Report - accountcalifornia.com/

Report Overview

Submitted URL
accountcalifornia.com/
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-11-01 06:16:35
Access
public
Website Title
D5BET.COM-O melhor em toda a rede
Final URL
www.d5vip11.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-10-31	666 B	1.4 kB	142.250.74.131
www.furxcrw.com	unknown	2023-08-12	2023-10-07	2023-10-17	541 B	45 kB	104.21.10.5
d5vip20.com	unknown	2023-08-20	2023-09-28	2023-10-27	438 B	721 B	47.246.2.210
www.accountcalifornia.com	unknown	unknown	No data	No data	5.2 kB	380 kB	188.114.96.1
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-10-31	424 B	94 kB	142.250.74.168
ocsp2.globalsign.com	1544	1999-04-19	2012-05-23	2023-10-31	1.4 kB	7.7 kB	104.18.20.226
api.fpjs.io	29998	2019-03-08	2019-03-25	2023-10-31	439 B	627 B	13.248.176.92
d5vip18.com	unknown	2023-08-20	2023-09-28	2023-10-28	438 B	721 B	47.246.2.215
www.d5vip11.com	unknown	2023-08-11	2023-08-29	2023-10-28	18 kB	385 kB	143.204.55.38
7roft1-769-ppp.oss-accelerate.aliyuncs.com	unknown	2012-04-01	2023-10-07	2023-10-28	33 kB	1.9 MB	47.254.187.186
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-10-31	680 B	1.8 kB	143.204.53.97
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2023-10-31	1.4 kB	874 B	216.239.34.36
fpnpmcdn.net	unknown	2022-03-23	2022-03-23	2023-10-31	429 B	45 kB	54.230.111.110
d5vip13.com	unknown	2023-08-20	2023-09-05	2023-10-28	438 B	721 B	47.246.2.179
ocsp.crlocsp.cn	175388	2019-11-13	2020-04-10	2023-10-31	329 B	353 B	101.198.193.5

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-01 06:16:26	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-11-01 06:16:26	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-11-01 06:16:27	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2023-11-01 06:16:27	low	Client IP	64.233.164.127	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	www.d5vip11.com/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=D5BET.COM-O%20melhor%20em%20toda%20a%20rede&t=5662732	78 kB	2023-09-09	2024-07-27
Pretty URL www.d5vip11.com/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=D5BET.COM-O%20melhor%20em%20toda%20a%20rede&t=5662732 IP 143.204.55.38 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-09 21:51:15 Last Seen2024-07-27 00:15:24 Times Seen42 Hash 0b025d380c74742833f794a9aa904275 4d7dd51e5e5916006e70d7f600c0abfd4648d636 b8d9d4220c071aab8d60c6efbf304acf827a822f26cb4497f7467d548f5a6763 Loading...

		Size	First Seen	Last Seen
	#1 Write - 4846af1eb1028ac926983da93f206a91	80 B	2023-10-13	2024-01-10
Pretty Observations First Seen2023-10-13 18:29:54 Last Seen2024-01-10 05:36:38 Times Seen28 Hash 4846af1eb1028ac926983da93f206a91 fd2192378e9ef6c0b2cb368cf4d1e9aebc2e253d 1e93320be2db3d0f9f6913ddc105902d07ffdf510760be37e526d798a6bd487e Loading...

	#2 Write - 4c0c0b3ab3874786107b72fcc7b7076b	156 B	2023-10-13	2024-01-10
Pretty Observations First Seen2023-10-13 18:29:54 Last Seen2024-01-10 05:36:38 Times Seen28 Hash 4c0c0b3ab3874786107b72fcc7b7076b 5b4d669a5e9428fb23e95170ee8970eda7775e20 2d101caa615fb587852dfc128b447c6752bc0c6b386c3671c943b60ff02a03b4 Loading...

HTTP Transactions (98)

	URL	IP	Response	Size
	www.accountcalifornia.com/	188.114.96.1		0 B
URL www.accountcalifornia.com/ IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 301 Moved Permanently Date: Wed, 01 Nov 2023 06:16:16 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Wed, 01 Nov 2023 07:16:16 GMT Location: https://www.accountcalifornia.com/ Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZT8rrXoQVvQFNTBT9WHCsk3Z6iyflKIvB%2BivyPteKE6aWU6vERXd8TLrM38ehZYun6xqq3bjee1A8LQYI05kT%2BDgiVrcEMuhcDaOenpDeEGCU2jIrMMDfUmmvXAJRdcxx0cda4NFyC0s9mOB"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 81f202117d3e56b1-OSL alt-svc: h2=":443"; ma=60

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8f3dead87317ffa593beda4662d355db e764c31672a1958b7801556cfd864b4a5253f1a3 4dde35ac9bff1db0056e4020d2b7e55c9b8377954c97bbac0c2fbbebb33a90a1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Nov 2023 06:16:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?id=G-EF3MMFMF5C	142.250.74.168		93 kB
URL www.googletagmanager.com/gtag/js?id=G-EF3MMFMF5C IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (5955) Size 93 kB (92917 bytes) Hash 57c5489b6d45cd5d8103dbe56e446590 94e766d28ebb60acf7d8d9e8c5728164a8af2275 45099153c337c3b0d61266ecfb296180c6cfbd0ea4a2df7ddf4020edc14c70c8 HTTP Headers `GET /gtag/js?id=G-EF3MMFMF5C HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.furxcrw.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 01 Nov 2023 06:16:19 GMT expires: Wed, 01 Nov 2023 06:16:19 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 92917 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8f3dead87317ffa593beda4662d355db e764c31672a1958b7801556cfd864b4a5253f1a3 4dde35ac9bff1db0056e4020d2b7e55c9b8377954c97bbac0c2fbbebb33a90a1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Nov 2023 06:16:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.r2m01.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m01.amazontrust.com/ IP 143.204.53.97:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash ce6a474d3662e393d916d00220d3807d 9c29db0fd46244fadf8bd113fcd0de02ead40dc8 0a48a22195834e0ca997e1a63d765c92c439065d5c81c3c3fb1a718001147f71 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: max-age=7200 Date: Wed, 01 Nov 2023 06:16:20 GMT Server: ECAcc (amb/6AD5) X-Cache: Miss from cloudfront Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Dm2pS6evHVyoA_bJhvFxKzXlnhx0qcewTZoEyZ47MLKnwCtVgQxGlQ==`

	region1.analytics.google.com/g/collect?v=2&tid=G-EF3MMFMF5C&gtm=45je3au1v9138807182&_p=1577014210&_gaz=1&gcd=11l1l1l1l1&cid=1432823911.1698819381&ul=en-us&sr=1280x1024&_s=1&sid=1698819380&sct=1&seg=0&dl=https%3A%2F%2Fwww.furxcrw.com%2Findex.html&dr=https%3A%2F%2Fwww.accountcalifornia.com%2F&dt=Redict&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1	216.239.34.36		0 B
URL region1.analytics.google.com/g/collect?v=2&tid=G-EF3MMFMF5C&gtm=45je3au1v9138807182&_p=1577014210&_gaz=1&gcd=11l1l1l1l1&cid=1432823911.1698819381&ul=en-us&sr=1280x1024&_s=1&sid=1698819380&sct=1&seg=0&dl=https%3A%2F%2Fwww.furxcrw.com%2Findex.html&dr=https%3A%2F%2Fwww.accountcalifornia.com%2F&dt=Redict&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP 216.239.34.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-EF3MMFMF5C&gtm=45je3au1v9138807182&_p=1577014210&_gaz=1&gcd=11l1l1l1l1&cid=1432823911.1698819381&ul=en-us&sr=1280x1024&_s=1&sid=1698819380&sct=1&seg=0&dl=https%3A%2F%2Fwww.furxcrw.com%2Findex.html&dr=https%3A%2F%2Fwww.accountcalifornia.com%2F&dt=Redict&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.furxcrw.com DNT: 1 Connection: keep-alive Referer: https://www.furxcrw.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://www.furxcrw.com date: Wed, 01 Nov 2023 06:16:20 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	www.d5vip11.com/?cid=927509&languageCode=pt&type=2&currency=BRL	143.204.55.38		20 kB
URL www.d5vip11.com/?cid=927509&languageCode=pt&type=2&currency=BRL IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65162), with no line terminators Size 20 kB (20213 bytes) Hash f8dc59dd76c1513e3c0f41485f5f1c1b 4736017dcd1c24fb6165eb3fe16b283abfb5a8fa 98adf803cf6e920b6330b4df0825f9d97761c6ad0d4e55a323fe90e053f2dfe4 HTTP Headers GET /?cid=927509&languageCode=pt&type=2&currency=BRL HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: text/html; charset=utf-8 date: Wed, 01 Nov 2023 06:16:21 GMT server: nginx x-powered-by: Express web-cache-status: DYNAMIC etag: W/"15a4a-RzYBfc0cJPthZes/4WsoOr+1qPo" cache-control: s-maxage=300,max-age=0,public content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: oVWiRAwdOufX5SlNKYgZbHS9G_rQo-84biSYBaQ4j9f7NE_4i88shQ== X-Firefox-Spdy: h2`

	fpnpmcdn.net/v3/hoJaVRIQzqfcJPVu25Fx/loader_v3.8.1.js	54.230.111.110		44 kB
URL fpnpmcdn.net/v3/hoJaVRIQzqfcJPVu25Fx/loader_v3.8.1.js IP 54.230.111.110:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65424) Size 44 kB (44097 bytes) Hash 8aa61fa90f7040136c33261f685c0267 2ea80487d44fb85be19b2dc42925bd20124a68ae f7cdbdb8783599a722074c2ef4b2bec105bf1e110037358321c281c910f930a0 HTTP Headers `GET /v3/hoJaVRIQzqfcJPVu25Fx/loader_v3.8.1.js HTTP/1.1 Host: fpnpmcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 server: CloudFront access-control-allow-origin: * cross-origin-resource-policy: cross-origin timing-allow-origin: * strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff content-encoding: br date: Sun, 29 Oct 2023 21:05:34 GMT cache-control: public, max-age=3433, s-maxage=621892 etag: W/"LqgEh9RPuFvhmy3EKSW9IBJKaK4" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 61SGulCds0lUTrcp2oI9DDKcbKmQeDeEVd3_d-Y7RpVRWFJ3w0w3yQ== age: 205949 X-Firefox-Spdy: h2

	www.accountcalifornia.com/themes/simpleboot3/public/js/wow.js	188.114.96.1		2.9 kB
URL www.accountcalifornia.com/themes/simpleboot3/public/js/wow.js IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (881) Size 2.9 kB (2939 bytes) Hash e17541af36fa7eb00d0fb866c6b8468e 86b7f7bf983d98ac71bf9e32a2a4d0b848b4e173 b8059cae8c745d590e3d68942537f931a5f40c32e8b9ca423fd21fefe7962a73 HTTP Headers `GET /themes/simpleboot3/public/js/wow.js HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: text/javascript;charset=UTF-8 vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS last-modified: Wed, 01 Nov 2023 06:16:17 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c9ec6z%2BM%2Flq1IDdQRmc7vlK82ZAYqoUHYj1NXKWSXHGzJpLlvLLkW5cd%2FFOpViA%2FHemeJNJ9rhGN0vQRjvLAGUAnYUYJxsJLNIQYvr4d9XUNjL3YM4G%2BA0%2BfJGfdNGNuiwn6jNoQwf9%2FSurk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f20215be61b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.accountcalifornia.com/themes/simpleboot3/public/js/waypoints.js	188.114.96.1		2.8 kB
URL www.accountcalifornia.com/themes/simpleboot3/public/js/waypoints.js IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (8668) Size 2.8 kB (2822 bytes) Hash c26a1e34c0dbe72e8fdb88066f20454e 6c7784b4be6f8e862fed8f9132b7aca343929fb7 dba26d999d5b91e202a1c4c05857600ba010763642967e2fc84524d3795261df HTTP Headers `GET /themes/simpleboot3/public/js/waypoints.js HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: text/javascript;charset=UTF-8 vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS last-modified: Wed, 01 Nov 2023 06:16:17 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rysh%2FbGudTrswxw1bm17%2BOy9mvOHZCtE5ZcScSe1yfbdIB%2BFAckqkPtpnkzGE0S5eVCipvTLqPBH9SblKZUWGPC7ZcGpjq4fMjVjXDpm4t7xnh3%2BgkHvCf1q6QLZjzIqcmAbWn744oJrmVYn"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f20215ce65b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.accountcalifornia.com/	188.114.96.1		18 kB
URL www.accountcalifornia.com/ IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1665), with CR, LF line terminators Size 18 kB (17994 bytes) Hash c2e8dda596fd205e857e357de25923ab b74086b1434c77c305bf8526991c66e499b09f62 df65c65172e7c2c25f8482f39bef55fa67ea8a2c0cd836b8ef8e0fc6573f1e27 HTTP Headers `GET / HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: text/html;charset=utf-8 vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6BnrJ2psryMoF%2FjoWsrYN2m2izfQZkUAVFj0H3e9PJ5b33kXw2wBSgywt91jpQfvPsVeff5CY6%2BBqvI4GFudFtMKSonyatRiYBBAROZ026DZF78lk5p4nwMRtc3U85wmxTiE5OCW1kxS77hI"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f20211ac03b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	ocsp2.globalsign.com/gsorganizationvalsha2g3	104.18.20.226		1.5 kB
URL ocsp2.globalsign.com/gsorganizationvalsha2g3 IP 104.18.20.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1461 bytes) Hash eebd6a0bf1fcb8b386dd8eb05f71bdb0 8f8fec278bad05341b7085ca059797463a075b38 4f492cd0c6e874d1d8cc9ce7d3fba7860a6858f7f9f0dcf30e5a47be1383d338 HTTP Headers `POST /gsorganizationvalsha2g3 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/ocsp-response Content-Length: 1461 Connection: keep-alive Expires: Sun, 05 Nov 2023 04:35:00 GMT ETag: "8f8fec278bad05341b7085ca059797463a075b38" Last-Modified: Wed, 01 Nov 2023 04:35:01 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 1038 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 81f2023898f05699-OSL`

	ocsp2.globalsign.com/gsorganizationvalsha2g3	104.18.20.226		1.5 kB
URL ocsp2.globalsign.com/gsorganizationvalsha2g3 IP 104.18.20.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1461 bytes) Hash eebd6a0bf1fcb8b386dd8eb05f71bdb0 8f8fec278bad05341b7085ca059797463a075b38 4f492cd0c6e874d1d8cc9ce7d3fba7860a6858f7f9f0dcf30e5a47be1383d338 HTTP Headers `POST /gsorganizationvalsha2g3 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/ocsp-response Content-Length: 1461 Connection: keep-alive Expires: Sun, 05 Nov 2023 04:35:00 GMT ETag: "8f8fec278bad05341b7085ca059797463a075b38" Last-Modified: Wed, 01 Nov 2023 04:35:01 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 1038 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 81f2023899ac0b65-OSL`

	ocsp2.globalsign.com/gsorganizationvalsha2g3	104.18.21.226		1.5 kB
URL ocsp2.globalsign.com/gsorganizationvalsha2g3 IP 104.18.21.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1461 bytes) Hash eebd6a0bf1fcb8b386dd8eb05f71bdb0 8f8fec278bad05341b7085ca059797463a075b38 4f492cd0c6e874d1d8cc9ce7d3fba7860a6858f7f9f0dcf30e5a47be1383d338 HTTP Headers `POST /gsorganizationvalsha2g3 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/ocsp-response Content-Length: 1461 Connection: keep-alive Expires: Sun, 05 Nov 2023 04:35:00 GMT ETag: "8f8fec278bad05341b7085ca059797463a075b38" Last-Modified: Wed, 01 Nov 2023 04:35:01 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 1038 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 81f20238a879b505-OSL`

	ocsp2.globalsign.com/gsorganizationvalsha2g3	104.18.21.226		1.5 kB
URL ocsp2.globalsign.com/gsorganizationvalsha2g3 IP 104.18.21.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1461 bytes) Hash eebd6a0bf1fcb8b386dd8eb05f71bdb0 8f8fec278bad05341b7085ca059797463a075b38 4f492cd0c6e874d1d8cc9ce7d3fba7860a6858f7f9f0dcf30e5a47be1383d338 HTTP Headers `POST /gsorganizationvalsha2g3 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/ocsp-response Content-Length: 1461 Connection: keep-alive Expires: Sun, 05 Nov 2023 04:35:00 GMT ETag: "8f8fec278bad05341b7085ca059797463a075b38" Last-Modified: Wed, 01 Nov 2023 04:35:01 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 1038 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 81f20238acddb50f-OSL`

	www.d5vip11.com/assets/lobby_asset/2-1-8/sprite.js?version=1698721152064	143.204.55.38		7.0 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-8/sprite.js?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix\012- data Size 7.0 kB (7021 bytes) Hash 74640fb214a42fccbdcf8a4514f91462 1f70749d9c2a1382e5f27c438946d9ca11831be4 b13a44c843c03dc704f4e604d00041f1917e9bffdd7191f17882f6796caa2802 HTTP Headers `GET /assets/lobby_asset/2-1-8/sprite.js?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/?cid=927509&languageCode=pt&type=2&currency=BRL Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript date: Wed, 01 Nov 2023 03:55:34 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: W/"65406e00-b2fa" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 9MmoQOmBcA5wUdu3L5TLNM0TcRRkxKiVwLTuR39b3A5WtJrXN0KESg== age: 8448 X-Firefox-Spdy: h2

	www.d5vip11.com/assets/lobby_asset/2-1-8/common/common/bg_pattern_tile.png?version=1698721152064	143.204.55.38		994 B
URL www.d5vip11.com/assets/lobby_asset/2-1-8/common/common/bg_pattern_tile.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 128 x 128, 1-bit colormap, non-interlaced\012- data Size 994 B (994 bytes) Hash 8545e579f80c8f2fc8ceab40b8ccd0f8 d502000e24893a2723349656f3d5d0577b7a7a2b 4ac7da5c3cc340ec28f65bccae03ec2dad19ee7deb0558b7c5345e486e31305d HTTP Headers GET /assets/lobby_asset/2-1-8/common/common/bg_pattern_tile.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?cid=927509&languageCode=pt&type=2&currency=BRL Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: image/png content-length: 994 date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-3e2" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: rGbwuE4rO63WFwHvdODTZKqc4Wp7mT1EjLsbdrBrmgZVNwY5C3cgHQ== age: 8447 X-Firefox-Spdy: h2`

	www.accountcalifornia.com/themes/simpleboot3/public/js/countup.js	188.114.96.1		254 kB
URL www.accountcalifornia.com/themes/simpleboot3/public/js/countup.js IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (1115) Size 254 kB (253982 bytes) Hash 494c0e53446c6b923344a318f69b3a8e d77e4044a5f13da5e0956c804a25231a6ba61919 de9ed2f61f52e58a4c9002edd9885756b904f89405c2c7b43c385f85e11ba113 HTTP Headers `GET /themes/simpleboot3/public/js/countup.js HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: text/javascript;charset=UTF-8 vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS last-modified: Wed, 01 Nov 2023 06:16:17 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Of68XFjEYrjfwSzphzpVPsACOe4EBuRNOytI5PsLpkOO2jqiV5526nhUsRaTECyAV%2Fm8WvdXkBMFC2lG4K7IhyM4%2Fag1kSMwCeEZru3RPWRszSjGLJ11Mzm07jKTPFuO92eU1jbfj%2B9AcoRu"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f20215ce6cb511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.accountcalifornia.com/themes/simpleboot3/public/css/weoui.min.css	188.114.96.1		5.8 kB
URL www.accountcalifornia.com/themes/simpleboot3/public/css/weoui.min.css IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (15198) Size 5.8 kB (5815 bytes) Hash c33c90d3cee8c489f859a52dc0b29276 584d0563488d9c77341f74e84a86f7ef11d0ad39 85bbd35867229d81304e9e8a68f40a7b1b4ec74f08e72a59adf074afcf6af31b HTTP Headers `GET /themes/simpleboot3/public/css/weoui.min.css HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: text/css;charset=UTF-8 vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS last-modified: Wed, 01 Nov 2023 06:16:17 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MC6rw21AZiKHhSR%2B8eCL3J78lqqX7DydmDAZaobNwj%2FvKAvpa%2BbUTnbpqwDOTHc9bSAdNiDH3dDktz4tlvQgn3Cpov6mePf4IMxmVdcPN7SXtbY0IQBf0%2BN7bYMNlylDOiI%2BIQh2FUpQKTFN"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f202151deab511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.accountcalifornia.com/js/jquery-3.4.1.min.js	188.114.96.1		32 kB
URL www.accountcalifornia.com/js/jquery-3.4.1.min.js IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65451) Size 32 kB (31719 bytes) Hash aef2420d24444402f2111753cb16d395 cbf467a8aed0590bff0bb3490d66799d84103d2f 3f91ea648fca27576a4f281af2eeab36545c2d479506c05227880ee9e35de3c9 HTTP Headers `GET /js/jquery-3.4.1.min.js HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:18 GMT content-type: application/javascript last-modified: Wed, 20 Sep 2023 08:31:10 GMT etag: W/"650aadce-15859" cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Um3QhjgM3eLN7Ovp56yB9K63kS9ZqAg3gXNhfHcX422xwSUrOlCRkJJrkW0k3cf%2FSg0Rg0peiIjcl1e83y%2BcE7aqVEUpcCH4zbPsELC6ccqBHCCkqvkqh1GS2u8iy0ruNN1X4yXAa%2BQYc9n4"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 81f202151de4b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.accountcalifornia.com/themes/simpleboot3/public/css/animate.css	188.114.96.1		5.3 kB
URL www.accountcalifornia.com/themes/simpleboot3/public/css/animate.css IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (54696) Size 5.3 kB (5338 bytes) Hash 87e1b1cf8357d78c67417f428579153a 7a32e7e27f6c3f031b9e7a0f69440deb352b9156 ddcd313eb405d6da5c3bde315c2be5c0cb8a3a4abbedad73d6fd0a1b9afa9d52 HTTP Headers `GET /themes/simpleboot3/public/css/animate.css HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: text/css;charset=UTF-8 vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS last-modified: Wed, 01 Nov 2023 06:16:17 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FqRnjtxHbQpikEWRbyJq%2FBQv9IwbCPEi4lVC96VL%2BuhFYJPJOB6hZGRHkiop8ynCeYJ4TDLgT7MTgy4Z05onGLlkNBbVCslC92jQMCdaRvGBX9tD1VDC6SVPq7fR7XqvfrBmt7ts9agsGlaJ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f202152defb511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.accountcalifornia.com/js/tj.js	188.114.96.1		212 B
URL www.accountcalifornia.com/js/tj.js IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document, ASCII text Size 212 B (212 bytes) Hash f76722da5a492ca93cc6d74ea1400ecf 2e979c715cb0e33e9e6c9a08616deeea6bdcb750 2df24aef966a776048b4a7d6e005a18159f5ff8cc662b641d5273ff1f0c1f6b8 HTTP Headers `GET /js/tj.js HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: application/javascript last-modified: Sun, 08 Oct 2023 05:03:00 GMT etag: W/"65223804-155" cache-control: max-age=14400 cf-cache-status: MISS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hlg1JnZDC9wiJroKAtFmeJYIQMW8NSLzcXGY2CYGrb%2FtpbrOrT4ES0vPTDSLz5YWYo4IYgdI9RtDx8NCxC8GTWAh7CnajfMpGjr2A3XO908ymtnqyTPPKj78vE79fDcja1Zvys0OvI%2FUlKGq"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 81f202151de6b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.d5vip11.com/assets/2221.3b3a67db831499d2ce13.js	143.204.55.38		15 kB
URL www.d5vip11.com/assets/2221.3b3a67db831499d2ce13.js IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix\012- data Size 15 kB (15392 bytes) Hash 8f54ff778d5401babfda491ac38a6a89 9b0c1c18de54857f2baa76b5a03afafcb2e9eb55 963e5bb28352460896dd2dbc02dca5bb3d9456594fb0c890e8dcb1df3a3a2b61 HTTP Headers `GET /assets/2221.3b3a67db831499d2ce13.js HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?cid=927509&languageCode=pt&type=2&currency=BRL Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:21 GMT etag: W/"65406e01-55f7" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 3LwAWnAG13f3yWRSZ-jFLqtCOJwvNR8JL7eioXOHOmwopuCJ6HoqOQ== age: 8446 X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json	47.254.187.186		4.5 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (5912), with no line terminators Size 4.5 kB (4531 bytes) Hash 42612506e878c73034df57417d68b134 2bd35aed50669a7c0f0e29707471d9d170c1b8ea 8e78eeba619eb909601f6d5b7dab2d5f48a982c6fd041ef71f7839fc3db249c7 HTTP Headers GET /hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 596b5e1a-3b1b-43c7-a13d-3715df7564f6 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: 596b5e1a-3b1b-43c7-a13d-3715df7564f6 sign: I+3W7C/Xz5EcwvkyFkmeLl++nDfQsZZoyJYDOvHGCMmSRmW95MoFgIqrm7C7jFiX siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED37C6040581443B4E96 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Fri, 27 Oct 2023 21:55:07 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 10283173449374719703 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: QmElBuh4xzA031dBfWixNA== x-oss-server-time: 1 Content-Encoding: gzip

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/site/getSiteInfo/language/pt.json	47.254.187.186		2.8 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/site/getSiteInfo/language/pt.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (3608), with no line terminators Size 2.8 kB (2792 bytes) Hash f171a23aef128f0681c35970eae49d26 100b55dc10755901940ec408451fd96b6ede6e10 4a3d61d6b7a497f7740e4ae79dddcd7d7cd9d5e99e72a512040bba0a92967f76 HTTP Headers GET /hall/api/lobby/site/getSiteInfo/language/pt.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: c9a253a2-f3b1-4f1f-8ea4-6f7537edf14e device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: c9a253a2-f3b1-4f1f-8ea4-6f7537edf14e sign: iCvBo1YFtuiffiauiSdm3CgpRrpVhlm5XYzsx5B52lFG0bLkNCU+IaxiqOOnVK+P siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED37BD4F6A24836DE28C Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Wed, 01 Nov 2023 05:13:09 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12635249367860070803 x-oss-storage-class: Standard Cache-Control: 600 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: 8XGiOu8SjwaBw1lw6uSdJg== x-oss-server-time: 2 Content-Encoding: gzip

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/system/status/currency/BRL/language/pt/osType/4/platformType/5.json	47.254.187.186		26 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/system/status/currency/BRL/language/pt/osType/4/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (41772), with no line terminators Size 26 kB (26301 bytes) Hash 09fd8322fe1837dd24b086c354aa5546 df78d1c1c66ef3e809385aed34862c57170e7a66 4b5de72463b248a5781b2ae42673085704c33d4c2594be828bbfeb26579162d5 HTTP Headers GET /hall/system/status/currency/BRL/language/pt/osType/4/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 958745d4-2934-4427-bc96-60a6aa696922 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: 958745d4-2934-4427-bc96-60a6aa696922 sign: Y6uO/NYoKoe5m0TluwA8/exFRYrNs1abNEOZtFg7GY4pJCHYbCBq/2eNM2TiQA8e siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED37BD4F6A24836DE2B5 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Tue, 31 Oct 2023 17:20:41 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 606993955099182139 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: Cf2DIv4YN90ksIbDVKpVRg== x-oss-server-time: 2 Content-Encoding: gzip

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/webapi/optimization/site/config/language/pt/platformType/5.json	47.254.187.186		5.2 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/webapi/optimization/site/config/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (7424), with no line terminators Size 5.2 kB (5231 bytes) Hash 8405e899b889c59bcb49f61aca7a7448 b2ab1e7f9fe1bd6a4d284660a35ca7bc800550b3 ac0740658b979d1aa21cd921fe2477fb316b17f91de48287b73ba7fd72e577f1 HTTP Headers GET /hall/api/lobby/webapi/optimization/site/config/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 932dde1e-e06c-4ea6-b4a9-919d06095364 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: 932dde1e-e06c-4ea6-b4a9-919d06095364 sign: 6esaYlIJNgWaVGxIgiS3pF2U/PT6yTJCjciZ8TKLTo1Xof04iX8fMe7CxlryuHyZ siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED37C6040581443B4EE8 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Wed, 01 Nov 2023 05:13:09 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12061716421908763865 x-oss-storage-class: Standard Cache-Control: 600 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: hAXombiJxZvLSfYaynp0SA== x-oss-server-time: 2 Content-Encoding: gzip

	www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_hd.png?version=1698721152064	143.204.55.38		5.7 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_hd.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 170 x 110, 8-bit colormap, non-interlaced\012- data Size 5.7 kB (5748 bytes) Hash 606448ea8f969b1a7e319292ba522075 0888ae018ebc39e89ffde6f8b0fc31d302226c49 5a0ea73001dd59d5aa903861cafba4199732c3804351d3cd97f3cbe0b84aaa88 HTTP Headers GET /assets/lobby_asset/2-1-common/common/common/btn_sy_zc_hd.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 5748 date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-1674" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: Ej-_4x7yqIJ8ifwM0BJGtZQhy-smTY-hplgK176oR1MBpW_2736f1w== age: 8447 X-Firefox-Spdy: h2

	www.accountcalifornia.com/themes/simpleboot3/public/css/pagecss.css	188.114.96.1		12 kB
URL www.accountcalifornia.com/themes/simpleboot3/public/css/pagecss.css IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (305) Size 12 kB (11756 bytes) Hash 110f3c0e72fac5176b6b11d2af84a277 c8138c03ae03eddbc128c79087329982dda163b9 54053fc8e21e16f51fd20eb20ab9f30325ef35bb8ca966c057d53dedcc7a123e HTTP Headers `GET /themes/simpleboot3/public/css/pagecss.css HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 01 Nov 2023 06:16:17 GMT content-type: text/css;charset=UTF-8 vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: MISS last-modified: Wed, 01 Nov 2023 06:16:17 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iiTjOWVcUPFfMj81nzbrdGEeuk%2FECnMZJIMoi%2BITxEIacNHfjgJjH6W7KCQbJ3j4fx0KsqJFRWngcW3y7A5OOPUqTDLgfY5WhMF%2Bx1Jy0pRNSLZz%2BXjqATFmZEizFp82sB8Yhdyay677k%2Fte"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f202153dfbb511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.d5vip11.com/assets/lobby_asset/2-1-common/common/_sprite/icon_dtfl_rm_1.png?version=1698721152064	143.204.55.38		2.6 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-common/common/_sprite/icon_dtfl_rm_1.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 100 x 76, 8-bit colormap, non-interlaced\012- data Size 2.6 kB (2571 bytes) Hash f61e537e1914311fef5c895c591079da 8b50ed3bf67f123cc04bd94d63170796757bf08a d8102e6ae1b26ce6e8a4eef537f8fe3ba46c3248ee87941fa224d7e2954a2a24 HTTP Headers GET /assets/lobby_asset/2-1-common/common/_sprite/icon_dtfl_rm_1.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 2571 date: Wed, 01 Nov 2023 03:55:37 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-a0b" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: aRhjAaPyQJj1ZPz78klFU2VoObqNUQyisG1V0i54Gq9VR0rY0EndbA== age: 8446 X-Firefox-Spdy: h2

	www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_fs.png?version=1698721152064	143.204.55.38		6.0 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_fs.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 170 x 110, 8-bit colormap, non-interlaced\012- data Size 6.0 kB (6008 bytes) Hash 30d46d74d31198c3c26741294c7cd07f 654ebeafedd462cb9ec8ef975eef55f9bee2e945 1086caf33b86c6564ccddba57c9ade9391322c52fda9a9a86fe884c2b570a337 HTTP Headers GET /assets/lobby_asset/2-1-common/common/common/btn_sy_zc_fs.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 6008 date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-1778" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: EYUh3zM7DFofsTA3VrkaQVyGG6oPQd04WUTBOf_R4kRqChzQoxBlfA== age: 8447 X-Firefox-Spdy: h2

	www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_tgzq.png?version=1698721152064	143.204.55.38		6.8 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_tgzq.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 360 x 110, 8-bit colormap, non-interlaced\012- data Size 6.8 kB (6844 bytes) Hash 15f3560837907fba7093c9c0e3d9e773 c6b2dff6277586334c9efc6cbd74ba3373b238cb 4a7b096dd64747f34d9a80bca88d82ea42e03f0e3ec1e99ebf8590a12c1b31b8 HTTP Headers GET /assets/lobby_asset/2-1-common/common/common/btn_sy_zc_tgzq.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 6844 date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-1abc" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 7rhICwzQ1CZpyoVzusLCtFix7TCRy-cRpRX81tMbhXeJ-aP7NJZuPw== age: 8447 X-Firefox-Spdy: h2

	www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_rw.png?version=1698721152064	143.204.55.38		4.7 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_rw.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 170 x 110, 8-bit colormap, non-interlaced\012- data Size 4.7 kB (4691 bytes) Hash be34ab4166187ab723f8ac86b0266100 28de7982d6b631b094aa5323a28e8288fb1c7646 18929ba24b9e8109b3f5ca82782081b32825f2618a7afb95afb64ae17f54a934 HTTP Headers GET /assets/lobby_asset/2-1-common/common/common/btn_sy_zc_rw.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 4691 date: Wed, 01 Nov 2023 03:55:37 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-1253" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: qP1FzvmMME-HIWbWFLDW-5iuM9zYvbEEzssZ_L7Bi_m60N2S6hmEmw== age: 8446 X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/2.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/2.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/2.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED37C6040581443B4F7A Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 0

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/1.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/1.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/1.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED37FF9A92432F427C52 Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 0

	www.d5vip11.com/assets/822.c0b4ebbba688bd2483c5.css	143.204.55.38		3.4 kB
URL www.d5vip11.com/assets/822.c0b4ebbba688bd2483c5.css IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (24664), with no line terminators Size 3.4 kB (3373 bytes) Hash b5f867578b8ec0cbb114fb5b653c9098 28d2145ed260a03628a53c592467bd481554aebe 91e7b84b713fe2e7b5ee615c33fccb0decbcb904c581bdd34e2c3bebb39db152 HTTP Headers GET /assets/822.c0b4ebbba688bd2483c5.css HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: text/css date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:21 GMT etag: W/"65406e01-6058" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: Gk-VJY-tIyZ65B6huyJXA9rfLbGXPoE4M2bsGV1mweewS7iLc97i7g== age: 8447 X-Firefox-Spdy: h2

	www.d5vip11.com/assets/822.8f1daa114c9ccb336f13.js	143.204.55.38		5.0 kB
URL www.d5vip11.com/assets/822.8f1daa114c9ccb336f13.js IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (13387), with NEL line terminators Size 5.0 kB (4985 bytes) Hash 989d1f19778dd84826a559b084813c74 dd2871e2697ce623b4adcc1059445bbe80f1d046 fe5742b1bff0afabf604f46c1575887f822d2549ddaa41bae375e200594d152a HTTP Headers GET /assets/822.8f1daa114c9ccb336f13.js HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/javascript date: Wed, 01 Nov 2023 03:55:37 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:21 GMT etag: W/"65406e01-3528" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: R_r50HGMdIdMiihVuJmpwGO207G1L0PUjACNsEC_0J17HAe_bOR2kw== age: 8446 X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/h5/config/getAccessRestrictedInfo/language/pt.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/h5/config/getAccessRestrictedInfo/language/pt.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/api/lobby/h5/config/getAccessRestrictedInfo/language/pt.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:23 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED37C6040581443B4F9B Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 0

	ocsp.r2m01.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m01.amazontrust.com/ IP 143.204.53.97:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash fb998f31e00700cdde143cb655cbf1a5 a7a0d860f854d4b79b605ea561b75cf74fa2973a 020b684a41c83059b5e88bdb047574ef4923be5e21ef10412b410d6f5fe86791 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Wed, 01 Nov 2023 06:16:24 GMT Last-Modified: Wed, 01 Nov 2023 05:45:05 GMT Server: ECAcc (ska/F790) X-Cache: Miss from cloudfront Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: _WB0FHxOG8AZK3JYXrwlPDBSLpz5z4YGBCrT3iePGaymfnd5cPbMAQ== Age: 1879`

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/2.json	47.254.187.186		1.7 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/2.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (2136), with no line terminators Size 1.7 kB (1671 bytes) Hash 981f6ab731fff00e2d15f9377df562c3 28003b64ab2b3a1670783c46d69244f4ec660543 6274ea4d78b362750c44372bba6222a27f2e2bae7b80e2725a18b3f151dd25cc HTTP Headers GET /hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/2.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 2d46cfd9-f8f3-406c-9f23-a019fef6de54 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819384 nonce: 2d46cfd9-f8f3-406c-9f23-a019fef6de54 sign: BBreZ0Al405aAz3FpFVVzwYJP11UYWPxM5Pu8qzg7tx7Craqoc9TMLP6ytFcev9N siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED38BC153D40D075CA0E Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Sun, 29 Oct 2023 05:35:14 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 3933382962669119986 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: mB9qtzH/8A4tFfk3ffViww== x-oss-server-time: 2 Content-Encoding: gzip

	api.fpjs.io/WUFR-/4KeMqA/hpiGnl/Nd	13.248.176.92		96 B
URL api.fpjs.io/WUFR-/4KeMqA/hpiGnl/Nd IP 13.248.176.92:0 ASN #16509 AMAZON-02 File type ASCII text, with no line terminators Size 96 B (96 bytes) Hash 46d86b1b3fc26a2189c5159723ebf5b6 91b979ea5e38e7145c9066964bb0d7b97c3b8e3f 3d0305750823d502eb6abfd4a5e63f1dda8516c27f63692a0aeab60087349492 HTTP Headers `GET /WUFR-/4KeMqA/hpiGnl/Nd HTTP/1.1 Host: api.fpjs.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 01 Nov 2023 06:16:24 GMT content-type: text/plain; charset=utf-8 content-length: 96 server: nginx/1.22.1 access-control-allow-origin: * access-control-expose-headers: Retry-After cache-control: max-age=31536000, immutable, private content-security-policy: default-src 'none'; frame-ancestors 'none' referrer-policy: no-referrer strict-transport-security: max-age=63072000 timing-allow-origin: * x-content-type-options: nosniff x-frame-options: DENY x-robots-tag: noindex X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/1.json	47.254.187.186		4.2 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/1.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (5656), with no line terminators Size 4.2 kB (4203 bytes) Hash 8710421ffb494af932915a57f3f7eca1 9403ed5034ffaad0dc5e16454d53abc3f1a38696 d22d953fb49fd5a6ce5c248a6b8b0ce61a82a3df4f1c2fb83ad23a60c3fa853c HTTP Headers GET /hall/message/list/currency/BRL/language/pt/page/1/platformType/5/size/5/type/1.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 9a921261-eeed-44fd-91d8-5ab261355463 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819384 nonce: 9a921261-eeed-44fd-91d8-5ab261355463 sign: 7nUqBZs8YAdcabz6MySYxHP7b4xnd4Q2s7LGf94z4ps4Eqj2XW94pjvhfXxi0+TW siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED38BC153D40D075CA12 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Sun, 29 Oct 2023 05:35:14 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 7078928101866751639 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: hxBCH/tJSvkykVpX8/fsoQ== x-oss-server-time: 1 Content-Encoding: gzip

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/aboutUs/index/getInfo/language/pt.json	47.254.187.186		1.4 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/aboutUs/index/getInfo/language/pt.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (1708), with no line terminators Size 1.4 kB (1363 bytes) Hash cec920d51341bdc63a6697cc868fadca 081dd5464dd82081a9e89f44ae99207f320b7e89 5d0b086508972d5088bf4d8c2059f7c4be4708b51e16b6875823d1d5ae46096c HTTP Headers GET /hall/api/lobby/aboutUs/index/getInfo/language/pt.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 579bebf7-93f4-4249-b0e2-f2b2301c3a36 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819384 nonce: 579bebf7-93f4-4249-b0e2-f2b2301c3a36 sign: GYF9SMH5NnvwLBTjH0xxk2hKf8ZzPX5E5XIewmbebx7wGeG2imZUhU6EurkZSUCJ siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED38BC153D40D075CA22 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Wed, 01 Nov 2023 05:13:09 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 13635941889854381041 x-oss-storage-class: Standard Cache-Control: 600 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: zskg1RNBvcY6ZpfMho+tyg== x-oss-server-time: 1 Content-Encoding: gzip

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/footerConfig/getInfo/language/pt.json	47.254.187.186		2.7 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/footerConfig/getInfo/language/pt.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (3520), with no line terminators Size 2.7 kB (2723 bytes) Hash 00adfdc2039c3b6c6b615bc39f8befe9 9e8d3ee2f71f3ecd2cbb5e9df41d240fff5dea0e 2f708ed253381f11a9db010853e46805e93c64564aab720737d55f3cde3f3702 HTTP Headers GET /hall/api/lobby/footerConfig/getInfo/language/pt.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: b7d56a33-ee60-4647-b084-5d21989b80c6 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819384 nonce: b7d56a33-ee60-4647-b084-5d21989b80c6 sign: jVFy195H8Zlu40DWjpPOYgJf42W1UimVvUgwmjvb+FSHlfcLGOcq5mADsQXG94uy siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED38FF9A92432F427CE3 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Wed, 01 Nov 2023 05:13:09 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 6902016026929505946 x-oss-storage-class: Standard Cache-Control: 600 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: AK39wgOcO2xrYVvDn4vv6Q== x-oss-server-time: 1 Content-Encoding: gzip

	www.d5vip11.com/hall/api/lobby/webapi/channel/getDownloadDisplayById	143.204.55.38		53 B
URL www.d5vip11.com/hall/api/lobby/webapi/channel/getDownloadDisplayById IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 53 B (53 bytes) Hash c7b02ca4e736194b27649e94c1c248b4 c28f15c8c3fca773f3c23e1b6448c1429f239fbf 66706f035af0a9df43d4a8f13b6286fbd11c2cf08cc04aa9a69fe12b83daff7e HTTP Headers POST /hall/api/lobby/webapi/channel/getDownloadDisplayById HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br Content-Type: application/json x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: ea9ad6ba-6970-4906-b48b-964fb03a3f99 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819384 nonce: ea9ad6ba-6970-4906-b48b-964fb03a3f99 sign: Sn0gxecAvVZG1Xr+5RuH/JADGyJ2qMBH45Xvf3ARngIdEomwx5wjfmUnRwJo9vkG siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Content-Length: 31 Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/json; charset=UTF-8 content-length: 53 date: Wed, 01 Nov 2023 06:16:24 GMT server: nginx cache-control: no-cache x-trace-id: 03dd739fbbf8745c access-control-allow-methods: * access-control-max-age: 3600 access-control-allow-credentials: true access-control-allow-origin: https://www.d5vip11.com x-cache: Miss from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: MIFC13KfP_JqyEsWZY87k9ADE0Gh6Gt7ZrNgacZ634_ppMiJehIZ8A== X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/h5/config/getAccessRestrictedInfo/language/pt.json	47.254.187.186		1.3 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/api/lobby/h5/config/getAccessRestrictedInfo/language/pt.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (1624), with no line terminators Size 1.3 kB (1250 bytes) Hash 6034e61d109572a853030709e6a3c2e0 5ea6330ea98b458e37c3285bdbab68e4c3bde508 fc3da41849cea5e19bf4d2db30c7ac7fb56a6ce512bb40563aedff54d2d4956f HTTP Headers GET /hall/api/lobby/h5/config/getAccessRestrictedInfo/language/pt.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 50849473-6880-4031-96cc-0184a5a87db0 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819382 nonce: 50849473-6880-4031-96cc-0184a5a87db0 sign: pA7WnAtiaj4SY7vxD9dcsaeTph9oM3pyFf9CXD7a+WRyiEdnMuKXJ7cPNUzBfLS7 siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED382B63472B9C638114 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Wed, 01 Nov 2023 05:13:09 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 1508409207004909496 x-oss-storage-class: Standard Cache-Control: 600 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: YDTmHRCVcqhTAwcJ5qPC4A== x-oss-server-time: 1 Content-Encoding: gzip

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/getWebTrans/currency/BRL/language/pt/platformType/5.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/getWebTrans/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/customer/getWebTrans/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED38F59684723542F389 Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 1

	www.d5vip11.com/hall/promote/point/get	143.204.55.38		88 B
URL www.d5vip11.com/hall/promote/point/get IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type ASCII text, with no line terminators Size 88 B (88 bytes) Hash e64208f3541c0227324f8ba917a0f1dd 6b047fbdfd248b7da7ee52710e05bf1a154c3417 6a962779ad93d2a9725db1a690792d86754b651ef85c07c777790022a8397c4b HTTP Headers POST /hall/promote/point/get HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br Content-Type: text/plain x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 3b234ddc-a8bc-4666-9550-2b71cf0c1a9d device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819384 nonce: 3b234ddc-a8bc-4666-9550-2b71cf0c1a9d sign: uAbgRVBRHiI20L9lCCXsmC0TXU6BwV3kWJr5Zbr6zNF8/RJN/5Xpv6mQaJTbeoI8 siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Content-Length: 64 Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: text/plain; charset=utf-8 content-length: 88 date: Wed, 01 Nov 2023 06:16:24 GMT server: nginx api-cache: false cache-control: no-cache x-trace-id: 6981ef1608764ec3 access-control-allow-methods: * access-control-max-age: 3600 access-control-allow-credentials: true access-control-allow-origin: https://www.d5vip11.com x-cache: Miss from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: Xh2tPOsbfcyDCglPxyOBjYZjuzT2zvvKvHy7V1a0MMgIixgWFVK9cg== X-Firefox-Spdy: h2

	d5vip13.com/op.json?1698819384456	47.246.2.179		25 B
URL d5vip13.com/op.json?1698819384456 IP 47.246.2.179:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type JSON data\012- , ASCII text, with no line terminators Size 25 B (25 bytes) Hash 88faf9f282ddf831d236db25fa5d36b7 cfccce6ebf3cd804c316c3fc3e76ce8ef3031e18 b1d5bcc2b94bbb929ee07704a1a5885f6074a9100786105e0bd4af7f585c9e30 HTTP Headers `GET /op.json?1698819384456 HTTP/1.1 Host: d5vip13.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/json Content-Length: 25 Connection: keep-alive Set-Cookie: acw_tc=2ff6029516988193840034315ed6be8d51aa0f275e96e125d42cda52f2;path=/;HttpOnly;Max-Age=3600 cdn_sec_tc=2ff6029516988193840034315ed6be8d51aa0f275e96e125d42cda52f2;path=/;HttpOnly;Max-Age=3600 Strict-Transport-Security: max-age=5184000 Date: Wed, 01 Nov 2023 06:16:24 GMT Last-Modified: Tue, 31 Oct 2023 03:01:20 GMT ETag: "65406e00-19" Access-Control-Allow-Origin: * Access-Control-Max-Age: 3600 Access-Control-Allow-Credentials: true Accept-Ranges: bytes Via: cache29.l2us1[234,0], cache1.ru3[355,0] Timing-Allow-Origin: * EagleId: 2ff6029516988193840034315e

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/getWebTrans/currency/BRL/language/pt/platformType/5.json	47.254.187.186		375 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/getWebTrans/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (65536), with no line terminators Size 375 kB (374587 bytes) Hash f8d95e073d22631d4c807942ea954686 62143d17c4adabc89eb04d014ad4456b61ee680d 285ba9f1a3cea9e447e8984a2178ac83a6192dc01f14f923df86d888ba3169ee HTTP Headers GET /hall/customer/getWebTrans/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: a8c0c30e-02b9-4bcd-8839-0dbbd6cfa8a8 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819382 nonce: a8c0c30e-02b9-4bcd-8839-0dbbd6cfa8a8 sign: OZcNEMIWlQVEjLCJRBZ87eEEGbp/l2vk6Z4a0rDQtKVyN/cWX4wsJpFxxYYLrdpA siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED38F59684723542F403 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Tue, 31 Oct 2023 08:35:19 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12304627195199521913 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: +NleBz0iYx1MgHlC6pVGhg== x-oss-server-time: 1 Content-Encoding: gzip

	www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_vip.png?version=1698721152064	143.204.55.38		4.3 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-common/common/common/btn_sy_zc_vip.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 170 x 110, 8-bit colormap, non-interlaced\012- data Size 4.3 kB (4338 bytes) Hash 7c4606ddde066065a9f82af02555751d 7c0762f9ba5f1379422233c73849d1af3a886b35 5db5b6e74af23e61d1ef3bf0d31240b9a472637311b5934faa559d9eff43c05a HTTP Headers GET /assets/lobby_asset/2-1-common/common/common/btn_sy_zc_vip.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 4338 date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-10f2" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: QTCv3aH9dPYgEfaonlPJPk35ZdRo_CLYzYkVL7QQ7VFlKreNx7pLKQ== age: 8448 X-Firefox-Spdy: h2

	www.d5vip11.com/hall/download/getDownloadUrl?siteCode=769&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f&currency=BRL&language=pt&platformType=5	143.204.55.38		2.8 kB
URL www.d5vip11.com/hall/download/getDownloadUrl?siteCode=769&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f&currency=BRL&language=pt&platformType=5 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type JSON data\012- data Size 2.8 kB (2756 bytes) Hash 7993221dc6e9696170f4dd949b6f2023 17e0b7412fbae0c1ba29c57adee158b7a27d9e2d 7de3167da052ac1b2abf15a2ec99915b25a23f80b273dd5ca0c18c84790c17ea HTTP Headers GET /hall/download/getDownloadUrl?siteCode=769&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f&currency=BRL&language=pt&platformType=5 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: ee8b5c07-d67e-45fd-94e3-6f13011886e0 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819382 nonce: ee8b5c07-d67e-45fd-94e3-6f13011886e0 sign: J20CS3UhH3VzONC4/CslC2fa3NTosTazCbydNdBG6m/ANbPmCrO2WlzV5z0GH2yb siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/json; charset=UTF-8 date: Wed, 01 Nov 2023 06:16:24 GMT server: nginx vary: Accept-Encoding api-cache: false cache-control: max-age=0,s-maxage=60,public x-trace-id: 0119a99ef7e6ef2e access-control-allow-methods: * access-control-max-age: 3600 access-control-allow-credentials: true x-cache: Miss from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 6nEmdkmNy1rKlrIXlahMDNbdZ-ob1m2DJaXFWYmXllED_sMSSS-12w== X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/marquee/currency/BRL/language/pt/platformType/5.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/marquee/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/message/marquee/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED38BD4F6A24836DE4AC Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 0

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/active/category/currency/BRL/language/pt/platformType/5.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/active/category/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/active/category/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED38C6040581443B50A3 Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 0

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697723483294003201.jpg	47.254.187.186		148 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697723483294003201.jpg IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1020x300, components 3\012- data Size 148 kB (147711 bytes) Hash 197292cfc3cd7215f5cb9a75863875c3 b2e8a578524b56139ecf16b9a01bb915e882f319 4063abfdc9d733a87b01ecd46c49ccfe424c73976773b35f14486b8d02f9bef9 HTTP Headers `GET /siteadmin/upload/img/1697723483294003201.jpg HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: image/jpeg Content-Length: 147711 Connection: keep-alive x-oss-request-id: 6541ED38C6040581443B509B Vary: Origin Accept-Ranges: bytes ETag: "197292CFC3CD7215F5CB9A75863875C3" Last-Modified: Fri, 01 Sep 2023 21:30:00 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 16789410764537164759 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: GXKSz8PNchX1y5p1hjh1ww== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697722630032715777.jpg	47.254.187.186		128 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697722630032715777.jpg IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1020x300, components 3\012- data Size 128 kB (127989 bytes) Hash 9b68294c584c5551e83768c97a8a00af a2c427ea6f2f9a8420b1503b501c31b975f537d3 7189d2efe1353a60e21bb593a9d178f9b51ea03ec6f701ee738e09977e8b0c5b HTTP Headers `GET /siteadmin/upload/img/1697722630032715777.jpg HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: image/jpeg Content-Length: 127989 Connection: keep-alive x-oss-request-id: 6541ED38BD4F6A24836DE49F Vary: Origin Accept-Ranges: bytes ETag: "9B68294C584C5551E83768C97A8A00AF" Last-Modified: Fri, 01 Sep 2023 21:26:36 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 7111133206282146297 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: m2gpTFhMVVHoN2jJeooArw== x-oss-server-time: 2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697721993833738241.jpg	47.254.187.186		128 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697721993833738241.jpg IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1020x300, components 3\012- data Size 128 kB (127612 bytes) Hash 713d45f01bcbcf3b7249303ce4e0f661 b5f8307b79cb0ea3b95795eaf84be4140e8484ad 9c6e210ef2a28f32d4c9488c6382c32a733bd26d8954cc664f09433a055b0607 HTTP Headers `GET /siteadmin/upload/img/1697721993833738241.jpg HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: image/jpeg Content-Length: 127612 Connection: keep-alive x-oss-request-id: 6541ED38F59684723542F448 Vary: Origin Accept-Ranges: bytes ETag: "713D45F01BCBCF3B7249303CE4E0F661" Last-Modified: Fri, 01 Sep 2023 21:24:04 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 13026271087117665196 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: cT1F8BvLzztySTA85OD2YQ== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697720769490186242.jpg	47.254.187.186		152 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697720769490186242.jpg IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1020x300, components 3\012- data Size 152 kB (152247 bytes) Hash 2f0aa8da38bfe5b065f5b17b50eb684c b79927a1d7eea3316565dd10e93e90b38e35b0bf 9e9959ef1fbf3a1fcdff8d66745ad3ea14a906fbd7424a526d7915a709da7ed7 HTTP Headers `GET /siteadmin/upload/img/1697720769490186242.jpg HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: image/jpeg Content-Length: 152247 Connection: keep-alive x-oss-request-id: 6541ED38BD4F6A24836DE4AD Vary: Origin Accept-Ranges: bytes ETag: "2F0AA8DA38BFE5B065F5B17B50EB684C" Last-Modified: Fri, 01 Sep 2023 21:19:13 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 8497997371335285631 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: Lwqo2ji/5bBl9bF7UOtoTA== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/marquee/currency/BRL/language/pt/platformType/5.json	47.254.187.186		492 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/message/marquee/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (492), with no line terminators Size 492 B (492 bytes) Hash 8a834bf0d95e216bb5f6219933423d93 71015ab6f5a18f0ac3f0ba1af0e3b9b61345bd2c a2eb44007d4b588dfe89aff74c27a1e2afc5ca21c6c55b7dacaa5f73fae66ce1 HTTP Headers GET /hall/message/marquee/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 5697b785-1847-44ae-b4c9-713d7d4935f0 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: 5697b785-1847-44ae-b4c9-713d7d4935f0 sign: PRebvUOTgvuF15mqZPYiTunqiki5TL22SKJObWmLIbFqcnfVeew5c6Q9ZI9YyXVS siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Content-Length: 492 Connection: keep-alive x-oss-request-id: 6541ED38C6040581443B512B Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Accept-Ranges: bytes ETag: "8A834BF0D95E216BB5F6219933423D93" Last-Modified: Tue, 31 Oct 2023 17:20:59 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 11324914049597633232 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: ioNL8NleIWu19iGZM0I9kw== x-oss-server-time: 0

	www.d5vip11.com/libs/webPush@2.1.0/webPushSdk.min.2.1.0.js	143.204.55.38		47 kB
URL www.d5vip11.com/libs/webPush@2.1.0/webPushSdk.min.2.1.0.js IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 47 kB (46687 bytes) Hash f198179a18f4aa0cfedfc805dee22e8d 8952ed81b97ad4f35bcd02f57e923a6b23579b90 43a67fa3865ee8533481680b8084ec1a4f4d91aedef28a82c33ef0c8d3b9f6c6 HTTP Headers GET /libs/webPush@2.1.0/webPushSdk.min.2.1.0.js HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/javascript date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: W/"65406e00-18f9a" expires: Wed, 08 Nov 2023 03:55:36 GMT cache-control: max-age=604800 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 0uzvQH42cS6GP6ZF_zUmvC6FsECP-NbbX_pvUlIuI8U6qRWXg-OKxA== age: 8448 X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1718131899393679361.jpg	47.254.187.186		199 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1718131899393679361.jpg IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1020x300, components 3\012- data Size 199 kB (198694 bytes) Hash 4bd90bf46737e77980d927b8ae500bcb d0f1b4977a2ead9ad0a9bdf943c29235a456b164 b13263b7d608f88e7634bf54b8c0c627e12de3c66175378f4ba435e9ca329de9 HTTP Headers `GET /siteadmin/upload/img/1718131899393679361.jpg HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: image/jpeg Content-Length: 198694 Connection: keep-alive x-oss-request-id: 6541ED38FF9A92432F427D54 Vary: Origin Accept-Ranges: bytes ETag: "4BD90BF46737E77980D927B8AE500BCB" Last-Modified: Sat, 28 Oct 2023 05:05:45 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 8022770405756406674 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: S9kL9Gc353mA2Se4rlALyw== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/active/is_show/currency/BRL/language/pt/platformType/5.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/active/is_show/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/active/is_show/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED38C6040581443B514A Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: auth,browserfingerid,clienttimezone,currency,device,devicemodel,domain,if-modified-since,iswgpackage,language,nonce,platformtype,sign,sitecode,timestamp,token,x-object-id,x-request-id Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Length: 0 Connection: keep-alive x-oss-request-id: 6541ED38FF9A92432F427E44 Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Allow-Headers: auth, browserfingerid, clienttimezone, currency, device, devicemodel, domain, if-modified-since, iswgpackage, language, nonce, platformtype, sign, sitecode, timestamp, token, x-object-id, x-request-id Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 x-oss-server-time: 0

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/active/is_show/currency/BRL/language/pt/platformType/5.json	47.254.187.186		280 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/active/is_show/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with no line terminators Size 280 B (280 bytes) Hash 75adbdf4092795da37a0167551c7283f 80349ff1789d0831c1d11852ab7c3caa3449b87c 2737a5bf8c93e41cfe38231e52f83f72e2d64f59de29c0359bd70623a8ba5787 HTTP Headers GET /hall/active/is_show/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 4b94f722-e9a9-4305-80d3-fcd9e4a62116 device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: 4b94f722-e9a9-4305-80d3-fcd9e4a62116 sign: vF/UXpFbjah7yiSKx/jHDC80J0fd99hDhXtAEapk8U8gvgY9s/LxhSCQqj9hDQs3 siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Content-Length: 280 Connection: keep-alive x-oss-request-id: 6541ED38BD4F6A24836DE5CD Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Accept-Ranges: bytes ETag: "75ADBDF4092795DA37A0167551C7283F" Last-Modified: Tue, 31 Oct 2023 21:10:48 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 415058958006652107 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: da299Aknldo3oBZ1UccoPw== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json	47.254.187.186		0 B
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 9e0ddb3f-32da-44e5-85f4-91a215b984dd device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: 9e0ddb3f-32da-44e5-85f4-91a215b984dd sign: d45m2Cls9N89l3xVBDQxpyHgt8w536hDvzITFhx7U9seFIR888Ah4fEO6XwNho3f siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: If-Modified-Since: Fri, 27 Oct 2023 21:55:07 GMT Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 304 Not Modified Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: application/json Connection: keep-alive x-oss-request-id: 6541ED38C6040581443B51C6 Vary: Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Accept-Ranges: bytes ETag: "42612506E878C73034DF57417D68B134" Last-Modified: Fri, 27 Oct 2023 21:55:07 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 10283173449374719703 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true

	www.d5vip11.com/assets/lobby_asset/2-1-common/common/_sprite/icon_dtfl_dz_1.png?version=1698721152064	143.204.55.38		3.5 kB
URL www.d5vip11.com/assets/lobby_asset/2-1-common/common/_sprite/icon_dtfl_dz_1.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 100 x 76, 8-bit colormap, non-interlaced\012- data Size 3.5 kB (3545 bytes) Hash a089cfe36dd15f4b645bd5569d3b3b9b d040c1f3d27969ac929880d1544a95cc2146ec9b 12588989f794783250a72315f7241279a00fc2effbcd105614467d1764656b82 HTTP Headers GET /assets/lobby_asset/2-1-common/common/_sprite/icon_dtfl_dz_1.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/png content-length: 3545 date: Wed, 01 Nov 2023 03:55:37 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: "65406e00-dd9" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: biw1wf6Cunw0RBWAq2_Nf3cwI76kOcHpxocEdGn5JwZhUzRwGILWNg== age: 8448 X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697721421135409153.jpg	47.254.187.186		147 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1697721421135409153.jpg IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1020x300, components 3\012- data Size 147 kB (146559 bytes) Hash 6121a32109034d5bbe403f62275431fc 962f3d2d12f5423a7dc5010efbf50c68c9069389 0283a2199f536ee403532b2f709cde7daa20999c83c56c406f48214343012d22 HTTP Headers `GET /siteadmin/upload/img/1697721421135409153.jpg HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:24 GMT Content-Type: image/jpeg Content-Length: 146559 Connection: keep-alive x-oss-request-id: 6541ED38BD4F6A24836DE589 Vary: Origin Accept-Ranges: bytes ETag: "6121A32109034D5BBE403F62275431FC" Last-Modified: Fri, 01 Sep 2023 21:21:48 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 7040551668699444215 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: YSGjIQkDTVu+QD9iJ1Qx/A== x-oss-server-time: 1

	www.d5vip11.com/assets/lobby_asset/common/web/home/btn_sc_off_2.png?version=1698721152064	143.204.55.38		426 B
URL www.d5vip11.com/assets/lobby_asset/common/web/home/btn_sc_off_2.png?version=1698721152064 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced\012- data Size 426 B (426 bytes) Hash 7354aba91779711b5791419e50823786 dc99daee08ce7408176381df975eb3db91a1a8d1 abfbb0d8b0ed52540d0abae3319a86d11cf6a4d730ba647fe771317755ce5d2b HTTP Headers GET /assets/lobby_asset/common/web/home/btn_sc_off_2.png?version=1698721152064 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: image/png content-length: 426 date: Wed, 01 Nov 2023 03:55:38 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:21 GMT etag: "65406e01-1aa" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public accept-ranges: bytes x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: jBw9Y10Tbtl0C41Ir_NYtfYXugLHVxiQ0ebYM56S7lwePxb26XJ8wA== age: 8447 X-Firefox-Spdy: h2`

	ocsp.crlocsp.cn/	101.198.193.5		193 B
URL ocsp.crlocsp.cn/ IP 101.198.193.5:0 ASN #55992 Beijing Qihu Technology Company Limited File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 193 B (193 bytes) Hash f9be47ea0f6c98d7bf6ee56b6c50bf24 fc3070a829d2f86d23c8d0c46425ad1c8caafc62 d0dff0c586111358921398620bc5b44875fd44ac02d461898406f48442301708 HTTP Headers `POST / HTTP/1.1 Host: ocsp.crlocsp.cn User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 500 Internal Server Error Server: nginx/1.9.14 Date: Wed, 01 Nov 2023 06:11:41 GMT Content-Type: text/html Content-Length: 193 Connection: close`

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_126_EA.png	47.254.187.186		44 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_126_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 44 kB (44063 bytes) Hash 19bc1af84f5955e8a756fc387fceb2c2 9966d6ff797adcd8e57fba3b71779c10e54a42b7 545524e75a00654701f7656e46fb5930bca6c6b44227069f1eb599df29b04592 HTTP Headers `GET /cocos/icon/14/PG_126_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:25 GMT Content-Type: image/png Content-Length: 44063 Connection: keep-alive x-oss-request-id: 6541ED39FF9A92432F4281EF Vary: Origin Accept-Ranges: bytes ETag: "19BC1AF84F5955E8A756FC387FCEB2C2" Last-Modified: Sat, 26 Aug 2023 01:49:09 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 5068501634454094328 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: Gbwa+E9ZVeinVvw4f86ywg== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_dragon-hatch_EA.png	47.254.187.186		64 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_dragon-hatch_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 64 kB (64077 bytes) Hash 0a82a4442c412543aa5f1ef337f831ca 6b6e420d878ba6b94e05298778dbee761f31fc0a 11cdcc9084becba00d4a93425e250979a4206e972fbd730783dbabae9f0407f3 HTTP Headers `GET /cocos/icon/14/PG_dragon-hatch_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:25 GMT Content-Type: image/png Content-Length: 64077 Connection: keep-alive x-oss-request-id: 6541ED39FF9A92432F4281FC Vary: Origin Accept-Ranges: bytes ETag: "0A82A4442C412543AA5F1EF337F831CA" Last-Modified: Sat, 26 Aug 2023 01:49:45 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 3742563137687174629 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: CoKkRCxBJUOqXx7zN/gxyg== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_ganesha-gold_EA.png	47.254.187.186		45 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_ganesha-gold_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 45 kB (45443 bytes) Hash 5a9a4995c04041027d44bc9b07bad05e 8500170674a27f0c47298b9a297705df12bf3b9c b8bbb88e87688452ef4829821a27046b5b1ada5ff464fb0fa255b72d53288097 HTTP Headers `GET /cocos/icon/14/PG_ganesha-gold_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:25 GMT Content-Type: image/png Content-Length: 45443 Connection: keep-alive x-oss-request-id: 6541ED39FF9A92432F428203 Vary: Origin Accept-Ranges: bytes ETag: "5A9A4995C04041027D44BC9B07BAD05E" Last-Modified: Sat, 26 Aug 2023 01:50:14 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 6954872926989611612 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: WppJlcBAQQJ9RLybB7rQXg== x-oss-server-time: 0

	www.accountcalifornia.com/gg/from/bx.php	188.114.96.1		40 kB
URL www.accountcalifornia.com/gg/from/bx.php IP 188.114.96.1:0 ASN #13335 CLOUDFLARENET File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 40 kB (40195 bytes) Hash e7abf68dff0ec02444458b3c5e3d413a 076fe1c5a0bbe6c200219843f5b6b7f50a790472 d56b2363c183a8b6f68c2bff0f5b4399fc894e50ff1bc9da003d5842972dc972 HTTP Headers GET /gg/from/bx.php HTTP/1.1 Host: www.accountcalifornia.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.accountcalifornia.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 302 Found date: Wed, 01 Nov 2023 06:16:18 GMT content-type: text/html; charset=UTF-8 location: https://www.furxcrw.com cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YTd0qktpGbULAiQ16WwfgjulnWN6TXV%2Fw%2BdjwW3C7hAl4llZPgf27HPcaUZlMYKCAFT0uG19BOHP1556AnK1RAw81L2rNkOw1v4pg5S%2BAbCH8F5YPmKBU%2FyGQ4T%2FBH7NrXQTSJhbjkJgDHVN"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f202197857b511-OSL alt-svc: h3=":443"; ma=86400

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/40/JL_109_EA.png	47.254.187.186		61 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/40/JL_109_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 61 kB (60775 bytes) Hash 8fadd31877f3c8f11bcd06e1a01b5b98 b0e4b26d8a8f104b3b9d755e8ff01b7c73c1e00f 2baaf79242c34a1387f9f2516ce15864e118171ef8d0850c4c1c2631e2d681a4 HTTP Headers `GET /cocos/icon/40/JL_109_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:25 GMT Content-Type: image/png Content-Length: 60775 Connection: keep-alive x-oss-request-id: 6541ED39F59684723542F88C Vary: Origin Accept-Ranges: bytes ETag: "8FADD31877F3C8F11BCD06E1A01B5B98" Last-Modified: Thu, 20 Jul 2023 08:02:41 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 10324215047135196518 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: j63TGHfzyPEbzQbhoBtbmA== x-oss-server-time: 1

	www.furxcrw.com/index.html	104.21.10.5		44 kB
URL www.furxcrw.com/index.html IP 104.21.10.5:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (396) Size 44 kB (44101 bytes) Hash 1636a86a8c314367116db55ee143f955 068f33133d8e0f8d671988bba2a0843d43ca3a99 125ca2efb4c01684227ad56e15dfc8f9aff561193f33264049a03fa90ef4ceab HTTP Headers GET /index.html HTTP/1.1 Host: www.furxcrw.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.accountcalifornia.com/ DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Wed, 01 Nov 2023 06:16:19 GMT content-type: text/html last-modified: Sun, 17 Sep 2023 02:43:44 GMT vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=emCJ28N9zyX%2FI%2Bca14TiGCDgRFNVbJgM7cQlR%2BGzqMsiz25b1RM8AX7H2XIGCN8%2Bczb04dvsxLMOqw3iBFtlLQ3BKaDRFe35ycgpW9wZkaD0rrQV6GhKw1ratUFqhEV9HSY%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 81f2021e4aa156c7-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	www.d5vip11.com/assets/site-i18n-config:pt_PT.d6d60c0ad89c405973ea.js	143.204.55.38		151 kB
URL www.d5vip11.com/assets/site-i18n-config:pt_PT.d6d60c0ad89c405973ea.js IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix\012- data Size 151 kB (151396 bytes) Hash 6cb0854c2f01492c282fbcddf8b941fc ecc45fa76133c389f5c21f97204def698cb6b7da cc025382b1acebdeb2a4137c4bb65802912d92e348f2af82f8846dbbddb6afe5 HTTP Headers `GET /assets/site-i18n-config:pt_PT.d6d60c0ad89c405973ea.js HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/?cid=927509&languageCode=pt&type=2&currency=BRL Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/javascript date: Wed, 01 Nov 2023 03:55:34 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:21 GMT etag: W/"65406e01-1b5ad" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 4izOBj91EQqwb5WnDOHxtzzXhUJRcDnn3roh5pTWjbPzC8LQABYcEw== age: 8447 X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/40/JL_35_EA.png	47.254.187.186		44 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/40/JL_35_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 44 kB (44049 bytes) Hash d70954538a907dcb68a2acb39b44b960 e49a1058c09e40ed203147986bd94754c52de988 7b1456f527ea6b297e27cc516ac115d644c2f9def7eb9defd790c98d9b8823d3 HTTP Headers `GET /cocos/icon/40/JL_35_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:25 GMT Content-Type: image/png Content-Length: 44049 Connection: keep-alive x-oss-request-id: 6541ED39F59684723542F905 Vary: Origin Accept-Ranges: bytes ETag: "D70954538A907DCB68A2ACB39B44B960" Last-Modified: Thu, 20 Jul 2023 08:02:44 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12169832262622499633 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: 1wlUU4qQfctooqyzm0S5YA== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_fortune-mouse_EA.png	47.254.187.186		40 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_fortune-mouse_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 40 kB (39768 bytes) Hash c7ba876062f8470e03b611f7a33387c3 c293e0b4f6984e28d797dcf502c8b2d03cc12a25 59ec83b3ebcf5cf73f175fc92632ebb4af02ddc570d1e421876341a0890fbce4 HTTP Headers `GET /cocos/icon/14/PG_fortune-mouse_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 39768 Connection: keep-alive x-oss-request-id: 6541ED39BC153D40D075CFEC Vary: Origin Accept-Ranges: bytes ETag: "C7BA876062F8470E03B611F7A33387C3" Last-Modified: Sat, 26 Aug 2023 01:50:14 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12747454716323320958 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: x7qHYGL4Rw4DthH3ozOHww== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_fortune-ox_EA.png	47.254.187.186		43 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_fortune-ox_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 43 kB (42759 bytes) Hash 19a55d4ad7a3801a97b7317afe67a9bf 5945787bdc36cff6cfac5fc823b8754c16b58600 a09f3c9efcf9fa9cff08b0c9c8f2a7079a9ed4d9090c7c1042d2e99f7bfe674f HTTP Headers `GET /cocos/icon/14/PG_fortune-ox_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 42759 Connection: keep-alive x-oss-request-id: 6541ED3AF59684723542F95F Vary: Origin Accept-Ranges: bytes ETag: "19A55D4AD7A3801A97B7317AFE67A9BF" Last-Modified: Sat, 26 Aug 2023 01:50:45 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 2517130460582609778 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: GaVdStejgBqXtzF6/mepvw== x-oss-server-time: 0

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/37/PP_vs20olympgate_EA.png	47.254.187.186		52 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/37/PP_vs20olympgate_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 52 kB (52066 bytes) Hash 5aa9a2a5753989e8dfab2630553c9b25 38c66e99763da8ff88c664c2e2ed4f62a198bccc 06c8cc31a704d68cb81a3d3cd54811a8ac206eea1ab8a8de54cae243a0cf6b8f HTTP Headers `GET /cocos/icon/37/PP_vs20olympgate_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 52066 Connection: keep-alive x-oss-request-id: 6541ED3ABD4F6A24836DE9F9 Vary: Origin Accept-Ranges: bytes ETag: "5AA9A2A5753989E8DFAB2630553C9B25" Last-Modified: Wed, 02 Aug 2023 03:41:56 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 8388992352122025994 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: WqmipXU5iejfqyYwVTybJQ== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1717790039492124673.png	47.254.187.186		3.1 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1717790039492124673.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 300 x 108, 8-bit colormap, non-interlaced\012- data Size 3.1 kB (3084 bytes) Hash 59fb7dd8e4a87349abf194e673e9bb2e 8149b835c9c33f1c4155afc79dffb00d28b78464 976276a3a214f490462c0903d0bdd0ab7fffee505f6a715bef7e0445d2d4e4c0 HTTP Headers `GET /siteadmin/upload/img/1717790039492124673.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 3084 Connection: keep-alive x-oss-request-id: 6541ED3AF59684723542F97D Vary: Origin Accept-Ranges: bytes ETag: "59FB7DD8E4A87349ABF194E673E9BB2E" Last-Modified: Fri, 27 Oct 2023 06:27:16 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 14743691929998335423 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: Wft92OSoc0mr8ZTmc+m7Lg== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682664064178761730.png	47.254.187.186		6.9 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682664064178761730.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 300 x 108, 8-bit colormap, non-interlaced\012- data Size 6.9 kB (6855 bytes) Hash a50d81275283af346c13aaef082f8ebd d71c77304444a39e07d4051cc28c92791f9a1b7b 6ffadb4a0ada366387dfbbf500e8666f0fc057b9ba5a1e205cb4107a51af4c9b HTTP Headers `GET /siteadmin/upload/img/1682664064178761730.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 6855 Connection: keep-alive x-oss-request-id: 6541ED3A2B63472B9C638740 Vary: Origin Accept-Ranges: bytes ETag: "A50D81275283AF346C13AAEF082F8EBD" Last-Modified: Sat, 22 Jul 2023 08:09:11 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 10552329886581945218 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: pQ2BJ1KDrzRsE6rvCC+OvQ== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_lucky-neko_EA.png	47.254.187.186		43 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/icon/14/PG_lucky-neko_EA.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 320 x 427, 8-bit colormap, non-interlaced\012- data Size 43 kB (42940 bytes) Hash d5ad3399a50ae33ec38e0cc902e2d82e a1dc496fb7728ee4e019253f1d06ebdd7fc3d93e 6b57fe9703f62bada4cf31150f9749b7c705508c183bd184656ab2dbbd994b5c HTTP Headers `GET /cocos/icon/14/PG_lucky-neko_EA.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 42940 Connection: keep-alive x-oss-request-id: 6541ED39BC153D40D075CFD9 Vary: Origin Accept-Ranges: bytes ETag: "D5AD3399A50AE33EC38E0CC902E2D82E" Last-Modified: Sat, 26 Aug 2023 01:49:04 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12791312713863644788 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: 1a0zmaUK4z7DjgzJAuLYLg== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json	47.254.187.186		4.5 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type ASCII text, with very long lines (5912), with no line terminators Size 4.5 kB (4531 bytes) Hash 42612506e878c73034df57417d68b134 2bd35aed50669a7c0f0e29707471d9d170c1b8ea 8e78eeba619eb909601f6d5b7dab2d5f48a982c6fd041ef71f7839fc3db249c7 HTTP Headers GET /hall/customer/staffallv2/currency/BRL/language/pt/platformType/5.json HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 3fe768cd-a801-4985-a555-adbbc9446acb device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819385 nonce: 3fe768cd-a801-4985-a555-adbbc9446acb sign: v03P8NxVYUwn2cp4pb/vheKxHgq14tYTrcOttWb6NrAnm+q380zeQst2/74wUFmf siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive x-oss-request-id: 6541ED3ABD4F6A24836DEA51 Vary: Accept-Encoding, Origin Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, POST, HEAD, PUT Access-Control-Expose-Headers: Etag Access-Control-Max-Age: 200 Last-Modified: Fri, 27 Oct 2023 21:55:07 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 10283173449374719703 x-oss-storage-class: Standard Cache-Control: max-age=86400 x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: QmElBuh4xzA031dBfWixNA== x-oss-server-time: 2 Content-Encoding: gzip

	www.d5vip11.com/assets/8912.0d7655a237ba35fff555.js	143.204.55.38		13 kB
URL www.d5vip11.com/assets/8912.0d7655a237ba35fff555.js IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix\012- data Size 13 kB (13180 bytes) Hash b9f6ed698a9a61a137eb1630ef3b842b 54c00e4ee5c99b013e3e47b5a0dc814ba7217a28 2da41a2ae915be6cea96103a6765799b8da4726e9592492eecc288a0b2750b7d HTTP Headers GET /assets/8912.0d7655a237ba35fff555.js HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?cid=927509&languageCode=pt&type=2&currency=BRL Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/javascript date: Wed, 01 Nov 2023 03:55:36 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:21 GMT etag: W/"65406e01-42e0" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: bODOmZx995YsVCudB-tNDhS65ygd6VjuQJtOXPwTaPq9TcegIpS0iQ== age: 8447 X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682664128301281281.png	47.254.187.186		7.2 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682664128301281281.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 300 x 108, 8-bit colormap, non-interlaced\012- data Size 7.2 kB (7155 bytes) Hash 374ff74f1561be1e9ccdd061b09ff974 8b9602b3359e3ebc4dda332685389f72ab77334a f5dc5176ceba45da28c339ccc591e4e06c9a192086170888f14dea526bf1f8c1 HTTP Headers `GET /siteadmin/upload/img/1682664128301281281.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 7155 Connection: keep-alive x-oss-request-id: 6541ED3AFF9A92432F42835F Vary: Origin Accept-Ranges: bytes ETag: "374FF74F1561BE1E9CCDD061B09FF974" Last-Modified: Sat, 22 Jul 2023 08:09:26 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 2461205438743498854 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: N0/3TxVhvh6czdBhsJ/5dA== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657450123419650.png	47.254.187.186		5.6 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657450123419650.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 300 x 108, 8-bit colormap, non-interlaced\012- data Size 5.6 kB (5619 bytes) Hash 38a4f1265cfd27dae4811ded4bf6098c aa857728a33c03ff441f75f503fd9c30a49e1cf5 f6b802e788737de8af778df14318f7714dc1613a99bc8e4126e71c6b8568494b HTTP Headers `GET /siteadmin/upload/img/1682657450123419650.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 5619 Connection: keep-alive x-oss-request-id: 6541ED3ABD4F6A24836DEA8B Vary: Origin Accept-Ranges: bytes ETag: "38A4F1265CFD27DAE4811DED4BF6098C" Last-Modified: Sat, 22 Jul 2023 07:42:54 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 11491047616346456353 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: OKTxJlz9J9rkgR3tS/YJjA== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657516526587905.png	47.254.187.186		4.0 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657516526587905.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 300 x 108, 8-bit colormap, non-interlaced\012- data Size 4.0 kB (4010 bytes) Hash a16858f7f60a241f0d56953cdf661efb a6942694e36bbfbfa02f051fec7cbe0fdb61cb99 ad3b4e5540d037cd32f06f8ba35822442dc7bee84975886571e7ca07fe6fd3d6 HTTP Headers `GET /siteadmin/upload/img/1682657516526587905.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 4010 Connection: keep-alive x-oss-request-id: 6541ED3AF59684723542F9E0 Vary: Origin Accept-Ranges: bytes ETag: "A16858F7F60A241F0D56953CDF661EFB" Last-Modified: Sat, 22 Jul 2023 07:43:09 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 13034857888664682177 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: oWhY9/YKJB8NVpU832Ye+w== x-oss-server-time: 1

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657552666669058.png	47.254.187.186		4.5 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657552666669058.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 300 x 108, 8-bit colormap, non-interlaced\012- data Size 4.5 kB (4489 bytes) Hash d782e8c19b990adabffccd6ea0692d14 e066ddaf6209af32f2a8064a4ee261b1bc7e9d8c 6c8c87f32b438e51cefc0ea4e031583183a8d751052589b7e672f3bfa67d70c4 HTTP Headers `GET /siteadmin/upload/img/1682657552666669058.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 4489 Connection: keep-alive x-oss-request-id: 6541ED3AFF9A92432F428369 Vary: Origin Accept-Ranges: bytes ETag: "D782E8C19B990ADABFFCCD6EA0692D14" Last-Modified: Sat, 22 Jul 2023 07:43:19 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 9369505158141376373 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: 14LowZuZCtq//M1uoGktFA== x-oss-server-time: 1

	d5vip20.com/op.json?1698819386629	47.246.2.210		25 B
URL d5vip20.com/op.json?1698819386629 IP 47.246.2.210:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type JSON data\012- , ASCII text, with no line terminators Size 25 B (25 bytes) Hash 88faf9f282ddf831d236db25fa5d36b7 cfccce6ebf3cd804c316c3fc3e76ce8ef3031e18 b1d5bcc2b94bbb929ee07704a1a5885f6074a9100786105e0bd4af7f585c9e30 HTTP Headers `GET /op.json?1698819386629 HTTP/1.1 Host: d5vip20.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/json Content-Length: 25 Connection: keep-alive Set-Cookie: acw_tc=2ff6029816988193859668045e2b9966e3a75e8111cedca5533daf2004;path=/;HttpOnly;Max-Age=3600 cdn_sec_tc=2ff6029816988193859668045e2b9966e3a75e8111cedca5533daf2004;path=/;HttpOnly;Max-Age=3600 Strict-Transport-Security: max-age=5184000 Date: Wed, 01 Nov 2023 06:16:26 GMT Last-Modified: Tue, 31 Oct 2023 03:01:20 GMT ETag: "65406e00-19" Access-Control-Allow-Origin: * Access-Control-Max-Age: 3600 Access-Control-Allow-Credentials: true Accept-Ranges: bytes Via: cache25.l2us1[231,0], cache4.ru3[472,0] Timing-Allow-Origin: * EagleId: 2ff6029816988193859668045e

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657594340278274.png	47.254.187.186		7.9 kB
URL 7roft1-769-ppp.oss-accelerate.aliyuncs.com/siteadmin/upload/img/1682657594340278274.png IP 47.254.187.186:0 ASN #45102 Alibaba US Technology Co., Ltd. File type PNG image data, 300 x 108, 8-bit colormap, non-interlaced\012- data Size 7.9 kB (7905 bytes) Hash f9491d0b69464b9b594855f498e258c6 8744b672e53d8f0e6c73332d9395435b3248324c c48f5348ef319fbb5e0469117fc8b3dde3ca6d6caadf620412d32bd6ae4b256a HTTP Headers `GET /siteadmin/upload/img/1682657594340278274.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:26 GMT Content-Type: image/png Content-Length: 7905 Connection: keep-alive x-oss-request-id: 6541ED3ABC153D40D075D157 Vary: Origin Accept-Ranges: bytes ETag: "F9491D0B69464B9B594855F498E258C6" Last-Modified: Sat, 22 Jul 2023 07:43:28 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 6962666007653450447 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: +UkdC2lGS5tZSFX0mOJYxg== x-oss-server-time: 1

	www.d5vip11.com/hall/activetask/newcomer_benefit_reward	143.204.55.38		428 B
URL www.d5vip11.com/hall/activetask/newcomer_benefit_reward IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (428), with no line terminators Size 428 B (428 bytes) Hash 5bc598bd8024caf0451af65caec5da5e 89e78ba36919e2c246281bc73d531e38277e16d3 a5b7b92d2faf423ffbfd552d158480497ff5d9acb92467b98622c8cf7f74160a HTTP Headers POST /hall/activetask/newcomer_benefit_reward HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: 69ccfb59-2719-406f-976e-787208b0365c device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819385 nonce: 69ccfb59-2719-406f-976e-787208b0365c sign: 0FuYOHoQLKIthZk49M79fSVLO0jWYB2diXb5zclWWtQ5BhiW2UGcTyO5Yg+eQqgw siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Content-Length: 0 TE: trailers HTTP/2 200 OK content-type: text/plain; charset=utf-8 content-length: 428 date: Wed, 01 Nov 2023 06:16:26 GMT server: nginx api-cache: false cache-control: no-cache x-trace-id: 7f86ea6a4e10b8c4 access-control-allow-methods: * access-control-max-age: 3600 access-control-allow-credentials: true access-control-allow-origin: https://www.d5vip11.com x-cache: Miss from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 5uQdcFZaa8Qo9vi0OsiJI6agf-druJ7cRgmh__1NXGudsOZUYWkcUA== X-Firefox-Spdy: h2

	www.d5vip11.com/hall/message/banner/index?siteCode=769&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f&currency=BRL&language=pt&platformType=5	143.204.55.38		10 kB
URL www.d5vip11.com/hall/message/banner/index?siteCode=769&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f&currency=BRL&language=pt&platformType=5 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (10284), with no line terminators Size 10 kB (10284 bytes) Hash af571001a93e2d4a6667435e0053d770 069f845ae09ab8ce8377dc23cc918537e1a4b591 5bb78348e1b611f227b79f779cc3ed78f6c315309fd2cdef3521a6ea9e71e277 HTTP Headers GET /hall/message/banner/index?siteCode=769&token=b2e3d672-9d88-47a7-81b4-9d7ffc62054f&currency=BRL&language=pt&platformType=5 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: pt Accept-Encoding: gzip, deflate, br x-object-id: {"uid":"","browserLanguage":"en-US","init":{"created":1698819383254,"version":1698721152000}} isWgPackage: false platformType: 5 x-request-id: e15b6b83-39fd-4d3b-80dc-f02dd5b705ac device: 019ae056-217c-4a48-8336-79e3d26cf7d7 currency: BRL timestamp: 1698819383 nonce: e15b6b83-39fd-4d3b-80dc-f02dd5b705ac sign: ZeZO8YzG0rnAHqq3cCiqCLfp4j+1vGp+iX7nESdyli3mBMP7xgMMDimRcINeg9Qe siteCode: 769 language: pt token: b2e3d672-9d88-47a7-81b4-9d7ffc62054f auth: undefined deviceModel: Firefox111.0 domain: www.d5vip11.com clienttimezone: UTC0 browserfingerid: DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/?cid=927509&languageCode=pt&type=2&currency=BRL Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: text/plain; charset=utf-8 date: Wed, 01 Nov 2023 06:16:22 GMT server: nginx vary: Accept-Encoding api-cache: false cache-control: max-age=0,s-maxage=60,public set-cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD; Path=/; Expires=Thu, 31 Oct 2024 06:16:22 GMT; Max-Age=31536000; HttpOnly x-trace-id: 6c9ad5e4fba1901b access-control-allow-methods: * access-control-max-age: 3600 access-control-allow-credentials: true x-cache: Miss from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 7QTtbLaDeUdbKeFjKFvlbRvnndbMOopqVEO2VITe_YfQQ6STAGi_Og== X-Firefox-Spdy: h2

	7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/lg/access-restricted-image.png	47.254.187.186	200 OK	47 kB
URL GET HTTP/1.1 7roft1-769-ppp.oss-accelerate.aliyuncs.com/cocos/lg/access-restricted-image.png IP 47.254.187.186:443 ASN #45102 Alibaba US Technology Co., Ltd. Requested by https://www.d5vip11.com/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=D5BET.COM-O%20melhor%20em%20toda%20a%20rede&t=5662732 Certificate IssuerGlobalSign nv-sa Subject.oss-eu-central-1.aliyuncs.com Fingerprint6E:60:F5:5A:B7:95:BD:67:30:9A:FF:FD:EF:87:9E:4C:3B:EC:29:C9 ValidityFri, 07 Jul 2023 10:24:57 GMT - Sat, 02 Mar 2024 02:31:07 GMT File type PNG image data, 700 x 550, 8-bit colormap, non-interlaced\012- data Size 47 kB (47149 bytes) Hash dd75cc4d74933e7d2e80d35c72f49525 c581a64778740421d0f4e529d60db9d4fb37c597 7cb4a59ab3234eabf2a4eb0682724a7f5f7be5b04b0df70bc461a5f1ea8abf3a HTTP Headers `GET /cocos/lg/access-restricted-image.png HTTP/1.1 Host: 7roft1-769-ppp.oss-accelerate.aliyuncs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: AliyunOSS Date: Wed, 01 Nov 2023 06:16:27 GMT Content-Type: image/png Content-Length: 47149 Connection: keep-alive x-oss-request-id: 6541ED3BFF9A92432F4285D0 Vary: Origin Accept-Ranges: bytes ETag: "DD75CC4D74933E7D2E80D35C72F49525" Last-Modified: Thu, 20 Jul 2023 08:03:00 GMT x-oss-object-type: Normal x-oss-hash-crc64ecma: 12638124826355928621 x-oss-storage-class: Standard x-oss-ec: 0048-00000110 Content-Disposition: attachment x-oss-force-download: true Content-MD5: 3XXMTXSTPn0ugNNccvSVJQ== x-oss-server-time: 1

	www.d5vip11.com/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=D5BET.COM-O%20melhor%20em%20toda%20a%20rede&t=5662732	143.204.55.38		60 kB
URL www.d5vip11.com/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=D5BET.COM-O%20melhor%20em%20toda%20a%20rede&t=5662732 IP 143.204.55.38:0 ASN #16509 AMAZON-02 File type gzip compressed data, from Unix\012- data Size 60 kB (60234 bytes) Hash 56f84805276df3678fd5e53f2552c471 1cfc191d1346ac37f18e735df15fceab566fb7bd afe9197105ff075a87b82543457f492b80fb22b770342f97f004cd7154057ff8 HTTP Headers GET /pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=D5BET.COM-O%20melhor%20em%20toda%20a%20rede&t=5662732 HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/home/game?currency=BRL&languageCode=pt&cid=927509&gameCategoryId=0 Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: text/html date: Wed, 01 Nov 2023 06:16:26 GMT server: nginx last-modified: Tue, 31 Oct 2023 03:01:20 GMT etag: W/"65406e00-13e53" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public content-encoding: gzip vary: Accept-Encoding x-cache: Miss from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: z4eDIpACcA98JzALE4vu-LYPViQ69BikHxGLhC_n22Dls4kpZ7vHnA== X-Firefox-Spdy: h2`

	d5vip18.com/op.json?1698819387477	47.246.2.215		25 B
URL d5vip18.com/op.json?1698819387477 IP 47.246.2.215:0 ASN #24429 Zhejiang Taobao Network Co.,Ltd File type JSON data\012- , ASCII text, with no line terminators Size 25 B (25 bytes) Hash 88faf9f282ddf831d236db25fa5d36b7 cfccce6ebf3cd804c316c3fc3e76ce8ef3031e18 b1d5bcc2b94bbb929ee07704a1a5885f6074a9100786105e0bd4af7f585c9e30 HTTP Headers `GET /op.json?1698819387477 HTTP/1.1 Host: d5vip18.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.d5vip11.com/ Origin: https://www.d5vip11.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Server: Tengine Content-Type: application/json Content-Length: 25 Connection: keep-alive Set-Cookie: acw_tc=2ff6029816988193882272033e3808a0a2aeccfa525773cfb821b9f2dd;path=/;HttpOnly;Max-Age=3600 cdn_sec_tc=2ff6029816988193882272033e3808a0a2aeccfa525773cfb821b9f2dd;path=/;HttpOnly;Max-Age=3600 Strict-Transport-Security: max-age=5184000 Date: Wed, 01 Nov 2023 06:16:28 GMT Last-Modified: Tue, 31 Oct 2023 03:01:20 GMT ETag: "65406e00-19" Access-Control-Allow-Origin: * Access-Control-Max-Age: 3600 Access-Control-Allow-Credentials: true Accept-Ranges: bytes Via: cache13.l2us1[117,0], cache4.ru3[239,0] Timing-Allow-Origin: * EagleId: 2ff6029816988193882272033e

	region1.analytics.google.com/g/collect?v=2&tid=G-EF3MMFMF5C&gtm=45je3au1v9138807182&_p=1577014210&gcd=11l1l1l1l1&cid=1432823911.1698819381&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1698819380&sct=1&seg=0&dl=https%3A%2F%2Fwww.furxcrw.com%2Findex.html&dr=https%3A%2F%2Fwww.accountcalifornia.com%2F&dt=Redict&en=scroll&epn.percent_scrolled=90	216.239.34.36	204 No Content	0 B
URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-EF3MMFMF5C&gtm=45je3au1v9138807182&_p=1577014210&gcd=11l1l1l1l1&cid=1432823911.1698819381&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1698819380&sct=1&seg=0&dl=https%3A%2F%2Fwww.furxcrw.com%2Findex.html&dr=https%3A%2F%2Fwww.accountcalifornia.com%2F&dt=Redict&en=scroll&epn.percent_scrolled=90 IP 216.239.34.36:443 ASN #15169 GOOGLE Requested by https://www.furxcrw.com/index.html Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-EF3MMFMF5C&gtm=45je3au1v9138807182&_p=1577014210&gcd=11l1l1l1l1&cid=1432823911.1698819381&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1698819380&sct=1&seg=0&dl=https%3A%2F%2Fwww.furxcrw.com%2Findex.html&dr=https%3A%2F%2Fwww.accountcalifornia.com%2F&dt=Redict&en=scroll&epn.percent_scrolled=90 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.furxcrw.com DNT: 1 Connection: keep-alive Referer: https://www.furxcrw.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/3 204 No Content access-control-allow-origin: https://www.furxcrw.com date: Wed, 01 Nov 2023 06:16:21 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	www.d5vip11.com/favicon.ico	143.204.55.38	404 Not Found	544 B
URL GET HTTP/2 www.d5vip11.com/favicon.ico IP 143.204.55.38:443 ASN #16509 AMAZON-02 Requested by https://www.d5vip11.com/pages/403/index.html?logId=page-403-log&payloadId=page-403-payload&title=D5BET.COM-O%20melhor%20em%20toda%20a%20rede&t=5662732 Certificate IssuerAmazon Subjectwww.d5vip11.com Fingerprint4E:7D:9A:43:EB:BB:6A:6F:EE:FD:32:2A:04:FA:2C:F6:C9:13:4A:AA ValidityFri, 11 Aug 2023 00:00:00 GMT - Sun, 08 Sep 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (589), with no line terminators Size 544 B (544 bytes) Hash ef663c2bcc8d138d061664ba7369b2d5 e4353bc3a3a8bc7bf5cc8ab18aa4501766482cfb abba857073d349287cc841a8c9099bccb2ec48c9829e2ed9050f28887c92c316 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.d5vip11.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.d5vip11.com/ Cookie: UserKey=NB3iWgTspUksWJkYFIqU288-D3YH0skox10XFRxq8r1syBi9ceFM_LcJqWLQj4lD Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 404 Not Found content-type: text/html content-length: 544 date: Wed, 01 Nov 2023 06:16:27 GMT server: nginx etag: "6540b2ac-220" x-cache: Error from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: PDhA-zC-Y00Ih1sd7-W0L0hw3tkFCHX98O6gRGJQJvj7-qsfN9UxWA== X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (98)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash