
accept-ranges: bytes
server: cloudflare
cf-ray: 7b9adae439fd9908-ARN
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=fs1.app
100 B URL adservice.google.com/adsid/integrator.js?domain=fs1.app
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=fs1.app HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 18 Apr 2023 06:29:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
2.2 kB URL assets.fs1.app/assets/icon/apple-touch-icon.png?v=8
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 289c267b299c6efd9d858dce9265d292
a74380024cb5d750f0e6e5367868b62a2f8da979
95a0926985813fbebd6f14d9f599fc8ce908b347e71a4f8957413cdddda6d554
GET /assets/icon/apple-touch-icon.png?v=8 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: image/png
content-length: 2222
last-modified: Fri, 26 Apr 2019 13:17:54 GMT
etag: "5cc30502-8ae"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mGUq0iAgl02UWv1DzBAKFjlgXRgEACgK%2FNo1oNWCzilXejcEfVGZfXUOHL9mMGyF5AGldWIh5%2BFKqfPdSMvZxCt6AHVb7nfj8OOwDh%2FNgtpp8nXhHJM%2BxgKJeNZ9QBNM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae21804b517-OSL
X-Firefox-Spdy: h2
ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/54d8ca488eecda59.ts
200 OK 16 B URL GET HTTP/2 ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/54d8ca488eecda59.ts
IP
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectao-block-ater.mushroomtrack.com
Fingerprint32:44:2E:B7:48:72:6D:31:78:95:10:8C:15:05:69:66:41:CF:0D:F9
ValiditySat, 25 Mar 2023 21:08:38 GMT - Fri, 23 Jun 2023 21:08:37 GMT
Hash 0e4dc43d306b172eec8a52f928965c5e
5ec36e3817006379133a59cf9da82b9e1fc62204
2d2ac14eeab272e54258debb10bb19977e7d703b3a26b04f96e84a57c87e1c7c
GET /bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/54d8ca488eecda59.ts HTTP/1.1
Host: ao-block-ater.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: text/vnd.trolltech.linguist; charset=utf-8
content-length: 16
server: BunnyCDN-LA1-900
cdn-pullzone: 1022155
cdn-uid: 586228b8-0c75-4f2e-abf3-9564133d1dd6
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
last-modified: Thu, 17 Nov 2022 23:48:09 GMT
cdn-storageserver: LA-355
cdn-requestpullsuccess: True
cdn-fileserver: 286
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 206
cdn-cachedat: 12/16/2022 22:27:36
cdn-edgestorageid: 987
cdn-status: 200
cdn-requestid: f11a6027885eb3c6459f3ef71f5ea297
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 456f2594c1be094df8aca381e053c8f6
0a7003d46eac9ca946cd9bff6cf29a3c4c2d2f1a
2d45fa5097990ad2becc19e99b8e4f29ae9ee6f4696e4cc3ec2f5ac1961a1c11
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 2bb32eb287a980b1e3d6225302f2a399
2c5bfdfe6c3b0be4d73096793bdc6167ef920e4d
9fd58d9d6500c88f270ed41816a2d87472ce1fd1332e7a934e37cd499e39104a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cloudlogobox.com/rtbfeed.php?001e67e03bf5
200 OK 106 B URL GET HTTP/1.1 cloudlogobox.com/rtbfeed.php?001e67e03bf5
IP
ASN #209160 Miti 2000 EOOD
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectcloudlogobox.com
Fingerprint87:2D:8E:53:41:BA:6E:15:2C:20:A1:71:D0:F7:57:03:26:40:84:F5
ValidityWed, 15 Mar 2023 01:03:48 GMT - Tue, 13 Jun 2023 01:03:47 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 45519216be3b413c13c1bd623990d1b8
f374f2578e498a536085b57c41d3d2299fa84f5e
4742175aa9e5530bd227e6d0ca2e5d2be4aa5b46ec7ee4a7c8f81c74d7d7884c
GET /rtbfeed.php?001e67e03bf5 HTTP/1.1
Host: cloudlogobox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:29:43 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.14
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
assets.fs1.app/contents/videos_screenshots/12000/12439/320x180/1.jpg
45 kB URL assets.fs1.app/contents/videos_screenshots/12000/12439/320x180/1.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 41a7ce9478322b785d0d5bfe469e958e
46ded45df5bad48c31d516238acd7216e9219894
3b1b6ccdd032b22085d154ec9f7752f10c46a8939abaf33b2a2fd6bf398fa0b8
GET /contents/videos_screenshots/12000/12439/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 45380
last-modified: Sun, 27 Dec 2020 13:07:16 GMT
etag: "5fe88704-b144"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ynKbOGuYcNXyFh5KsdVewgtSPfBMJMph%2FfZSbrt9f8LvHqZsEe3v9yiR%2F6PQf2XlIHEVsmdgmFeDkQnpoEn4LrbbJ8ara9vn0j0PNaTH5mwfqJe4rsqtoi%2FQPk1jCsVY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5bcaab517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/0/307/320x180/1.jpg
200 OK 26 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/0/307/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 197c604cee06ddbba888fb603e47cf01
9e4269291521d1625bef4a3751cd2068871293db
276db66070016d4bc0a44fc58df1082a3cb6190ee2399fc42df1060d0c937495
GET /contents/videos_screenshots/0/307/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 25601
last-modified: Mon, 04 Mar 2019 04:13:54 GMT
etag: "5c7ca602-6401"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2BNrI3vR8zwNrO9OJwjxjT8GzkTdd1%2F6CfAo31X0y0TX35tseYlPw7aluxK3lUQINZWpJ9UVTmFgrQZcgayi6DedZVzkJ%2BHx7fjwflah9PUxuqmuFD9j51fnm%2B%2FFgdSa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5ac8ab517-OSL
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/623611/1d086ee530ffd2df0ad79a4430c5284ea0bf43a1.webp
200 OK 14 kB URL GET HTTP/2 s3t3d2y8.afcdn.net/library/623611/1d086ee530ffd2df0ad79a4430c5284ea0bf43a1.webp
IP
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectafcdn.net
Fingerprint58:E2:EC:9A:A1:55:22:20:28:3E:43:7C:0D:B9:0A:67:84:6B:EA:FB
ValidityMon, 27 Feb 2023 07:22:15 GMT - Sun, 28 May 2023 07:22:14 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4c844d5a19386b984d862c88ff15dd0f
1d086ee530ffd2df0ad79a4430c5284ea0bf43a1
5be93e78e93fcb00f0445cd83b9d55ad0d54aacddbd782b46286574a5b68a535
GET /library/623611/1d086ee530ffd2df0ad79a4430c5284ea0bf43a1.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/webp
content-length: 14308
last-modified: Wed, 03 Nov 2021 19:23:20 GMT
etag: "6182e1a8-37e4"
expires: Wed, 25 Oct 2023 05:55:25 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ2n6xT/rnGsAA
x-77-nzt-ray: c0a4cc28c89a8780d8383e64b60b0e06
x-accel-expires: @1702034090
x-cache: HIT
x-age: 11301294
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/17000/17114/320x180/1.jpg
36 kB URL assets.fs1.app/contents/videos_screenshots/17000/17114/320x180/1.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 319455da17cc6cae06b23825c459e6ed
31f67c0755125dbaa470673975346290279fc304
dccd7a620d99ae3590029842220d77d1291132a6a0b0886995d1d57a5ceae992
GET /contents/videos_screenshots/17000/17114/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 36248
last-modified: Fri, 09 Jul 2021 06:46:22 GMT
etag: "60e7f0be-8d98"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BjtI9wB4QOIpu8NOi1hckQHBjxgVC9ut9EImywfdHmWL4hSxZHTlEy%2BJ%2Bmli361VdzK65gW3jDMCvJY1jtlyIaIbbu93jsGvVbE%2BBQy9ujv%2B0vl8btkLonZK72upqI0a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5aca9b517-OSL
X-Firefox-Spdy: h2
syndication.exosrv.com/splash.php?idzone=3377419
200 OK 2.5 kB URL GET HTTP/1.1 syndication.exosrv.com/splash.php?idzone=3377419
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://imasdk.googleapis.com/js/core/bridge3.568.1_en.html#goog_183704204
Certificate IssuerLet's Encrypt
Subjectexosrv.com
FingerprintB0:32:AF:54:A7:8F:3E:F6:C6:1A:EE:BD:56:D9:24:65:24:82:81:E1
ValidityMon, 27 Feb 2023 07:27:56 GMT - Sun, 28 May 2023 07:27:55 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1541)
Hash 12251101cab6ec72277a5fed087376f4
ab02e5ba68b5f7619648316962ed99336d87cb84
ddbe46ba469810bc3db7372b92aadd4a03f896ba0fab867102d5debcc0e6772c
GET /splash.php?idzone=3377419 HTTP/1.1
Host: syndication.exosrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 18 Apr 2023 06:29:44 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%22643e38d8288a96.598312651430734215%22%3B%7D; expires=Thu, 17 Apr 2025 06:29:44 GMT; path=; domain=.exosrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C3377419%7C45550156%7C0%7C%7C99%7C41%7C3%7C15%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Cimasdk.googleapis.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Wed, 19 Apr 2023 06:29:44 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
zone-cap-3377419=1; expires=Tue, 18 Apr 2023 12:29:44 GMT; path=/; domain=.exosrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80620.ts
200 OK 203 kB URL GET HTTP/2 ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80620.ts
IP
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectao-block-ater.mushroomtrack.com
Fingerprint32:44:2E:B7:48:72:6D:31:78:95:10:8C:15:05:69:66:41:CF:0D:F9
ValiditySat, 25 Mar 2023 21:08:38 GMT - Fri, 23 Jun 2023 21:08:37 GMT
Size 203 kB (202864 bytes)
Hash d44bffb2459b9c32342c8a2e104e540a
28b91b81c1fe5dcdacf25c8efdee672de7587bbe
3456729cfd83836b94b41ac163453e3a32f880669588d2c4b6b093aeaf3d185a
GET /bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80620.ts HTTP/1.1
Host: ao-block-ater.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: text/vnd.trolltech.linguist; charset=utf-8
content-length: 202864
server: BunnyCDN-LA1-900
cdn-pullzone: 1022155
cdn-uid: 586228b8-0c75-4f2e-abf3-9564133d1dd6
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, MOVE, OPTIONS
access-control-max-age: 86400
cache-control: public, max-age=31919000
last-modified: Sat, 12 Nov 2022 21:24:02 GMT
perma-cache: MISS
x-amz-id-2: KAUZHfFwH7ptDc6KTJWyu3mGWT5XSyMu0y8W+4C+e/qIgiqx93zX3HaVVWRt/+SfvPoyzZglf5J5
x-amz-meta-mtime: 1590695071
x-amz-request-id: 63CC2DA75D13E17C
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/17/2022 23:48:09
cdn-edgestorageid: 954
cdn-status: 200
cdn-requestid: f749551ca68366390830b2914f2dec6f
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/0/84/320x180/1.jpg
200 OK 24 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/0/84/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 1d983e89f43f6717b8794227b437dcc3
35e0d62e37adf86e4fdd24917e76dcccb2541b12
89a2740754866a529d72eb5b11588496dad6af6d773b22a162c1f85f3204aaf1
GET /contents/videos_screenshots/0/84/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 23468
last-modified: Mon, 04 Mar 2019 04:06:28 GMT
etag: "5c7ca444-5bac"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A9%2FT1tXwjrUNTmvYVxMoz8C0%2BwDCAnAY2MsSSKxwCKg%2FfECmKRWWsopbncQmDbWz8byMq9WVukPAxbKLQDrYIPOseFyrW2X247SevqkhiGK9CtBwpQ3DdHKZZzfIWfKz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5ac96b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/11000/11644/320x180/1.jpg
200 OK 37 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/11000/11644/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d8bd8d5c03d860bb38753181345fa33a
6fc3f27ef406a97cf60cb270f935b4165f825507
d9f0d5369964c1a810b5364c0e6fff5c5511c04b08d4b0c406fb9a2997208524
GET /contents/videos_screenshots/11000/11644/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 37287
last-modified: Mon, 23 Nov 2020 05:51:57 GMT
etag: "5fbb4dfd-91a7"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tzcFLRzaKDjMB1Jr9oiv5Tn50iFaMGC7tKUkSBwIBYXz5yhtjZeTvE8gY2mOpPUtxWZ%2Fq5OXEVXSYyP%2FEX9%2BRacK%2BELmDNwUXH1q6NDl%2F1CEdgak%2Bc8JrOFODqSCjYFg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5ac93b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/5000/5814/320x180/1.jpg
200 OK 36 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/5000/5814/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 039c35ad529d74a260d632634f492031
7506d6987cb3d670448e6a02fb614ae8328d41f3
ac60d4082f6770d4516877f1832cc433eb7d53a3436b08e3418b6ec63b4f7eb0
GET /contents/videos_screenshots/5000/5814/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 36090
last-modified: Tue, 18 Feb 2020 15:56:15 GMT
etag: "5e4c091f-8cfa"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CDv7EfIaNi6Tc4PalOYhoRINrULlEBZctpUHaFRvW5mgL6gdWK%2FpzgJpykE4BM9nboXgD%2BWdy441XJ73wdtlgBcxafoYNQl2MnNT5QnfKCCiXfefsNRSLqcKkj%2BKTMEB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5ac8fb517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/14000/14332/320x180/1.jpg
200 OK 39 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/14000/14332/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash c88ac58767622ee170175b5735d210d1
9d5a16f207a8aee12950f941feab9056a7d21147
3f619ba44e71392e6164d650d4d54666d921c4e4e1c7d7173091dde09467b25e
GET /contents/videos_screenshots/14000/14332/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 39351
last-modified: Wed, 17 Mar 2021 02:09:34 GMT
etag: "605164de-99b7"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HsB2s7ZqsQIxQWXYZSUe6UDHzQoqJ0xmBZy03jyMbesPnoafaZ9kUNGhnRIiIc5F%2BqtS3B9aAnQgtXqs99WmXNna68wFQydH5dHPEDLeOQmcdgW0XrKz5vxW%2BT08PZ8k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5ac8cb517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/23000/23848/320x180/1.jpg
200 OK 37 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/23000/23848/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d8f0d30f3799a9f154c5abc4bcefa081
1e9813d39cc42461806350fe08974bdb051fd550
c4cb582a210f2c5c37523990613e39f94aa8d81dbb59f2fba806af0ff010e4e9
GET /contents/videos_screenshots/23000/23848/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 37085
last-modified: Tue, 03 May 2022 09:28:11 GMT
etag: "6270f5ab-90dd"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gK8wP5ZVEeXDkFvCjw6TFdZuvt5alKmtvGCwmZP6moFKxxjgpvoSGgigYS8hRnc1ybJczpYoWcggzXhHenCmLAJjyBpKDKMzeXHRYzWrAWzXyUOFDJl7cMnKj80%2F8cAK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5ac87b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/18000/18154/320x180/1.jpg
200 OK 39 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/18000/18154/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 59a443a388900bec5b4b31f4e87b0d39
9a5748b5999eab95dbdb8c3fa8cba960a201b822
8d9333f503757776783592c1778feefc5def3254b9360e132779a6e470cfec14
GET /contents/videos_screenshots/18000/18154/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 38793
last-modified: Mon, 23 Aug 2021 09:20:24 GMT
etag: "61236858-9789"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wbuxxvKDaxCA2DmqO4zKfcoPqe2KHSGwtBRk3HkO9SqGa2xoW%2FOALGJL79%2ByHtabXZSBYYM82avgexhj%2FYxrarl6pQD1%2B9Y2FJfUf0dhipAnGfOvnUaXY2a73P%2FRCd%2B8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5aca6b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/11000/11480/320x180/1.jpg
200 OK 36 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/11000/11480/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 900f7efaa1bb2cf22df45502e02d35d4
9fc559e9630c4754fd8d95b2d8a97a9262976ad5
3c731c1c3637b6e9dd168ff26e86953e738f3a5b0c1666023bbfd6dca14f8ae0
GET /contents/videos_screenshots/11000/11480/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: image/jpeg
content-length: 35717
last-modified: Mon, 16 Nov 2020 09:42:47 GMT
etag: "5fb24997-8b85"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AtBPyYYJlHFAj%2F1wRQH5gFqCPj1ERcLg0hzEjJjT8MJiskCSOsCp8%2BSK8oOqsNbtsyaQJL7D%2BA98YEe%2Ff8X%2FZk1j2RVK8yQ5ku%2Fal%2FBr9y81XNd4%2FtR6V9nypk%2BsUmkK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae5bcacb517-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash ea0b54ae1b5bfc108723473bacced965
c580dca317cbf0257224adfe034998865e841143
8426779a8fc33f4e9f59abbf061c4e9b6a0b16cf3c334160cb5a603cbb05e40f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/instream/video/client.js
17 kB URL s0.2mdn.net/instream/video/client.js
IP
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Tue, 18 Apr 2023 06:29:44 GMT
expires: Tue, 18 Apr 2023 06:29:44 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash ea0b54ae1b5bfc108723473bacced965
c580dca317cbf0257224adfe034998865e841143
8426779a8fc33f4e9f59abbf061c4e9b6a0b16cf3c334160cb5a603cbb05e40f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 18 Apr 2023 06:29:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80621.ts
1.0 MB URL ao-block-ater.mushroomtrack.com/bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80621.ts
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subjectao-block-ater.mushroomtrack.com
Fingerprint32:44:2E:B7:48:72:6D:31:78:95:10:8C:15:05:69:66:41:CF:0D:F9
ValiditySat, 25 Mar 2023 21:08:38 GMT - Fri, 23 Jun 2023 21:08:37 GMT
Size 1.0 MB (1004496 bytes)
Hash 40d029ce0df26d395225c1c68703dfb6
8b9825d1c4c9934ad8244dc31b4c5ab4d2337152
d2aec8ee8276cc7a7cb06df2e2d1e503b76781896f7b151d4a2865f47e2c591d
GET /bcdn_token=HLHGzywOf64KIY2nKfPC4poQvVF-anzxr4vSRUL2mGU&expires=1681806569&token_path=%2Fvod%2F/vod/8000/8062/80621.ts HTTP/1.1
Host: ao-block-ater.mushroomtrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:44 GMT
content-type: text/vnd.trolltech.linguist; charset=utf-8
content-length: 1004496
server: BunnyCDN-LA1-900
cdn-pullzone: 1022155
cdn-uid: 586228b8-0c75-4f2e-abf3-9564133d1dd6
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, MOVE, OPTIONS
access-control-max-age: 86400
cache-control: public, max-age=31919000
last-modified: Sat, 12 Nov 2022 21:24:03 GMT
perma-cache: MISS
x-amz-id-2: EfKn4lO3hWfA4qBrtAEZ3O6TkmbmcG/Z1Yd/znAHNhAPM2Mvrboexy2CRPdWAIIbPkGZBfrc+SE1
x-amz-meta-mtime: 1590695073
x-amz-request-id: 3A8D3FCAD9E62957
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/17/2022 23:48:10
cdn-edgestorageid: 1002
cdn-status: 200
cdn-requestid: 321a2e54b90a0cadfc3c3f3cc504fa00
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/30000/30973/320x180/1.jpg
200 OK 38 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/30000/30973/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash ffcded5a55d21c769e1529cc9e9bdc79
4ae994e05c72836cee2c486959d1928eef442444
7311fea25860d821de0206be5ea5e7a9550266bc552a0fb16642235839c5e0ca
GET /contents/videos_screenshots/30000/30973/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/jpeg
content-length: 38395
last-modified: Thu, 02 Mar 2023 14:09:01 GMT
etag: "6400adfd-95fb"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2ByzGCBBlclvqEmYco1yx4aMTGoifUOSYiY1T4d0JhaD5oUjsByqzL%2FqLhZpBtpYatlqP6r%2BntOYQdEr9EFJ5S2pp1H3O8I8HfvP8SVL%2BU%2FosE3FQkoOKLzzOLaU8rKW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaeb9d09b517-OSL
X-Firefox-Spdy: h2
vast.bimbim.com/vast/v3/bb?psid=bm_exoronvbdtt1&utm_campaign=exoRONpreroll&subaffid=788403&sub_source=alldayj.com&ms_notrack=1&pstour=t1&psprogram=REVS&site=bimbim&utm_medium=network&categoryName=girl&utm_term=99_
200 OK 3.4 kB URL GET HTTP/2 vast.bimbim.com/vast/v3/bb?psid=bm_exoronvbdtt1&utm_campaign=exoRONpreroll&subaffid=788403&sub_source=alldayj.com&ms_notrack=1&pstour=t1&psprogram=REVS&site=bimbim&utm_medium=network&categoryName=girl&utm_term=99_
IP
ASN #34655 DuoDecad IT Services Luxembourg S.a r.l.
Requested by https://imasdk.googleapis.com/js/core/bridge3.568.1_en.html#goog_183704204
Certificate IssuerLet's Encrypt
Subjectvast.bimbim.com
Fingerprint8A:E6:58:67:2C:EC:50:EE:26:C8:9F:03:81:D5:A1:60:72:57:BC:83
ValidityThu, 23 Feb 2023 10:01:03 GMT - Wed, 24 May 2023 10:01:02 GMT
File type ASCII text, with very long lines (755)
Hash b6d8f68af121cc36d1fb711d4a1a8799
12ade60d914fb18964de6e0d80b4ce6491c7d4e6
775a18a097fae8cf9f5f5e95e27829652f5c19057529542e9d39e36ca7078c3a
GET /vast/v3/bb?psid=bm_exoronvbdtt1&utm_campaign=exoRONpreroll&subaffid=788403&sub_source=alldayj.com&ms_notrack=1&pstour=t1&psprogram=REVS&site=bimbim&utm_medium=network&categoryName=girl&utm_term=99_ HTTP/1.1
Host: vast.bimbim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/xml; charset=utf-8
cache-control: no-cache
date: Tue, 18 Apr 2023 06:29:44 GMT
x-target-pstool: 401_1
access-control-allow-origin: https://imasdk.googleapis.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
server: unknown
set-cookie: psui=7c488d85daecc2bf18f4f49ac0fc0392; Path=/; Expires=Thu, 18-May-23 06:29:44 GMT; SameSite=None; Secure
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/26000/26001/320x180/1.jpg
200 OK 43 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/26000/26001/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash dc9726d74881429bb5aafba14635bb5b
12aa461a26d9c9690c72b0ee8c36928a83bbdce6
080a51e44727af810a0d809c06d099d43e6933f8f29c961644c0b5d30af4e97f
GET /contents/videos_screenshots/26000/26001/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/jpeg
content-length: 43018
last-modified: Tue, 09 Aug 2022 11:30:10 GMT
etag: "62f24542-a80a"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zAl%2FB8SFwdcBl81z1ZjTqIhPvyAph43KQTO49n5WcjhDSW3TYUze5xxzWnCa%2BmRiAL0kUMADmAJBvAOG6ScXPzSkCeVCd2VAfHK6HttPRu%2F3oyCe2TxNJLzlRuo1ajvM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaeb8d05b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/15000/15302/320x180/1.jpg
200 OK 38 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/15000/15302/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash e0bc8279ebe173783c5902390d4f9bf9
0a19e4081aaed5a52dd946c4ef282ecb069dc956
17d6996d3167980a3e8330d48f787ae85fa7bb6f982c90584ec2dbdf5a9bb896
GET /contents/videos_screenshots/15000/15302/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/jpeg
content-length: 37838
last-modified: Mon, 26 Apr 2021 17:23:55 GMT
etag: "6086f72b-93ce"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7741QHu583BiWm8ixwbj7Xewjx8Ol1ftnFCndqzrmJT%2FPEubipMuQKyFR2wh4da9m0jXvPRe5cc%2Ba%2B%2FKUrUWwzpD0KlfdVlDLjNUBujv0cQQ16YvmuwgzNvayjV9Px1U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaeb8cffb517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/7000/7870/320x180/1.jpg
42 kB URL assets.fs1.app/contents/videos_screenshots/7000/7870/320x180/1.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 7d61be5e3f6df49e3cf6b4b29092972e
a41286096a43e122d5b008149a7f8f612c3f2d8a
12a4f8c30cc31d8208c31d37ae39cc0b14ca852cb211e5aa709c6b50178a64cc
GET /contents/videos_screenshots/7000/7870/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/jpeg
content-length: 42477
last-modified: Wed, 20 May 2020 03:50:18 GMT
etag: "5ec4a8fa-a5ed"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UdItjZpSnx6lDfu9jCUPVOjn6%2BGlz%2Belilg58Zo1uFZPIk0S%2FQ2NbBOkQaiPE%2BTrasmYh93fkxHKTL1P9AYiW4OCEZ6J6LNIDh8UgGL%2BTADLX%2FmX6lRhliGrb%2F%2FRsCDd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaeb9d20b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/24000/24472/320x180/1.jpg
56 kB URL assets.fs1.app/contents/videos_screenshots/24000/24472/320x180/1.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash d698a059cb89542c25e604e343795d78
7823e0cea765dcca5abc69f46481f9b40c7999f1
7e90b4e9e5d20f18ddad4940a8b33368b39f05e2e5052b3035b919c65ef4a302
GET /contents/videos_screenshots/24000/24472/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/jpeg
content-length: 55976
last-modified: Sat, 28 May 2022 17:11:06 GMT
etag: "629257aa-daa8"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0594aqt3gNRcDdI6xV48NMFDdAI%2FExZIxKgHLZCvXwp7PWFzucsoOmmW%2Bkc865N1iRFl9dBTJrmYIztV89WkPiRd9O1pB%2B6FJ7v8R7Qr77dVU2fZuYevSpvcIOQHcsTm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaeb8d03b517-OSL
X-Firefox-Spdy: h2
assets.fs1.app/contents/videos_screenshots/26000/26953/320x180/1.jpg
200 OK 42 kB URL GET HTTP/2 assets.fs1.app/contents/videos_screenshots/26000/26953/320x180/1.jpg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 3d33b696ecdf1e62ac8cac10ba22b699
45b82f8a6bc02f809e2bc73ef6e9cab422f7b4cd
ecb8b06d4574ffed403beb8c87cf763bc53555331aeb995a242af6c1700267a2
GET /contents/videos_screenshots/26000/26953/320x180/1.jpg HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508; __cf_bm=oisQ09PvD2NDmuYO_.zRH8rHrhiB3lUug12KtCQrZo8-1681799382-0-AWrFcuKBrOpRA8UZE5FzznbChbo20xIzW3OkJIVWGagnAwnkmY+xFzrV29/diFRbg16KSOPb7NI7VEJdFki5UnOtguUJ7nlvDGtuH/UhGzwu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/jpeg
content-length: 41498
last-modified: Thu, 15 Sep 2022 21:06:10 GMT
etag: "632393c2-a21a"
strict-transport-security: max-age=15768000
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=21n8fSg03yWNZYKlD%2FMcSrbPDjrzOIOVZDjJV3VZwwPHqNkB2wwycGh3Rlh3G6TWY8%2Bgd1dVZQafO6bbqmS3ez9udnHxVOoKHUmAupI6XpSChlAg6SRNkDwURvij4DHn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaeb9d1cb517-OSL
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=2~lglw06l2&c=802808557756&slotId=401404278878&ghmsh_eids=44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991&vmfc=1&vhc=0
204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=2~lglw06l2&c=802808557756&slotId=401404278878&ghmsh_eids=44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991&vmfc=1&vhc=0
IP
Requested by https://imasdk.googleapis.com/js/core/bridge3.568.1_en.html#goog_183704204
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=2~lglw06l2&c=802808557756&slotId=401404278878&ghmsh_eids=44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991&vmfc=1&vhc=0 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Tue, 18 Apr 2023 06:29:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
200 OK 103 B URL GET HTTP/3 go.admjmp.com/abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectgo.admjmp.com
FingerprintA9:B0:8A:8F:28:5A:98:E7:DE:B5:54:6F:78:D2:68:ED:81:ED:D8:63
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
Hash 8c99886486b9a004383cb4df29011c43
d79ca4754481fc59598bc08fcdf354900918bffe
bda00b0f6892b1c6991e793b42654ad1807694e2ffabcbc4eb1399379737ef6c
GET /abc.gif?userId=4c25683baa7e541ee7ce0014496c85471ee87c5671f43cd3d2de65eaed1cbb98&campaignId=bottomslider&modelsLimit=1&stripcashR=0&thumbType=default&thumbFit=cover&quality=original&language=en&modelsInWatchHistoryCount=-1&modelsInFavoritesCount=-1&userType=newuser&modelsCount=1&segment=hls-newAPI&landing=Spot&referrer&i=0&ib=0&filtersMatch=1 HTTP/1.1
Host: go.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: go.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCeS4Kkib9dpHBnhapkvY6tXKVc84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/gif
content-length: 103
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b9adaef8fb4b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
img.strpst.com/thumbs/1681799310/72074659
200 OK 54 kB URL GET HTTP/2 img.strpst.com/thumbs/1681799310/72074659
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectimg.strpst.com
FingerprintED:62:74:FE:E4:F5:89:43:B3:49:55:FE:18:19:0D:29:24:96:75:BC
ValidityMon, 03 Apr 2023 00:00:00 GMT - Tue, 02 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, progressive, precision 8, 640x360, components 3\012- data
Hash 9feaeb8cce3ef797de13ae47f8ca25e0
f58271e6821246e847a83e80e39f8afddea7bf51
68e2059e24123de1e6dd2b06450d8ecc4ac639cbae4137729762959a92170f2f
GET /thumbs/1681799310/72074659 HTTP/1.1
Host: img.strpst.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: image/jpeg
content-length: 53927
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=1800, s-maxage=1800, stale-while-revalidate=1, max-stale=1, stale-if-error=1
cf-bgj: imgq:100,h2pri
cf-polished: origSize=55594, status=webp_bigger
etag: "6c8fbd38fde6c4e6afcea3c778c80fc6"
last-modified: Tue, 18 Apr 2023 06:28:10 GMT
cf-cache-status: HIT
age: 49
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaeff86f0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_init_NdmIcqrHEgx3m30X.mp4
1.2 kB URL b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_init_NdmIcqrHEgx3m30X.mp4
IP
File type ISO Media, MP4 Base Media v5 \012- data
Hash c8a79c758125f0fbfb25db8cfc8ae755
194edcea12e0744ebd59b454cf283842266ebb8e
f9cc739485b057a3fca9d6d1c0e31850592ebeda92603ac53451ef3e3b43c45f
GET /hls/72074659/72074659_480p_init_NdmIcqrHEgx3m30X.mp4 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:46 GMT
content-type: video/mp4
content-length: 1217
last-modified: Tue, 18 Apr 2023 04:25:47 GMT
etag: "643e1bcb-4c1"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaf31c8d1bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
200 OK 297 kB URL GET HTTP/2 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p.m3u8
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 297 kB (297419 bytes)
Hash 423cfb42d1b5e30b91b7562912899e62
0250a82d0e7fb760a3058bd1987067b65dc2b88c
a37b792484c6a458be4c208a6450c3f57382c459d1e5d522dcaa365651d7d0e0
GET /hls/72074659/72074659_480p.m3u8 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:46 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:29:46 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7b9adaf2dc581bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
edge-hls.doppiocdn.com/hls/72074659/master/72074659_480p.m3u8
318 kB URL edge-hls.doppiocdn.com/hls/72074659/master/72074659_480p.m3u8
IP
Size 318 kB (318194 bytes)
Hash 2fe429287ad79981e2ffcfce0dc213e6
705683f8962028c7e3b6d7febdfb8be05b0e2aa0
b92d461026bbb97e6f539a54495f61c90e924c9580d98c42782c18334b471e56
GET /hls/72074659/master/72074659_480p.m3u8 HTTP/1.1
Host: edge-hls.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
last-modified: Tue, 18 Apr 2023 06:29:45 GMT
x-proxy-cache: HIT
timing-allow-origin: *
cache-control: public, max-age=1, s-maxage=1
access-control-allow-origin: *
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7b9adaf23bbc1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets-cdn.jable.tv/assets/images/252/427-240-3.gif
200 OK 495 kB URL GET HTTP/2 assets-cdn.jable.tv/assets/images/252/427-240-3.gif
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerZeroSSL
Subjectassets-cdn.jable.tv
FingerprintA1:56:4A:0F:E4:F6:14:57:AF:38:C7:ED:6A:23:31:9C:4D:91:13:75
ValidityFri, 14 Apr 2023 00:00:00 GMT - Thu, 13 Jul 2023 23:59:59 GMT
File type GIF image data, version 89a, 427 x 240\012- data
Size 495 kB (495284 bytes)
Hash 49a3ab4bb1a3b7ca1c17013d50e8ebd8
449d0fc24fe665307e6e62656acd74ce053feaea
f149232ed8aaca10ffa20561b95ef86bc5e739a9501b8d57abdbc2747d9d0ba8
GET /assets/images/252/427-240-3.gif HTTP/1.1
Host: assets-cdn.jable.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: image/gif
content-length: 495284
last-modified: Thu, 23 Jul 2020 07:47:53 GMT
etag: "5f1940a9-78eb4"
strict-transport-security: max-age=15768000
expires: Thu, 18 May 2023 06:29:42 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.fs1.app/assets/js/site.js?date=20190501
200 OK 398 kB URL GET HTTP/2 assets.fs1.app/assets/js/site.js?date=20190501
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 398 kB (397824 bytes)
Hash f60affb2495c7b46219ba6fcd010775e
06f054a5298645a8877d5fee838cb55875baf7bd
78e60bb029a9bd66332fb7d8c86a067252f72a3ce5c1051ddc3968bcebdd6e77
GET /assets/js/site.js?date=20190501 HTTP/1.1
Host: assets.fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: application/javascript
last-modified: Thu, 02 May 2019 11:21:00 GMT
vary: Accept-Encoding
etag: W/"5ccad29c-61200"
expires: Tue, 25 Apr 2023 06:29:41 GMT
cache-control: max-age=604800
strict-transport-security: max-age=15768000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5prlDrJXzsh%2Ba%2B%2BPTrzkj9l8ZPJrTNJjRsMZhJl7pZHDjBZCexf73fNj7z4CYuTIwqC%2Fq%2F9Wwg3W%2FM1ovzyKSRWidUN1NfrIFBzPFmG9worGvsKsce5onqisBzFoJUUy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adad6bf74b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Hash 037d830416495def72b7881024c14b7b
619389190b3cafafb5db94113990350acc8a0278
1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fs1.app
Connection: keep-alive
Referer: https://assets.fs1.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 02:07:56 GMT
expires: Fri, 12 Apr 2024 02:07:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:12 GMT
content-type: font/woff2
age: 447706
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E7%94%B7%E5%8F%8B%E8%A6%96%E8%A7%92%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E9%A1%8F%E5%B0%84%2C%E4%B9%B3%E4%BA%A4%2C%E6%A0%A1%E6%9C%8D%2C%E7%BE%8E%E5%9C%92%E5%92%8C%E8%8A%B1%2C%E4%BB%8A%E4%BA%95%E3%81%BE%E3%81%B2%E3%81%AA%2C%E5%AE%87%E4%BD%90%E6%9C%A8%E3%81%82%E3%81%84%E3%81%8B%2C%E9%87%8E%E3%80%85%E5%AE%AE%E3%81%99%E3%81%9A&s1=%25subid1%25
200 OK 838 B URL GET HTTP/2 a.labadena.com/api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E7%94%B7%E5%8F%8B%E8%A6%96%E8%A7%92%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E9%A1%8F%E5%B0%84%2C%E4%B9%B3%E4%BA%A4%2C%E6%A0%A1%E6%9C%8D%2C%E7%BE%8E%E5%9C%92%E5%92%8C%E8%8A%B1%2C%E4%BB%8A%E4%BA%95%E3%81%BE%E3%81%B2%E3%81%AA%2C%E5%AE%87%E4%BD%90%E6%9C%A8%E3%81%82%E3%81%84%E3%81%8B%2C%E9%87%8E%E3%80%85%E5%AE%AE%E3%81%99%E3%81%9A&s1=%25subid1%25
IP
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintFE:A0:11:D9:6C:3B:49:F5:25:B8:E2:BA:76:DA:02:7C:1E:08:7D:E2
ValiditySat, 15 Apr 2023 23:27:07 GMT - Fri, 14 Jul 2023 23:27:06 GMT
File type ASCII text, with very long lines (890), with no line terminators
Hash 2bad7230e5996381c35b634a44111fb7
ebce5e3211a2ebac678e7b8d70288fe81b4c35c2
6a2a5c1d91c247618450861ad47a85e84b6696dcf1052eb1f02bfafb6ad88b53
GET /api/users/262182?host=fs1.app&ev=206&wh=1024&ww=1280&uuid=&kw=%E5%88%B6%E6%9C%8D%E8%AA%98%E6%83%91%2C%E7%94%B7%E5%8F%8B%E8%A6%96%E8%A7%92%2C%E8%A7%92%E8%89%B2%E5%8A%87%E6%83%85%2C%E5%B0%91%E5%A5%B3%2C%E5%B7%A8%E4%B9%B3%2C%E9%A1%8F%E5%B0%84%2C%E4%B9%B3%E4%BA%A4%2C%E6%A0%A1%E6%9C%8D%2C%E7%BE%8E%E5%9C%92%E5%92%8C%E8%8A%B1%2C%E4%BB%8A%E4%BA%95%E3%81%BE%E3%81%B2%E3%81%AA%2C%E5%AE%87%E4%BD%90%E6%9C%A8%E3%81%82%E3%81%84%E3%81%8B%2C%E9%87%8E%E3%80%85%E5%AE%AE%E3%81%99%E3%81%9A&s1=%25subid1%25 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Cookie: nauid=ScaTwrFVj7vpityZSmQp
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
200 OK 178 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/vendors~hls.18f09cc78016f06b828b.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (45140)
Size 178 kB (177865 bytes)
Hash d47dabb4fffc74448f81658667859160
9a309deebefda0376c4f7013fba78ee733620284
e3295b3aee4ac84c9eea9a0b702f69c63d98c5aa253b0152333f4fc0edec5534
GET /widgets/Spot/vendors~hls.18f09cc78016f06b828b.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCdcpw6HAsAnTtdy95gUDRgHLuuCg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:29:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Apr 2023 11:32:48 GMT
etag: W/"643696e0-2b6c9"
expires: Tue, 18 Apr 2023 06:29:52 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaf16939b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3715_iE8KNpkr28S4oo4C_1681799377.mp4
200 OK 297 kB URL GET HTTP/2 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3715_iE8KNpkr28S4oo4C_1681799377.mp4
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 297 kB (297103 bytes)
Hash 62d2de7c6259316e3b011d07ef8e53a2
0c16794f78261800d00ccc4313e9b25af1c06a27
cb29c8f742094e561c9370080b0dc5bfcb7e05c6344df29d364927febfa19305
GET /hls/72074659/72074659_480p_3715_iE8KNpkr28S4oo4C_1681799377.mp4 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:46 GMT
content-type: video/mp4
content-length: 297103
last-modified: Tue, 18 Apr 2023 06:29:39 GMT
etag: "643e38d3-4888f"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaf35cc61bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
200 OK 0 B URL GET HTTP/2 adserve.work/www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint92:00:26:4C:BE:F6:69:97:38:04:5C:F1:70:10:7D:95:8A:22:0E:61
ValiditySun, 24 Jul 2022 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/serve/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE HTTP/1.1
Host: adserve.work
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Wed, 17-Apr-2024 06:29:43 GMT; Max-Age=31536000; path=/; secure; SameSite=none
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R4hNX9hFFlrosRxCUNdoaqv%2BNrOjS7HtInryAz%2BQbQQL5J0okOn9eFAbwjtX2HMuHLuNHDVsHFlEJ4%2FPNeeEKs2wLm0BAdjdQq8%2Bj%2B1a5DojyZ0eoHppFXU7FEkPKk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adadc8fb80b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
200 OK 2.8 kB URL GET HTTP/3 creative.admjmp.com/widgets/Spot/core.db50f5f8fc13cf868bd2.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcreative.admjmp.com
FingerprintF5:BC:E5:4B:69:86:E0:72:1B:ED:C9:0B:10:D7:BE:A0:86:F3:1D:71
ValiditySat, 30 Jul 2022 00:00:00 GMT - Sun, 30 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (2840), with no line terminators
Hash 81df84b5c4070ad48ee4376955bf78d0
832b74a3b3f32a1e2d3f9588b3b70991174f597d
dc1f6c7efa16517bcb119edeada2e361d18abcae2d565ae077e58ef7e7934115
GET /widgets/Spot/core.db50f5f8fc13cf868bd2.js HTTP/1.1
Host: creative.admjmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: creative.admjmp.com
Connection: keep-alive
Referer: https://fs1.app/
Cookie: __cflb=02DiuDfsBaY2bRYJiCdcpw6HAsAnTtdy95gUDRgHLuuCg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:29:43 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 12 Apr 2023 11:32:48 GMT
etag: W/"643696e0-ace"
expires: Tue, 18 Apr 2023 06:29:44 GMT
cache-control: max-age=10
pragma: public
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adae59aa5b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3716_OZ6QzNTSZGjBCy7Z_1681799379.mp4
200 OK 318 kB URL GET HTTP/3 b-hls-05.doppiocdn.com/hls/72074659/72074659_480p_3716_OZ6QzNTSZGjBCy7Z_1681799379.mp4
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint99:FA:E1:1F:E8:F6:A1:57:63:A7:AA:BD:3E:C1:94:58:E7:83:02:13
ValiditySat, 21 Jan 2023 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT
Size 318 kB (318063 bytes)
Hash 915ac4e2cde30b912760a308ba8e7494
b83bc02e1fdd6c090348ace34e4931f843ca2f27
a641a4491f2a4b697e20b600f9e58cc12b0fa5a5e9d581a3108a60bb0eae77a6
GET /hls/72074659/72074659_480p_3716_OZ6QzNTSZGjBCy7Z_1681799379.mp4 HTTP/1.1
Host: b-hls-05.doppiocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 18 Apr 2023 06:29:46 GMT
content-type: video/mp4
content-length: 318063
last-modified: Tue, 18 Apr 2023 06:29:41 GMT
etag: "643e38d5-4da6f"
timing-allow-origin: *
cache-control: public, max-age=60, s-maxage=60
access-control-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9adaf3ed6ffabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fs1.app/cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js
200 OK 30 kB URL GET HTTP/2 fs1.app/cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
File type ASCII text, with very long lines (29623), with no line terminators
Hash 5a6826eb097332ed3f2cf751a705efcb
f67f53ac55fbb6d8abcdfc699103b75273750930
e58640acfda2154ff9fe3d3f9bef5afb07439591aeb3d290be9bf7e71e1cf992
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/74cb9f3f/invisible.js HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; kt_ips=91.90.42.154; _ga_1DTX7D4FHE=GS1.1.1681799507.1.0.1681799507.0.0.0; _ga=GA1.1.765257505.1681799508
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hNT8qnCRBf7AuytFhfEO9X74N8qkkSycvqVqWtCKdZg8qHDLSJOVYnNBi7CWFqNIftwY6a41e9nrEFpUQEkJV5y7qMyvwU3SPYJn3OENmQzVJcMBUUFcxLg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adadda930b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/core/bridge3.568.1_en.html
200 OK 724 kB URL GET HTTP/3 imasdk.googleapis.com/js/core/bridge3.568.1_en.html
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 724 kB (724398 bytes)
Hash aff8eee216c81dd447f72add44912948
4f8162748e77730dec73a447a1fb3204756501c2
c89bea8f90c7c22749b292948790d7e92ca96053d23e3a6622a1ac33c9061691
GET /js/core/bridge3.568.1_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: imasdk.googleapis.com
Connection: keep-alive
Referer: https://fs1.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 17:00:28 GMT
expires: Fri, 12 Apr 2024 17:00:28 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 13 Apr 2023 16:56:21 GMT
content-type: text/html
vary: Accept-Encoding
age: 394155
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
200 OK 92 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subject*.fs1.app
FingerprintB0:6E:19:B7:5C:93:C2:93:53:87:F3:75:EB:02:B5:F5:D4:E3:2D:17
ValidityWed, 12 Apr 2023 14:20:34 GMT - Tue, 11 Jul 2023 14:20:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videos/apsh-003/ HTTP/1.1
Host: fs1.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=6qipgtsq0vh662lfk8gni6oql1; path=/; domain=.fs1.app
kt_ips=91.90.42.154; expires=Wed, 19-Apr-2023 06:29:41 GMT; Max-Age=86400; path=/; domain=.fs1.app
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=15768000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWQDRk%2FnZWFHWRcUkQvPzTfHUdQy42tvCSQXH7sOghu5qS5gAsEuBfC%2BA%2F4Bq6A5a7kVvBvNBzLZPU4f0LugGl%2FoCl%2B3q5CVxq0sAELuthfgzYzvagffiwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adad2396eb517-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.realsrv.com/nativeads-v2.js
200 OK 61 kB URL GET HTTP/2 a.realsrv.com/nativeads-v2.js
IP
ASN #60068 Datacamp Limited
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjectrealsrv.com
FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49
ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File type C source, ASCII text, with very long lines (60628), with no line terminators
Hash 16ac675aca0eca4960f7f430fabef329
1e16d6ff16b145ea5560344a5069decb64cf8bf4
630128fd494a3f222996b1631f5e9b721629e9424deb98a2fb8678ecf3594279
GET /nativeads-v2.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:41 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1e16d6ff16b145ea5560344a506"
expires: Mon, 17 Apr 2023 19:04:21 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ334KD/XCEAAA
x-77-nzt-ray: c0a4cc288fad6960d5383e64f1ba4724
x-accel-expires: @1681801641
x-cache: HIT
x-age: 8540
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
a.labadena.com/api/settings/262182
200 OK 32 B URL GET HTTP/2 a.labadena.com/api/settings/262182
IP
ASN #24940 Hetzner Online GmbH
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerLet's Encrypt
Subjecta.labadena.com
FingerprintFE:A0:11:D9:6C:3B:49:F5:25:B8:E2:BA:76:DA:02:7C:1E:08:7D:E2
ValiditySat, 15 Apr 2023 23:27:07 GMT - Fri, 14 Jul 2023 23:27:06 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 70e03b2246021ebcd2ca54e5607ab872
04b2d0e74ccb5feec8976d1c6a92eee8a84cdba8
c3cbbee3b165de8cb5725efe3cc7abc569c13214dbc37a70ace8758cc2d5b73f
GET /api/settings/262182 HTTP/1.1
Host: a.labadena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fs1.app/
Origin: https://fs1.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.plyr.io/3.5.4/plyr.svg
200 OK 5.5 kB URL GET HTTP/2 cdn.plyr.io/3.5.4/plyr.svg
IP
Requested by https://fs1.app/videos/apsh-003/
Certificate IssuerCloudflare, Inc.
Subjectcdn.plyr.io
FingerprintFF:35:46:8D:1D:83:62:00:F8:34:EB:16:F5:68:58:8E:B1:61:55:A9
ValidityWed, 12 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (5571), with no line terminators
Hash fa8c50a396b6c079f203784329315145
ec0e8a3314dbd6fa6f7a8ac6235d2a811b87ec21
f31a23b983163ccc94cda2a353b33f34c0653037d4ca1f6a536ec400e79565b5
GET /3.5.4/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fs1.app
Connection: keep-alive
Referer: https://fs1.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000
etag: W/"d1f4356635795f17eaa9bd377d172997"
last-modified: Wed, 12 Apr 2023 11:15:26 GMT
vary: Origin, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hXtrYgtiBDto9WX6hVJ5N5YfuT5NnYRPsADtY2IzDNvV6uhGmas0Ce6bH0VM0lUhpRueXDrQmJEIFfIih3Y9u%2BUZ%2BBIYS%2FrTQ0gBtyiSX9ZGVz6xBp3b9Z7EniBa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9adadcdfe7b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adactioner.com/asset-12001643.mp4
206 Partial Content 40 kB URL GET HTTP/2 adactioner.com/asset-12001643.mp4
IP
ASN #24940 Hetzner Online GmbH
Requested by https://a.labadena.com/api/spots/220808?p=1&s1=%subid1%&kw=
Certificate IssuerLet's Encrypt
Subjectadactioner.com
FingerprintA4:6D:E4:31:E8:7F:01:54:34:36:49:C5:E9:C8:E3:66:A2:1C:B9:7B
ValiditySat, 11 Mar 2023 23:27:07 GMT - Fri, 09 Jun 2023 23:27:06 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 90efe0d856be2de88b8fae0c8aa35a6b
b3b6f42af9e3c8e20a0e9e6a3029f662c35f3c75
a1b94b4be6854c09887113646427563c091a0e000ff0d2fb4e01a69910119935
GET /asset-12001643.mp4 HTTP/1.1
Host: adactioner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://a.labadena.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx
date: Tue, 18 Apr 2023 06:29:42 GMT
content-type: video/mp4
content-length: 65754
last-modified: Mon, 17 Apr 2023 08:03:05 GMT
etag: "643cfd39-100da"
expires: Thu, 18 May 2023 06:29:42 GMT
cache-control: max-age=2592000, public
content-range: bytes 0-65753/65754
X-Firefox-Spdy: h2
172.67.73.115
78.128.113.86
185.76.9.15
135.181.208.216
104.18.51.106
95.211.229.245
85.10.204.29
93.93.51.191
15.235.9.226
0.0.0.0