lnk.news/2zkOb
172.67.159.80301 Moved Permanently 0 B IP 172.67.159.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /2zkOb HTTP/1.1
Host: lnk.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 18 Sep 2022 20:09:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 18 Sep 2022 21:09:44 GMT
Location: https://lnk.news/2zkOb
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YFr%2B%2B51aJgVVrHK57vmeqGBgYY0VAC7288SS2rk305KpdUs41nKYZgYVqBjeu5TbEi1UT8zP2ex7AARiCm2JTtv%2FI62LZ%2BAQVY%2BNfbuK7W0s3GNyXJaBvvXcxg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ccb8942fb5b4eb-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 20:02:58 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0aQQAKs559aMotlOdvkHH0xDfa4XJ-JV6VWg1IUrP9TR5RwOn0Srvg==
Age: 406
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14039
Expires: Mon, 19 Sep 2022 00:03:43 GMT
Date: Sun, 18 Sep 2022 20:09:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: izh-85lUlIW0e3IezmeY4JWUxPIQzfs1xe2xNrK-Mx9lYkBtW3G4Jw==
age: 56071
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 20:09:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 18 Sep 2022 20:03:22 GMT
Expires: Sun, 18 Sep 2022 20:13:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f2_UaTYQi3BndLvurJyB66d3lqQKsbFpX0S5c6qeZ42jmPmON6NNJA==
Age: 382
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3130
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:45 GMT
Last-Modified: Sun, 18 Sep 2022 19:17:35 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.231.36101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.231.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dguskdteubRj19h6jC0BQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xDU9cDtVJ4McRNBQdOi1b5VzpWs=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9b19d20af774aa4c4de18c09845d54b9
cd0d41b4957edf5b2f7f66df082b7d1010acceb8
067f454a8ba17fba5f10b67b6a594edd9d9775beb5fb87cb6c98ff462a9f2fe1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c2900cacb3e6b33190e657a697ca589b
102eb3b32fc710cef2b7053100454c30d097bab3
d5bad2878173240c5dbcef360dd701c4f13de4576ba5dedbe882745ae7ea2fb0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
216.58.207.194200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (44512)
Hash ced43ec13001db67199940b506ccff65
a76434b3137f9531cb5e3189972febd408d82ab9
a566282e0d7389949116ed762930009354705851a8553b748a06af144c0ac218
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27863
date: Sun, 18 Sep 2022 20:09:45 GMT
expires: Sun, 18 Sep 2022 20:09:45 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1338 / 906 of 1000 / last-modified: 1663366039"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c2900cacb3e6b33190e657a697ca589b
102eb3b32fc710cef2b7053100454c30d097bab3
d5bad2878173240c5dbcef360dd701c4f13de4576ba5dedbe882745ae7ea2fb0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.100puan.com/?c=2zkOb
172.67.209.116200 OK 90 kB IP 172.67.209.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (38324)
Hash f829ce2b68342f1636337aa2a3192aa5
1b7f64a21f507b9ea062de16c2c3da8a9d4bbebd
b1903e4ab919c314fc4a787433f53aa7363adc9244805f9cb284697361fcc029
GET /?c=2zkOb HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:45 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://www.100puan.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-tag: 785_HTTP.200,785_home,785_URL.6666cd76f96956469e7be39d750cc7d9,785_F,785_,785_MIN.b387732b2f77138dcecd7f12683da911.css,785_MIN.359145331c95d8b4ed9f7429cda88b25.js
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DLp5i37PkbGw5wqhTIqAar%2FFfcFavFaj6BkY77Ve6fm6izPVR9CU%2FQV5fcn5ZOo%2FsLDkOgcD3Hl16h05RC8xlf9GTQPYq7XzmhuJD%2B6fCSNWR0JycHAat%2B4IjIAnYJcRnfs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ccb89c2ce50b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-1512JDPBVD
142.250.74.72200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-1512JDPBVD
IP 142.250.74.72:0
File type ASCII text, with very long lines (17807)
Hash 2a557c6ca6e8560c3c3c199bd621e99b
ef357604eaa1812ad94923e8bff348ff8430d113
98ff55ccdc473dfd45e647f9ff1ed913e013a476a6680280b1bd282ac91cb0e7
GET /gtag/js?id=G-1512JDPBVD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Sep 2022 20:09:45 GMT
expires: Sun, 18 Sep 2022 20:09:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74761
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
1547624534.rsc.cdn77.org/inapp.js
185.76.9.21200 OK 1.3 kB URL HTTP/2 1547624534.rsc.cdn77.org/inapp.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document, ASCII text
Hash 05286c8ee9bee52943cd9d0c49f73fb0
79ff38203d8823e6a8fbf729a5a2795debfef2a5
7577259cd7910296d44f1e1d6182ce54cde1330670e8111a0e6be4baa6e1f913
GET /inapp.js HTTP/1.1
Host: 1547624534.rsc.cdn77.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:45 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 09 Sep 2022 12:52:03 GMT
etag: W/"631b36f3-b15"
access-control-allow-origin: *
x-accel-expires: @1663766613
server: CDN77-Turbo
x-77-nzt: AblMCRQH6HzvtDwMAA
x-77-nzt-ray: ojhbQhli/I4
x-cache: HIT
x-age: 801972
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/08/Universiteli-Erkek-Valinizi-Colinsten-Doldur-2-768x450.jpg
172.67.209.116200 OK 52 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/08/Universiteli-Erkek-Valinizi-Colinsten-Doldur-2-768x450.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x450, components 3\012- data
Hash e5616ecffbab8e049e709f3ab832dc11
283c29cf4c68fc12fd6e529d69a402f2e7a00a8b
ac6d9a569fa2075d77dc5a66386b1b088ea026ffa61449384506863d837badac
GET /wp-content/uploads/2022/08/Universiteli-Erkek-Valinizi-Colinsten-Doldur-2-768x450.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:46 GMT
content-type: image/jpeg
content-length: 52405
last-modified: Thu, 25 Aug 2022 15:33:46 GMT
cache-control: max-age=31557600
expires: Fri, 25 Aug 2023 21:36:15 GMT
cf-cache-status: HIT
age: 307101
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xVRuscXE9vJqSDV3ShRKTrPLQsjw17caO7I%2BElWjElU5u3AmZwN%2B0GPvQc6NjEjvl9zR%2BWAtaUDr2mQNSB%2BbNQ11hdmxOaBSTPlXDQZhiHk0GK4eSL27ClgaDE4jlwpWNBI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb89ec80a0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/08/20-Desa-Sezon-Finalini-Yakala3-768x450.jpg
172.67.209.116200 OK 30 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/08/20-Desa-Sezon-Finalini-Yakala3-768x450.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x450, components 3\012- data
Hash 2125eeb0ef69687bc54a142a39cd4a79
ab12c5d907ccf74974246d9e8a40d2bb8c72b15b
f1c92dafa4a7fb361966a6966a3cb5fd26855935987f6543fd8ca362d7f6e48e
GET /wp-content/uploads/2022/08/20-Desa-Sezon-Finalini-Yakala3-768x450.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:46 GMT
content-type: image/jpeg
content-length: 29819
last-modified: Thu, 25 Aug 2022 15:04:47 GMT
cache-control: max-age=31557600
expires: Fri, 25 Aug 2023 21:11:18 GMT
cf-cache-status: HIT
age: 307101
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kM2pboqmG5FdVAzdyT9myXCxZSgByQMneZCHToFZDGhVGWqZfGR6gZxhJwDYftzRs5gul6jSbEaRaXmPR3VLcq2JY54ZLs%2Bzq68OyKCMRptUYZSDQ6CiR7IhJYs1o3vRKgk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb89ec80c0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/litespeed/js/359145331c95d8b4ed9f7429cda88b25.js?ver=0666a
172.67.209.116200 OK 78 kB URL HTTP/2 www.100puan.com/wp-content/litespeed/js/359145331c95d8b4ed9f7429cda88b25.js?ver=0666a
IP 172.67.209.116:0
File type ASCII text, with very long lines (54272)
Hash ee2ccb79abd0ca8a4bb63df1f4d9302f
d96880e3a5185e702cf502dd1d5cb87dcf1ad405
cbc5a4f33b3862e73c5d35a6f0a0627f663da8762002913106f69ab752af1a58
GET /wp-content/litespeed/js/359145331c95d8b4ed9f7429cda88b25.js?ver=0666a HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:45 GMT
content-type: application/javascript
cache-control: max-age=31557600
cf-bgj: minify
cf-polished: origSize=172740
expires: Sat, 09 Sep 2023 19:30:48 GMT
last-modified: Fri, 09 Sep 2022 13:30:48 GMT
cf-cache-status: HIT
age: 289899
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OukJQxWKZyvanUcu8ee9btsX7g07zQrHDJpCHUDPFBjwh8gLBtqZERnybsdja78lwOZnUHNoGVVrOZ91Yj1djiW8xqzCw50Vf3q%2Bbg%2FnOoyCV1Vm1nTc6m0CgScKOuMg7u8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb89e1f790b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/03/cropped-100numara-icon-1-192x192.png
172.67.209.116200 OK 5.9 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/03/cropped-100numara-icon-1-192x192.png
IP 172.67.209.116:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 95205417f9deb3db6206dffdb5a9467d
fae55fe64d0a172a0582122999a9a346f1dff825
aa89b41d0a9d4db620134ecba7f65af3db7c713487e73c889d371a87f089c92e
GET /wp-content/uploads/2022/03/cropped-100numara-icon-1-192x192.png HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:46 GMT
content-type: image/png
content-length: 5886
last-modified: Wed, 09 Mar 2022 11:09:28 GMT
cache-control: max-age=31557600
expires: Fri, 15 Sep 2023 06:40:47 GMT
cf-cache-status: HIT
age: 85
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fsjxyq6o1e%2FzLz2jztwpns0OhqMrY%2FcvPCvCei%2BhB8nNLkl0RS12UHczYIM8Bycke6%2BChKnnuTOUVFmChAan3Ljo9xlnt8TVkxP%2BbLDXGblrwg1BIcV%2BQsFl7%2BmmtWAuwJE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a09a480b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/03/cropped-100numara-icon-1-32x32.png
172.67.209.116200 OK 878 B URL HTTP/2 www.100puan.com/wp-content/uploads/2022/03/cropped-100numara-icon-1-32x32.png
IP 172.67.209.116:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 745ec1b8fb5af97e627acf4d75522b35
c59f9fdbc7bffe5af725d889f96fa1ece5077b80
d9dd8f7e0913c055887cdffab8fe57674dc1614434a1a1ffd28ce09f0aad7b41
GET /wp-content/uploads/2022/03/cropped-100numara-icon-1-32x32.png HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:46 GMT
content-type: image/png
content-length: 878
last-modified: Wed, 09 Mar 2022 11:09:28 GMT
cache-control: max-age=31557600
expires: Fri, 25 Aug 2023 04:16:56 GMT
cf-cache-status: HIT
age: 85
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x0nK4u6P5GtWGN2LRFHxZl9B7HAwBqxlXb1TMlsjLKKIsSADcN0fbBxLvxkwbzRGOytung26xU7b4dtz97Dlp3Xso9f%2F5rIDwt2zfs6TaA55UtEdgTOVFRl5CogVVVzT86A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a09a4a0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/?c=2zkOb
172.67.209.116200 OK 86 kB IP 172.67.209.116:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48836)
Hash 6789b98c1debf1133eb57d44e8ac2521
dde43f11470ec2408f7a117d872091f983c1078f
f63841d698d5a9ec23948b455a12f9622ec74f6a3a9123a7ffa3b136316fd647
GET /?c=2zkOb HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:45 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://www.100puan.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-tag: 785_HTTP.200,785_home,785_URL.6666cd76f96956469e7be39d750cc7d9,785_F,785_guest,785_,785_MIN.2a8118e8b5497ba50046d664d28e5fc7.js
set-cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; path=/; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mlaurAL91zK0AQqa5A2NvYWiXKoHrAK56i1ONvwtYgbRWRvDYFyTbLAttcuswWhD13CAl3WWyhqxwfowoOt91X99deN1h0kFPX3JUIB%2FJfJM2ypO2nOHG7lQcmi8ps5A%2F5M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ccb897bc4f0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2934
Expires: Sun, 18 Sep 2022 20:58:40 GMT
Date: Sun, 18 Sep 2022 20:09:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2934
Expires: Sun, 18 Sep 2022 20:58:40 GMT
Date: Sun, 18 Sep 2022 20:09:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2934
Expires: Sun, 18 Sep 2022 20:58:40 GMT
Date: Sun, 18 Sep 2022 20:09:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2934
Expires: Sun, 18 Sep 2022 20:58:40 GMT
Date: Sun, 18 Sep 2022 20:09:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fa6db45-871c-41e1-be1d-bc188fa9419b.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fa6db45-871c-41e1-be1d-bc188fa9419b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2e5759fd404a039955868b121bbd075
04fb3179255ba5ec897ffc4581966945cc9fe2ca
42623d1a0f52682db915b075a894d8cd18f2b53efc7815304b0304841536cf35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fa6db45-871c-41e1-be1d-bc188fa9419b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8005
x-amzn-requestid: 2ce67f7f-9a03-4f4d-b06c-ec0de59c2854
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6KhH9PoAMFh2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263d76-6aeeee3217540c5863913912;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:34:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: K_ZInDx3OZbVvpWZ5vnimzx-Dk5twaTGv9VGXMZHFpZ0YN7lKZ_5HQ==
via: 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:57:48 GMT
etag: "04fb3179255ba5ec897ffc4581966945cc9fe2ca"
content-type: image/jpeg
age: 79918
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56ade9172e883c777dd974ca879bceba
b2aaf019e083443a6404c262206ee2e981d3165c
c8407ad191143d2d947464b357d8426efb334cb165c4fa5ca01573d8f7ca7b76
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5133
x-amzn-requestid: 01f39c0a-c86f-4057-a505-20200819203c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioKkFrFoAMFhMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420a9-5821f44144b61475180ec961;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:07:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3tByM8rVW_WxdiBUCfXzxZWjMvH2PB2VQ290D-DLITqly6QQQKBNSw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:13:29 GMT
age: 46577
etag: "b2aaf019e083443a6404c262206ee2e981d3165c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9a9211e94d6aa2429e9663ef317707e
ac0d1af96508d026f9a1252d358660bd5671f9bd
36663b67119ae58b665e43d86b73045472cf23d73bf2c981754f479989690791
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5448
x-amzn-requestid: 3b63d209-af92-4d64-866a-d8f677aa62a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn659H9DIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263ea5-30e7f8a32603ba70671addec;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CqzHFWav9sDzwBhF58p314oyYPwfcbmlplVt2oF9QxSBIi5ktgpS7w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:54 GMT
age: 80392
etag: "ac0d1af96508d026f9a1252d358660bd5671f9bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wxZ383nT9n_SBMH4D_k--23G7tb-2pQV0yDcUMvD17woMHbc2rx-NQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:53:55 GMT
age: 76551
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29f4a52fb629dce4ef8038d4df7ea58a
4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0
32cee35b22110b83738f49f49edb6efcedb54fe793d5ccc900004e16e3fefda3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5827
x-amzn-requestid: 9f179e66-3c6f-4e53-94f2-989bf32a6b90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7gyHvboAMFSzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632572d1-799e74a63288269b79170d58;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9firpBGLDHkjq_CJX01tbyPPS9OXPsTfzC0dLioWt1Axg7Vw5LQ0xg==
via: 1.1 497370ec058751eb0d9251f66d50af5e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:15:02 GMT
age: 46484
etag: "4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Q6pjncaouCXUu0Pz7v6xF_8ClxxVypUSeggW23Z-UTsPamKCTgwjmA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:00:17 GMT
age: 79769
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 306ca1345fdf0ca28498ad115cea782b
97f61ca341ad256d80ca5d18b534e16497a781fa
3c96cc4baa7a17c0c6319f91b533a568f474554bd402c399456fe99078d09f9d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.100puan.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.100puan.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.100puan.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 18 Sep 2022 20:09:46 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.100puan.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.100puan.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.100puan.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 18 Sep 2022 20:09:46 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 3.1 kB URL HTTP/2 90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: 90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Sun, 18 Sep 2022 20:09:47 GMT
expires: Mon, 18 Sep 2023 20:09:47 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/03/100puan-logo.png
172.67.209.116200 OK 1.9 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/03/100puan-logo.png
IP 172.67.209.116:0
File type PNG image data, 250 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash ed2bb9e0293da075e6307ecc9f9816dd
1cd2d22cca8c51ffa8a9839562e3794be000e71d
0b9e66a0fb928e5f4940bce30795d3ccf4f4257c873997ca86954115a6410765
GET /wp-content/uploads/2022/03/100puan-logo.png HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/png
content-length: 1882
last-modified: Wed, 09 Mar 2022 11:06:35 GMT
cache-control: max-age=31557600
expires: Sat, 09 Sep 2023 17:59:05 GMT
cf-cache-status: HIT
age: 804178
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PC6DO%2BPEwHpO%2BIR1wHSWMUclsNs1VYgIQw%2BgNUarQXP9ztzNlCG1vgDHeyZMElQQo9m%2Bk57w1YWHRclub%2B3cR7%2B5kerGer3I2uhADzTUBfi29Fod6E3yWCa8aXf9mZ3733E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a6091f0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/08/Universiteli-Erkek-Valinizi-Colinsten-Doldur-2-200x150.jpg
172.67.209.116200 OK 9.2 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/08/Universiteli-Erkek-Valinizi-Colinsten-Doldur-2-200x150.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x150, components 3\012- data
Hash a1980343377ca2f1a108a643565bcfd9
628e8cf9ef9fcb4fbe0b3bf4e01d3cdd72475c70
d1d45561d100a7fb1523bed63198e952e0b2d5c4c158c1a99ef9a20d34f8a691
GET /wp-content/uploads/2022/08/Universiteli-Erkek-Valinizi-Colinsten-Doldur-2-200x150.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 9154
last-modified: Thu, 25 Aug 2022 15:33:45 GMT
cache-control: max-age=31557600
expires: Fri, 08 Sep 2023 13:04:22 GMT
cf-cache-status: HIT
age: 435090
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yfvaTaOZGtkSdWWgA81ejtdjDClDnw9Q8hGl9tCkYhwjWOIBx%2BFQHBf4JTh4eHREc%2B%2F40zGHKvZsE%2FfLyfXr9LPIzgiX8NqWJIYcJXk%2BrFLPaZ5fMCen66BHn3J3jqcRKz4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a619280b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/08/20-Desa-Sezon-Finalini-Yakala3-200x150.jpg
172.67.209.116200 OK 4.6 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/08/20-Desa-Sezon-Finalini-Yakala3-200x150.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x150, components 3\012- data
Hash 5797361e8511c749486c7482233fb894
c80c880f0ee94429f9714ac9ec7778f36786d149
169a8b666bb340564378f2683a16397f63243e35a96adfc5b76edbf638d39383
GET /wp-content/uploads/2022/08/20-Desa-Sezon-Finalini-Yakala3-200x150.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 4612
last-modified: Thu, 25 Aug 2022 15:04:47 GMT
cache-control: max-age=31557600
expires: Fri, 25 Aug 2023 21:11:18 GMT
cf-cache-status: HIT
age: 85
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=As7WrFCr7W8DLczXyet5ECIektKNwHwi1QO1qinbjnpY%2FL90YJ9Y2FRL4IyuQh%2BruwYElvbn5vVnHFyX5HuLP0KL0j62GS%2FViWyxWqeMYd5ulKhEfLSmMFSzHdct9r%2Fm86U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a619300b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Beymen-Cantalar6-200x150.jpg
172.67.209.116200 OK 4.9 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Beymen-Cantalar6-200x150.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x150, components 3\012- data
Hash 7c74ebd987f23870e5daa2219b830a25
e1803d25407e80b65f1af41bf67d941c137bddb9
7bc7b6046e2aa8a9c9cd531612ba9aabbc60c39ab6b99b723c4c4bc96d739597
GET /wp-content/uploads/2022/06/Beymen-Cantalar6-200x150.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 4881
last-modified: Tue, 21 Jun 2022 16:32:28 GMT
cache-control: max-age=31557600
expires: Sat, 09 Sep 2023 00:08:48 GMT
cf-cache-status: HIT
age: 289840
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ymFpbA%2FdGJqNYWBjMBWb5P1KITJyO2pdPnEeDd%2BBSMLCIaIQVNvCKyKboiY%2FMPgppUumFaun6M2J4AYk9Kf3j4ttMXWxmCix3BjAUldUSV2nSivIJdnLnRYEVy%2BXiQd3Qeo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a629430b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Aris-Pirlanta-Safir-Urunler3-200x150.jpg
172.67.209.116200 OK 5.9 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Aris-Pirlanta-Safir-Urunler3-200x150.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x150, components 3\012- data
Hash 6646ca52002ff5666457e5fffb0a8c65
20e082e74d9d6adf22299e6f42189cda6a122dcf
7d6d273e9f7a0ee11a0df412e5308042aa370c673addac783cb8cd153c96eb0f
GET /wp-content/uploads/2022/06/Aris-Pirlanta-Safir-Urunler3-200x150.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 5918
last-modified: Tue, 21 Jun 2022 16:26:59 GMT
cache-control: max-age=31557600
expires: Sat, 02 Sep 2023 16:32:42 GMT
cf-cache-status: HIT
age: 85
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IoLqUR1opqykTd%2FeF5axKmu1zO6RTn0uvSGnl1rmObU%2BpbRiEEHJELT%2BPvUvXwRHlS8BcC383tXHgSsGIevHfTdeemIvYu9kjTtuOpTsiN6I5pquJ%2BIrj4%2BL25uYZsmmovo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a629470b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Bakalit-Nedir-200x150.webp
172.67.209.116200 OK 12 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Bakalit-Nedir-200x150.webp
IP 172.67.209.116:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8562a3619d223e945d1c367e83382076
1b81cedbfbac047b2e8f4271d8f4b7aaede7d9d3
1a7a00b97aa555b3ca7d5a919021adba70b23241c4776ac4d3806e3012238a1b
GET /wp-content/uploads/2022/06/Bakalit-Nedir-200x150.webp HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/webp
content-length: 11874
last-modified: Sun, 12 Jun 2022 11:48:17 GMT
cache-control: max-age=31557600
expires: Thu, 24 Aug 2023 18:53:49 GMT
cf-cache-status: HIT
age: 85
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tRZiSIVXR8DQnUut0dGtsSYmKzM3DMxiZYjhPeV1rIykpaO3YLKR9ua5zOp6YliHSBPEm9x2oPJ5LeBEbG3cEe%2BEu%2FGgWWpfLvcYZtD29Y3JH3WznSBEwmsjpEIphvthA9A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a629490b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Kadinlar-Icin-Ev-Kiyafetleri-Dagi-200x150.jpeg
172.67.209.116200 OK 3.4 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Kadinlar-Icin-Ev-Kiyafetleri-Dagi-200x150.jpeg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x150, components 3\012- data
Hash 151d14b065c2131d4fc60f6de48b1e05
93019fe02546ff8b5e61b54e47dcfaa1a38d0949
0be60f64970b52e2bb264ad17c581655131a94c0a9e21b65e5d7d1fb7a16679f
GET /wp-content/uploads/2022/06/Kadinlar-Icin-Ev-Kiyafetleri-Dagi-200x150.jpeg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 3411
last-modified: Tue, 07 Jun 2022 16:24:23 GMT
cache-control: max-age=31557600
expires: Wed, 23 Aug 2023 13:08:34 GMT
cf-cache-status: HIT
age: 274218
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wM%2FBFv9DXIHye0WRk6xH26ktZGwBOj3tJG7gBPl4FOOIAh6a1nCAsEMATx3NfjODAImqu09WT6OETVBVa3ndpu0fI0wQkRymOYLx0U3bDs4AQBdyrKr6xiEwGRpA2dIW%2BcY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a6294b0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Erkek-Esofmanlar-Corazzo-200x150.jpg
172.67.209.116200 OK 3.9 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Erkek-Esofmanlar-Corazzo-200x150.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x150, components 3\012- data
Hash f59d51f253aa684275f38922608a6666
a6fd05870542ba6c90e94ef13e9ab90a68b0deb7
50fc353ec4688c56aa2ddd2e86463cb9fdf7adae3b2498edc72f95ede6109808
GET /wp-content/uploads/2022/06/Erkek-Esofmanlar-Corazzo-200x150.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 3868
last-modified: Tue, 07 Jun 2022 16:17:05 GMT
cache-control: max-age=31557600
expires: Sat, 02 Sep 2023 16:32:42 GMT
cf-cache-status: HIT
age: 435090
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mfzpkSIoatjqEqd252BasohgZU3mL1RL6WjHX6VtSfMDgRLKzvmEWn2%2Bd8m1s7ieg8uZVJIsHq%2BaM%2BmXUzAyeVqq8Jbi1JFnPL24iLUaayImTgrkk%2FFXGS0UlYaFyGShBqI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a6294e0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/05/Yazlik-Coraplar-Corap-Toptancisindan1-200x150.jpg
172.67.209.116200 OK 8.9 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/05/Yazlik-Coraplar-Corap-Toptancisindan1-200x150.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 200x150, components 3\012- data
Hash b04f55f93edfdec5a4094dac4454750d
0a9993508a92cd274de9a8d1eb03b9bfed390ea7
987825a190d3d1b428aad8bdae8f5aebb593942ecc6ebd4f5e9ff2a115791c2d
GET /wp-content/uploads/2022/05/Yazlik-Coraplar-Corap-Toptancisindan1-200x150.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 8882
last-modified: Mon, 30 May 2022 16:12:53 GMT
cache-control: max-age=31557600
expires: Fri, 15 Sep 2023 05:06:47 GMT
cf-cache-status: HIT
age: 85
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FP9GtqdtMd8BVo%2BAzIBDXtI1V0VIwawQYgVyJ9rC9diaU71rnnCQNfRk%2Bmvapg%2Fc2m1xk7yt%2FoHmfIhbZICYpRsjWKycEn5m82PCsyMSgDHOOO2ak%2BgOux%2Bvw%2FZMJuogiE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a629520b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Aris-Pirlanta-Safir-Urunler3-360x270.jpg
172.67.209.116200 OK 14 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Aris-Pirlanta-Safir-Urunler3-360x270.jpg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Hash a110fbc522dc4cf907fdd5543cf7e5b9
1df2d0822b11e04a5ebde8052f28a0096d5a9be7
29eef040a4ce6769c654e32c445ddafde7b091679a0c0a804dcbb1f70ac6e6f5
GET /wp-content/uploads/2022/06/Aris-Pirlanta-Safir-Urunler3-360x270.jpg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 14258
last-modified: Tue, 21 Jun 2022 16:26:59 GMT
cache-control: max-age=31557600
expires: Sat, 09 Sep 2023 17:59:07 GMT
cf-cache-status: HIT
age: 804178
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LsOkHVijao4kN0Lu9vs1cvQRFmVt0O8vrjPamHLAdCM%2BJNTjjjlCUXJi0pkcKoIscNurAjJMzQR0OyjlrDncTaeXUI5sm4SJ%2FELZXxiQ5CtPfUgK4IiAd9%2Fe5sN25HhBr4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a629540b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/litespeed/avatar/e3dfb8c0c1c42e0f31ba33879f9a5903.jpg?ver=1663074490
172.67.209.116200 OK 2.3 kB URL HTTP/2 www.100puan.com/wp-content/litespeed/avatar/e3dfb8c0c1c42e0f31ba33879f9a5903.jpg?ver=1663074490
IP 172.67.209.116:0
File type PNG image data, 74 x 74, 8-bit/color RGBA, non-interlaced\012- data
Hash ee26f42ab91eb3265d67b0db4a630a7d
eb17a6ba1a334297227868fd00585f7d41a6f61c
5b1a6f94bedabadbca59d1c900607a210270238b17ad5d27b026e8e08d8906a9
GET /wp-content/litespeed/avatar/e3dfb8c0c1c42e0f31ba33879f9a5903.jpg?ver=1663074490 HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 2278
last-modified: Tue, 13 Sep 2022 13:08:10 GMT
cache-control: max-age=31557600
expires: Wed, 13 Sep 2023 19:08:32 GMT
cf-cache-status: HIT
age: 435087
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t6Ff0z9iH0RoTa%2F8GJR5OrOnenYqeTXkH2HzPe6CzDueNZD1vhA9aXJ2yGTb8lefGbkFSa99x5IogD7vdWWw5UNW6cCjqeBfD3P3i6t%2FzLhcvUo9t8f2s9ZUMQqq2Nfc%2F0U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a629570b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022091301&st=env
142.250.74.2200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022091301&st=env
IP 142.250.74.2:0
File type JSON data\012- , ASCII text, with very long lines (14518), with no line terminators
Hash b2eb2e638840abb5f833868e531ef5b3
95b403f6b2269a47587f5cbd7d4be5b78dd70fdf
69ba1dae142ed36b3c5b579f845f3628423b97d419ad7ab25c211ed906ddece7
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022091301&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.100puan.com
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 18 Sep 2022 20:09:47 GMT
server: cafe
cache-control: private
content-length: 11022
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Bakalit-Nedir-360x270.webp
172.67.209.116200 OK 26 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Bakalit-Nedir-360x270.webp
IP 172.67.209.116:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 360x270, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d8a6abaa841fc24606c4f285041ba82c
6638403a77dbde2a0a0a1f785650091c8a307efe
3b49d78eabcf0acc4eb9f6eea52160d51782d2d895a390289f83d305f53fb5f5
GET /wp-content/uploads/2022/06/Bakalit-Nedir-360x270.webp HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/webp
content-length: 25486
last-modified: Sun, 12 Jun 2022 11:48:17 GMT
cache-control: max-age=31557600
expires: Sat, 09 Sep 2023 17:59:07 GMT
cf-cache-status: HIT
age: 804178
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r9lXcH9B54mwdEwgKyKBsf2KRz%2FfWtqjIHWMhHkLqbmLcyZdWdOIfdkXGsi3PJ5mRI6%2Fm6X64lxkTsAoYYBdSgyMBYnvbht4f20mrYPd4QJoBSJpT%2Bbn5vV%2BBJlfM3xbtbw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a639610b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/litespeed/avatar/b9efe43ac4f47eb206e8b9eb439c6eef.jpg?ver=1663194899
172.67.209.116200 OK 1.4 kB URL HTTP/2 www.100puan.com/wp-content/litespeed/avatar/b9efe43ac4f47eb206e8b9eb439c6eef.jpg?ver=1663194899
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 74x74, components 3\012- data
Hash 849532dd2d265820a2f5d95545605826
6cce6b64c1457fcecf49d8bd7f166f2fd6706faf
7e42624d690e9bad334666d9277be3e95a5adcdb5410291312f3738013f61bd9
GET /wp-content/litespeed/avatar/b9efe43ac4f47eb206e8b9eb439c6eef.jpg?ver=1663194899 HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 1368
last-modified: Wed, 14 Sep 2022 22:34:59 GMT
cache-control: max-age=31557600
expires: Fri, 15 Sep 2023 04:36:06 GMT
cf-cache-status: HIT
age: 289846
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ETZFT3d5KMGxsv16PIa%2Fp%2BK%2B%2BAia4F7OgHz1IrGcFoQzzw2UMpo1JtcMMSa4JTszxm%2FrQ07ijlHXfxkHuXHt%2BTiochnj%2FhccjhIfvxpn8oVklqLG8V9WiFJO%2BQ%2Bb0SnHsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a639660b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/uploads/2022/06/Kadinlar-Icin-Ev-Kiyafetleri-Dagi-360x270.jpeg
172.67.209.116200 OK 7.9 kB URL HTTP/2 www.100puan.com/wp-content/uploads/2022/06/Kadinlar-Icin-Ev-Kiyafetleri-Dagi-360x270.jpeg
IP 172.67.209.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Hash b35252316d4e2b21d6fcfe0f7dd916ec
32e6cfde678ba78517de13b6abc08c7922dc637e
1dcb3e3f8db5e1d8973f37684bb46cdf2db87c8db1a7088da4f560ad53b75fb2
GET /wp-content/uploads/2022/06/Kadinlar-Icin-Ev-Kiyafetleri-Dagi-360x270.jpeg HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161; _ga_1512JDPBVD=GS1.1.1663531768.1.0.1663531768.0.0.0; _ga=GA1.1.1807946304.1663531768
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: image/jpeg
content-length: 7909
last-modified: Tue, 07 Jun 2022 16:24:23 GMT
cache-control: max-age=31557600
expires: Sat, 09 Sep 2023 17:59:07 GMT
cf-cache-status: HIT
age: 804178
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UBx6uWs3T%2FQBNFVHaHw%2BYSg1nRjNdEPELxWIK3LShNzNhMbj6SfrZDcNdw8nvOaMqvlcEJMoAGaWiw20eq7mOlK%2FbDtfx8DdOxcobV8Sj9k%2B6p6GkeafzXv816GujmMLqH0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a6396d0b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-1512JDPBVD>m=2oe9e0&_p=233197694&cid=1807946304.1663531768&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663531768&sct=1&seg=0&dl=https%3A%2F%2Fwww.100puan.com%2F%3Fc%3D2zkOb&dt=Sosyal%20E%C4%9Flence%20Platformu%20-%20Yarat%C4%B1c%C4%B1%20i%C3%A7erikleri%2C%20e%C4%9Flenceli%20video%20ve%20resim%20galerilerini%20birle%C5%9Ftirip%20sunan%20sosyal%20e%C4%9Flence%20portal%C4%B1.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-1512JDPBVD>m=2oe9e0&_p=233197694&cid=1807946304.1663531768&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663531768&sct=1&seg=0&dl=https%3A%2F%2Fwww.100puan.com%2F%3Fc%3D2zkOb&dt=Sosyal%20E%C4%9Flence%20Platformu%20-%20Yarat%C4%B1c%C4%B1%20i%C3%A7erikleri%2C%20e%C4%9Flenceli%20video%20ve%20resim%20galerilerini%20birle%C5%9Ftirip%20sunan%20sosyal%20e%C4%9Flence%20portal%C4%B1.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-1512JDPBVD>m=2oe9e0&_p=233197694&cid=1807946304.1663531768&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663531768&sct=1&seg=0&dl=https%3A%2F%2Fwww.100puan.com%2F%3Fc%3D2zkOb&dt=Sosyal%20E%C4%9Flence%20Platformu%20-%20Yarat%C4%B1c%C4%B1%20i%C3%A7erikleri%2C%20e%C4%9Flenceli%20video%20ve%20resim%20galerilerini%20birle%C5%9Ftirip%20sunan%20sosyal%20e%C4%9Flence%20portal%C4%B1.&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.100puan.com
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.100puan.com
date: Sun, 18 Sep 2022 20:09:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ad98157c7e1e3f4554e5bed34d505fc5
3e95df6e64b1e53c7dcd1764726e3fed1fb2cb9a
a14b3392817936364c7bb36d3b67031fae5164e607a7fb434e60c3381690cb67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 18 Sep 2022 20:09:47 GMT
expires: Sun, 18 Sep 2022 20:09:47 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash c6ef0dcf21169e17aaffa059d38c2d49
2be7fa5127d37589157427293c2acededdbc009c
a2734b2074e51f52a7e9c604170acd71b311146d99d1640192f015f070b7df7f
GET /pagead/js/r20220914/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7552
x-xss-protection: 0
date: Sun, 18 Sep 2022 19:55:52 GMT
expires: Sun, 02 Oct 2022 19:55:52 GMT
cache-control: public, max-age=1209600
etag: 1588701280721430806
content-type: text/javascript; charset=UTF-8
age: 835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/xbbe/pixel?d=CL6Q0AIQrsO99QIYkfaavQEwAQ&v=APEucNWHtnrCEmCo8Ej9MveMO5IMX7mttaZ6vIXJYuk9_JWOx9JcnX4k-WOaeeUM-TGqtpE0FrBwFC14TnoMk93CsODaYV59a3gTqQ46bRRWEFGi_1z9C-MnAiAKgEbaeEI9nEwHge8xgiPnulEV8P8d837I4e91pTfNKXOKifroIz6fZJvx7VI
142.250.74.34200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/xbbe/pixel?d=CL6Q0AIQrsO99QIYkfaavQEwAQ&v=APEucNWHtnrCEmCo8Ej9MveMO5IMX7mttaZ6vIXJYuk9_JWOx9JcnX4k-WOaeeUM-TGqtpE0FrBwFC14TnoMk93CsODaYV59a3gTqQ46bRRWEFGi_1z9C-MnAiAKgEbaeEI9nEwHge8xgiPnulEV8P8d837I4e91pTfNKXOKifroIz6fZJvx7VI
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbbe/pixel?d=CL6Q0AIQrsO99QIYkfaavQEwAQ&v=APEucNWHtnrCEmCo8Ej9MveMO5IMX7mttaZ6vIXJYuk9_JWOx9JcnX4k-WOaeeUM-TGqtpE0FrBwFC14TnoMk93CsODaYV59a3gTqQ46bRRWEFGi_1z9C-MnAiAKgEbaeEI9nEwHge8xgiPnulEV8P8d837I4e91pTfNKXOKifroIz6fZJvx7VI HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 18 Sep 2022 20:09:47 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 18-Sep-2022 20:24:47 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 18 Sep 2022 20:09:47 GMT
cache-control: private
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 16:23:47 GMT
expires: Mon, 18 Sep 2023 16:23:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 13560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BAcAexyLpssNHBq0gOD6PN8CqrV_3_FxwuHU9KjcPaj1LpkCPfGAUwtpy89fS9MjvFMzkMtv6y0XfkKFc-dfF31983Bu3IE-6bJOv6QsQsp4qvaAvOqdAgzZgdgyzbXmVBrJEUPeBLfKh_2f2XZFYL9ulQkA&dbm_d=AKAmf-DpREplJQYCP_NcWIt5eUWJ5rwI5ZzhUY8a43HOqeGliuRqO3U5Y3GwazCJy4l_0Ou-tr7BhCZn7awtQ0DGnnDuVdcZCxei6gIATtX6YTDhL5iOHsNVncG-CVLEAq14HC2qBgNSX3rTFhER3mPQaU9CJRUf6DfeOmUT7ryyTTpQhxQ1oqdwq4vzeRrvNkuqgh5p26eKDh4XOYD1YklzQ26AKUjiE7Vanvdar4cIKjpNaQrGT6n_MpLOLMZQpFyd44CjbAxX1K2m3BWcwVrpXszbBCcRTK8k4ujUsZFb9F-7TwQEYyxubHgvqLNpjvbl_s-pL16HDY7_r-aEBtxX2juoWcmn3h8nVdEN3c_H6hz0iLYtZ3FVM0SIGZEjVJQ9RbEyyTgKnCkm2dOJ8Xtc0hc0ZsZB3atDmXEJpevpDOcln5c30_DXpkQ7b82Xgntv1Vb1Y04Of8iQWA1LIL8ukoWo-MU-W4kEbvfHpO7NDeFORV8iRYTKm46-IGkolETlo-uLnGsWIDddVl_P2WG2eEwoF_kKVBZODI6WOAPZ3oSHgi-Jpa3rE4uCsHqXdXAyf72hVASlsH47fTTglAkNUwYesLaSX2jROXDkr9dCq5iJNJ_ragMCn116mwMolLq3t9fGLuxKPVorlxdNjdoujsJnWNWVfDxx9uaL4o61kd_FxzA2HEhABoJNvVJmdIvsC6bq65nChgVVwnE3mXS6A8TbM-3Rx4fq6pMOPiK9PJ5tshZVyEAbpLZ0NL7f6cDsQQdrDqZtRGV5Xks0WN2Jf0FMxAb3IcsGwiG-fgeKOLh4L0pzzqUmu9S9RJ7E3feZwaXm4avo8UtZBIB7kQfWlzQhA1a7qZUvI6UfT1VJm57iRhFjUASp9khueG2P4OB8DQaLdU-q0xIzoXjULq40rOD0jq5HAY-M-_PdiscTut8AaoNojHzei3setJSUvcBuXi-8sZ4XbXg9uY12ok5VoHgVWyY04zniODBjSZyE6g5LhWrJlxjvvBgsE8f1s8zJFQTl2w9u84kjGwirGm0LWQ4qjzGAqjqkpm-1LdS6c3CbHNcjC5rdOB6YyfuvwmlJMzXAbfu5DffnXu6mEW7RYgFQ2ER-0unDLhIgNMVb5bzPRjBfd9lngm2sX3fPYej-ksn2R-dE_Yz1aH6zjqQNQzTSWVmLsChV1Zi7aclmpk_H4SxC-O3dNOiR1CGR9XNWc3Ji54I9E2yL7loKLw5LrgnxopspEvKMKaZT3fsdP0eScYHJQqmsSrbGzrQs7jmshh-qjGv2T_rBnPKe-sdNwhw8lZW15c5gGcuv3V37auiQ37ZNvYAith_eKgi7_gF3YHfcC5kVoHWhaJIzLDagjC7SVTZJrKBXnOPHFU3YqDpbtaBv47-Gbuk7DHG3_uvb0wQZAjYI3AxkAOU_ar6SJCvjBsLTuRtknUG2wywDKfP0zKR4EMd58c7AomQOjhpQ6jX4_WrBpHvc_eeVnqVUZjrhbYuNNpOamuWGlATtVeU3hHCFGrzD_1mSPuK5KU2PG1qzzUm0ux-_tVCKpq52sqbCT6EA_iMMXwSYaZz5EnITiCaIKJZVJgcFf7V_Cxn8ndqX3XLgN3I_wlLvg8-wxH3ss8f1Ls1t9J292h6cz3FA8eX8zZK8fIy3pOT_k-gsoum7USHD_qGezm_cdZOtH8lS8I81sfkJBWaKAEPQmbns5EjdqIV3HewFmAD9M9CrWR5yEs6nfT9ODgSoh9P9Fmnn3UPgZ7p100wsHO8K5Cu9qrC7YQZj7hdu-bgeZUgQWjWuOJHoGUVmrgpUt36GyX0C-PafvFbmUoZVqjEEndAzoKEMC3C12arQ9_9hePOGV__Q358Bnihf5WMS-Rk0Am3nwBoeBDcaTQSparBhyeKCOQJNznYLi32XChBzatYGQh2C5TMZthNHCAs73uttisU0m6G7uw1fsomzfjUHnRxnI1e3zYx3-4imsyMap_6HPlWMgDZ3yOuwIf_lE_zSU9m2WHzoyrG0kay3R3NzfnA6HPzJRHxRRsnbgczV1kUMUVa8cnFGkxzCDrxZ4r7JBJsm0YwWeQMZnM1yrdlpiWRGi562eqANifRLiMwAtcWtuPBVAuCwkGIOAqGlqGDxEcSv81ugtLZvzj4mOtuEH38mUV5yZN0fSoxPFq4tLR-HTQ3QFO51Mu84FbHg12at0aXUze8Mipm-qrtH_d2-aRUMs7vhITBJ9KHiALDjWE6MFFzdjnDA4z8n52hBNFlIu-HA0BWI8Ag_rSn16UxyKlx4bK-2KD2qnkWtgPz7_riuF7CqtQ747Wr6Uu_mo8VdXqsjrwHt_unmzOKxx5e-ZikbS9UBb55Ey6uV71sni_qQTbVwxKSmLgh0LixSQHCa2N9faWvylnWD4SUqVC-JaNN3rq2m00W2AyJY3BE1pjNqSoaUoIVNIqYrlVyHzoQ4cqXRdFVhsLHA1HGkkMClfXKTUoVT9MtSoHRadKlW58hK-QYwJU6k9RcYUNXUanffG0Rn0xf29HSkUZoyS77q2-3KzSPxjyQh0zZo5YpnZPRs6T-fT2V7LsupRoGEVTKZ3RUtoLvoDga9ZwJ-F2jj6AToWAo2lgaBb8m0eeysHnwpSS47AQ2UzTSaTSXFemSSIM_uTfU6lAkTzwEzEGC0cE9bg8ZMeuoTgNZMwt5l-AhJ-wjkA_da6NmQYj2kzuviqXu8L4Sx4He7jgLp8hGinxnRH4mBp0PF0sb1BQ0UHLY-Ul9K-1j8Jb000gGYrF_Epl71MFC3ATQkbkddHOPiDl617ozIRg6wtifI3QwsCmGur397nWANinyX9DFLCPSXJOgSD3L2fDYkUAIwma2-v9g2IRdEL2KYX08_r2A-iHlFyag-yaNSQo44AKh4-ZMpK-YuoXPM9kfoFmHhDOhLtuVEvTjGdzFBWvw_1qMP5h_DB-LAbG6U-nPAq3Z_SWIfP2pP99VP5xkKHJB7AjgbE7NsczsF5T5J2rZ0f1QTmmbrSlPQS99WPbzEwskM6NAJPUsVVyj9f8PNFAH58TcVGBQYFOqByqEnD59tUHNk4aM1IPqhCThYWbwUAec1w6qDmFHW5e2m8A8unAx8hhaS1QbD_gBjBR8eVuRfBBGtSrOC1AZkTHUor-qKOEJ1yvHLlcFaj9Eartg-y0hP3px8-8tzRdU-2fITr--Y54VTM6MzJ6FzEBk9Zj-GWYU-3-CsrxQvjG5Ecg&cid=CAASJ-RoxH3piYjIFEtPOgLk4mb_AbXyTeTyy2x8UAsg4bJ9LZ5gQIX5QA&rfl=1%2Chttps%253A%252F%252Fwww.100puan.com%252F%240
142.250.74.34200 OK 35 kB URL HTTP/2 googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BAcAexyLpssNHBq0gOD6PN8CqrV_3_FxwuHU9KjcPaj1LpkCPfGAUwtpy89fS9MjvFMzkMtv6y0XfkKFc-dfF31983Bu3IE-6bJOv6QsQsp4qvaAvOqdAgzZgdgyzbXmVBrJEUPeBLfKh_2f2XZFYL9ulQkA&dbm_d=AKAmf-DpREplJQYCP_NcWIt5eUWJ5rwI5ZzhUY8a43HOqeGliuRqO3U5Y3GwazCJy4l_0Ou-tr7BhCZn7awtQ0DGnnDuVdcZCxei6gIATtX6YTDhL5iOHsNVncG-CVLEAq14HC2qBgNSX3rTFhER3mPQaU9CJRUf6DfeOmUT7ryyTTpQhxQ1oqdwq4vzeRrvNkuqgh5p26eKDh4XOYD1YklzQ26AKUjiE7Vanvdar4cIKjpNaQrGT6n_MpLOLMZQpFyd44CjbAxX1K2m3BWcwVrpXszbBCcRTK8k4ujUsZFb9F-7TwQEYyxubHgvqLNpjvbl_s-pL16HDY7_r-aEBtxX2juoWcmn3h8nVdEN3c_H6hz0iLYtZ3FVM0SIGZEjVJQ9RbEyyTgKnCkm2dOJ8Xtc0hc0ZsZB3atDmXEJpevpDOcln5c30_DXpkQ7b82Xgntv1Vb1Y04Of8iQWA1LIL8ukoWo-MU-W4kEbvfHpO7NDeFORV8iRYTKm46-IGkolETlo-uLnGsWIDddVl_P2WG2eEwoF_kKVBZODI6WOAPZ3oSHgi-Jpa3rE4uCsHqXdXAyf72hVASlsH47fTTglAkNUwYesLaSX2jROXDkr9dCq5iJNJ_ragMCn116mwMolLq3t9fGLuxKPVorlxdNjdoujsJnWNWVfDxx9uaL4o61kd_FxzA2HEhABoJNvVJmdIvsC6bq65nChgVVwnE3mXS6A8TbM-3Rx4fq6pMOPiK9PJ5tshZVyEAbpLZ0NL7f6cDsQQdrDqZtRGV5Xks0WN2Jf0FMxAb3IcsGwiG-fgeKOLh4L0pzzqUmu9S9RJ7E3feZwaXm4avo8UtZBIB7kQfWlzQhA1a7qZUvI6UfT1VJm57iRhFjUASp9khueG2P4OB8DQaLdU-q0xIzoXjULq40rOD0jq5HAY-M-_PdiscTut8AaoNojHzei3setJSUvcBuXi-8sZ4XbXg9uY12ok5VoHgVWyY04zniODBjSZyE6g5LhWrJlxjvvBgsE8f1s8zJFQTl2w9u84kjGwirGm0LWQ4qjzGAqjqkpm-1LdS6c3CbHNcjC5rdOB6YyfuvwmlJMzXAbfu5DffnXu6mEW7RYgFQ2ER-0unDLhIgNMVb5bzPRjBfd9lngm2sX3fPYej-ksn2R-dE_Yz1aH6zjqQNQzTSWVmLsChV1Zi7aclmpk_H4SxC-O3dNOiR1CGR9XNWc3Ji54I9E2yL7loKLw5LrgnxopspEvKMKaZT3fsdP0eScYHJQqmsSrbGzrQs7jmshh-qjGv2T_rBnPKe-sdNwhw8lZW15c5gGcuv3V37auiQ37ZNvYAith_eKgi7_gF3YHfcC5kVoHWhaJIzLDagjC7SVTZJrKBXnOPHFU3YqDpbtaBv47-Gbuk7DHG3_uvb0wQZAjYI3AxkAOU_ar6SJCvjBsLTuRtknUG2wywDKfP0zKR4EMd58c7AomQOjhpQ6jX4_WrBpHvc_eeVnqVUZjrhbYuNNpOamuWGlATtVeU3hHCFGrzD_1mSPuK5KU2PG1qzzUm0ux-_tVCKpq52sqbCT6EA_iMMXwSYaZz5EnITiCaIKJZVJgcFf7V_Cxn8ndqX3XLgN3I_wlLvg8-wxH3ss8f1Ls1t9J292h6cz3FA8eX8zZK8fIy3pOT_k-gsoum7USHD_qGezm_cdZOtH8lS8I81sfkJBWaKAEPQmbns5EjdqIV3HewFmAD9M9CrWR5yEs6nfT9ODgSoh9P9Fmnn3UPgZ7p100wsHO8K5Cu9qrC7YQZj7hdu-bgeZUgQWjWuOJHoGUVmrgpUt36GyX0C-PafvFbmUoZVqjEEndAzoKEMC3C12arQ9_9hePOGV__Q358Bnihf5WMS-Rk0Am3nwBoeBDcaTQSparBhyeKCOQJNznYLi32XChBzatYGQh2C5TMZthNHCAs73uttisU0m6G7uw1fsomzfjUHnRxnI1e3zYx3-4imsyMap_6HPlWMgDZ3yOuwIf_lE_zSU9m2WHzoyrG0kay3R3NzfnA6HPzJRHxRRsnbgczV1kUMUVa8cnFGkxzCDrxZ4r7JBJsm0YwWeQMZnM1yrdlpiWRGi562eqANifRLiMwAtcWtuPBVAuCwkGIOAqGlqGDxEcSv81ugtLZvzj4mOtuEH38mUV5yZN0fSoxPFq4tLR-HTQ3QFO51Mu84FbHg12at0aXUze8Mipm-qrtH_d2-aRUMs7vhITBJ9KHiALDjWE6MFFzdjnDA4z8n52hBNFlIu-HA0BWI8Ag_rSn16UxyKlx4bK-2KD2qnkWtgPz7_riuF7CqtQ747Wr6Uu_mo8VdXqsjrwHt_unmzOKxx5e-ZikbS9UBb55Ey6uV71sni_qQTbVwxKSmLgh0LixSQHCa2N9faWvylnWD4SUqVC-JaNN3rq2m00W2AyJY3BE1pjNqSoaUoIVNIqYrlVyHzoQ4cqXRdFVhsLHA1HGkkMClfXKTUoVT9MtSoHRadKlW58hK-QYwJU6k9RcYUNXUanffG0Rn0xf29HSkUZoyS77q2-3KzSPxjyQh0zZo5YpnZPRs6T-fT2V7LsupRoGEVTKZ3RUtoLvoDga9ZwJ-F2jj6AToWAo2lgaBb8m0eeysHnwpSS47AQ2UzTSaTSXFemSSIM_uTfU6lAkTzwEzEGC0cE9bg8ZMeuoTgNZMwt5l-AhJ-wjkA_da6NmQYj2kzuviqXu8L4Sx4He7jgLp8hGinxnRH4mBp0PF0sb1BQ0UHLY-Ul9K-1j8Jb000gGYrF_Epl71MFC3ATQkbkddHOPiDl617ozIRg6wtifI3QwsCmGur397nWANinyX9DFLCPSXJOgSD3L2fDYkUAIwma2-v9g2IRdEL2KYX08_r2A-iHlFyag-yaNSQo44AKh4-ZMpK-YuoXPM9kfoFmHhDOhLtuVEvTjGdzFBWvw_1qMP5h_DB-LAbG6U-nPAq3Z_SWIfP2pP99VP5xkKHJB7AjgbE7NsczsF5T5J2rZ0f1QTmmbrSlPQS99WPbzEwskM6NAJPUsVVyj9f8PNFAH58TcVGBQYFOqByqEnD59tUHNk4aM1IPqhCThYWbwUAec1w6qDmFHW5e2m8A8unAx8hhaS1QbD_gBjBR8eVuRfBBGtSrOC1AZkTHUor-qKOEJ1yvHLlcFaj9Eartg-y0hP3px8-8tzRdU-2fITr--Y54VTM6MzJ6FzEBk9Zj-GWYU-3-CsrxQvjG5Ecg&cid=CAASJ-RoxH3piYjIFEtPOgLk4mb_AbXyTeTyy2x8UAsg4bJ9LZ5gQIX5QA&rfl=1%2Chttps%253A%252F%252Fwww.100puan.com%252F%240
IP 142.250.74.34:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7d77606ad5bb8d7501310d18faf247d4
7aedad50259411668fb1f49ef0761fa834ceb586
059c05586c20b575ab07aa7a993de6560f3077196a8d13eaebf071b1b2078e0c
GET /dbm/ad?dbm_c=AKAmf-BAcAexyLpssNHBq0gOD6PN8CqrV_3_FxwuHU9KjcPaj1LpkCPfGAUwtpy89fS9MjvFMzkMtv6y0XfkKFc-dfF31983Bu3IE-6bJOv6QsQsp4qvaAvOqdAgzZgdgyzbXmVBrJEUPeBLfKh_2f2XZFYL9ulQkA&dbm_d=AKAmf-DpREplJQYCP_NcWIt5eUWJ5rwI5ZzhUY8a43HOqeGliuRqO3U5Y3GwazCJy4l_0Ou-tr7BhCZn7awtQ0DGnnDuVdcZCxei6gIATtX6YTDhL5iOHsNVncG-CVLEAq14HC2qBgNSX3rTFhER3mPQaU9CJRUf6DfeOmUT7ryyTTpQhxQ1oqdwq4vzeRrvNkuqgh5p26eKDh4XOYD1YklzQ26AKUjiE7Vanvdar4cIKjpNaQrGT6n_MpLOLMZQpFyd44CjbAxX1K2m3BWcwVrpXszbBCcRTK8k4ujUsZFb9F-7TwQEYyxubHgvqLNpjvbl_s-pL16HDY7_r-aEBtxX2juoWcmn3h8nVdEN3c_H6hz0iLYtZ3FVM0SIGZEjVJQ9RbEyyTgKnCkm2dOJ8Xtc0hc0ZsZB3atDmXEJpevpDOcln5c30_DXpkQ7b82Xgntv1Vb1Y04Of8iQWA1LIL8ukoWo-MU-W4kEbvfHpO7NDeFORV8iRYTKm46-IGkolETlo-uLnGsWIDddVl_P2WG2eEwoF_kKVBZODI6WOAPZ3oSHgi-Jpa3rE4uCsHqXdXAyf72hVASlsH47fTTglAkNUwYesLaSX2jROXDkr9dCq5iJNJ_ragMCn116mwMolLq3t9fGLuxKPVorlxdNjdoujsJnWNWVfDxx9uaL4o61kd_FxzA2HEhABoJNvVJmdIvsC6bq65nChgVVwnE3mXS6A8TbM-3Rx4fq6pMOPiK9PJ5tshZVyEAbpLZ0NL7f6cDsQQdrDqZtRGV5Xks0WN2Jf0FMxAb3IcsGwiG-fgeKOLh4L0pzzqUmu9S9RJ7E3feZwaXm4avo8UtZBIB7kQfWlzQhA1a7qZUvI6UfT1VJm57iRhFjUASp9khueG2P4OB8DQaLdU-q0xIzoXjULq40rOD0jq5HAY-M-_PdiscTut8AaoNojHzei3setJSUvcBuXi-8sZ4XbXg9uY12ok5VoHgVWyY04zniODBjSZyE6g5LhWrJlxjvvBgsE8f1s8zJFQTl2w9u84kjGwirGm0LWQ4qjzGAqjqkpm-1LdS6c3CbHNcjC5rdOB6YyfuvwmlJMzXAbfu5DffnXu6mEW7RYgFQ2ER-0unDLhIgNMVb5bzPRjBfd9lngm2sX3fPYej-ksn2R-dE_Yz1aH6zjqQNQzTSWVmLsChV1Zi7aclmpk_H4SxC-O3dNOiR1CGR9XNWc3Ji54I9E2yL7loKLw5LrgnxopspEvKMKaZT3fsdP0eScYHJQqmsSrbGzrQs7jmshh-qjGv2T_rBnPKe-sdNwhw8lZW15c5gGcuv3V37auiQ37ZNvYAith_eKgi7_gF3YHfcC5kVoHWhaJIzLDagjC7SVTZJrKBXnOPHFU3YqDpbtaBv47-Gbuk7DHG3_uvb0wQZAjYI3AxkAOU_ar6SJCvjBsLTuRtknUG2wywDKfP0zKR4EMd58c7AomQOjhpQ6jX4_WrBpHvc_eeVnqVUZjrhbYuNNpOamuWGlATtVeU3hHCFGrzD_1mSPuK5KU2PG1qzzUm0ux-_tVCKpq52sqbCT6EA_iMMXwSYaZz5EnITiCaIKJZVJgcFf7V_Cxn8ndqX3XLgN3I_wlLvg8-wxH3ss8f1Ls1t9J292h6cz3FA8eX8zZK8fIy3pOT_k-gsoum7USHD_qGezm_cdZOtH8lS8I81sfkJBWaKAEPQmbns5EjdqIV3HewFmAD9M9CrWR5yEs6nfT9ODgSoh9P9Fmnn3UPgZ7p100wsHO8K5Cu9qrC7YQZj7hdu-bgeZUgQWjWuOJHoGUVmrgpUt36GyX0C-PafvFbmUoZVqjEEndAzoKEMC3C12arQ9_9hePOGV__Q358Bnihf5WMS-Rk0Am3nwBoeBDcaTQSparBhyeKCOQJNznYLi32XChBzatYGQh2C5TMZthNHCAs73uttisU0m6G7uw1fsomzfjUHnRxnI1e3zYx3-4imsyMap_6HPlWMgDZ3yOuwIf_lE_zSU9m2WHzoyrG0kay3R3NzfnA6HPzJRHxRRsnbgczV1kUMUVa8cnFGkxzCDrxZ4r7JBJsm0YwWeQMZnM1yrdlpiWRGi562eqANifRLiMwAtcWtuPBVAuCwkGIOAqGlqGDxEcSv81ugtLZvzj4mOtuEH38mUV5yZN0fSoxPFq4tLR-HTQ3QFO51Mu84FbHg12at0aXUze8Mipm-qrtH_d2-aRUMs7vhITBJ9KHiALDjWE6MFFzdjnDA4z8n52hBNFlIu-HA0BWI8Ag_rSn16UxyKlx4bK-2KD2qnkWtgPz7_riuF7CqtQ747Wr6Uu_mo8VdXqsjrwHt_unmzOKxx5e-ZikbS9UBb55Ey6uV71sni_qQTbVwxKSmLgh0LixSQHCa2N9faWvylnWD4SUqVC-JaNN3rq2m00W2AyJY3BE1pjNqSoaUoIVNIqYrlVyHzoQ4cqXRdFVhsLHA1HGkkMClfXKTUoVT9MtSoHRadKlW58hK-QYwJU6k9RcYUNXUanffG0Rn0xf29HSkUZoyS77q2-3KzSPxjyQh0zZo5YpnZPRs6T-fT2V7LsupRoGEVTKZ3RUtoLvoDga9ZwJ-F2jj6AToWAo2lgaBb8m0eeysHnwpSS47AQ2UzTSaTSXFemSSIM_uTfU6lAkTzwEzEGC0cE9bg8ZMeuoTgNZMwt5l-AhJ-wjkA_da6NmQYj2kzuviqXu8L4Sx4He7jgLp8hGinxnRH4mBp0PF0sb1BQ0UHLY-Ul9K-1j8Jb000gGYrF_Epl71MFC3ATQkbkddHOPiDl617ozIRg6wtifI3QwsCmGur397nWANinyX9DFLCPSXJOgSD3L2fDYkUAIwma2-v9g2IRdEL2KYX08_r2A-iHlFyag-yaNSQo44AKh4-ZMpK-YuoXPM9kfoFmHhDOhLtuVEvTjGdzFBWvw_1qMP5h_DB-LAbG6U-nPAq3Z_SWIfP2pP99VP5xkKHJB7AjgbE7NsczsF5T5J2rZ0f1QTmmbrSlPQS99WPbzEwskM6NAJPUsVVyj9f8PNFAH58TcVGBQYFOqByqEnD59tUHNk4aM1IPqhCThYWbwUAec1w6qDmFHW5e2m8A8unAx8hhaS1QbD_gBjBR8eVuRfBBGtSrOC1AZkTHUor-qKOEJ1yvHLlcFaj9Eartg-y0hP3px8-8tzRdU-2fITr--Y54VTM6MzJ6FzEBk9Zj-GWYU-3-CsrxQvjG5Ecg&cid=CAASJ-RoxH3piYjIFEtPOgLk4mb_AbXyTeTyy2x8UAsg4bJ9LZ5gQIX5QA&rfl=1%2Chttps%253A%252F%252Fwww.100puan.com%252F%240 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 18 Sep 2022 20:09:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 35375
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 18-Sep-2022 20:24:47 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4ee5c6443c11da4a5cf7ea801cd0c62f
e742a7ee1cbedf1a23a82361f3873dbc165f927c
e3682e49ed03efcf590a500154380807b54433f8344923e9017994bdf0d46924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 979cbe6f143be636d912642dea0d4a4c
7b5ad15d7b79bfd769099b05b8c022a68eeaa3de
0aaedc983e1de7276bbd5d0c0b78a390510684fedccdbcf2fe19bc42f239ef17
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 18 Sep 2022 20:09:47 GMT
date: Sun, 18 Sep 2022 20:09:47 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-T95X5LkuRiUP8y3witPIAQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash fda02b90c34afa6b67f93978aaffa651
9f1ab4d357f42b3a5d288d5e9fa1d79c84b6d557
bb5826c9e21726ef25b86c339c0132c438a9b5b6a796c9c8d51ea0c1b6af3477
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 18 Sep 2022 20:09:47 GMT
Last-Modified: Sun, 18 Sep 2022 18:40:39 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PDq-e4uGn8Wse1elEI37bxdL15BaeZD3u1t4CHk9SULmLDbtQF42UQ==
Age: 5348
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 921e8a0262005f8ee573fb2b42c1986c
5c75e821cce7f52205386b7264feb86f23eae952
203db2e39e95498c9336df6b8e2814d67a6228aa8531d8b53d3d781878e3d3b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/879366/html_inpage_rendering_lib_200_276.js
216.58.211.6200 OK 60 kB URL HTTP/2 s0.2mdn.net/879366/html_inpage_rendering_lib_200_276.js
IP 216.58.211.6:0
File type ASCII text, with very long lines (2322)
Hash 36b0ba015b3250f6bda9e89b898f4707
635c67d8b08f40705e87e9c81cb138aef9c2ecdb
c70af3ba570296102947920e68bfe252d08de33b0464a910dd8e5d3ac58410f3
GET /879366/html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 60311
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Sep 2022 10:30:23 GMT
expires: Mon, 19 Sep 2022 10:30:23 GMT
cache-control: public, max-age=86400
age: 34764
last-modified: Wed, 02 Mar 2022 23:07:25 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 921e8a0262005f8ee573fb2b42c1986c
5c75e821cce7f52205386b7264feb86f23eae952
203db2e39e95498c9336df6b8e2814d67a6228aa8531d8b53d3d781878e3d3b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.adsafeprotected.com/jload?anId=925113&advId=783245742&campId=14802594851&pubId=1&placementId=396802833&adsafe_par&bundleId=&dealId=&bidurl=https://www.100puan.com/
34.246.41.28200 OK 13 kB URL HTTP/2 pixel.adsafeprotected.com/jload?anId=925113&advId=783245742&campId=14802594851&pubId=1&placementId=396802833&adsafe_par&bundleId=&dealId=&bidurl=https://www.100puan.com/
IP 34.246.41.28:0
File type ASCII text, with very long lines (1308)
Hash c739c6593c00a4c70144f39d7b6e1cbb
e292dd7d248499be382f7cf92d41e146fa1fbef1
63ddb8fc76642c871ae4ff28b17c6c1c8519716d738105b3f5ecdc02f2ff9517
GET /jload?anId=925113&advId=783245742&campId=14802594851&pubId=1&placementId=396802833&adsafe_par&bundleId=&dealId=&bidurl=https://www.100puan.com/ HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:47 GMT
content-type: application/javascript;charset=utf-8
pragma: no-cache
cache-control: no-cache
expires: Wed, 31 Dec 1969 23:59:59 GMT
access-control-allow-origin: pixel.adsafeprotected.com
access-control-allow-credentials: true
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8ec3a890799d9ef4bdd74125c3bb1bd4
8c0d97fb2e4b29fc59060ce7d75620739a1c9877
07bf01cf074247c3cabae8eefee37e5c7ae0901cd0fdc423bbcb46ef2602c887
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 20:09:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 19:58:47 GMT
Expires: Sat, 24 Sep 2022 19:58:46 GMT
Etag: "8c0d97fb2e4b29fc59060ce7d75620739a1c9877"
Cache-Control: max-age=517138,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ccb8a9fc96b50c-OSL
m.exactag.com/ai.aspx?extProvId=63&extPu=lh-mindshare&extProvApi=lh_no&extLi=26928661&extCr=158367340&extPm=322757279&gdpr_consent=&gdpr=
213.202.235.9200 OK 43 B URL HTTP/1.1 m.exactag.com/ai.aspx?extProvId=63&extPu=lh-mindshare&extProvApi=lh_no&extLi=26928661&extCr=158367340&extPm=322757279&gdpr_consent=&gdpr=
IP 213.202.235.9:0
ASN #24961 myLoc managed IT AG
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /ai.aspx?extProvId=63&extPu=lh-mindshare&extProvApi=lh_no&extLi=26928661&extCr=158367340&extPm=322757279&gdpr_consent=&gdpr= HTTP/1.1
Host: m.exactag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Pragma: no-cache
Content-Type: image/gif
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: So, 18 Sep 2022 08:09:48 GMT
P3P: policyref="https://m.exactag.com/w3c/p3p.xml", CP="NOI NID STP STA CUR OUR"
Access-Control-Allow-Origin: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: *
X-ET-Code: 0
X-ET-Camp: 1720
X-ET-Monitoring: 1
Strict-Transport-Security: max-age=31536000
Set-Cookie: exactag_new_gk=0a4c846bd6fb4b779d07d3d4aec8b1d0%7c17.11.2022+20%3a09%3a47; expires=Sat, 17-Dec-2022 20:09:48 GMT; path=/; secure; HttpOnly; SameSite=None
exactag_new_uk=e1880357783d477d91dc5f9ef11f2bc3%7c; expires=Fri, 17-Mar-2023 20:09:48 GMT; path=/; secure; HttpOnly; SameSite=None
session_session=130e52474c3247108b2a667e; path=/; secure; HttpOnly; SameSite=None
Date: Sun, 18 Sep 2022 20:09:47 GMT
Connection: close
Content-Length: 43
cross-origin-resource-policy: cross-origin
X-Xss-Protection: 0
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b417168037cd02cb414797a2fe8a898f
504f56151849a7bfcd36d7e72b39ead79a69bfe8
39238b70192886874fc0362dbf5e2b017f71760665c5d1025d75e4a304ded1f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstcTiSrQdzpj92K-6ue3b6OM5fEVzGh-AwF_gaUStumXErv4maOxMx9Mr42ZOSZ7Hq-gBQ59I-kOBF5oc5htB1lj70x-Vc5GIveh_DlND0Uih0GKgPWsuGQ9fEefj930wMFKUh64iAiNn6lKZWUVsUeAohyhmyqG4y_uAlM4pViLtDmEL8daAiw1fj01EzONbw2iXbc0XbcaMTUBViYdBN91xf-lZu9tAETZV8ESXNZ8VX7YhY0eLQUGbghCm3A_Jr1n7R3wH1dmKLH9ZTw1iW5KGDjvZbRoT-AZs2vScGklMgEPrER_GODsQdgvDoe0p_5HsfYL3MDpGtih7DFBZ4Sxf06Zv4y4V8h1sBN_F99MU8L4EJI9PjehI7MDTBE6eJfu-yqr_ZxXQLyoI6pElKqQ4v1GFlhnwh2xC3I3-ycB1mODGTOC7ZSamWTR4-JWTfV3FYpyk-xguePko_mAy2sJ6OVMVUsSFZNvh_kY54E2BzuRoq7uik1kcm-oTk4IDFJoua1rq8rKnJQJFCp7_jOqudVAKZxxABqD9Ssmd9GSS9ed-oofTZF3AcCmDitqdDhj2-Y09wrRyuO7MZKzffe6bf7Z65FvgvrEEr0qan8GVI3yXyevS0gPfYDx0333d-lEB7tv61ahKCyFWqSZjmUaVILpYEaJfn5s2W240I4pGghircScnZ2-REP3A9SL0tzccmLn16ucJuv1EoID9GMrRHCKL6JKCw9TbG-KgTc9DW2GO26-YrfiXE798TVM8DwO56RK5m9tpPZJ0fvYn8qlC4-mhmiNvtnTgj4gttuk8K999W7mVMAsnx_H0eroVtUi3Pe10PkBVpYa6RYEJKxmaY2TYEwSYuUbPYa94ldq046jyDbSEkfIxdEnzORe6zYC9ViWiA54hzViNYc9hSySur2nLMjPKfqPZLFiizhadvwRrv5F2tg74pG9WdGlPeAmWNnveTZEsx_IhZAKJYGuqbIEbrYHHysQfgjF1VnOGwR-OiwJ5WcdNWDSC3qfgKK5lKW2pClfNF8h2ZCv5tn7r6Kb_bUG6-v2jRWqrY6FMPN5dbgidm_XLaDDCl6AowRSq2aQtnrNqaVYfVgV4kxA_wIpkkx6MxjxKjC0RYIJanjTPq7iOEbvxkCpAqCye_21Hb2xvEmGYNnSjR6qzfL8iW6TJ9PWAmJMmSoL14sLLWhURMvOCJPLi9eR-n1i31dHOF89fmUyEPNdX3pW_0b&sai=AMfl-YTitMjAO8JPmbd9-TjkdGGgBmWCRc8evKlOCS4CvyL4ObFJHbTsEBB5ajyvA55lmyiNmI8FqJEPSduCZkJjl3gndzeD6xgzjG_5q-DHCj8BNq9eenAuvwT6wRDhFIBQg1xKn5O80Td1HtYfiCDTWbKCeMj_LfqTrxkOCkbEmazKFDUCeaS5mgNJbIag81e4Wrn3cG2Gk5QpNIgtxT0zgLlN64JXAHU&sig=Cg0ArKJSzKJsblZhM0a9EAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=200&cbvp=1&cstd=187&cisv=r20220914.98783&adurl=
142.250.74.130200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjstcTiSrQdzpj92K-6ue3b6OM5fEVzGh-AwF_gaUStumXErv4maOxMx9Mr42ZOSZ7Hq-gBQ59I-kOBF5oc5htB1lj70x-Vc5GIveh_DlND0Uih0GKgPWsuGQ9fEefj930wMFKUh64iAiNn6lKZWUVsUeAohyhmyqG4y_uAlM4pViLtDmEL8daAiw1fj01EzONbw2iXbc0XbcaMTUBViYdBN91xf-lZu9tAETZV8ESXNZ8VX7YhY0eLQUGbghCm3A_Jr1n7R3wH1dmKLH9ZTw1iW5KGDjvZbRoT-AZs2vScGklMgEPrER_GODsQdgvDoe0p_5HsfYL3MDpGtih7DFBZ4Sxf06Zv4y4V8h1sBN_F99MU8L4EJI9PjehI7MDTBE6eJfu-yqr_ZxXQLyoI6pElKqQ4v1GFlhnwh2xC3I3-ycB1mODGTOC7ZSamWTR4-JWTfV3FYpyk-xguePko_mAy2sJ6OVMVUsSFZNvh_kY54E2BzuRoq7uik1kcm-oTk4IDFJoua1rq8rKnJQJFCp7_jOqudVAKZxxABqD9Ssmd9GSS9ed-oofTZF3AcCmDitqdDhj2-Y09wrRyuO7MZKzffe6bf7Z65FvgvrEEr0qan8GVI3yXyevS0gPfYDx0333d-lEB7tv61ahKCyFWqSZjmUaVILpYEaJfn5s2W240I4pGghircScnZ2-REP3A9SL0tzccmLn16ucJuv1EoID9GMrRHCKL6JKCw9TbG-KgTc9DW2GO26-YrfiXE798TVM8DwO56RK5m9tpPZJ0fvYn8qlC4-mhmiNvtnTgj4gttuk8K999W7mVMAsnx_H0eroVtUi3Pe10PkBVpYa6RYEJKxmaY2TYEwSYuUbPYa94ldq046jyDbSEkfIxdEnzORe6zYC9ViWiA54hzViNYc9hSySur2nLMjPKfqPZLFiizhadvwRrv5F2tg74pG9WdGlPeAmWNnveTZEsx_IhZAKJYGuqbIEbrYHHysQfgjF1VnOGwR-OiwJ5WcdNWDSC3qfgKK5lKW2pClfNF8h2ZCv5tn7r6Kb_bUG6-v2jRWqrY6FMPN5dbgidm_XLaDDCl6AowRSq2aQtnrNqaVYfVgV4kxA_wIpkkx6MxjxKjC0RYIJanjTPq7iOEbvxkCpAqCye_21Hb2xvEmGYNnSjR6qzfL8iW6TJ9PWAmJMmSoL14sLLWhURMvOCJPLi9eR-n1i31dHOF89fmUyEPNdX3pW_0b&sai=AMfl-YTitMjAO8JPmbd9-TjkdGGgBmWCRc8evKlOCS4CvyL4ObFJHbTsEBB5ajyvA55lmyiNmI8FqJEPSduCZkJjl3gndzeD6xgzjG_5q-DHCj8BNq9eenAuvwT6wRDhFIBQg1xKn5O80Td1HtYfiCDTWbKCeMj_LfqTrxkOCkbEmazKFDUCeaS5mgNJbIag81e4Wrn3cG2Gk5QpNIgtxT0zgLlN64JXAHU&sig=Cg0ArKJSzKJsblZhM0a9EAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=200&cbvp=1&cstd=187&cisv=r20220914.98783&adurl=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjstcTiSrQdzpj92K-6ue3b6OM5fEVzGh-AwF_gaUStumXErv4maOxMx9Mr42ZOSZ7Hq-gBQ59I-kOBF5oc5htB1lj70x-Vc5GIveh_DlND0Uih0GKgPWsuGQ9fEefj930wMFKUh64iAiNn6lKZWUVsUeAohyhmyqG4y_uAlM4pViLtDmEL8daAiw1fj01EzONbw2iXbc0XbcaMTUBViYdBN91xf-lZu9tAETZV8ESXNZ8VX7YhY0eLQUGbghCm3A_Jr1n7R3wH1dmKLH9ZTw1iW5KGDjvZbRoT-AZs2vScGklMgEPrER_GODsQdgvDoe0p_5HsfYL3MDpGtih7DFBZ4Sxf06Zv4y4V8h1sBN_F99MU8L4EJI9PjehI7MDTBE6eJfu-yqr_ZxXQLyoI6pElKqQ4v1GFlhnwh2xC3I3-ycB1mODGTOC7ZSamWTR4-JWTfV3FYpyk-xguePko_mAy2sJ6OVMVUsSFZNvh_kY54E2BzuRoq7uik1kcm-oTk4IDFJoua1rq8rKnJQJFCp7_jOqudVAKZxxABqD9Ssmd9GSS9ed-oofTZF3AcCmDitqdDhj2-Y09wrRyuO7MZKzffe6bf7Z65FvgvrEEr0qan8GVI3yXyevS0gPfYDx0333d-lEB7tv61ahKCyFWqSZjmUaVILpYEaJfn5s2W240I4pGghircScnZ2-REP3A9SL0tzccmLn16ucJuv1EoID9GMrRHCKL6JKCw9TbG-KgTc9DW2GO26-YrfiXE798TVM8DwO56RK5m9tpPZJ0fvYn8qlC4-mhmiNvtnTgj4gttuk8K999W7mVMAsnx_H0eroVtUi3Pe10PkBVpYa6RYEJKxmaY2TYEwSYuUbPYa94ldq046jyDbSEkfIxdEnzORe6zYC9ViWiA54hzViNYc9hSySur2nLMjPKfqPZLFiizhadvwRrv5F2tg74pG9WdGlPeAmWNnveTZEsx_IhZAKJYGuqbIEbrYHHysQfgjF1VnOGwR-OiwJ5WcdNWDSC3qfgKK5lKW2pClfNF8h2ZCv5tn7r6Kb_bUG6-v2jRWqrY6FMPN5dbgidm_XLaDDCl6AowRSq2aQtnrNqaVYfVgV4kxA_wIpkkx6MxjxKjC0RYIJanjTPq7iOEbvxkCpAqCye_21Hb2xvEmGYNnSjR6qzfL8iW6TJ9PWAmJMmSoL14sLLWhURMvOCJPLi9eR-n1i31dHOF89fmUyEPNdX3pW_0b&sai=AMfl-YTitMjAO8JPmbd9-TjkdGGgBmWCRc8evKlOCS4CvyL4ObFJHbTsEBB5ajyvA55lmyiNmI8FqJEPSduCZkJjl3gndzeD6xgzjG_5q-DHCj8BNq9eenAuvwT6wRDhFIBQg1xKn5O80Td1HtYfiCDTWbKCeMj_LfqTrxkOCkbEmazKFDUCeaS5mgNJbIag81e4Wrn3cG2Gk5QpNIgtxT0zgLlN64JXAHU&sig=Cg0ArKJSzKJsblZhM0a9EAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=200&cbvp=1&cstd=187&cisv=r20220914.98783&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sun, 18 Sep 2022 20:09:48 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 18-Sep-2022 20:24:48 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 18 Sep 2022 20:09:48 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b417168037cd02cb414797a2fe8a898f
504f56151849a7bfcd36d7e72b39ead79a69bfe8
39238b70192886874fc0362dbf5e2b017f71760665c5d1025d75e4a304ded1f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:09:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.adsafeprotected.com/main.19.8.352.js
54.230.111.114200 OK 61 kB URL HTTP/2 static.adsafeprotected.com/main.19.8.352.js
IP 54.230.111.114:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8fc6ea260882a4861c6e776c457501de
0e99f958ddc23d2749b646c00f29af87142f9f0d
969abe72c13de6d47400fdefe65e70cb003daf20b266e8ead33d89471f286b75
GET /main.19.8.352.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 16 Sep 2022 16:51:38 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 16 Sep 2022 14:19:29 GMT
etag: W/"067a9552174cd536b5cfa4275edeb714"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: FMIaS.d5OYtGezR2pElSzU33tDJuO5Hk
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZLJBhx19k9CCU2GLrQvPuYdEHLU9mHYtQaj-2YLwjHncg67uyS5dXA==
age: 184691
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/mon?anId=925113&advId=783245742&campId=14802594851&pubId=1&placementId=396802833&adsafe_par&bundleId=&dealId=&bidurl=https://www.100puan.com/&adsafe_url=https%3A%2F%2Fwww.100puan.com%2F&adsafe_type=e&adsafe_url=https%3A%2F%2F90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com%2F&adsafe_type=f&adsafe_url=https%3A%2F%2F90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-38%2Fhtml%2Fcontainer.html&adsafe_type=d&adsafe_jsinfo=,id:8993f859-ca16-e9ae-6d7c-68ebfdc1b0db,c:oBb9tV,sl:inView,em:true,fr:false,thd:1,mn:jsserver-primary-6c95fbbff-mwqrl,rg:ie,pt:1-5-15,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:1251,mot:0,app:0,maw:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,pl:,rmeas:1,rend:1,renddet:DIV.qs.sn,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:1279,oid:d844fe9e-378d-11ed-858a-7aec2ac44062,v:19.8.352,sp:1,st:0,fwm:0,wr:1280.1024,sr:1280.1024,ov:0
34.246.41.28200 OK 43 B URL HTTP/2 pixel.adsafeprotected.com/mon?anId=925113&advId=783245742&campId=14802594851&pubId=1&placementId=396802833&adsafe_par&bundleId=&dealId=&bidurl=https://www.100puan.com/&adsafe_url=https%3A%2F%2Fwww.100puan.com%2F&adsafe_type=e&adsafe_url=https%3A%2F%2F90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com%2F&adsafe_type=f&adsafe_url=https%3A%2F%2F90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-38%2Fhtml%2Fcontainer.html&adsafe_type=d&adsafe_jsinfo=,id:8993f859-ca16-e9ae-6d7c-68ebfdc1b0db,c:oBb9tV,sl:inView,em:true,fr:false,thd:1,mn:jsserver-primary-6c95fbbff-mwqrl,rg:ie,pt:1-5-15,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:1251,mot:0,app:0,maw:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,pl:,rmeas:1,rend:1,renddet:DIV.qs.sn,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:1279,oid:d844fe9e-378d-11ed-858a-7aec2ac44062,v:19.8.352,sp:1,st:0,fwm:0,wr:1280.1024,sr:1280.1024,ov:0
IP 34.246.41.28:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /mon?anId=925113&advId=783245742&campId=14802594851&pubId=1&placementId=396802833&adsafe_par&bundleId=&dealId=&bidurl=https://www.100puan.com/&adsafe_url=https%3A%2F%2Fwww.100puan.com%2F&adsafe_type=e&adsafe_url=https%3A%2F%2F90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com%2F&adsafe_type=f&adsafe_url=https%3A%2F%2F90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com%2Fsafeframe%2F1-0-38%2Fhtml%2Fcontainer.html&adsafe_type=d&adsafe_jsinfo=,id:8993f859-ca16-e9ae-6d7c-68ebfdc1b0db,c:oBb9tV,sl:inView,em:true,fr:false,thd:1,mn:jsserver-primary-6c95fbbff-mwqrl,rg:ie,pt:1-5-15,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,mu:10000,br:g,bru:g,an:n,oam:0,scm:publ1.grpm1,mtim:1251,mot:0,app:0,maw:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,pl:,rmeas:1,rend:1,renddet:DIV.qs.sn,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,tt:jload,et:1279,oid:d844fe9e-378d-11ed-858a-7aec2ac44062,v:19.8.352,sp:1,st:0,fwm:0,wr:1280.1024,sr:1280.1024,ov:0 HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:49 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: app14.ie.303net.net
X-Firefox-Spdy: h2
static.adsafeprotected.com/sca.17.5.12.js
54.230.111.114200 OK 22 kB URL HTTP/2 static.adsafeprotected.com/sca.17.5.12.js
IP 54.230.111.114:0
Hash cbcdfa524a58324935793376fe0c5d06
0d5ba865670cb3181f6b0049ec949e630b12133e
a290130121a6e8ddc1093531076a0eb608e3875d2c0b8551073a9ce5562d426f
GET /sca.17.5.12.js HTTP/1.1
Host: static.adsafeprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 16 Jul 2022 09:09:25 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 19 Aug 2021 16:31:24 GMT
etag: W/"9304f57298c3834ff107ea7ccb547996"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: 9YodSBhG3Q8HTUbQ_WDUpcPK09tSZ5ja
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nGD6kMubzx-ggmMySRP8MbRUHaWw9WC1AT2oy4iWfkoVTqBMh1u2NQ==
age: 5569225
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 9e5f51721c19e549c29e19780549b2c8
5d313e167c328eeabbb708c72874ed2f2974f76b
9bc83884fedb37a5522dc7f9461e6c4f2b92872f036e1bb1e3984eade16598fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 18 Sep 2022 20:09:50 GMT
Last-Modified: Sun, 18 Sep 2022 18:28:15 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 369-jAX6EyK8VGIq2ohxQyv6OSSkSEQFt_PVhqEQCcFwU0z-VvjKqw==
Age: 6095
dt.adsafeprotected.com/dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9GJ,pingTime:-2,time:2073,type:a,im:%7BpBlk:1291,sf:0,pom:1,prf:%7BbeA:430,beZ:431,mfA:1683,cmA:1684,inA:1684,inZ:1687,prA:1687,prZ:1701,si:1709,poA:1711,bl:1722,poZ:1722,cmZ:1722,mfZ:1722,ecZ:1953,loA:2069,loZ:2073,ltA:2502,ltZ:2502,mdA:431,mdZ:801,idA:1711,idZ:1752%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:728.90,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:76,vs:i,r:,w:728,h:90,t:1278%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2073,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:1278,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,bkn:%7Bpiv:%5B820~75%5D,as:%5B820~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:jload,dtt:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:1280,sis:1522,sinceFw:790,readyFired:true%7D&br=g
44.239.77.25200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9GJ,pingTime:-2,time:2073,type:a,im:%7BpBlk:1291,sf:0,pom:1,prf:%7BbeA:430,beZ:431,mfA:1683,cmA:1684,inA:1684,inZ:1687,prA:1687,prZ:1701,si:1709,poA:1711,bl:1722,poZ:1722,cmZ:1722,mfZ:1722,ecZ:1953,loA:2069,loZ:2073,ltA:2502,ltZ:2502,mdA:431,mdZ:801,idA:1711,idZ:1752%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:728.90,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:76,vs:i,r:,w:728,h:90,t:1278%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2073,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:1278,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,bkn:%7Bpiv:%5B820~75%5D,as:%5B820~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:jload,dtt:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:1280,sis:1522,sinceFw:790,readyFired:true%7D&br=g
IP 44.239.77.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9GJ,pingTime:-2,time:2073,type:a,im:%7BpBlk:1291,sf:0,pom:1,prf:%7BbeA:430,beZ:431,mfA:1683,cmA:1684,inA:1684,inZ:1687,prA:1687,prZ:1701,si:1709,poA:1711,bl:1722,poZ:1722,cmZ:1722,mfZ:1722,ecZ:1953,loA:2069,loZ:2073,ltA:2502,ltZ:2502,mdA:431,mdZ:801,idA:1711,idZ:1752%7D%7D,sca:%7Bdfp:%7Bdf:4,sz:728.90,dom:div%7D%7D,env:%7Bgca:false,cca:false,gca2:false%7D,clog:%5B%7Bpiv:76,vs:i,r:,w:728,h:90,t:1278%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2073,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:1278,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,bkn:%7Bpiv:%5B820~75%5D,as:%5B820~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:jload,dtt:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:1280,sis:1522,sinceFw:790,readyFired:true%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:50 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt22.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9Nh,pingTime:-10,time:2479,type:s,mvn:ZnNjPTEyLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNS4xMnYxMDAyfHwxMjgwfHwxfHwxfHwyNHx8MTAyNHx8MHx8MHx8MXx8bGFuZHNjYXBlLXByaW1hcnl8fDI0fHw1LzR8fDUvNHx8MHx8MTI4MA--,no:MTcuNS4xMnZNb3ppbGxhfHxOZXRzY2FwZXx8bnx8bnx8MHx8bnx8TGludXggeDg2XzY0fHxHZWNrb3x8MjAxMDAxMDF8fDB8fE1vemlsbGEvNS4wIChYMTE7IExpbnV4IHg4Nl82NDsgcnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wfHwxfHwxfHxufHxu,ch:n,fsc:17.5.12v222002022000220000022202220000022222200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220020202220022222202000220020002222222202222002002022002222200000000020200000000000000202220,asp:1663531771659%7C%7Ceb8df9b528e1cf5a5a076f0a11b60387%7C%7C9df76ce1ec81221482cf5ba7f1d27150%7C%7C9034ac299f21ab43aa5cbaa52b959cde%7C%7Cd16686e0d7fa057eb1eb19bd47605ecb%7C%7C4ac3f0d1c74ba5b70d4c4925af1ca911%7C%7C80cc66e65fa0eedd5a6e01ac6f4b60cd%7C%7Cf04ff6f961b76ee63861bc429137741f%7C%7C1629390669%7D
44.239.77.25200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9Nh,pingTime:-10,time:2479,type:s,mvn:ZnNjPTEyLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNS4xMnYxMDAyfHwxMjgwfHwxfHwxfHwyNHx8MTAyNHx8MHx8MHx8MXx8bGFuZHNjYXBlLXByaW1hcnl8fDI0fHw1LzR8fDUvNHx8MHx8MTI4MA--,no:MTcuNS4xMnZNb3ppbGxhfHxOZXRzY2FwZXx8bnx8bnx8MHx8bnx8TGludXggeDg2XzY0fHxHZWNrb3x8MjAxMDAxMDF8fDB8fE1vemlsbGEvNS4wIChYMTE7IExpbnV4IHg4Nl82NDsgcnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wfHwxfHwxfHxufHxu,ch:n,fsc:17.5.12v222002022000220000022202220000022222200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220020202220022222202000220020002222222202222002002022002222200000000020200000000000000202220,asp:1663531771659%7C%7Ceb8df9b528e1cf5a5a076f0a11b60387%7C%7C9df76ce1ec81221482cf5ba7f1d27150%7C%7C9034ac299f21ab43aa5cbaa52b959cde%7C%7Cd16686e0d7fa057eb1eb19bd47605ecb%7C%7C4ac3f0d1c74ba5b70d4c4925af1ca911%7C%7C80cc66e65fa0eedd5a6e01ac6f4b60cd%7C%7Cf04ff6f961b76ee63861bc429137741f%7C%7C1629390669%7D
IP 44.239.77.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9Nh,pingTime:-10,time:2479,type:s,mvn:ZnNjPTEyLHNkPTMsbm89OCxhc3A9MQ--,sd:MTcuNS4xMnYxMDAyfHwxMjgwfHwxfHwxfHwyNHx8MTAyNHx8MHx8MHx8MXx8bGFuZHNjYXBlLXByaW1hcnl8fDI0fHw1LzR8fDUvNHx8MHx8MTI4MA--,no:MTcuNS4xMnZNb3ppbGxhfHxOZXRzY2FwZXx8bnx8bnx8MHx8bnx8TGludXggeDg2XzY0fHxHZWNrb3x8MjAxMDAxMDF8fDB8fE1vemlsbGEvNS4wIChYMTE7IExpbnV4IHg4Nl82NDsgcnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wfHwxfHwxfHxufHxu,ch:n,fsc:17.5.12v222002022000220000022202220000022222200000222202022200002020222002222202202222202022222022220000220200000022222222220222222222222202222222222222222222222222222222222222200000022022020020202222222202002022022222222000000000020222202022222220002220022020000220200000002000022202220000022200202202220022000200222022220220020202220022222202000220020002222222202222002002022002222200000000020200000000000000202220,asp:1663531771659%7C%7Ceb8df9b528e1cf5a5a076f0a11b60387%7C%7C9df76ce1ec81221482cf5ba7f1d27150%7C%7C9034ac299f21ab43aa5cbaa52b959cde%7C%7Cd16686e0d7fa057eb1eb19bd47605ecb%7C%7C4ac3f0d1c74ba5b70d4c4925af1ca911%7C%7C80cc66e65fa0eedd5a6e01ac6f4b60cd%7C%7Cf04ff6f961b76ee63861bc429137741f%7C%7C1629390669%7D HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:50 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt23.or.303net.net
X-Firefox-Spdy: h2
dt.adsafeprotected.com/dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9Qm,pingTime:1,time:2670,type:p,im:%7BpWait:106%7D,clog:%5B%7Bpiv:76,vs:i,r:,w:728,h:90,t:1278%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2670,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:1278,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1416~75%5D,as:%5B1416~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:jload,dtt:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:1280,sis:1522%7D&br=g
44.239.77.25200 OK 43 B URL HTTP/2 dt.adsafeprotected.com/dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9Qm,pingTime:1,time:2670,type:p,im:%7BpWait:106%7D,clog:%5B%7Bpiv:76,vs:i,r:,w:728,h:90,t:1278%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2670,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:1278,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1416~75%5D,as:%5B1416~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:jload,dtt:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:1280,sis:1522%7D&br=g
IP 44.239.77.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /dt?anId=925113&asId=8993f859-ca16-e9ae-6d7c-68ebfdc1b0db&tv=%7Bc:oBb9Qm,pingTime:1,time:2670,type:p,im:%7BpWait:106%7D,clog:%5B%7Bpiv:76,vs:i,r:,w:728,h:90,t:1278%7D%5D,es:0,sc:1,ha:1,fgad:1,fif:0,gmnp:0,for:1,b11:0,cnod:1,gm:1,slTimes:%7Bi:2670,o:0,n:0,pp:0,pm:0%7D,slEvents:%5B%7Bsl:i,t:1278,wc:0.0.1280.1024,ac:270.934.728.90,am:i,cc:270.934.728.90,piv:76,obst:0,th:0,reas:,bkn:%7Bpiv:%5B1416~75%5D,as:%5B1416~728.90%5D%7D%7D%5D,slEventCount:1,em:true,fr:false,e:,tt:jload,dtt:0,fm:thONLVq+11%7C12*.925113%7C121%7C122%7C123%7C13%7C14%7C151%7C152%7C153%7C161%7C162%7C163%7C1711%7C1712,idMap:12*,rmeas:1,rend:1,renddet:DIV.qs.sn,siq:1280,sis:1522%7D&br=g HTTP/1.1
Host: dt.adsafeprotected.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://90693f3f3c10407d4138463b41ac410f.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:50 GMT
content-type: image/gif
content-length: 43
server: nginx
p3p: CP="COM NAV INT STA NID OUR IND NOI"
pragma: no-cache
cache-control: no-cache
x-server-name: dt03.or.303net.net
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc51940d1-99ea-441e-9490-3c863b1c3f7b.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc51940d1-99ea-441e-9490-3c863b1c3f7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 317bec00e52d8d6e4262f1012671398d
faff41cb28c468d04dd70fe08345eb592e761682
752624baf3cb635f20b641b2cc7e2e7a51314b1f78ffa9967e0670cb85ff7d45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc51940d1-99ea-441e-9490-3c863b1c3f7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6790
x-amzn-requestid: 1071b2d1-fee2-440a-9bcb-4554aec54979
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7gxGLroAMFnaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632572d1-3a9e245c559ca7d42c51d5bf;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:10:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9uRRFnN4xldQYbXHKMLV6WIv_nOp_jQjZ2rtq7ReYTl99mC2ouuXiA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:14:37 GMT
age: 46516
etag: "faff41cb28c468d04dd70fe08345eb592e761682"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.100puan.com/wp-content/litespeed/css/b387732b2f77138dcecd7f12683da911.css?ver=0666a
172.67.209.116200 OK 0 B URL HTTP/2 www.100puan.com/wp-content/litespeed/css/b387732b2f77138dcecd7f12683da911.css?ver=0666a
IP 172.67.209.116:0
GET /wp-content/litespeed/css/b387732b2f77138dcecd7f12683da911.css?ver=0666a HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/?c=2zkOb
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:45 GMT
content-type: text/css
cache-control: max-age=31557600
cf-bgj: minify
cf-polished: origSize=422983
expires: Sat, 09 Sep 2023 19:30:48 GMT
last-modified: Fri, 09 Sep 2022 13:30:48 GMT
cf-cache-status: HIT
age: 801537
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OaOtVdZ7KFsOBkSisr3gH7tj25DDXQsxCwV7RLWhyvGRfPulKiY%2Bjj5xPEw2CPaDI%2B5ol6vEeiU6DTbXco6Lb2VWrtZJuRPf%2BXOG9eA7aI%2BoYBm1T2DIBhj5Qh%2FurOvuCTk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb89e0f4c0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lnk.news/2zkOb
104.21.9.83302 Found 0 B IP 104.21.9.83:0
Analyzer Verdict Alert fortinet Phishing
GET /2zkOb HTTP/1.1
Host: lnk.news
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 18 Sep 2022 20:09:44 GMT
content-type: text/html; charset=UTF-8
location: https://100puan.com?c=2zkOb
cache-control: no-cache, private
x-frame-options: DENY
set-cookie: XSRF-TOKEN=eyJpdiI6IlFXeDVna0tuUVRNeTU3RjlJdDhkbWc9PSIsInZhbHVlIjoic1diRndleGJUM2lCNmxteTZrbVl5a1JEc1V0OHpJUFNRakM3eG1vSytVTFpxQkh6d3dXbjNMajdOVVV6OVBVRyIsIm1hYyI6IjFiNjE1NjJkNzcyZTM1ZjQzN2EzMzIyMWYyOWExN2ZmNjFiYTZhZTYyMWZiMjNkZmIxN2JjMGJiODZjNGM2NGUifQ%3D%3D; expires=Sun, 18-Sep-2022 22:09:44 GMT; Max-Age=7200; path=/
pubiza_session=eyJpdiI6IlRGdk9vMUxIMm56TVwvVTh3QlpoY2FBPT0iLCJ2YWx1ZSI6InB1UHZyRkloRll6OVJmQUlQWUNOUGt4SFByZHVpNXMxU2FZSXBmSnB4NFExeFg5cUk1VUVDOEk4a2htdktRQjgiLCJtYWMiOiJiNTgwMjNjNzFlODdhZWU2MjJkNzg4NTE2MzRkYTA1Njg2YjgzZmYxYjdlN2JjMGQwZWIzYzg4YmE3OTA1MjExIn0%3D; expires=Sun, 18-Sep-2022 22:09:44 GMT; Max-Age=7200; path=/; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VNdA9Qyc0h0RMqGpdarA4T5taQGgYjoKBsvHg11RqdvkMk95%2FVPR1VUoXnhk5qYi6Uf%2BTNRyT7skcHwK7pc7zgxpYvX4x0qqVytK7DgoPT3H%2FIC0I4%2BV1NgBrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ccb895bfe4b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
100puan.com/?c=2zkOb
172.67.209.116301 Moved Permanently 0 B IP 172.67.209.116:0
GET /?c=2zkOb HTTP/1.1
Host: 100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sun, 18 Sep 2022 20:09:44 GMT
content-type: text/html; charset=UTF-8
location: https://www.100puan.com/?c=2zkOb
x-dns-prefetch-control: on
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-litespeed-tag: 785_HTTP.200,785_HTTP.301
x-redirect-by: WordPress
set-cookie: PHPSESSID=22f78489168543c059b51a4798465b8f; path=/; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qYX7D2JGh426P7forDZs8ebwHjkhzRIhLJ7kgMASw9WVX6bulQU9dJA9PK8DynjZ1A%2F%2FhQo2BJXqZzez6ERFazs%2FjacE0G%2BlMtetNap6ofFkz78Omt5PYQzCwFuUpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ccb8968a2d0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/themes/boombox/scss/icon-fonts/fonts/ui-icomoon.ttf?hv0pr7
172.67.209.116200 OK 0 B URL HTTP/2 www.100puan.com/wp-content/themes/boombox/scss/icon-fonts/fonts/ui-icomoon.ttf?hv0pr7
IP 172.67.209.116:0
GET /wp-content/themes/boombox/scss/icon-fonts/fonts/ui-icomoon.ttf?hv0pr7 HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/wp-content/litespeed/css/b387732b2f77138dcecd7f12683da911.css?ver=0666a
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:46 GMT
content-type: font/ttf
last-modified: Tue, 08 Mar 2022 10:29:05 GMT
cache-control: max-age=31557600
expires: Fri, 01 Sep 2023 15:58:06 GMT
cf-cache-status: HIT
age: 254021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MLpirJ2anG8H4oy1HpbxKQCef9In7umyToTdWLrhafBy7yuEux0qd4YCdtjleDX%2Bhylv8%2F9Dv8Tyiu8zDATCeMAKIxHLjdieHtbD4DkgdXMPa%2Fg1cbhuTp1MZH74YK2SwOM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a18b3a0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.100puan.com/wp-content/themes/boombox/fonts/icon-fonts/icomoon/fonts/bb-icomoon.ttf?tppylb
172.67.209.116200 OK 0 B URL HTTP/2 www.100puan.com/wp-content/themes/boombox/fonts/icon-fonts/icomoon/fonts/bb-icomoon.ttf?tppylb
IP 172.67.209.116:0
GET /wp-content/themes/boombox/fonts/icon-fonts/icomoon/fonts/bb-icomoon.ttf?tppylb HTTP/1.1
Host: www.100puan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.100puan.com/wp-content/litespeed/css/b387732b2f77138dcecd7f12683da911.css?ver=0666a
Cookie: PHPSESSID=05d52b8c8df302ed15a00c7af1422a6b; _lscache_vary=3155f64791e1e8f37c1d361ba2270161
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:09:46 GMT
content-type: font/ttf
last-modified: Tue, 08 Mar 2022 10:29:04 GMT
cache-control: max-age=31557600
expires: Wed, 23 Aug 2023 16:46:58 GMT
cf-cache-status: HIT
age: 254021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4%2FU1q6pmPhMwwvwC5Csg8v1s5bSJrhNDdWq5VxdejrN9M6zeAd8LWZEyXf0nnqVSlMsRzutZDeSg8JlX4hdwIev1BU6FIJxasqrrlc2kvvXoUYL%2FWp8AdNyHgxHek8HUyEQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb8a18b3d0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2