| www.macaubusiness.com/thirty-five-defendants-plead-guilty-in-wenzhou-gambling-crime-cases-linked-to-alvin-chau/ | 172.67.144.144 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.macaubusiness.com/thirty-five-defendants-plead-guilty-in-wenzhou-gambling-crime-cases-linked-to-alvin-chau/ IP172.67.144.144:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /thirty-five-defendants-plead-guilty-in-wenzhou-gambling-crime-cases-linked-to-alvin-chau/ HTTP/1.1
Host: www.macaubusiness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 05:05:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 06:05:08 GMT
Location: https://www.macaubusiness.com/thirty-five-defendants-plead-guilty-in-wenzhou-gambling-crime-cases-linked-to-alvin-chau/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=br5EcsDNqx6ZNioA83pktqSTrmOAcQ2qY157ZtKkIi4%2BSFzNTlTETVttYE0splKcFMrfjZC5oy4NS9xvwOkTERy%2B%2F%2BPPq08WCfh5FXaJhxtAj8AcFDVJiWpGJc1pXD6e7AD7jA%2B3DWY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748dddd9de1cb51e-OSL
alt-svc: h2=":443"; ma=60
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.36 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashb593eb39329cfe060d55be5e4a5405e2 78e46c1028e9f94f8569303ad2d90d7df13a059a 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 04:07:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yB35bZ8dF3CUdpDYACy-u4xk0mnsckBmcGaRZQwbRRwg-vcmgRR1mQ==
Age: 3472
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash76d5eb597558e3dee0d99719d17e71e0 f3a0f3932fa8059f27dc9422d523b938fa9a7d09 d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21339
Expires: Sun, 11 Sep 2022 11:00:47 GMT
Date: Sun, 11 Sep 2022 05:05:08 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3WSBu6pUQEXD3KMV05Fm6s5R_X9noGOJM7RL99BsIi8bSLEvVD7Sig==
age: 78476
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 05:05:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.36 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 04:56:07 GMT
Expires: Sun, 11 Sep 2022 05:04:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OSH9hAFKz1az-CDJ4Dc8zWdcPDJvr4oVm_xh5vnfLorYGBprLrlmcA==
Age: 541
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash36fe04277220227ba5ecfe7d2ff1d9d9 2eb9f6560336248cc45c1cd66d87505b5ebdf5d4 94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4099
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Last-Modified: Sun, 11 Sep 2022 03:56:50 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 35.162.35.244 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.162.35.244:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uDWLxscdrrWaqT+xDkqO0A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W0SPCSYCS3Sm9quOqz47hwz36OM=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash65deebab57142db522e6c874673bdd9f bfd022181afaec5035f868ccd05fac58113f81dc 7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash3ce7f0561fadad98e67e6fcdf9c6b038 52575cdf6a43ed138bdcb484ae6c3bd73c82a793 2df4b3d4f143791a7aa35bf536cdab4feb25aa2a0c39caaf97e2d7497a0430e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1261
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Last-Modified: Sun, 11 Sep 2022 04:44:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash477fd76de0b69553430d504fe527cc06 88fe80a099e610212f27427ae6fd5b4e03b3df16 f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2964
Expires: Sun, 11 Sep 2022 05:54:33 GMT
Date: Sun, 11 Sep 2022 05:05:09 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash477fd76de0b69553430d504fe527cc06 88fe80a099e610212f27427ae6fd5b4e03b3df16 f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2964
Expires: Sun, 11 Sep 2022 05:54:33 GMT
Date: Sun, 11 Sep 2022 05:05:09 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a259cc7-2536-471f-9418-7af13fd48fcb.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a259cc7-2536-471f-9418-7af13fd48fcb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash00fa4b539031363ee66c3de2238bf884 35ff2e7a501fb51de4ee133583ead600a7c91900 a2482ba3cc3f4e5825b11bc898d2f93c12dda0b16283020d7063687ad4cbb02b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a259cc7-2536-471f-9418-7af13fd48fcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7510
x-amzn-requestid: b2688da7-c8b0-4473-aa85-7bcb0ef9a43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0X8pFu_IAMFahQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311a050-561e79597f853c4447f4af59;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 06:18:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UsDgp8PvjiZupF2aAvIwFhatk7f2qRhX5WQcB9tUn0lObJXMxvoTjg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:52 GMT
age: 26477
etag: "35ff2e7a501fb51de4ee133583ead600a7c91900"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 | 172.64.156.26 | 200 OK | 5.6 kB |
URL HTTP/2static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 IP172.64.156.26:0
Hash9dd55d8339ce429906c65f56d81fa701 8cecbeee6141ef0e708be8513f6e9049d9ac2ea9 f652f02835bc6a81740d7f87ee7407af613896dd0a143dacb93bd4dd2f8ca95c
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 05:05:09 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 748ddde30acc0afe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 2.2 kB |
IP142.250.74.3:0
File typegzip compressed data, from Unix\012- data Hash038c8ec2eb60c64ac6ba5545123bc773 7a2a00b68e052a30a0ac6a1936a2e8c594aae16f 85e78895f233b2c6ac2047430f48e70018798c23e7ff6aefedba9eeb519bb6ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575cbeea-0492-4077-860e-f45cbde03214.jpeg | 34.120.237.76 | 200 OK | 6.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575cbeea-0492-4077-860e-f45cbde03214.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash74325b22b17ccc8fc436ee168025db8a 5d9988e20cc17fe6d1e039245e6d3093d828a5f3 8c96153bcbb763de99f8880b5bade68d90f88cff57b8d5218bf209f5d582574e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575cbeea-0492-4077-860e-f45cbde03214.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6481
x-amzn-requestid: ea2eede0-9777-4af2-b5c3-71f4183e8ffc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBrqeGcyoAMFajw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f30f-72e823577e73983d407fc0ef;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DNWY9R1l37Gk7cpASRuNq4np5JraPUGhNvCIhdxW3wu9_14MRlToMQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 14:08:48 GMT
age: 53781
etag: "5d9988e20cc17fe6d1e039245e6d3093d828a5f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3d8bcb1-416c-44eb-ac9e-6196bed61280.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3d8bcb1-416c-44eb-ac9e-6196bed61280.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0119f7d5458bbad12e972d04221e49ea f05c46d74d8dfdd7fee763ec1e80e498399fffd2 eaefac45720584447a601fd90300464fbca5092117a670ac73be3b47884ba7fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3d8bcb1-416c-44eb-ac9e-6196bed61280.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8005
x-amzn-requestid: 5320b7ef-2f75-4eac-8d83-1bc96bd45257
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHwPNG8CoAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631960c7-41a84d81050c6a330140b9cb;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:25:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 1X-LfoG8xFWFoTGNlZ3xbETUL56rduGLwReSSEaTohdeZ_SWIf6ArQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:58 GMT
age: 26651
etag: "f05c46d74d8dfdd7fee763ec1e80e498399fffd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8092dc3d-1f2d-4e22-b40a-bf1c53ea42e6.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8092dc3d-1f2d-4e22-b40a-bf1c53ea42e6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash99bd16c51d8e4853d6ee542d2ec9fb22 a9f77626875d68e1aea2516f78d491eba9969e37 b360c3c9fa12dc4f57fdbfc88fe820ecee1c049f2d43f44cd38b740513d8e9f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8092dc3d-1f2d-4e22-b40a-bf1c53ea42e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10298
x-amzn-requestid: f2e2d57b-1f6f-401a-bf0d-ca5c05dd5e59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE-nmHBKIAMFrZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63184496-52d1369463143fc94894e347;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:13:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xW7Lli2tEVlm-nAL_JANbf0u4uZcPpslrE3rd2rWPoj_af_2WpiJ8Q==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:41:01 GMT
age: 26648
etag: "a9f77626875d68e1aea2516f78d491eba9969e37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.macaubusiness.com/thirty-five-defendants-plead-guilty-in-wenzhou-gambling-crime-cases-linked-to-alvin-chau/ | 172.67.144.144 | 200 OK | 42 kB |
URL HTTP/2www.macaubusiness.com/thirty-five-defendants-plead-guilty-in-wenzhou-gambling-crime-cases-linked-to-alvin-chau/ IP172.67.144.144:0
Hash957cd2e1f82cf8a7385fa8919f63fb98 a3de1b1e39fc4408ca105e24d27ba0138dee87a0 10a8f737dfd8111fb1156fcfc8ac75169fd779ba0a21b42c91ab1a1ee3a0ebe6
GET /thirty-five-defendants-plead-guilty-in-wenzhou-gambling-crime-cases-linked-to-alvin-chau/ HTTP/1.1
Host: www.macaubusiness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 11 Sep 2022 05:05:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="ALL DSP NID CURa ADMa DEVa HISa OTPa OUR NOR NAV DEM"
link: <https://www.macaubusiness.com/wp-json/>; rel="https://api.w.org/", <https://www.macaubusiness.com/?p=492216>; rel=shortlink
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cnJMlbs8OxgFY8BYKMJU5kzqdYFwrlcC8PGgy1NsJk00ZR%2BDT2%2Fw1ejZldRBxxWAG%2FVt6TUzEhlpsCBGdnh1%2F2oaXiSq3F1I97tAmGInw9s1uu%2BrYZiL8ChcK4OF7dM5v5RITcy4Tp0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 748ddddbad3ab515-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 9.2 kB |
IP142.250.74.3:0
File typegzip compressed data, from Unix\012- data Hash7636e834dab4c7ae24cdb0cff0df670a d6bd3c11f3875a8e27d4db771fcb0f8c205d7297 3d4b4330df76d2ae91f4211a7932279e5ee58d653b3006cd9019ddf832ee6981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash477fd76de0b69553430d504fe527cc06 88fe80a099e610212f27427ae6fd5b4e03b3df16 f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2964
Expires: Sun, 11 Sep 2022 05:54:33 GMT
Date: Sun, 11 Sep 2022 05:05:09 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbb1a86dcf94db0a29a6ebe21866766d4 b3491a6f12c97c8e1848a206a185fae29213c1e5 d05619e519fed6c0b6c0616cf540908006a68f127b25e38fb9d041dfe2546df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7519
x-amzn-requestid: bef8445b-1f8b-4c00-a9ad-b32fdefe3d13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3zXoHOhIAMFfNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312ff63-1a6c3ef64362a4d052a761ae;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:16:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Pzv2DSpqnXB0UP3C5EF-YUzRmveFwmal_8YyRfEuHuhZ1FcUWgHocg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 14:09:01 GMT
age: 53768
etag: "b3491a6f12c97c8e1848a206a185fae29213c1e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfea5dfc4a6a5093fd81899ee4a79d446 c893d7475856809a59486e0bcebd6d662d1fc56f 915fb97690be97d97cb298fc60ceb4cf7c3ed8fb437836beb2d590a8e238363c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e82f3ab-3fe6-43bc-932c-936ec582e5cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: df5e57d7-e54c-4b5a-aa1b-a9aee889842e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_Et0oAMFSjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-50d15bba03579a935342e22f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YRgmbTGaMvU9Kf47U90cPYhgpXaYgoNVA8ut6LOUStK4UfWahpSqVA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:41:08 GMT
age: 26641
etag: "c893d7475856809a59486e0bcebd6d662d1fc56f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-105852722-2 | 142.250.74.72 | 200 OK | 42 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-105852722-2 IP142.250.74.72:0
File typeASCII text, with very long lines (1615) Hash1e041240bbe89765c898fe8a6280d3b4 4524318ab7bc273bbfa34959fca30dca7273de9b e7be8c41feac6507cc1473ec6b5b9525ca682f2f06e8e06d6528056980a60ca0
GET /gtag/js?id=UA-105852722-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 11 Sep 2022 05:05:09 GMT
expires: Sun, 11 Sep 2022 05:05:09 GMT
cache-control: private, max-age=900
last-modified: Sun, 11 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41926
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashda7b1c24eee0db0c23872933557b7521 b8bc1215b4073784c048587e51a40152bd88c8ed 6ba38b5c68971135ed3f1fbe7afa658ce883240142a4244ce7d84fa251a64c3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 26 kB |
IP142.250.74.3:0
File typegzip compressed data, from Unix\012- data Hash7ea28c37e22762f460ab300da1f804d0 a9b76fa70c1bbfce1e91682cf66dcf9c5f5b2df4 5f04b17bddc9b9369c874141e4a864f82a53866339187ff270b94633ae4b0488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/recaptcha/api.js?render=6Lc2O5oUAAAAAKU6zY0OKurU2q-MCFM2Uf1vyAEe&ver=3.0 | 142.250.74.164 | 200 OK | 588 B |
URL HTTP/2www.google.com/recaptcha/api.js?render=6Lc2O5oUAAAAAKU6zY0OKurU2q-MCFM2Uf1vyAEe&ver=3.0 IP142.250.74.164:0
File typeASCII text, with very long lines (884), with no line terminators Hash32ccc25a3f1db36f681b3cbc26fb5bab 29d6d9c8cbb8c19be4f6601143829cac2e9319fa 1331585c9c82721556566f4a0377c37c473e20f317df9ed41f262c0daaf0a260
GET /recaptcha/api.js?render=6Lc2O5oUAAAAAKU6zY0OKurU2q-MCFM2Uf1vyAEe&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 11 Sep 2022 05:05:09 GMT
date: Sun, 11 Sep 2022 05:05:09 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 588
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 45 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Hash565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:01 GMT
expires: Wed, 06 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 419648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash57b75ea93de540716c45f1397781431a 431cc2c684385c4e46facd7210b5ac49b9dd09cc 4581d7dd422dc110fa7cfe667297cdb75d92a02ce7226db6db89448befa5b780
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.163 | 200 OK | 20 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.163:0
File typegzip compressed data, from Unix\012- data Hash71b3d74926ceae5828eebf1a3dd0aa71 8f58c705940ca00c625e8a559b647361ca700e62 dc592efe7b364c4ef3b0666e26f178afd0ba623f55a867cd5df072f757aaa34b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 293461
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 | 142.250.74.163 | 200 OK | 17 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data Hashabe083d96b58eb02ada8b7c30d7b09f2 61447d66d13a8c8f4335696777a85c438c46f749 db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:47:56 GMT
expires: Thu, 07 Sep 2023 19:47:56 GMT
cache-control: public, max-age=31536000
age: 292633
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 3.1 kB |
IP142.250.74.3:0
File typegzip compressed data, from Unix\012- data Hash360db5b5b8a740d429e7fbdd5e8c6e04 32aacb76affb722072e97a6cd4abcbc8309e68c7 3f7e62abc6696c47f192313cb1aaa3f1d9a7cb5ac41d353e06efe04f191cbd03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash43e44f5fe147594a8dd7e263eabca2ae 99a970746a212194f339b3fdc7df516af9f2ffdf f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 | 142.250.74.163 | 200 OK | 48 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data Hash17b406b7b8caa297435fa358e194f5a1 e2132f0e97781af56fa966c0fabb49132f2af203 84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 18:59:14 GMT
expires: Tue, 05 Sep 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 468356
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash43e44f5fe147594a8dd7e263eabca2ae 99a970746a212194f339b3fdc7df516af9f2ffdf f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 02:02:22 GMT
expires: Sun, 10 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 97368
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasha9e0210cc46cfa95694fd5fd135c3229 7328133fea61b4f4a9ce46d451bc5707bdd7bbe2 d27a77b4d4eb89e2bacc30e1b6f7499c4a0c9fd530b08c5f6d92deb495fb6d53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:10 GMT
Last-Modified: Sun, 11 Sep 2022 05:05:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash43e44f5fe147594a8dd7e263eabca2ae 99a970746a212194f339b3fdc7df516af9f2ffdf f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 47 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:0
File typegzip compressed data, from Unix\012- data Hash38a47e748e0b2cf231407cb787a814d6 cf17014dc8a89b96da9ae18475ed47ba4ce44ef1 2d9215e1a64770187c7da014615b24df809c5c10944f9ec6f981184b02aa844d
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 293462
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasha9e0210cc46cfa95694fd5fd135c3229 7328133fea61b4f4a9ce46d451bc5707bdd7bbe2 d27a77b4d4eb89e2bacc30e1b6f7499c4a0c9fd530b08c5f6d92deb495fb6d53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:10 GMT
Last-Modified: Sun, 11 Sep 2022 05:05:09 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash6c2fea93ba89de81c2b01aaca1a87835 0a7f50001f709285bc10f6ef044ef39a60535bff 6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/08/Alleg-266x150.jpg | 103.253.144.208 | 200 OK | 22 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/08/Alleg-266x150.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 95", baseline, precision 8, 266x150, components 3\012- data Hashc7e8f0368527fd44fbd0d472b5b42485 037b0e072a940629ba1bf30e4ac000d4969f2abf a9b962422b162c217031eee2eaf709f3b28887f3799c61ce80b6df230b73a2dc
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2022/08/Alleg-266x150.jpg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 21790
accept-ranges: bytes
last-modified: Thu, 18 Aug 2022 09:02:22 GMT
x-rgw-object-type: Normal
etag: "c7e8f0368527fd44fbd0d472b5b42485"
cache-control: max-age=31536000
expires: Fri, 18 Aug 2023 09:02:22 GMT
x-amz-request-id: tx000000000000038692813-00631d6c86-1cd0b581-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/07/WhatsApp-Image-2019-07-13-at-16.40.39-1-696x540.jpeg | 103.253.144.208 | 200 OK | 35 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/07/WhatsApp-Image-2019-07-13-at-16.40.39-1-696x540.jpeg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 696x540, components 3\012- data Hasha1fea6ed2a9e4142d0d4ce2ded26ac37 b15a7203b6700f02878a3e540e24b937aa103911 f0f7694fa60082b47224651f2779caf16013db5a2c9e659235f577b2d4b08e3b
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/07/WhatsApp-Image-2019-07-13-at-16.40.39-1-696x540.jpeg HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 35096
accept-ranges: bytes
last-modified: Wed, 06 Oct 2021 22:45:35 GMT
x-rgw-object-type: Normal
etag: "a1fea6ed2a9e4142d0d4ce2ded26ac37"
cache-control: max-age=31536000
expires: Thu, 06 Oct 2022 22:45:31 GMT
x-amz-request-id: tx0000000000000386b3065-00631d6c86-1cd07f07-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/09/Regina_IMG_9561-270x152.jpg | 103.253.144.208 | 200 OK | 26 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/09/Regina_IMG_9561-270x152.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 95", baseline, precision 8, 270x152, components 3\012- data Hashb8042c69d7b7fd508da12c46c702e750 eaa68cfe47ec06c1a8759cb87c5691716ac31e4d 3f2c4ebe8b9ff4bc84498effde33401b2a99dd1a5991820c67d4e353f50fd1b1
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2022/09/Regina_IMG_9561-270x152.jpg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 26311
accept-ranges: bytes
last-modified: Sun, 11 Sep 2022 04:52:26 GMT
x-rgw-object-type: Normal
etag: "b8042c69d7b7fd508da12c46c702e750"
cache-control: max-age=31536000
expires: Mon, 11 Sep 2023 04:52:26 GMT
x-amz-request-id: tx00000000000003869281b-00631d6c86-1cd0b581-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/Grand_Hyatt_Macau_logo3.png | 103.253.144.208 | 200 OK | 74 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/Grand_Hyatt_Macau_logo3.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 516 x 516, 8-bit/color RGBA, non-interlaced\012- data Hash661a9ab92639214ef5d53dd1a09904eb b3e569049ed7216c4aaa26113966af99bf8b36a6 f54badb5f90109e7e1c643789171d4242bc043f2c68aa528168d927aca0d078f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/Grand_Hyatt_Macau_logo3.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73802
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:28 GMT
x-rgw-object-type: Normal
etag: "661a9ab92639214ef5d53dd1a09904eb"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:27 GMT
x-amz-request-id: tx0000000000000386b30d4-00631d6c86-1cd07f07-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/06/CE06521F-95AF-48E6-B9D3-8F297612A3F2-266x150.jpeg | 103.253.144.208 | 200 OK | 41 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/06/CE06521F-95AF-48E6-B9D3-8F297612A3F2-266x150.jpeg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 95", baseline, precision 8, 266x150, components 3\012- data Hash163d1619e5ca8f3e7017023b22b7b7ba 5121efafa1b4395c9cd8df5ec54d5d0a84e24645 ac768dd28855541107d033b3c01100df17d85b34f65b5599768c7f0eecd89a3f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2022/06/CE06521F-95AF-48E6-B9D3-8F297612A3F2-266x150.jpeg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 40852
accept-ranges: bytes
last-modified: Thu, 16 Jun 2022 16:00:29 GMT
x-rgw-object-type: Normal
etag: "163d1619e5ca8f3e7017023b22b7b7ba"
cache-control: max-age=31536000
expires: Fri, 16 Jun 2023 16:00:29 GMT
x-amz-request-id: tx0000000000000386b306e-00631d6c86-1cd07f07-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/05/218EBC16-F3BF-4CF1-B97D-9D953D6223A4-266x150.jpeg | 103.253.144.208 | 200 OK | 43 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/05/218EBC16-F3BF-4CF1-B97D-9D953D6223A4-266x150.jpeg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 95", baseline, precision 8, 266x150, components 3\012- data Hashed82550276c03b9e32f8560444e24514 9bc2e235fc5e07c0b824af0c85fefbfa5962d521 64a52bd334a0aef02a4a66b3a225e3d3c0a6d502b491d1533d042305b01727f5
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2022/05/218EBC16-F3BF-4CF1-B97D-9D953D6223A4-266x150.jpeg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 43211
accept-ranges: bytes
last-modified: Thu, 19 May 2022 06:59:02 GMT
x-rgw-object-type: Normal
etag: "ed82550276c03b9e32f8560444e24514"
cache-control: max-age=31536000
expires: Fri, 19 May 2023 06:59:01 GMT
x-amz-request-id: tx00000000000003869281f-00631d6c86-1cd0b581-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/Altira_Macau_logo2.png | 103.253.144.208 | 200 OK | 97 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/Altira_Macau_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 461 x 461, 8-bit/color RGBA, non-interlaced\012- data Hash90e17d34d4ff1f59a5228e3f7225962c cf1ff9ddfa825aa9e424a5b3bdb6e8efe09b3060 7fa6340775ca40aa616195fbcff228e5964eee46020031ac3f9abe9048a8955d
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/Altira_Macau_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 96919
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:52:57 GMT
x-rgw-object-type: Normal
etag: "90e17d34d4ff1f59a5228e3f7225962c"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:52:57 GMT
x-amz-request-id: tx0000000000000386f7c48-00631d6c86-1ccfd03d-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/Galaxy_Macau_logo2.png | 103.253.144.208 | 200 OK | 62 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/Galaxy_Macau_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 268 x 268, 8-bit/color RGBA, non-interlaced\012- data Hashf31f460b7d5184017b7267b55d21cc4c d159196aff59a8a8185b55bdd013a509e5529071 b90524f8ecef34904ac64cfc4f62d5ea9f1f3e31abbc3eb8f631b04a798d62c4
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/Galaxy_Macau_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 61766
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:06 GMT
x-rgw-object-type: Normal
etag: "f31f460b7d5184017b7267b55d21cc4c"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:06 GMT
x-amz-request-id: tx0000000000000386d5b4b-00631d6c86-1cd01b00-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/Wynn_Macau_logo2.png | 103.253.144.208 | 200 OK | 67 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/Wynn_Macau_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 436 x 436, 8-bit/color RGBA, non-interlaced\012- data Hashb4c8f9aa2e137fd2414f5f150bf72cd5 60d96f4c8233d9782ba1a3fa116309fff9eae66f 825dfac3563427d1a571678dabc0ac1934726ac3e458c62a95c0c2c3b7f37b6e
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/Wynn_Macau_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 67219
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:54:07 GMT
x-rgw-object-type: Normal
etag: "b4c8f9aa2e137fd2414f5f150bf72cd5"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:54:06 GMT
x-amz-request-id: tx0000000000000386b30d3-00631d6c86-1cd07f07-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2020/11/Panoramic-panor%C3%A2mica-macau-patane-view-landscape-266x150.jpg | 103.253.144.208 | 200 OK | 12 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2020/11/Panoramic-panor%C3%A2mica-macau-patane-view-landscape-266x150.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 266x150, components 3\012- data Hash2b332ce85e1e84f94b202133cebc7d44 0258703b60ab24520259d745f0d7f6f6832e05b2 07af12b864f10d67aa750db8e85bd8be91690c6f51fa3b4a021a3f5a3072781a
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2020/11/Panoramic-panor%C3%A2mica-macau-patane-view-landscape-266x150.jpg HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 12164
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 14:55:35 GMT
x-rgw-object-type: Normal
etag: "2b332ce85e1e84f94b202133cebc7d44"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 14:55:34 GMT
x-amz-request-id: tx0000000000000386f7bd9-00631d6c86-1ccfd03d-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/MGM_Macau_logo2.png | 103.253.144.208 | 200 OK | 78 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/MGM_Macau_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hash9e371fdf02a26a8cc25716c494f16192 64d5b9e53cb3abe871ab8d0be2ff130a3869bf64 d96ad958a118282dd86a1246f46dc80700adc7face9476ef25c23ebba332e883
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/MGM_Macau_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 77954
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:54 GMT
x-rgw-object-type: Normal
etag: "9e371fdf02a26a8cc25716c494f16192"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:54 GMT
x-amz-request-id: tx0000000000000386b3067-00631d6c86-1cd07f07-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/Mandarin_Oriental_Macau_logo2.png | 103.253.144.208 | 200 OK | 83 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/Mandarin_Oriental_Macau_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 255 x 255, 8-bit/color RGBA, non-interlaced\012- data Hashe0b18e6d073371082ad37edfe4708207 55c2c91de2f917f13388f2901213f5d7f3dd4b02 0e3457abe591dd436bfb8ba9c4290cff7381d82a69b26f4890d5737f943c904d
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/Mandarin_Oriental_Macau_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 82906
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:45 GMT
x-rgw-object-type: Normal
etag: "e0b18e6d073371082ad37edfe4708207"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:45 GMT
x-amz-request-id: tx000000000000038692815-00631d6c86-1cd0b581-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/Grand_Coloane-Resort_logo2-1-696x135.png | 103.253.144.208 | 200 OK | 93 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/Grand_Coloane-Resort_logo2-1-696x135.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 696 x 135, 8-bit/color RGBA, non-interlaced\012- data Hash4f70352dc5d50128c1f915f40b4aa931 0c3288e2e8e1dc8830eccc92463e7498878857df 4d696a63641624f70ef1595864d777515ee49539f3b248ac25cd067a84bd39fb
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/Grand_Coloane-Resort_logo2-1-696x135.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 93186
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:23 GMT
x-rgw-object-type: Normal
etag: "4f70352dc5d50128c1f915f40b4aa931"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:18 GMT
x-amz-request-id: tx0000000000000386d5adf-00631d6c86-1cd01b00-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/StarWorld_logo2.png | 103.253.144.208 | 200 OK | 187 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/StarWorld_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 567 x 567, 8-bit/color RGBA, non-interlaced\012- data Size187 kB (186759 bytes) Hashbc5a1ed21765769a17646a4e18af0c68 497d097b732fcf71069a5ba0ea1c141fb8249208 6122942e044d8f3217729758e2c60c11fa6f9fd7222dd1b0ea5238bdf0810400
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/StarWorld_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 186759
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:59 GMT
x-rgw-object-type: Normal
etag: "bc5a1ed21765769a17646a4e18af0c68"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:59 GMT
x-amz-request-id: tx0000000000000386d5ade-00631d6c86-1cd01b00-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/Hotel_Lisboa_logo2.png | 103.253.144.208 | 200 OK | 66 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/Hotel_Lisboa_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hasha0552b841f7d319dec32a8854f8e7d4f 8151afb4bf9d6ef6a48989a60317d8bb58b84a50 01b9f422d1d560e5c6e5233ed71f749a14e725c193dcbca8d6ef180aadb5d245
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/Hotel_Lisboa_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 66234
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:42 GMT
x-rgw-object-type: Normal
etag: "a0552b841f7d319dec32a8854f8e7d4f"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:42 GMT
x-amz-request-id: tx0000000000000386f7bda-00631d6c86-1ccfd03d-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/12/MGM_Cotai_logo2.png | 103.253.144.208 | 200 OK | 71 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/12/MGM_Cotai_logo2.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data Hash3883c43e7aef73a457354a519f1f1245 305891ca23e3f763bfdffc5acf8d13f80a8be949 ff7924d27caa5df506940231dab0c8ba82f5b9745dba0f47a26b32d35cffdace
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/12/MGM_Cotai_logo2.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 70756
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 04:53:50 GMT
x-rgw-object-type: Normal
etag: "3883c43e7aef73a457354a519f1f1245"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 04:53:49 GMT
x-amz-request-id: tx000000000000038692814-00631d6c86-1cd0b581-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:10 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js | 142.250.74.163 | 200 OK | 157 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (539) Size157 kB (157166 bytes) Hash026df0dfed2314af108e700900288961 51c2a55bca7d65c549ef138d1294cac2aa98dd96 24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 387712
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash4a8b934802b39ce62326f039ac83cd96 dbfe44bfbec869b99291881ce7c2539d34d7ca9c c1d5a7058b585d2207c7162b7d0ed62443426b9b2e1262391ad3118884bda651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5967
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:12 GMT
Last-Modified: Sun, 11 Sep 2022 03:25:45 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
|
|
| connect.facebook.net/en_GB/sdk.js | 157.240.200.14 | 200 OK | 1.7 kB |
URL HTTP/2connect.facebook.net/en_GB/sdk.js IP157.240.200.14:0
File typeASCII text, with very long lines (1961) Hashf934920950b1fc3ae55c3561a08f284d 4eddc2afa159d0458b67e784284801e7da0410d3 91f22a4ac73262084a010c1a063749efcbc7ace9cb7566d67f40a34b1c3cf2ea
GET /en_GB/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8d01e19c54db0948c019f4dd70d51712
etag: "ea9ffc1880f6c97646f63145db3341c6"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 11 Sep 2022 05:10:14 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: +TSSCVCx/DrlXDVhoI8oTQ==
x-fb-debug: T1Fm+GkxK3zOSU+HReWPxfNt3J+ZNvj2yYZZ3YGU2VJZYfzwBqQlk3zyDumvRM6HxaZSnHrxttGLvPNWimGkQw==
content-length: 1687
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 05:05:12 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 2.5 kB |
IP93.184.220.29:0
File typegzip compressed data, from Unix\012- data Hashe6ef70c6b117530b07032665c72c8727 5902fc921a3150527d1d6d5b8b18a065aa35c0f4 3f31c630986d3608af3c97977eaf4fbfafae685ecb40a17eecf61c677883fdd1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5967
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:12 GMT
Last-Modified: Sun, 11 Sep 2022 03:25:45 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
|
|
| www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css | 142.250.74.163 | 200 OK | 24 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css IP142.250.74.163:0
File typeASCII text, with very long lines (52762), with no line terminators Hashf2d649025c814be9c33f166a5e04fe88 26bf59de631415927ba2c6c9e44fe9c763f95313 f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:21:28 GMT
expires: Wed, 06 Sep 2023 17:21:28 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/css
age: 387824
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js | 142.250.74.163 | 200 OK | 157 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js IP142.250.74.163:0
File typeASCII text, with very long lines (539) Size157 kB (157166 bytes) Hash026df0dfed2314af108e700900288961 51c2a55bca7d65c549ef138d1294cac2aa98dd96 24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 387712
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hash56f5d7f608e25d64207135f045f988cb 901eb59372ae330ae85e1384da93479b21ae1082 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sun, 11 Sep 2022 04:41:12 GMT
expires: Sun, 11 Sep 2022 06:41:12 GMT
cache-control: public, max-age=7200
age: 1440
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 15 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 59594
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 00:48:31 GMT
expires: Sat, 09 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 188201
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/03/318-x-174.png | 103.253.144.208 | 200 OK | 75 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/03/318-x-174.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 318 x 174, 8-bit/color RGBA, non-interlaced\012- data Hash51c2f9f8143e53d8410d95eb3d378bf7 fd195874b4821588ac1bc461c074ac232822c62a 4bcdd88e349c307cec3d0359ca3de0746994a4675553419fcca2f4a8155f58d1
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/03/318-x-174.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 74945
accept-ranges: bytes
last-modified: Wed, 06 Oct 2021 19:28:37 GMT
x-rgw-object-type: Normal
etag: "51c2f9f8143e53d8410d95eb3d378bf7"
cache-control: max-age=31536000
expires: Thu, 06 Oct 2022 19:28:37 GMT
x-amz-request-id: tx0000000000000386d5e8b-00631d6c88-1cd01b00-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.163 | 200 OK | 2.2 kB |
URL HTTP/2www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.163:0
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 20:02:15 GMT
expires: Mon, 12 Sep 2022 20:02:15 GMT
cache-control: public, max-age=604800
age: 464577
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2017/11/UPDATE_App_MBNews_Button.jpg | 103.253.144.208 | 200 OK | 584 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2017/11/UPDATE_App_MBNews_Button.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=4961, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=3508], baseline, precision 8, 1335x1572, components 3\012- data Size584 kB (584485 bytes) Hash0583c5338c432b8d86b6e65e9ee3ba2d 2367b601a8b8d276855e15116b54cbbbae90da9b b44520d8a44e1aa8798ce30b4ad814ed89a6a2c85d5c75e8a24da25483dc704c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2017/11/UPDATE_App_MBNews_Button.jpg HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 584485
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 12:26:15 GMT
x-rgw-object-type: Normal
etag: "0583c5338c432b8d86b6e65e9ee3ba2d"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 12:26:14 GMT
x-amz-request-id: tx0000000000000386f7f88-00631d6c88-1ccfd03d-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/04/Macau-Business-banner-Desktop-EN-C8-8-Sands-Shopping-Carnival-BNU-Channel-KV-.jpg | 103.253.144.208 | 200 OK | 188 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/04/Macau-Business-banner-Desktop-EN-C8-8-Sands-Shopping-Carnival-BNU-Channel-KV-.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1211x143, components 3\012- data Size188 kB (188512 bytes) Hasha2ccd1843098ddaa8d690413ee067c34 19ed993062cc1f428857950fbf97bb776bd18a6e 24c17300c6465c6aeaf8cc16e74bd3c201786c577527f094f2ddaf2d671d40fa
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2022/04/Macau-Business-banner-Desktop-EN-C8-8-Sands-Shopping-Carnival-BNU-Channel-KV-.jpg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 188512
accept-ranges: bytes
last-modified: Fri, 02 Sep 2022 11:00:15 GMT
x-rgw-object-type: Normal
etag: "a2ccd1843098ddaa8d690413ee067c34"
cache-control: max-age=31536000
expires: Sat, 02 Sep 2023 11:00:15 GMT
x-amz-request-id: tx0000000000000386f7f82-00631d6c88-1ccfd03d-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/06/Click-to-subscribe-our-daily-newsletter.png | 103.253.144.208 | 200 OK | 294 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/06/Click-to-subscribe-our-daily-newsletter.png IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typePNG image data, 1210 x 142, 8-bit/color RGBA, non-interlaced\012- data Size294 kB (294011 bytes) Hash26c582101d35fcb870d9841a375512e4 23916862263bbca96f397c5be7084f30556237d7 1314a99633d9489f40ab9efabddd521c57a7a4d161b9f0f00e67b183466033ae
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/06/Click-to-subscribe-our-daily-newsletter.png HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 294011
accept-ranges: bytes
last-modified: Wed, 06 Oct 2021 21:32:12 GMT
x-rgw-object-type: Normal
etag: "26c582101d35fcb870d9841a375512e4"
cache-control: max-age=31536000
expires: Thu, 06 Oct 2022 21:32:11 GMT
x-amz-request-id: tx0000000000000386f7f93-00631d6c88-1ccfd03d-sgp1b
content-type: image/png
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| mbusiness.sgp1.digitaloceanspaces.com/2019/03/GroupBanner01_mb.com_.jpg | 103.253.144.208 | 200 OK | 180 kB |
URL HTTP/2mbusiness.sgp1.digitaloceanspaces.com/2019/03/GroupBanner01_mb.com_.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 200x200, segment length 16, baseline, precision 8, 890x1048, components 3\012- data Size180 kB (179940 bytes) Hashcb5c4d05048faba3c790fd464aa1ec8e 191898b6a2051a279e8a42adab42e83e6bbc6b44 170765a76cc1ae75b865c24b40459122c44c126ad1de7bd5b718ac00c72cab82
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /2019/03/GroupBanner01_mb.com_.jpg HTTP/1.1
Host: mbusiness.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 179940
accept-ranges: bytes
last-modified: Thu, 07 Oct 2021 03:42:30 GMT
x-rgw-object-type: Normal
etag: "cb5c4d05048faba3c790fd464aa1ec8e"
cache-control: max-age=31536000
expires: Fri, 07 Oct 2022 03:42:30 GMT
x-amz-request-id: tx0000000000000386b341e-00631d6c88-1cd07f07-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2019/04/20211122_IFTM_MNA-online-banner_OP_2000x984px.jpg | 103.253.144.208 | 200 OK | 767 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2019/04/20211122_IFTM_MNA-online-banner_OP_2000x984px.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=4101, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=8334], baseline, precision 8, 2000x984, components 3\012- data Size767 kB (767227 bytes) Hash671492c59ac90088951ee2d48623ff44 462245e4494f2b841f524380984a5f4d0770d21f 8acba47dd2d9e53b8ae02f8c5733577b27884b1cf8a6be42eb420483dd88f220
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2019/04/20211122_IFTM_MNA-online-banner_OP_2000x984px.jpg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 767227
accept-ranges: bytes
last-modified: Tue, 23 Nov 2021 07:45:29 GMT
x-rgw-object-type: Normal
etag: "671492c59ac90088951ee2d48623ff44"
cache-control: max-age=31536000
expires: Wed, 23 Nov 2022 07:45:29 GMT
x-amz-request-id: tx000000000000038692bce-00631d6c88-1cd0b581-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2021/05/FMCC-Logo_updated-01.jpg | 103.253.144.208 | 200 OK | 214 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2021/05/FMCC-Logo_updated-01.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 2846x1600, components 3\012- data Size214 kB (213483 bytes) Hashe888ab43cbcea8dbd60925c37a2486d1 f9b50e86199e89f8afcf99b36c96073c0bccf4df dbf58eba5e1bb31e62204588b7fba959361c3110db4b0537e85a17903fff70e3
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2021/05/FMCC-Logo_updated-01.jpg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 213483
accept-ranges: bytes
last-modified: Thu, 28 Apr 2022 17:11:27 GMT
x-rgw-object-type: Normal
etag: "e888ab43cbcea8dbd60925c37a2486d1"
cache-control: max-age=31536000
expires: Fri, 28 Apr 2023 17:11:27 GMT
x-amz-request-id: tx0000000000000386f7f95-00631d6c88-1ccfd03d-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2019/10/28k-followers.jpg | 103.253.144.208 | 200 OK | 1.0 MB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2019/10/28k-followers.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1772, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1772], progressive, precision 8, 1502x1772, components 3\012- data Size1.0 MB (1012002 bytes) Hash1fa232302ca44f7623a6831bdaf7e117 d5ae71507f9a368a135eea59d1ab42b48f054b6f c6d56cee0c2bca8f5ea4a475a220a88dc892fa6abb2257b0645174e692b736d7
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2019/10/28k-followers.jpg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 1012002
accept-ranges: bytes
last-modified: Thu, 21 Jul 2022 05:21:30 GMT
x-rgw-object-type: Normal
etag: "1fa232302ca44f7623a6831bdaf7e117"
cache-control: max-age=31536000
expires: Fri, 21 Jul 2023 05:21:30 GMT
x-amz-request-id: tx0000000000000386d5e95-00631d6c88-1cd01b00-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/03/1210x142px.jpg | 103.253.144.208 | 200 OK | 514 kB |
URL HTTP/2hogo.sgp1.digitaloceanspaces.com/macaubusiness/wp-content/uploads/2022/03/1210x142px.jpg IP103.253.144.208:0 ASN#14061 DIGITALOCEAN-ASN
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 5042x593, components 3\012- data Size514 kB (514186 bytes) Hash6b760ba134f012674fd9683602240278 4a7879c38aa44d73228692dedaf5b09d52be87e1 51a4b05274cfa62cf249f916c3ef8c15a9d192c85504878a52503d3869b44871
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /macaubusiness/wp-content/uploads/2022/03/1210x142px.jpg HTTP/1.1
Host: hogo.sgp1.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 514186
accept-ranges: bytes
last-modified: Fri, 02 Sep 2022 04:13:32 GMT
x-rgw-object-type: Normal
etag: "6b760ba134f012674fd9683602240278"
cache-control: max-age=31536000
expires: Sat, 02 Sep 2023 04:13:32 GMT
x-amz-request-id: tx0000000000000386d5e8a-00631d6c88-1cd01b00-sgp1b
content-type: image/jpeg
date: Sun, 11 Sep 2022 05:05:12 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash55d14c90ec16748861894ce8f82eafcd f3ebe8972971c1201c1ec7c533f019f79c36cde5 fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-105852722-2&cid=744741101.1662872702&jid=1859772002&gjid=639950822&_gid=236546161.1662872702&_u=YEBAAUAAAAAAAC~&z=43303892 | 142.251.1.154 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-105852722-2&cid=744741101.1662872702&jid=1859772002&gjid=639950822&_gid=236546161.1662872702&_u=YEBAAUAAAAAAAC~&z=43303892 IP142.251.1.154:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-105852722-2&cid=744741101.1662872702&jid=1859772002&gjid=639950822&_gid=236546161.1662872702&_u=YEBAAUAAAAAAAC~&z=43303892 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.macaubusiness.com
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.macaubusiness.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 11 Sep 2022 05:05:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash55d14c90ec16748861894ce8f82eafcd f3ebe8972971c1201c1ec7c533f019f79c36cde5 fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 05:05:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7a9494e-0e8b-451b-806d-72da68860cab.jpeg | 34.120.237.76 | 200 OK | 17 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7a9494e-0e8b-451b-806d-72da68860cab.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4c65d6ae04a64d9d01439fb4fca3f017 5ce0bc5b075b97639453d67d4f3cea61289b7698 eb48687a5974542d11882f854a86ff083528957b0fbc61c797167d8f04e0ffa9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7a9494e-0e8b-451b-806d-72da68860cab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 16983
x-amzn-requestid: ed588125-de1d-47ae-a5d5-81ab8c2a8105
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YRTpmH69oAMFYAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d330a-46ea16040beedf3903d87ec3;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 00:59:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: iBwfZ5Vm2pbcO9zLGNtT2c0n6oZ9u-JjgIvbG47d4s6049ehYmXZ4w==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 04:26:46 GMT
age: 2310
etag: "5ce0bc5b075b97639453d67d4f3cea61289b7698"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=20201014 | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=20201014 IP142.250.74.10:0
GET /css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=20201014 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.macaubusiness.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 05:05:09 GMT
date: Sun, 11 Sep 2022 05:05:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|