Report - ufa168luck.com/

Report Overview

Submitted URL
ufa168luck.com/
IP
172.67.147.134
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-31 20:03:36
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	343 B	699 B	142.250.74.131
unpkg.com	11693	2016-01-08T00:26:01Z	2023-03-13T08:09:51Z	2.3 kB	816 kB	104.16.124.175
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	34.210.191.84
use.fontawesome.com	942	2017-01-30T05:43:25Z	2023-03-13T05:09:17Z	396 B	856 B	172.64.133.15
ufa168luck.com	unknown	2020-03-28T09:12:39Z	2022-11-16T02:53:01Z	790 B	1.3 kB	172.67.147.134
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	2.3 kB	93.184.220.29
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-13T06:17:54Z	1.3 kB	49 kB	151.101.65.229
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	68 kB	34.120.237.76
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	1.6 kB	20 kB	104.17.25.14
cdn.rawgit.com	8186	2017-01-30T06:42:07Z	2023-03-13T05:45:05Z	392 B	1.1 kB	194.242.11.186
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	390 B	32 kB	216.58.207.202
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	432 B	81 kB	142.250.74.106
ipapi.co	195030	2017-01-31T10:07:01Z	2023-03-13T05:43:34Z	838 B	63 kB	104.26.9.44

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-31 20:03:47	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)
2023-01-31 20:03:47	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/numeral.js/2.0.6/numeral.min.js	11 kB	2023-03-07	2024-02-23
Pretty URL cdnjs.cloudflare.com/ajax/libs/numeral.js/2.0.6/numeral.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:01:50 Last Seen2024-02-23 12:56:22 Times Seen389 Hash 9a47e71ab1b7f7dd9100b32acc36f8d5 26f6e589446163bb46e4eeeb3a50bc45951c86cd 2e51d5239ad46aeb9d33965c65a0fa8473c72ab03b09279f1c79ca82afbf0197 Loading...

	ufa168luck.com/member/uscript/login.js?2023030325	4.8 kB	2023-03-13	2024-02-05
Pretty URL ufa168luck.com/member/uscript/login.js?2023030325 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:58 Last Seen2024-02-05 04:45:32 Times Seen52 Hash 394eaac1b1d0064bd5f2e67a2a84ab98 07a23fa170ef0b590e6c9e2847c05759f9abbb32 0ed94b430988e8acd10b423cd1eb285362c8c7271e52179f5cf7ec277dfe957c Loading...

	ufa168luck.com/	15 B	2023-03-07	2024-04-04
Pretty URL ufa168luck.com/ IP 172.67.147.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:11 Last Seen2024-04-04 17:04:04 Times Seen213 Hash 4b4f9f782c285833236d15e3d93bbcc3 fbc800cd79b73943ba80566c48a6705e6a8e4cce 1b7ebbae9e4d4322c63e662485714eecf1dc2406f66025221859231120977c50 Loading...

	unpkg.com/aos@2.3.1/dist/aos.js	14 kB	2023-03-07	2024-04-24
Pretty URL unpkg.com/aos@2.3.1/dist/aos.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:45 Last Seen2024-04-24 12:08:04 Times Seen4287 Hash 70b4897108480dbe11c443c2ab7679c9 70dbfd38a0f1fc3b1a7d9fadab58786484c34f17 f268612ba59ead1b24353bb77d66783bcc435aff1c22be5f93c40bac3869968e Loading...

	cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js	19 kB	2023-03-07	2024-04-22
Pretty URL cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:52 Last Seen2024-04-22 08:03:57 Times Seen2341 Hash 541aecc95a7faeef0fc27558070f3647 0ec7ca4778ba3ccb4d1b1688094720834fbe9ed3 f395875eb5d58c5128c434812cd0a53d438b11536f7fd1577077d8a5c612e1fd Loading...

	unpkg.com/swiper/swiper-bundle.min.js	144 kB	2023-03-13	2024-04-23
Pretty URL unpkg.com/swiper/swiper-bundle.min.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:29:47 Last Seen2024-04-23 20:27:21 Times Seen3314 Hash 24fd8f796609d79fcb7b6e5ae754433b f4dc8d46086739c58121185b2d0f4e190710f11b f645b12f27c4e9c1210d5725cfa894b86464372e7b1becbe47126a5fe82f9ade Loading...

	ufa168luck.com/member/uscript/register.js?2023030325	15 kB	2023-03-13	2024-02-05
Pretty URL ufa168luck.com/member/uscript/register.js?2023030325 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:58 Last Seen2024-02-05 04:45:33 Times Seen38 Hash a72194255c7c69bc2ed6188ff1835d88 f73a9c6963067419a81cbb366ebd156eed5e69fd 5c3db468f5a93e387984f535b192c41960293c8f16b3a2098af4ecf138e29db1 Loading...

	ufa168luck.com/	192 B	2023-03-13	2024-02-05
Pretty URL ufa168luck.com/ IP 172.67.147.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:58 Last Seen2024-02-05 04:45:32 Times Seen44 Hash ac20e5eec1709aef08689a310e5b4d62 a7a53f1dbe1fb38399a06c6d2bad718bfe19091a 6a28a9873aadc092f454c79071b89518993ef1f6fcea1040d53dda2cf74c3870 Loading...

	ufa168luck.com/	1.4 kB	2023-03-13	2023-03-13
Pretty URL ufa168luck.com/ IP 172.67.147.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:58 Last Seen2023-03-13 13:33:58 Times Seen1 Hash 892eb63f79c14d52308a20d50593c23d a1ed56b8e3d64ab176f486eaaa700a34e3770ef9 c61f10701fc798f0cff200f884cf32895ca12d717a140a3b8aa09af38b55b93f Loading...

	cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js	11 kB	2023-03-07	2024-04-21
Pretty URL cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:42 Last Seen2024-04-21 00:54:15 Times Seen706 Hash 27784b7376dd992368c71b6c5559f358 f86d2ac408c4de0d5281cf91d6ddfb93e5e5d2ff 11be927cda59c8b6019ebbea838285c5beaf21183ea4b83dbd4e4fbf9413ce4a Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js	59 kB	2023-03-07	2024-04-23
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:52 Last Seen2024-04-23 21:10:43 Times Seen3270 Hash 259e416ef6833be43801b8b68a93b008 19080c3b817985336aab5e1ce6925c99803f2efd 70c3d690bdc5ce3b9a1527c46044989a3176e610882fa99f4523e75bc395bcce Loading...

	cdn.rawgit.com/davidshimjs/qrcodejs/gh-pages/qrcode.min.js	20 kB	2023-03-07	2024-04-24
Pretty URL cdn.rawgit.com/davidshimjs/qrcodejs/gh-pages/qrcode.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:56 Last Seen2024-04-24 11:21:46 Times Seen4791 Hash 517b55d3688ce9ef1085a3d9632bcb97 2d06c1f823f34c19981c6ae0b0eb0f5861c5e14b c541ef06327885a8415bca8df6071e14189b4855336def4f36db54bde8484f36 Loading...

	ufa168luck.com/member/ascript/mark_loadme.js?2023030325	14 kB	2023-03-13	2023-07-12
Pretty URL ufa168luck.com/member/ascript/mark_loadme.js?2023030325 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:59 Last Seen2023-07-12 19:11:22 Times Seen12 Hash 107e1124dc1cb7543649d688b47a4dc1 c160bfd27a171dda471f7b46f2e353f4d41d2a48 15633da3b196b2806b49ea74dac7c9b6d5aa3cd57f19ceb56ed8245c93fab55a Loading...

	ufa168luck.com/member/ascript/mark_control.js?2023030325	27 kB	2023-03-13	2023-03-26
Pretty URL ufa168luck.com/member/ascript/mark_control.js?2023030325 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:59 Last Seen2023-03-26 10:00:12 Times Seen3 Hash fcffe5f72eb5aa5637e1198d4a280c98 6f8f1871f0647475b2fc33bc09945a0bef6f8f15 427aa04214dc77207aa4cf562187c7ee6e6a74401676eb692a743f86dc1839fd Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.js	28 kB	2023-03-07	2024-04-23
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:50 Last Seen2024-04-23 15:09:35 Times Seen616 Hash 7cb6c13bd7fe931f3d0321a83267941c bdacca6dc640c5ab14653119b26379547a71a174 d14cf552496ba4036ec2a27b334679e2388e13f199c25a76101482eac970ea3f Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-24 12:42:58 Times Seen260931 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	ufa168luck.com/member/ascript/countup.js?2023030325	5.0 kB	2023-03-13	2024-02-05
Pretty URL ufa168luck.com/member/ascript/countup.js?2023030325 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:59 Last Seen2024-02-05 04:45:32 Times Seen45 Hash 6e1e1f77915b9959de0d3ec3d8deb4b2 3e6684f4cc891fb7b22962b9e4239cb19edfa68f d367e8c74d5a0f9ef4cf78d839f4b1d70a6f391e3b6cf37b2e43ba46c5d680cc Loading...

	ufa168luck.com/	1.4 kB	2023-03-13	2024-01-27
Pretty URL ufa168luck.com/ IP 172.67.147.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:59 Last Seen2024-01-27 19:27:32 Times Seen19 Hash 6db64c0408f9cb325d7f031ebe05f834 085291de5bbca11ffba710fb43c376424f8494bc 42b6ca486da9588257554a4b8c3a17b125b9e46b2cbc6b5f8d5b6115678b81c5 Loading...

	http:blank	580 B	2023-03-13	2023-03-13
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:33:59 Last Seen2023-03-13 13:33:59 Times Seen1 Hash 9052607fd7def40e2e4a7d56df09c059 11fe4c539904270c000793a8de4260a515fbf3c7 92a72f54fd0244b2bd3953ab95609df1af8f0cc642beb19ddcbccad7e30fb9a0 Loading...

HTTP Transactions (46)

	URL	IP	Response	Size
	ufa168luck.com/	172.67.147.134	301 Moved Permanently	0 B
URL HTTP/1.1 ufa168luck.com/ IP 172.67.147.134:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: ufa168luck.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Tue, 31 Jan 2023 20:03:24 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Tue, 31 Jan 2023 21:03:24 GMT Location: https://ufa168luck.com/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Zt49NL%2FWlzoAegrZPBRHu%2BUrF6FJBMWE6KtIftLd5nDewccbn8pELIJqVwIhqqE1coq7yP6hk2kk%2FK6sKegcYO6F%2B5J0PpT6CYMeTvSx%2F1PQCuttzb6JzQ7l7tsVaXNYQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 79250cedca09b51d-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 0c35c3ec659d3a26ea97e68d787bb043 d97e3672244efec5b7814f2d8a734cd1a9387854 4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4147 Expires: Tue, 31 Jan 2023 21:12:31 GMT Date: Tue, 31 Jan 2023 20:03:24 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7e05c8461bd2dc5a149f71e2c465ea29 705983959c887e243cb55a8a1796757b579ee977 4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2271 Expires: Tue, 31 Jan 2023 20:41:15 GMT Date: Tue, 31 Jan 2023 20:03:24 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 31 Jan 2023 19:43:19 GMT content-type: application/json age: 1205 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 09ee4b0fe6cf4ca5ed31b24452338d00 7e62b6e20f0d4737f4a8d94f9818a0883027839e 56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7463 Expires: Tue, 31 Jan 2023 22:07:47 GMT Date: Tue, 31 Jan 2023 20:03:24 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: Wq+gh/H6+fKwrj6dd1uAOKjRRdseEsbQNnHVbnygdzJvSrUqkBnpUt59Ztxn2cW0cu5faeb9d+M= x-amz-request-id: BNGA09M59FDJNMJA content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 31 Jan 2023 19:51:17 GMT age: 727 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 31 Jan 2023 20:03:24 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 31 Jan 2023 19:41:42 GMT age: 1303 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a 86f640e134a741a0f906a8e3a0f5c6659dd0e394 a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E" Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2525 Expires: Tue, 31 Jan 2023 20:45:30 GMT Date: Tue, 31 Jan 2023 20:03:25 GMT Connection: keep-alive`

	cdnjs.cloudflare.com/ajax/libs/numeral.js/2.0.6/numeral.min.js	104.17.25.14	200 OK	3.6 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/numeral.js/2.0.6/numeral.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (11307) Size 3.6 kB (3639 bytes) Hash 9c256d3f1c77cdd648a7c80cf67c53f6 acd5fbf57a5e29f0cc801622c74b43af8637eacd fffd50d827afed243672af4e321706fd14afcef8f03da79fb60d3d167eea558c HTTP Headers `GET /ajax/libs/numeral.js/2.0.6/numeral.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: application/javascript; charset=utf-8 content-length: 3639 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03f2b-2cb4" last-modified: Mon, 04 May 2020 16:13:31 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 8998581 expires: Sun, 21 Jan 2024 20:03:25 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vgZuDevu2%2FzJL6U8MWDLHzTyDgSmzYP9yMDTUCydFGjBr98j0qPMxeK0OyBsXLUEUBAj0RN4z4ij3zyUag5m%2BBZIVLtj6sgMZP%2BCaCmWTnb4BltkcIMAGGXP30bM3MKk5soHeIKm"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 79250cf47c9a0b3d-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.js	104.17.25.14	200 OK	6.4 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (27605) Size 6.4 kB (6362 bytes) Hash 605ded73021977319ac6e0ec73d764c9 b3c3248ea835fb413836d6adb30732a762c9e87d bd656cd4a6496fb09dc41b1773c060564d4c521b458a4c435b7e18ce1ec97503 HTTP Headers `GET /ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: application/javascript; charset=utf-8 content-length: 6362 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec1-6cf8" last-modified: Mon, 04 May 2020 16:11:45 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 4325473 expires: Sun, 21 Jan 2024 20:03:25 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37fa9G7cZss69NURUjL7%2BQsQQuKM4SQpJtnvNPMnQ%2F1u5xpZC2Zo2EhGeFhFBxZZ4Fh9h30RTSD7yXZu2MbwX3%2FIiY3hVF8bkqutQankpdRb8NBf%2Bgl8LCGplRPfyeDY3bxI32yJ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 79250cf47ca10b3d-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js	104.17.25.14	200 OK	3.0 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/clipboard.js/2.0.8/clipboard.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (10584) Size 3.0 kB (3000 bytes) Hash e34a4db0b42ca907e0b7a56cd4b145ec 2dc36a7dcdfc42d122b23ef91483d27865c4285f 4b2a908e8d2c23d19da5e9ef4c6c77e7c6e8823b7aeb93233723f366ff6d217a HTTP Headers `GET /ajax/libs/clipboard.js/2.0.8/clipboard.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: application/javascript; charset=utf-8 content-length: 3000 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "6049431e-29b4" last-modified: Wed, 10 Mar 2021 22:07:26 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 5276725 expires: Sun, 21 Jan 2024 20:03:25 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4nak5qsg3R5fcNfzzTV5bgffRgBl%2FtqKJrMXq%2BW3hlpYI7wdwzSyH6YeNDJdmPv1u01shtcL1cdpai36Ji98aAKc6xIkGIcPBweT9kKl0L5qCxsGI0TTNg2mYCeN9BSW7xyKXQaA"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 79250cf48cc20b3d-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.css	104.17.25.14	200 OK	2.9 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.css IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (22251) Size 2.9 kB (2884 bytes) Hash c95836475d24dd21df887fd9775bd278 d2bc2d6ecba53190a2a1e38cdf846894dfd07471 ba23f357f2043203399507f85be70057566103b77f2ab757eff8cb0d86286857 HTTP Headers `GET /ajax/libs/jquery-confirm/3.3.2/jquery-confirm.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: text/css; charset=utf-8 content-length: 2884 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec1-580a" last-modified: Mon, 04 May 2020 16:11:45 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 4321499 expires: Sun, 21 Jan 2024 20:03:25 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7yjmRMEb0LNTDdwKCxznQ4%2BoPPeLsK4MTNOrQUKTdb8F%2BD%2BqnjHVUTrcXYtpp7Xn6dKmX%2BIob4%2F2bMllNQLrf%2BR1czLAV%2F7MirDHa8piHAuzYg6oqabf5k0EyWKa%2F7%2FC6fsunF5K"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 79250cf49cdf0b3d-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash d35f396d9527b37a17f37494bfd430da aca6151dab60057d9d0cc536f1934b2469073dc2 3174f21f094562685047a983e6632473cc6941fb9ec719f2e6bd30fac9a2d959 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3893 Cache-Control: max-age=148097 Content-Type: application/ocsp-response Date: Tue, 31 Jan 2023 20:03:25 GMT Etag: "63d90459-118" Expires: Thu, 02 Feb 2023 13:11:42 GMT Last-Modified: Tue, 31 Jan 2023 12:06:49 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 280`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a03856b4377595a04642627c46d849fa d3b64e3b9e451a211853cc264c70f8478ea3f4f6 e26ac5db86757c6e0353e2a280d6f886452cacb6d7cadbe51bff52859da05803 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E26AC5DB86757C6E0353E2A280D6F886452CACB6D7CADBE51BFF52859DA05803" Last-Modified: Sun, 29 Jan 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18684 Expires: Wed, 01 Feb 2023 01:14:49 GMT Date: Tue, 31 Jan 2023 20:03:25 GMT Connection: keep-alive`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 40bac282ee9730b7a7fde839fcf58736 be00063ec5c760560f34663d0a6a9cad87cfebe4 45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 31 Jan 2023 20:03:25 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js	151.101.65.229	200 OK	6.7 kB
URL HTTP/2 cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js IP 151.101.65.229:0 ASN #54113 FASTLY File type ASCII text, with very long lines (18706) Size 6.7 kB (6713 bytes) Hash af62a06145a499ced91af8684d652c30 dc727a6c7630d7414d1499a2c36b7c8fb0a9126c c2a776c4bc325950b57ced81960260e02df5c2c23caa12c221ea230b72bfb8d9 HTTP Headers `GET /npm/@popperjs/core@2.10.2/dist/umd/popper.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ufa168luck.com Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 2.10.2 x-jsd-version-type: version etag: W/"496b-DsfKR3i6PMtNGxaICUcgg0++ntM" content-encoding: gzip accept-ranges: bytes date: Tue, 31 Jan 2023 20:03:25 GMT age: 6636123 x-served-by: cache-fra-eddf8230067-FRA, cache-bma1679-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 6713 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js	151.101.65.229	200 OK	16 kB
URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js IP 151.101.65.229:0 ASN #54113 FASTLY File type ASCII text, with very long lines (58940) Size 16 kB (16337 bytes) Hash 91c21574e43063d0417cf89a625f5cc8 c4f08091738869a949c33566f06ae72a34bf5e50 cf0cae076ca89b7a8b14200227016f507749c915e5bee173717eba8268318cbb HTTP Headers `GET /npm/bootstrap@5.1.3/dist/js/bootstrap.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ufa168luck.com Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 5.1.3 x-jsd-version-type: version etag: W/"e753-GQgMO4F5hTNqq14c5pJcmYA/Lv0" content-encoding: gzip accept-ranges: bytes date: Tue, 31 Jan 2023 20:03:25 GMT age: 6630704 x-served-by: cache-fra-eddf8230132-FRA, cache-bma1679-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 16337 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css	151.101.65.229	200 OK	24 kB
URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css IP 151.101.65.229:0 ASN #54113 FASTLY File type Unicode text, UTF-8 text, with very long lines (65306) Size 24 kB (23938 bytes) Hash 57a992194d8a5b4bbd4ade561fd348bb bb66f00fe168c6df50af51abdededdfceb15c59f be95ec6ab71f5fa87401a698cb9566490258fa9012bb0e8467920b0f74163a0a HTTP Headers `GET /npm/bootstrap@5.1.3/dist/css/bootstrap.min.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ufa168luck.com Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: text/css; charset=utf-8 x-jsd-version: 5.1.3 x-jsd-version-type: version etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0" content-encoding: gzip accept-ranges: bytes date: Tue, 31 Jan 2023 20:03:25 GMT age: 23997561 x-served-by: cache-fra19136-FRA, cache-bma1679-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 23938 X-Firefox-Spdy: h2

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	216.58.207.202	200 OK	31 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 216.58.207.202:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (65447) Size 31 kB (31017 bytes) Hash 7808e0e4b7a714230373852158500533 4a79d18722a68a2f38d52e2d3a11b550bdd30b3c 8ba5796bee6a065b8b31895e7e8d59ba564cfd36d2ce056e327588e67736f054 HTTP Headers `GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 31017 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 27 Jan 2023 01:41:04 GMT expires: Sat, 27 Jan 2024 01:41:04 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Wed, 10 Mar 2021 14:28:09 GMT content-type: text/javascript; charset=UTF-8 age: 411741 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	unpkg.com/aos@2.3.1/dist/aos.css	104.16.124.175	200 OK	3.1 kB
URL HTTP/2 unpkg.com/aos@2.3.1/dist/aos.css IP 104.16.124.175:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (26053), with no line terminators Size 3.1 kB (3071 bytes) Hash c85c36e5b5cd9208db0629275b39fda4 b3326d95726c5dcc259b260af620a6a256705fbd 7ac2e35983f1bd35ddd367a38365242dcdf010cddb6b6e066115a5926616a1f9 HTTP Headers `GET /aos@2.3.1/dist/aos.css HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: text/css; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Thu, 17 May 2018 22:11:13 GMT etag: W/"65c5-BVfTdFS2f0LyyxAeV+UHD7EZNXA" via: 1.1 fly.io fly-request-id: 01G754J040XBCARD93ACQA76A4-fra cf-cache-status: HIT age: 18239078 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 79250cf50d1cfabc-OSL content-encoding: br X-Firefox-Spdy: h2

	push.services.mozilla.com/	34.210.191.84	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.210.191.84:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: dgFtDNXGdbqIvPvFAMgssg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: lTAVlBkJetgoFC5/Vvsjj+fnGc8=`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash d35f396d9527b37a17f37494bfd430da aca6151dab60057d9d0cc536f1934b2469073dc2 3174f21f094562685047a983e6632473cc6941fb9ec719f2e6bd30fac9a2d959 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3893 Cache-Control: max-age=148097 Content-Type: application/ocsp-response Date: Tue, 31 Jan 2023 20:03:25 GMT Etag: "63d90459-118" Expires: Thu, 02 Feb 2023 13:11:42 GMT Last-Modified: Tue, 31 Jan 2023 12:06:49 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 280`

	unpkg.com/swiper/swiper-bundle.min.css	104.16.124.175	302 Found	5.1 kB
URL HTTP/2 unpkg.com/swiper/swiper-bundle.min.css IP 104.16.124.175:0 ASN #13335 CLOUDFLARENET File type data Size 5.1 kB (5095 bytes) Hash f99b70a56d8a1fa1750553431a689f84 d751ce723d7890a3bd259566c38bc90df74b8d5c e626a81c0fd122f6bc381af4fad53863385233fd01ab3f5f7fd1f982972e207f HTTP Headers `GET /swiper/swiper-bundle.min.css HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 302 Found date: Tue, 31 Jan 2023 20:03:25 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /swiper@8.4.7/swiper-bundle.min.css vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01GR4PMAN72ZFB74DMDSS3D4PH-fra cf-cache-status: HIT age: 207 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 79250cf4fd0dfabc-OSL X-Firefox-Spdy: h2

	cdn.rawgit.com/davidshimjs/qrcodejs/gh-pages/qrcode.min.js	194.242.11.186	301 Moved Permanently	105 B
URL HTTP/2 cdn.rawgit.com/davidshimjs/qrcodejs/gh-pages/qrcode.min.js IP 194.242.11.186:0 ASN #34989 ServeTheWorld AS File type ASCII text, with no line terminators Size 105 B (105 bytes) Hash ea5686a7f639be39ce482e5de1f2dbea d519aa5d1d66dda8b00b26de74f64bafff46cf31 c946dafa072278cc4cfb32032caee448bed315fe54acf232f3949daf89064ae0 HTTP Headers `GET /davidshimjs/qrcodejs/gh-pages/qrcode.min.js HTTP/1.1 Host: cdn.rawgit.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 301 Moved Permanently date: Tue, 31 Jan 2023 20:03:25 GMT content-type: text/plain; charset=utf-8 content-length: 105 location: https://cdn.jsdelivr.net/gh/davidshimjs/qrcodejs@gh-pages/qrcode.min.js server: BunnyCDN-NO1-830 cdn-pullzone: 201235 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: NO vary: Accept-Encoding access-control-allow-origin: * access-control-expose-headers: * age: 40203 alt-svc: h3=":443", h3-29=":443", h3-27=":443" cache-control: public, max-age=2592000 cdn-cachedat: 01/31/2023 20:03:25 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload x-served-by: cache-fra-eddf8230098-FRA, cache-chi-kigq8000030-CHI x-cache: MISS, HIT cdn-proxyver: 1.03 cdn-requestpullcode: 301 cdn-requestpullsuccess: True cdn-edgestorageid: 830 cdn-status: 301 cdn-requestid: 2ce10f7b6b785f5b28feb9d6834d1c0b cdn-cache: EXPIRED X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7765 Expires: Tue, 31 Jan 2023 22:12:52 GMT Date: Tue, 31 Jan 2023 20:03:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7765 Expires: Tue, 31 Jan 2023 22:12:52 GMT Date: Tue, 31 Jan 2023 20:03:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7765 Expires: Tue, 31 Jan 2023 22:12:52 GMT Date: Tue, 31 Jan 2023 20:03:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7765 Expires: Tue, 31 Jan 2023 22:12:52 GMT Date: Tue, 31 Jan 2023 20:03:27 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11129 bytes) Hash 2797bfd35b7ec24888de84be14f7f2ec 8e315ac5856967286eaa8769e081d827fb4ca39e b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11129 x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ffDBZGRPoAMFedg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 03:50:52 GMT age: 58355 etag: "8e315ac5856967286eaa8769e081d827fb4ca39e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg	34.120.237.76	200 OK	6.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.8 kB (6844 bytes) Hash 976dda397f9292a498ca9db5599c0378 dad9e9c3462907a2475046aee36d57f8309cd44e 7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6844 x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: flZsxH0YIAMF9ew= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: oLMUuQVwUyKMuYAvTkA4wlVDb3-kZjStTJFfUZRb7JwKcK11waY0kQ== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 01:42:39 GMT age: 66048 etag: "dad9e9c3462907a2475046aee36d57f8309cd44e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10997 bytes) Hash 65c02d8a1b0d6a210cb2a649c5c67469 027dbc7a104c922904f067ed15d696c363c11774 89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10997 x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fhj30FX7IAMFa5w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: _xCzARAxn6PB9wrQAL98hWvnUxQOocZFqMoS2l_CoIzOJC18bXQuSQ== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google date: Mon, 30 Jan 2023 21:53:32 GMT age: 79795 etag: "027dbc7a104c922904f067ed15d696c363c11774" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8558 bytes) Hash e6f9ffb8f9e99229b45ca5fdb84ce7d5 04577ad69ee9749b14382254eb5bbf0e1edcd7fa 6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8558 x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ffB_BFA8IAMFyvA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: R29JYq4Z8V_Xuq2no0bKxk1K6h2PmTO5OSxzMa4zppDVk3j9rO9aTw== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 03:24:36 GMT age: 59931 etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (9987 bytes) Hash 2c4934be94898028e2ab696561b51462 6cf734e2d29938688913daacfb75506d8e004a94 239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9987 x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: flYlPF9uIAMFXMg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Gif_csWkacU59D_hnOrJpK6u2aPI8Ylf2JyQEJZ2RLNMCrXSmmMa9w== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 01:56:35 GMT age: 65212 etag: "6cf734e2d29938688913daacfb75506d8e004a94" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (13853 bytes) Hash d957012d3e2b8c3bc0eefe11d66e8554 1959fdd94846fa3791c4890578dd15336b909dcc a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13853 x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fk3zzF4hIAMFwWg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: lUGjUSIkoacdmaO1jnMwIuNMONhjyVfAIcTQ3B5d5da_g9eEnCtW7g== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Mon, 30 Jan 2023 21:48:17 GMT age: 80110 etag: "1959fdd94846fa3791c4890578dd15336b909dcc" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Kanit:wght@200;300;400;500;600;700;800&display=swap	142.250.74.106	200 OK	80 kB
URL HTTP/2 fonts.googleapis.com/css2?family=Kanit:wght@200;300;400;500;600;700;800&display=swap IP 142.250.74.106:0 ASN #15169 GOOGLE File type data Size 80 kB (80063 bytes) Hash 7038c73a27035b33e5ca48530c8c6301 635d899844e615e6247efca6ad8deb793681249c 504f542e967d34c3737066992dc9c296335d3446467a3243cba445c0cd7915f4 HTTP Headers `GET /css2?family=Kanit:wght@200;300;400;500;600;700;800&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 31 Jan 2023 20:03:27 GMT date: Tue, 31 Jan 2023 20:03:27 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	unpkg.com/swiper/swiper-bundle.min.js	104.16.124.175	302 Found	805 kB
URL HTTP/2 unpkg.com/swiper/swiper-bundle.min.js IP 104.16.124.175:0 ASN #13335 CLOUDFLARENET File type data Size 805 kB (804832 bytes) Hash fc49b12047b967b7062c351614cf7853 d694443a4132edbef19ee9e74f62a3e60c832594 b790cb2fc246fef704a9a843dc3af3418a5c47a298febdcec1cc5be00e56d920 HTTP Headers `GET /swiper/swiper-bundle.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 302 Found date: Tue, 31 Jan 2023 20:03:27 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /swiper@8.4.7/swiper-bundle.min.js vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01GR4P909TV3F62FMJYP2VGKZX-fra cf-cache-status: HIT age: 580 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 79250d009fe8fabc-OSL X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 51a0e73fb8aa8fb0a725837d6e7b4c54 e927927b96496168a66876cd2ceae90b4b4997a4 2a66e4314550c362f226c89b6b96d1833bc27a0cda23ed903cc610bd27b346a8 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2786 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 31 Jan 2023 20:03:28 GMT Last-Modified: Tue, 31 Jan 2023 19:17:02 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 51a0e73fb8aa8fb0a725837d6e7b4c54 e927927b96496168a66876cd2ceae90b4b4997a4 2a66e4314550c362f226c89b6b96d1833bc27a0cda23ed903cc610bd27b346a8 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2787 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 31 Jan 2023 20:03:29 GMT Last-Modified: Tue, 31 Jan 2023 19:17:02 GMT Server: ECS (ska/F704) X-Cache: HIT Content-Length: 279`

	ipapi.co/json/	104.26.9.44	200 OK	61 kB
URL HTTP/2 ipapi.co/json/ IP 104.26.9.44:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with CRLF line terminators Size 61 kB (61198 bytes) Hash d1242b6fea941195cdeb853e1d641e5a d1282c7f5f752e7297afdd911db01251b178aca0 011a58aa4615d49898867e91a8330433101bb41c62a2ab46665e5e3f373f5a99 HTTP Headers `GET /json/ HTTP/1.1 Host: ipapi.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ufa168luck.com Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:29 GMT content-type: application/json allow: OPTIONS, HEAD, GET, OPTIONS, POST x-frame-options: DENY vary: Host, Origin access-control-allow-origin: https://ufa168luck.com x-content-type-options: nosniff referrer-policy: same-origin cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yq1VZTYS9lr6wR0vg6vjvOSc2BB9pnJscUQS9vSD2fjlRIy08wVfMzXlb8wL%2FkPBL1smVEQ7bItYI9VIs2PDevRhHPEo2elBK%2FeWNkp85IBhPffMt%2BfoiTg9"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 79250d0a5880b4fd-OSL content-encoding: br X-Firefox-Spdy: h2

	ufa168luck.com/	172.67.147.134	200 OK	0 B
URL HTTP/2 ufa168luck.com/ IP 172.67.147.134:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: ufa168luck.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.4.27 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bkQoFiwoX8oiNIpOtRJhvaNIjwIVoNNiSLHWyRzpbIZtkizsPeKB6AVF4JDyoLZZeO6aTQ7g8ZIWgaJiv47U%2Bn9p6eKA1h6wApSW5xejoyOgP%2Fh3aA%2FRLNFyVYF4TpntfA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 79250cef6ca5b512-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	unpkg.com/swiper/swiper-bundle.min.js	104.16.124.175	302 Found	0 B
URL HTTP/2 unpkg.com/swiper/swiper-bundle.min.js IP 104.16.124.175:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /swiper/swiper-bundle.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 302 Found date: Tue, 31 Jan 2023 20:03:25 GMT content-type: text/plain; charset=utf-8 access-control-allow-origin: * cache-control: public, s-maxage=600, max-age=60 location: /swiper@8.4.7/swiper-bundle.min.js vary: Accept, Accept-Encoding via: 1.1 fly.io fly-request-id: 01GR4P909TV3F62FMJYP2VGKZX-fra cf-cache-status: HIT age: 578 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 79250cf50d1efabc-OSL X-Firefox-Spdy: h2

	ipapi.co/json/	104.26.9.44	200 OK	0 B
URL HTTP/2 ipapi.co/json/ IP 104.26.9.44:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /json/ HTTP/1.1 Host: ipapi.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://ufa168luck.com Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:29 GMT content-type: application/json allow: OPTIONS, POST, GET, OPTIONS, HEAD x-frame-options: DENY vary: Host, Origin access-control-allow-origin: https://ufa168luck.com x-content-type-options: nosniff referrer-policy: same-origin cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Sx8XOeeq1%2B6tt6j8LnPLCW51N12KvksdStYnwzoWJrPcP5Ak%2Bk9FZH0jNgE%2B%2BFXbb5%2BV%2Bi6BU7KxFFd661xW5lM45di%2F4skQXvL5Ro0t0z7n0EZXcoRe%2Bt0"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 79250d0a4875b4fd-OSL content-encoding: br X-Firefox-Spdy: h2

	unpkg.com/aos@2.3.1/dist/aos.js	104.16.124.175	200 OK	0 B
URL HTTP/2 unpkg.com/aos@2.3.1/dist/aos.js IP 104.16.124.175:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /aos@2.3.1/dist/aos.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Thu, 17 May 2018 22:11:13 GMT etag: W/"379f-cNv9OKDx/DsafZ+tq1h4ZITDTxc" via: 1.1 fly.io fly-request-id: 01F3YGTK14BN7YR0KMC99B0BKK cf-cache-status: HIT age: 24506181 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 79250cf50d0ffabc-OSL content-encoding: br X-Firefox-Spdy: h2

	unpkg.com/swiper@8.4.7/swiper-bundle.min.js	104.16.124.175	200 OK	0 B
URL HTTP/2 unpkg.com/swiper@8.4.7/swiper-bundle.min.js IP 104.16.124.175:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /swiper@8.4.7/swiper-bundle.min.js HTTP/1.1 Host: unpkg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://ufa168luck.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: application/javascript; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=31536000 last-modified: Sat, 26 Oct 1985 08:15:00 GMT etag: W/"2315a-9NyNRghnOcWBIRhbLQ9OGQcQ8Rs" via: 1.1 fly.io fly-request-id: 01GR14SMAMSKV7DJ1A31KC37J8-fra cf-cache-status: HIT age: 119570 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 79250cf54d55fabc-OSL content-encoding: br X-Firefox-Spdy: h2

	use.fontawesome.com/releases/v5.13.0/css/all.css	172.64.133.15	200 OK	0 B
URL HTTP/2 use.fontawesome.com/releases/v5.13.0/css/all.css IP 172.64.133.15:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /releases/v5.13.0/css/all.css HTTP/1.1 Host: use.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://ufa168luck.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 31 Jan 2023 20:03:25 GMT content-type: text/css x-amz-id-2: Uf0XlYCz7Clm9D6oQjonuREcw5hy38GFHoqaxpCH71tWng9+IOD/oUF+GkYXXBayLgGEEJ5y5bQ= x-amz-request-id: BJWZ43SG4HERPHVF last-modified: Wed, 30 Jun 2021 15:38:38 GMT etag: W/"76cb46c10b6c0293433b371bae2414b2" cache-control: max-age=31556926 cf-cache-status: HIT age: 341534 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q5sIauvGO8rbKD93U91f86e5%2BtTagH0xSuO1KslUxkjmCKZjEmXyZQkIbXajyLVVr6OhBk3mKwDgW5YFco8ZoO%2FKTFovwoU3ma2%2F5koVxykbFyjpoMQOIb1hCLqJFwDkQL8OEysS"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 79250cf55b267762-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML