965453.com/
45.38.246.6301 Moved Permanently 0 B IP 45.38.246.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 965453.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 07 Dec 2022 04:48:38 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.965453.com/index.php
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4437
Expires: Wed, 07 Dec 2022 06:02:29 GMT
Date: Wed, 07 Dec 2022 04:48:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5790
Cache-Control: max-age=112756
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 04:48:32 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 12:07:48 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 04:18:44 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1788
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4439
Expires: Wed, 07 Dec 2022 06:02:31 GMT
Date: Wed, 07 Dec 2022 04:48:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: P7gC4PsHvWLw5q0NAkTpfpVCcNfsfLzwDAGqzcyaTlJcfi5s9lFniCbz8M+Onn29bj8qjtShjwU=
x-amz-request-id: 57ZC38PH3CDV4MT0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 04:47:22 GMT
age: 70
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 04:48:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 04:11:20 GMT
cache-control: public,max-age=3600
age: 2232
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.965453.com/index.php
45.38.246.6200 OK 484 B IP 45.38.246.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (629), with CRLF line terminators
Hash 0aa527909db6c188f22a38a7d7d406c0
a292e1513e82f4a53a7282373c7184968bb20f59
8cb5c9781fbbc91eb9477adc454a62f7a2b5e37fce5f620510910f9da7479e47
GET /index.php HTTP/1.1
Host: www.965453.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5776
Cache-Control: max-age=107673
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 04:48:33 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 10:43:06 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.965453.com/common.js
45.38.246.6200 OK 683 B IP 45.38.246.6:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash aa4cf354b6c4039d273a28ed80a78f74
7c22258996f28ad0642e4048d3745ec67747879c
410fd749de383d7c0c6a35f6cdab2414d84ec1ff175015f32a398ca982a58a56
GET /common.js HTTP/1.1
Host: www.965453.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.965453.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:39 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
35.163.1.35101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.1.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EqMGQPtMfwNptPVKQnFmKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XF23Xd8fjvXWpaHMZ1L03wPnyZ0=
www.965453.com/tj.js
45.38.246.6200 OK 258 B IP 45.38.246.6:0
File type ASCII text, with CRLF line terminators
Hash 27f5cdccc0e0b8d1814a3b7c7c9d1cbf
ca37311fbd0a1ccb50319ef57672ad4cb6933d12
2084bac6d15233fae5a7dd0766d063783fba71c758995cb6dd47392d2e1983e6
GET /tj.js HTTP/1.1
Host: www.965453.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.965453.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:40 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.965453.com/favicon.ico
45.38.246.6200 OK 1.2 kB URL HTTP/1.1 www.965453.com/favicon.ico
IP 45.38.246.6:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.965453.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.965453.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:40 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Mon, 12 Dec 2022 04:48:40 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
andht96.top/
107.167.11.3200 OK 4.9 kB IP 107.167.11.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1778a5d6bd37e7d81bfce099c9b8c938
8245b8c41259f6cd215762b691a955ea4add2705
70a9120e4cfa0ed3ba22e7105928cd45f1c7c4097e160c9143a739f6e2e6e30e
GET / HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.965453.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/common/style.css
107.167.11.3200 OK 3.5 kB URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/common/style.css
IP 107.167.11.3:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 66cb8aa56779e7bb6c8372deea7a9335
466dabea62174668da14a602dd5e4172df88c48a
8af809a347ae484242398ac680f5be8092da7a1ebc160792f81eaa7987190ab6
GET /template/sgggsp/assets/css/common/style.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Wed, 29 Apr 2020 12:40:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5ea975b0-48a2"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
151.101.66.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.66.133:0
Hash 0377ea8c01a939543ab8d6822d02036d
b6c1bddc547b955f25284bb1e32cb5558e42bdf9
c7e02b938bf7d4fec9ee0d6b2f61e7e66286f5f968920c0977998e6005444cad
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 02:49:33 GMT
ETag: "b6c1bddc547b955f25284bb1e32cb5558e42bdf9"
Last-Modified: Wed, 07 Dec 2022 02:49:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 04:48:34 GMT
Age: 3602
X-Served-By: cache-qpg1274-QPG, cache-bma1620-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 7, 1
X-Timer: S1670388514.498678,VS0,VE1
andht96.top/template/sgggsp/assets/css/custom/main.css
107.167.11.3200 OK 549 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/custom/main.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash 08b2e4bfeba023ec56e6a5d661ee59a7
331d65e1c07c021ac57febff6cbb3b7b7eb48186
d3846565e87aab70c9c517e975f30237535c1e8ac662706b68390c2f6e1bd9b6
GET /template/sgggsp/assets/css/custom/main.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:47:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a431c-7cd"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/custom/header.css
107.167.11.3200 OK 517 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/custom/header.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash 0bb0fa81ed0f205181328e7758425737
8b9c97fbd73a1ac33397bfa5c26aac27a0557bd1
17024888daa4bf01f5097c4fc9e3c6fcdf09293ac13cf588a60a0ce424fb8bd0
GET /template/sgggsp/assets/css/custom/header.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:48:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a434a-5c8"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/custom/menu.css
107.167.11.3200 OK 938 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/custom/menu.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash 5e9b4ea54bc46458dfac766b78829488
4bddb65ff8ba79a92d746da36efa218027b77116
0ead24b794fe0231b7f445698e80911aa1774f6e9b499383d7e15f0fc8a8d6ad
GET /template/sgggsp/assets/css/custom/menu.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:48:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a4370-1c3c"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/custom/banner.css
107.167.11.3200 OK 321 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/custom/banner.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash 66e2134420e87365212f3432572d53a7
5ddf9c38c9b25f615d57d9a48eae0807ff6c2958
8fd908d798c5bd16d0a0f9d0d7dfd24d0b360c1dd8ec0bc8b66c9b55f3014ac6
GET /template/sgggsp/assets/css/custom/banner.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:47:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a4332-49c"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/custom/footer.css
107.167.11.3200 OK 578 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/custom/footer.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash 60bd5ffdbd5f7ab483d32ee5e04a6d90
a7be6dbaf277cda4d11334089d08274b88646534
6282f0873c7451e6c4f9c88c426381f540c2bbf1010df23249d7b3dbaa7d11c5
GET /template/sgggsp/assets/css/custom/footer.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Content-Length: 578
Last-Modified: Sat, 02 Mar 2019 08:49:08 GMT
Connection: keep-alive
ETag: "5c7a4384-242"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
andht96.top/template/sgggsp/assets/css/common/flickity.min.css
107.167.11.3200 OK 815 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/common/flickity.min.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash bc40d4e4a3fd99000dfcfe3d5f01bf1e
70630dc523095734c9975cbe9122c8598ec56275
05805a64e2b9412ca8cb1c2f13989a9db83761b62e7a074649fbba0f086e36c9
GET /template/sgggsp/assets/css/common/flickity.min.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:49:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a43ae-ab1"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7268
Expires: Wed, 07 Dec 2022 06:49:42 GMT
Date: Wed, 07 Dec 2022 04:48:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7268
Expires: Wed, 07 Dec 2022 06:49:42 GMT
Date: Wed, 07 Dec 2022 04:48:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7268
Expires: Wed, 07 Dec 2022 06:49:42 GMT
Date: Wed, 07 Dec 2022 04:48:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604a4132da78a0c013b5818644adb121
ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566
eecab519c33596c67f2d2021dfd1af24e7fd8f2ed403f99b4ba0c265c08a259f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51c41646-4c8f-4a18-bf60-2b67be5db8d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8701
x-amzn-requestid: 653284c3-ee7f-45f1-9513-3a6c81e1d6e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cm3-2HRWIAMFjfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c39f8-6f8969a26787a9463ba6c2ec;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 06:11:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpyIdH9YEXjxbGhZpBIfzoZHQxMvAKl0eCFQsgMt0e1SSeWsiuey7g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:15:06 GMT
age: 23608
etag: "ddf982c6ff7a0d8e5376c119b6642fe7e0ba8566"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e95ebce9d79ba46cb96af9a45af1762f
985c6761675e6bcc0186f64d55f94cf09352f05c
5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2j9gqNvWYRFM-li9Nj4nLAWe_eKWMSwagPgU3eAtk0pjcJUX4Q8XEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
age: 24774
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9f7b9c77a99173619ee85d0cfa8e2f8
05ba0fab4533b9837dd8558ffa5eb168e974d2b3
17184aca15041d2770fe14397fc0ab87e5f8e9f910b557031ba7fbf1349b0b9c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11464
x-amzn-requestid: 04d9e95d-563e-4258-934e-add82f95a638
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGysEDmIAMFSIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851aa-426e37fb562dc25b3449311b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RspslnJzOcAHAL--VTgFJkFxb1PvLM6OHJmJUsdOKocI5ZPmJSLdoA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 20:03:50 GMT
age: 31484
etag: "05ba0fab4533b9837dd8558ffa5eb168e974d2b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
andht96.top/template/sgggsp/assets/css/theme/default.css
107.167.11.3200 OK 24 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/theme/default.css
IP 107.167.11.3:0
File type ASCII text, with no line terminators
Hash 45fdb73a80a833ea9b3a7707fcad0566
093d4fa40f57b35a96154fbe74fb5eb7376eda24
82871fdb8f75fa02a9f2a4c390da56fcdee1f4da212ebb27e345008c04530f7f
GET /template/sgggsp/assets/css/theme/default.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Content-Length: 24
Last-Modified: Sat, 02 Mar 2019 08:50:38 GMT
Connection: keep-alive
ETag: "5c7a43de-18"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8e8fa64-7cd3-460d-9040-af3ca0e2a5f5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8e8fa64-7cd3-460d-9040-af3ca0e2a5f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b6f4dd03deb6114fec01808b034a711c
c74d29bba44dbb09158da4b9e1b490112c7db915
ddc6721d8a42821c458cf6d5c64ebd10ca0002c95a275be1732cd9ade7bf1b6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8e8fa64-7cd3-460d-9040-af3ca0e2a5f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10567
x-amzn-requestid: b9b16cdf-bfa2-4e3c-b00f-1704dd3473d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgIC6EgLoAMF3hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638986df-3945eea57676d3f91f8f2b3c;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 05:02:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jq1EHQBqVeb9KBozcSUpieXUDHhouxr6YkJrhiqqZ4VP1ZwPV6LHEA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 03:57:34 GMT
age: 3060
etag: "c74d29bba44dbb09158da4b9e1b490112c7db915"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe44b6ac-66fe-4013-a696-460f9692e93e.jpeg
34.120.237.76200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe44b6ac-66fe-4013-a696-460f9692e93e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cefc5a863db79a7a8acd7366322ea34d
ec084f21bd0bcf5c101366e5732421835b3230d3
ee5a022da888181060a9d4ac8ab18fb8e35143b5f046f905d38553b9552f0bbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe44b6ac-66fe-4013-a696-460f9692e93e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3175
x-amzn-requestid: 3b5ffd5c-a8a5-40d8-b370-c13b0da5f543
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csXJEF0hIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6bd3-40d73fc5702a607c4ef71574;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 22:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ltw2ovrQ4bRR1LL2qVEls_GK9w7PmSjA44rasHU5PfqroV2-WRWx_w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 17:22:47 GMT
age: 41147
etag: "ec084f21bd0bcf5c101366e5732421835b3230d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e3174edbfe337cc29266cc38abb51e
80283cb298a1b2326620be406ee3daa42ee0b3ef
520858a9d9540d5768988d0ebb04f0162ded5eb9cd8f4718989b033d04702111
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 3b64a1cf-0ad7-4ecf-a25e-ca65c06330ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVFcECMoAMF1SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6889-42dde2da60f083383ab06b82;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z3yEknYzqJG3oEe-t3nxHYkDXSYGdWkRdbB1V4ixYcJjV5DjxzLzEA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 09:19:50 GMT
age: 70124
etag: "80283cb298a1b2326620be406ee3daa42ee0b3ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
andht96.top/template/sgggsp/assets/js/common/juqery/jquery.js
107.167.11.3404 Not Found 146 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/js/common/juqery/jquery.js
IP 107.167.11.3:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/sgggsp/assets/js/common/juqery/jquery.js HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
andht96.top/template/sgggsp/assets/css/custom/img_list.css
107.167.11.3200 OK 656 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/custom/img_list.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash 813a474b419fb5460acae1b3b978951e
2587685b7bcdc8bfc992d91e41b5c1239455b5df
92b54eb33215edf0c63ac28f6d3d4d1a0294fc4bab9893a8a8f274c7e46b4a6c
GET /template/sgggsp/assets/css/custom/img_list.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 11:24:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a67ec-cae"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/ads/xx2.js
107.167.11.3200 OK 473 B URL HTTP/1.1 andht96.top/template/sgggsp/ads/xx2.js
IP 107.167.11.3:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 6161a1d67d283678538304c471ea259a
0548d9e3180574eb80b28ad84ab44b283f9e6b1d
f0d3170aa0544b534117c310af4efb421896b972dc8553cec9cb735c1535669f
GET /template/sgggsp/ads/xx2.js HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: application/javascript
Content-Length: 473
Last-Modified: Mon, 05 Dec 2022 11:25:03 GMT
Connection: keep-alive
ETag: "638dd50f-1d9"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
andht96.top/template/sgggsp/ads/xx1.js
107.167.11.3200 OK 540 B URL HTTP/1.1 andht96.top/template/sgggsp/ads/xx1.js
IP 107.167.11.3:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 7316e88e8fbf411499084518a179987b
2ae0fa53a1b588ca8c3e99d6c13894b40fe5a70b
a86e048879f3892751026afd0871a7399bf833f31ee9dcb7394381a0068cbc63
GET /template/sgggsp/ads/xx1.js HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: application/javascript
Last-Modified: Mon, 05 Dec 2022 11:25:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"638dd50f-82d"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/ads/xx3.js
107.167.11.3200 OK 507 B URL HTTP/1.1 andht96.top/template/sgggsp/ads/xx3.js
IP 107.167.11.3:0
File type HTML document, ASCII text, with CRLF line terminators
Hash ed810089d9d4834a634f3a3d4819281b
ea3cde353f08661b599f8f27fff81e2f82acc134
2ba2e312a855df4b1735d8ebe6194a208f99d461f92a2e26c2ea7fdcce5c3f93
GET /template/sgggsp/ads/xx3.js HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: application/javascript
Last-Modified: Mon, 05 Dec 2022 11:25:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"638dd50f-668"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/common/common.css
107.167.11.3200 OK 528 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/common/common.css
IP 107.167.11.3:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 20cb2d9dcda1d9384faff84dccc54b34
53415d1e6f671fdbd93608a26335d66aeddbf72b
b3e62e6ede81f54ed5c4621c96b47da7226499766278004c8ab7686771b45a31
GET /template/sgggsp/assets/css/common/common.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/template/sgggsp/assets/css/common/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:45:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a42a8-5e2"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/common/pagination.css
107.167.11.3200 OK 411 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/common/pagination.css
IP 107.167.11.3:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 756f111ee343465ac3fdfcd6a7d56aac
72d2d9ae0b73197af2e343e54e469692a39e276d
d14d1e91f99c7287522285b812621b4003acc0ddd7e0098f30cd048a21699b7c
GET /template/sgggsp/assets/css/common/pagination.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/template/sgggsp/assets/css/common/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:45:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a42c2-51e"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/common/icon.css
107.167.11.3200 OK 324 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/common/icon.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash 25b281150e31f0d158beace91ac17b74
25210828fcf7fe46fd841b531b20bb7f72301d02
5a4896037e25ce7def690326ad152f7b3cad3d5f3da392591ca0574e6708d79b
GET /template/sgggsp/assets/css/common/icon.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/template/sgggsp/assets/css/common/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:46:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a42ec-496"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
andht96.top/template/sgggsp/assets/css/theme/blue.css
107.167.11.3200 OK 696 B URL HTTP/1.1 andht96.top/template/sgggsp/assets/css/theme/blue.css
IP 107.167.11.3:0
File type ASCII text, with CRLF line terminators
Hash d1b6791f4679bcab3ab01381c2504a49
6625522320cbe2f9339cb2f1208fd7c52ce774ca
8d57cfc0b7f72f5cae88513d97110c2237908888a2fd47971feb9ac6a33b80ed
GET /template/sgggsp/assets/css/theme/blue.css HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/template/sgggsp/assets/css/theme/default.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:34 GMT
Content-Type: text/css
Last-Modified: Mon, 27 Jul 2020 14:19:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f1ee278-a2c"
Expires: Wed, 07 Dec 2022 16:48:34 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 40775c54333db78b7a42225e2003d11a
d68300664366584d0359e86c998de3cc5bad50e2
23582031d8a75f84d9ca1dc61ba38a41c09ba22c7ec1a5f2524435be5bb8c25f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "23582031D8A75F84D9CA1DC61BA38A41C09BA22C7EC1A5F2524435BE5BB8C25F"
Last-Modified: Mon, 05 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10540
Expires: Wed, 07 Dec 2022 07:44:14 GMT
Date: Wed, 07 Dec 2022 04:48:34 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 40775c54333db78b7a42225e2003d11a
d68300664366584d0359e86c998de3cc5bad50e2
23582031d8a75f84d9ca1dc61ba38a41c09ba22c7ec1a5f2524435be5bb8c25f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "23582031D8A75F84D9CA1DC61BA38A41C09BA22C7EC1A5F2524435BE5BB8C25F"
Last-Modified: Mon, 05 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10540
Expires: Wed, 07 Dec 2022 07:44:14 GMT
Date: Wed, 07 Dec 2022 04:48:34 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 40775c54333db78b7a42225e2003d11a
d68300664366584d0359e86c998de3cc5bad50e2
23582031d8a75f84d9ca1dc61ba38a41c09ba22c7ec1a5f2524435be5bb8c25f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "23582031D8A75F84D9CA1DC61BA38A41C09BA22C7EC1A5F2524435BE5BB8C25F"
Last-Modified: Mon, 05 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10540
Expires: Wed, 07 Dec 2022 07:44:14 GMT
Date: Wed, 07 Dec 2022 04:48:34 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.66.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.66.133:0
Hash 49a3c9b2b5dec53f646388b552a21bd5
6311bd606173910d4c9e42385cfc3f0453a70b80
76eda76c89cda08fd97cd06653bdede82b5b69543a12434153de1d4a446e582a
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 01:22:47 GMT
ETag: "6311bd606173910d4c9e42385cfc3f0453a70b80"
Last-Modified: Wed, 07 Dec 2022 01:22:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 04:48:35 GMT
Age: 5052
X-Served-By: cache-qpg1230-QPG, cache-bma1620-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 42, 1
X-Timer: S1670388515.004126,VS0,VE1
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 40775c54333db78b7a42225e2003d11a
d68300664366584d0359e86c998de3cc5bad50e2
23582031d8a75f84d9ca1dc61ba38a41c09ba22c7ec1a5f2524435be5bb8c25f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "23582031D8A75F84D9CA1DC61BA38A41C09BA22C7EC1A5F2524435BE5BB8C25F"
Last-Modified: Mon, 05 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10539
Expires: Wed, 07 Dec 2022 07:44:14 GMT
Date: Wed, 07 Dec 2022 04:48:35 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/jzd2jkkc1m51453jzd2jkkc1m5336092.jpg
104.22.12.214200 OK 4.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/jzd2jkkc1m51453jzd2jkkc1m5336092.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash abdf3799904f75158f188ced8e3e2dfa
c79548581a9609a8eddb7ff96fbc230e8ab484f6
ce4bf22ffe65f423e10f273d0d3519a56cb7e4a65154ab5bd2ddfc06f984eefd
GET /upload/vod/2022/11-27/14/jzd2jkkc1m51453jzd2jkkc1m5336092.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/webp
content-length: 4244
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6364
content-disposition: inline; filename="jzd2jkkc1m51453jzd2jkkc1m5336092.webp"
etag: "6383096d-18dc"
last-modified: Sun, 27 Nov 2022 06:53:33 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 775aa13a5e68b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/p1cyyvyymfb1453p1cyyvyymfb346094.jpg
104.22.12.214200 OK 8.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/p1cyyvyymfb1453p1cyyvyymfb346094.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 492c65cf8ea12dc8368147d9c3d38a54
028117d128d4d726f0fb9c6068fab4d756b92959
4382309ab83a85fcbae15d5e7edd7e5f6c7b3815b28de950c6c57ce13d30327b
GET /upload/vod/2022/11-27/14/p1cyyvyymfb1453p1cyyvyymfb346094.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/webp
content-length: 8644
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9558
content-disposition: inline; filename="p1cyyvyymfb1453p1cyyvyymfb346094.webp"
etag: "6383096e-2556"
last-modified: Sun, 27 Nov 2022 06:53:34 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 775aa13a5e69b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/xtggezyltrg1453xtggezyltrg366098.jpg
104.22.12.214200 OK 7.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/xtggezyltrg1453xtggezyltrg366098.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 955b349729d7cee7cd59ef39c09f8454
6fa53c7bdd78e4177b3476dd18ade6b2ca623dd8
c8a57b0ed4fb5b2fb800600f7abf79a3c084a525267856c0309e541425ae4f04
GET /upload/vod/2022/11-27/14/xtggezyltrg1453xtggezyltrg366098.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/webp
content-length: 7578
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8710
content-disposition: inline; filename="xtggezyltrg1453xtggezyltrg366098.webp"
etag: "63830970-2206"
last-modified: Sun, 27 Nov 2022 06:53:36 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 775aa13a5e6cb500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/33exudf4ed5145333exudf4ed5376100.jpg
104.22.12.214200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/33exudf4ed5145333exudf4ed5376100.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash fe4ed8670ed621fec5ed68a25ef9226e
ddb6719f31458ffe7284852096736bd187cdbe4a
df0411ee60ad2c49841d5fee6e1600fd977e8917dbcf808e207655154aa34ee2
GET /upload/vod/2022/11-27/14/33exudf4ed5145333exudf4ed5376100.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/jpeg
content-length: 11862
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12405, status=webp_bigger
etag: "63830971-3075"
last-modified: Sun, 27 Nov 2022 06:53:37 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 775aa13a5e64b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/gmfyagmsn0w1453gmfyagmsn0w396106.jpg
104.22.12.214200 OK 6.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/gmfyagmsn0w1453gmfyagmsn0w396106.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 157d54d92665cdc08f255cdf7c0decfb
17ae6a5d2064d2ec2e4a8934fdbcdd9f09e4f198
d3ccddf14ce78e21f0d58fd235ead018494705eeebd1ef81ccb6a2bc8524ec70
GET /upload/vod/2022/11-27/14/gmfyagmsn0w1453gmfyagmsn0w396106.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/webp
content-length: 6422
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8792
content-disposition: inline; filename="gmfyagmsn0w1453gmfyagmsn0w396106.webp"
etag: "63830973-2258"
last-modified: Sun, 27 Nov 2022 06:53:39 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 775aa13a6e74b500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/uf2z1teto331453uf2z1teto33356096.jpg
104.22.12.214200 OK 6.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/uf2z1teto331453uf2z1teto33356096.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54c208fbff994e78dd9834a343ef91c4
62b5057a7061c70e8c0fece845de360243411dd0
01cb3ac2c8b0572e6df0992944162bf7f535e6e371b49fde3e0332a710337541
GET /upload/vod/2022/11-27/14/uf2z1teto331453uf2z1teto33356096.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/webp
content-length: 6782
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9093
content-disposition: inline; filename="uf2z1teto331453uf2z1teto33356096.webp"
etag: "6383096f-2385"
last-modified: Sun, 27 Nov 2022 06:53:35 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 775aa13a5e6ab500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/2akielas4ot14532akielas4ot386104.jpg
104.22.12.214200 OK 8.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/2akielas4ot14532akielas4ot386104.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7bfbd10c68b3b32f40128c92669b07cb
43b9f512dcf14d6e601fe2957013878d3776bc90
415c375b82e01d275b8f617318c7251c31d5fb14bd92366e0ca3ec9d711492dd
GET /upload/vod/2022/11-27/14/2akielas4ot14532akielas4ot386104.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/webp
content-length: 8736
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10968
content-disposition: inline; filename="2akielas4ot14532akielas4ot386104.webp"
etag: "63830972-2ad8"
last-modified: Sun, 27 Nov 2022 06:53:38 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 775aa13abe9bb500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/p3rvmabztli1453p3rvmabztli376102.jpg
104.22.12.214200 OK 4.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/p3rvmabztli1453p3rvmabztli376102.jpg
IP 104.22.12.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40fbe33a7b1f1e4a96a247aeeb4e53cc
011117df35c67f2fd623d62bba3e5c2538898287
feecd0d4d3b47e004c39f33682aea2920c93949283f938965e1e4c16f38e7b87
GET /upload/vod/2022/11-27/14/p3rvmabztli1453p3rvmabztli376102.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/webp
content-length: 4802
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6321
content-disposition: inline; filename="p3rvmabztli1453p3rvmabztli376102.webp"
etag: "63830972-18b1"
last-modified: Sun, 27 Nov 2022 06:53:38 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 775aa13abe9db500-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/w0hdzqxpdc51452w0hdzqxpdc5216090.jpg
104.22.12.214200 OK 7.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/w0hdzqxpdc51452w0hdzqxpdc5216090.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash eb69e927bad15c070bc4f28f4c8a3e22
44bcbbb4ced4e3120ca78ad8280d412323a2779a
6e8762c0492b917c53af8952e03a1286113fbde909ea7ee56b8bb74d1fac96a4
GET /upload/vod/2022/11-27/14/w0hdzqxpdc51452w0hdzqxpdc5216090.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/jpeg
content-length: 7126
last-modified: Sun, 27 Nov 2022 06:52:21 GMT
etag: "63830925-1bd6"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 775aa13a5e6fb500-OSL
X-Firefox-Spdy: h2
js.users.51.la/21161481.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21161481.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash a34350326a2c6cf559405b80ca323903
647993bace400e3155a804523aa41dd19cb6cf07
bc170dc71f9e88efbbc9e145e77303fa28aa206707993d6c449a5ec82f18b3ba
GET /21161481.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Wed, 07 Dec 2022 04:48:35 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=5c9c914e76d54861582; path=/
HWWAFSESTIME=1670388514312; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
lbfm.lbpictupian.com/upload/vod/2022/11-27/14/5l5hobzf3q414525l5hobzf3q4206088.jpg
104.22.12.214200 OK 6.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-27/14/5l5hobzf3q414525l5hobzf3q4206088.jpg
IP 104.22.12.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5429b052782ef9b4ba26c72528b99d06
0cb79d115f30a8a66dc28a7c0c22f17660e94c57
5eb62f6f26e95c993cff702ec135cc31b7e6ea32ccc7dcc65462ee662f2fcd0d
GET /upload/vod/2022/11-27/14/5l5hobzf3q414525l5hobzf3q4206088.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/jpeg
content-length: 6334
last-modified: Sun, 27 Nov 2022 06:52:20 GMT
etag: "63830924-18be"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 775aa13aeeb7b500-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?289427ec54ba4375cb1db6637f00ca7c
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?289427ec54ba4375cb1db6637f00ca7c
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash c6e09af261353d1f0440615281850944
df81e884768393a609d393a1576d04998a40f658
52149112e15da0620bf6ec7735d6e00cf7dd54b2a8723d6d5aaaebdbd2de144a
GET /hm.js?289427ec54ba4375cb1db6637f00ca7c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.965453.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Wed, 07 Dec 2022 04:48:34 GMT
Etag: a1c4ddd59116a6cb24eb108d7990eba3
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C8B1F3741B561CF8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
andht96.top/template/sgggsp/assets/images/theme/default/share_person.png
107.167.11.3200 OK 120 kB URL HTTP/1.1 andht96.top/template/sgggsp/assets/images/theme/default/share_person.png
IP 107.167.11.3:0
File type PNG image data, 209 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size 120 kB (120413 bytes)
Hash 0d14c8e56fc563d379c937900ded0d55
203a9f011bade5af589203b10506e7e0cccc7668
eeebb7933f599e6ddab118b4501dc623b4511350acaca1ea40230c1722b520ac
GET /template/sgggsp/assets/images/theme/default/share_person.png HTTP/1.1
Host: andht96.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/template/sgggsp/assets/css/custom/header.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:35 GMT
Content-Type: image/png
Content-Length: 120413
Last-Modified: Sat, 02 Mar 2019 09:00:22 GMT
Connection: keep-alive
ETag: "5c7a4626-1d65d"
Expires: Fri, 06 Jan 2023 04:48:35 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash e01f39e37f5ba49729fbe9abcc54c9d2
1ee4ab8580b8537b3250f65250902ba00bd44e46
7a7b229f58dbec5e264f32e3be1352880cb273be0dc7a37d28f4eaf8c4035a61
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Dec 2022 04:48:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Dec 2022 14:07:17 GMT
Expires: Wed, 07 Dec 2022 14:07:17 GMT
ETag: "1ee4ab8580b8537b3250f65250902ba00bd44e46"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash a0930a6bcff1408646e2795bcfa6c2dc
2d1ec52cd24256fac1748c15409d30464ad646e6
eb765950fa7ff1483593728a99fc7561c69009d026d89e182788aadd87182c77
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 04:48:35 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 08:16:02 GMT
Expires: Tue, 13 Dec 2022 08:16:01 GMT
Etag: "2d1ec52cd24256fac1748c15409d30464ad646e6"
Cache-Control: max-age=530245,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775aa13e1b9fb50b-OSL
hm.baidu.com/hm.js?c6053caf192515cb53805592d15ec29f
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?c6053caf192515cb53805592d15ec29f
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 870a56eaa7c47dc4e8ed8951936ce1e0
ff25029b51f4580080c0405a3639a49c247c9754
7177d695ae460e63a13294b74031d6cfbadf2d70ed2ccf7c0206dcd8a5a6f248
GET /hm.js?c6053caf192515cb53805592d15ec29f HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Wed, 07 Dec 2022 04:48:35 GMT
Etag: a810b816da1f9627f50b7d09b793f0b3
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=2ACD4F2CD6DAEC3A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 1c29991f363776549d197060d2dda533
227223f94b8b9e19d202a3e517f6063a0a615e9e
f116e14395f021a2bf169cde083c91533d224c776ded36b2a6082fbdbcbbdf18
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=841
Date: Wed, 07 Dec 2022 04:48:35 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 1c29991f363776549d197060d2dda533
227223f94b8b9e19d202a3e517f6063a0a615e9e
f116e14395f021a2bf169cde083c91533d224c776ded36b2a6082fbdbcbbdf18
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=841
Date: Wed, 07 Dec 2022 04:48:35 GMT
Connection: keep-alive
X-N: S
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=728027127&si=289427ec54ba4375cb1db6637f00ca7c&v=1.3.0&lv=1&sn=32435&r=0&ww=1280&u=http%3A%2F%2Fwww.965453.com%2Findex.php&tt=%E6%88%90%E9%83%BD%E6%97%A8%E9%B9%A4%E5%8C%BB%E7%96%97%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=728027127&si=289427ec54ba4375cb1db6637f00ca7c&v=1.3.0&lv=1&sn=32435&r=0&ww=1280&u=http%3A%2F%2Fwww.965453.com%2Findex.php&tt=%E6%88%90%E9%83%BD%E6%97%A8%E9%B9%A4%E5%8C%BB%E7%96%97%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=728027127&si=289427ec54ba4375cb1db6637f00ca7c&v=1.3.0&lv=1&sn=32435&r=0&ww=1280&u=http%3A%2F%2Fwww.965453.com%2Findex.php&tt=%E6%88%90%E9%83%BD%E6%97%A8%E9%B9%A4%E5%8C%BB%E7%96%97%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.965453.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 07 Dec 2022 04:48:35 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A1D872A4608D45D5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1324600308&si=c6053caf192515cb53805592d15ec29f&su=http%3A%2F%2Fwww.965453.com%2F&v=1.3.0&lv=1&sn=32436&r=0&ww=1268&u=http%3A%2F%2Fandht96.top%2F
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1324600308&si=c6053caf192515cb53805592d15ec29f&su=http%3A%2F%2Fwww.965453.com%2F&v=1.3.0&lv=1&sn=32436&r=0&ww=1268&u=http%3A%2F%2Fandht96.top%2F
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1324600308&si=c6053caf192515cb53805592d15ec29f&su=http%3A%2F%2Fwww.965453.com%2F&v=1.3.0&lv=1&sn=32436&r=0&ww=1268&u=http%3A%2F%2Fandht96.top%2F HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 07 Dec 2022 04:48:36 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BC24AD9F0E0FDC20; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?2be422cfd93bc613f0d5419e069b602e
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?2be422cfd93bc613f0d5419e069b602e
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash d47fe1510da3d8e33b3ff00cb0476fee
3295abea6167fae6d0535b43e4d30137942cb61e
bc2a4b5b5c47ed8b6199bba23cb828bd34726e2d02a3936659bf5ac7e7a1989e
GET /hm.js?2be422cfd93bc613f0d5419e069b602e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Wed, 07 Dec 2022 04:48:35 GMT
Etag: 2710e2273ac43a1ba961d46785e4e4ba
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=CC39D342914E3814; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
tpkj2222.com/img/k80m/oCIA5ZH28.gif
46.149.201.215200 OK 54 kB URL HTTP/1.1 tpkj2222.com/img/k80m/oCIA5ZH28.gif
IP 46.149.201.215:0
ASN #59371 Dimension Network & Communication Limited
File type GIF image data, version 89a, 960 x 60\012- data
Hash 229a4026db2406ebd6fd4ff49b78c17a
c4fa9b8a95fe3e583fba87826af4b3eaf2faca0c
79fc0f33ed6ccd3acc6c6317b9d4cea3d8eb238085b0ea7fdcf9b16c70681ba9
GET /img/k80m/oCIA5ZH28.gif HTTP/1.1
Host: tpkj2222.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:35 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"54275-1670144930000"
Last-Modified: Sun, 04 Dec 2022 09:08:50 GMT
Expires: Thu, 22 Dec 2022 04:48:35 GMT
Cache-Control: max-age=1296000
Content-Encoding: gzip
Nginx-Cache: HIT, HIT
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash f17bfce53c2e80a22d5ca105ec073846
55a4fff5df59c8005a00a680cf6d739d16590d51
a7387acb643545327ea4d5ed8dac80efe2a6d90a9dcaa89e97e453b97bf3138b
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 04:48:36 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 07:25:43 GMT
Expires: Sun, 11 Dec 2022 07:25:42 GMT
Etag: "55a4fff5df59c8005a00a680cf6d739d16590d51"
Cache-Control: max-age=354425,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775aa1438ddfb50b-OSL
8499136.com/8499/960x100.gif
172.247.50.228200 OK 460 kB URL HTTP/2 8499136.com/8499/960x100.gif
IP 172.247.50.228:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 460 kB (460379 bytes)
Hash 5a1530561500d39b3bfe81bdaf3dc20b
233cb54f51d312aef12624f2921e772a7396e3a5
d609cb292dd1415f628223b19a93ed62b0c9b0101d5d1c9dd9c3f59759203a32
GET /8499/960x100.gif HTTP/1.1
Host: 8499136.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:35 GMT
content-type: image/gif
content-length: 460379
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "7065b-5ed03aef4110d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=700746053&si=2be422cfd93bc613f0d5419e069b602e&su=http%3A%2F%2Fwww.965453.com%2F&v=1.3.0&lv=1&sn=32436&r=0&ww=1268&u=http%3A%2F%2Fandht96.top%2F
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=700746053&si=2be422cfd93bc613f0d5419e069b602e&su=http%3A%2F%2Fwww.965453.com%2F&v=1.3.0&lv=1&sn=32436&r=0&ww=1268&u=http%3A%2F%2Fandht96.top%2F
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=700746053&si=2be422cfd93bc613f0d5419e069b602e&su=http%3A%2F%2Fwww.965453.com%2F&v=1.3.0&lv=1&sn=32436&r=0&ww=1268&u=http%3A%2F%2Fandht96.top%2F HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 07 Dec 2022 04:48:36 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=64601FCC0074C44F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 91c0d340d3a4ce8b6337efb2f6ae27de
6f32439a8bd622edcdfbfd16e260cf00922ecb00
662152ab36b3f4533b81eec9662a92144291c10e208d96a2c63b0fe1c636d925
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 04:48:37 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 21:52:06 GMT
Expires: Mon, 12 Dec 2022 21:52:05 GMT
Etag: "6f32439a8bd622edcdfbfd16e260cf00922ecb00"
Cache-Control: max-age=492807,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775aa146f81db523-OSL
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 0f16558350cdc0791ab380ce4cd55636
7a1654c58ed6498272e499839d14aa99909199e8
6162272254439de90561c9a5529ea309b8d2dbd2522299ec26ca6fed6afe4532
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147990
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 04:48:37 GMT
Etag: "638fba3b-2d7"
Expires: Thu, 08 Dec 2022 21:55:07 GMT
Last-Modified: Tue, 06 Dec 2022 21:55:07 GMT
Server: nginx
Content-Length: 727
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 28df9c2a57a5472d209219ae445e0642
a43f74b90d61bad66b37a494b08ddb7eea430540
ca18af40e0188ec11796d603719a5bf0b0c4900e424619e029267a8398af79c0
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Wed, 07 Dec 2022 04:48:37 GMT
Connection: keep-alive
X-N: S
p3.douyinpic.com/obj/tos-cn-i-dy/73ccd4bf70e648888fdc966c582690dc
47.246.44.229200 OK 420 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/73ccd4bf70e648888fdc966c582690dc
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 420 kB (420442 bytes)
Hash 7020ecb5ebdf5d2d41668f76d36f5982
30c768ceb1463fffc0145f1e73c808f8f6d2bb51
3a55db6e5e4fa541729efffaa932549e491e07af768e1c3c3d1dad65ae53a8bb
GET /obj/tos-cn-i-dy/73ccd4bf70e648888fdc966c582690dc HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 420442
date: Mon, 21 Nov 2022 16:01:00 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 21 Nov 2022 14:29:42 GMT
nw-session-id: 20221121222942010138172202338C4A3Dxhdtz03dy
nw-session-trace: 2022-11-21T22:29:42.390403455+08:00 32
x-bdcdn-cache-status: TCP_HIT
x-length: 420442
x-powered-by: ImageX
x-response-date: Mon, 21 Nov 2022 22:29:42 GMT
x-tt-logid: 20221121222942010138172202338C4A3D
via: n204-100-071, cache10.l2de2[0,30,206-0,H], cache23.l2de2[32,0], cache23.l2de2[35,0], cache1.se1[0,0,200-0,H], cache1.se1[3,0]
x-request-ip: fdbd:dc01:29:238::88
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 019f3025e495dbb98b1c5f31bc050979cd3c8678529454cbbf94c509d62917a5c6f01758ad3d2114e36b145ea0ee0f7543b850412fc14ed9232cfdc3a4db14ee8d7a1986fa0d9de2393e8dc3ddb14ca094
x-response-lb: image
ali-swift-global-savetime: 1669046460
age: 1342057
x-cache: HIT TCP_HIT dirn:2:120413016
x-swift-savetime: Mon, 21 Nov 2022 18:06:55 GMT
x-swift-cachetime: 31528445
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516703885173614588e
X-Firefox-Spdy: h2
8499159.com/8499/s/960x60.gif
172.247.109.207200 OK 331 kB URL HTTP/2 8499159.com/8499/s/960x60.gif
IP 172.247.109.207:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /8499/s/960x60.gif HTTP/1.1
Host: 8499159.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:36 GMT
content-type: image/gif
content-length: 331043
last-modified: Wed, 09 Nov 2022 06:23:10 GMT
etag: "50d23-5ed03b0c9c3d8"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ia.51.la/go1?id=21161481&rt=1670388515246&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=&ing=1&ekc=&sid=1670388515246&tt=&kw=&cu=http%253A%252F%252Fandht96.top%252F&pu=http%253A%252F%252Fwww.965453.com%252F
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21161481&rt=1670388515246&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=&ing=1&ekc=&sid=1670388515246&tt=&kw=&cu=http%253A%252F%252Fandht96.top%252F&pu=http%253A%252F%252Fwww.965453.com%252F
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21161481&rt=1670388515246&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=&ing=1&ekc=&sid=1670388515246&tt=&kw=&cu=http%253A%252F%252Fandht96.top%252F&pu=http%253A%252F%252Fwww.965453.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://andht96.top/
HTTP/1.1 200
Server: CloudWAF
Date: Wed, 07 Dec 2022 04:48:37 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=d91e2c6176009e0be4b; path=/
HWWAFSESTIME=1670388513462; path=/
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.130.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.130.133:0
Hash 2a42eee3908c61502eb0810ed400978b
653b75871c1a6dd1fef6c3a77b7274cb7d6df91e
33a243273986b710df85b5a85a10ab08cee03ca0c206850716d02c376f482759
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 11 Dec 2022 04:28:18 GMT
ETag: "653b75871c1a6dd1fef6c3a77b7274cb7d6df91e"
Last-Modified: Wed, 07 Dec 2022 04:28:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 07 Dec 2022 04:48:37 GMT
Age: 1217
X-Served-By: cache-qpg1239-QPG, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 8, 1
X-Timer: S1670388518.689085,VS0,VE1
287335kmu.com/2259b946c3c744c58e3315af33cb643f.gif
45.61.212.50200 OK 748 kB URL HTTP/1.1 287335kmu.com/2259b946c3c744c58e3315af33cb643f.gif
IP 45.61.212.50:0
File type GIF image data, version 89a, 750 x 120\012- data
Size 748 kB (748166 bytes)
Hash dc16c165d9da37bf4a9e9596a765425c
824e5729161352cd5f7b57faea8a32c54d35b410
4abb336ff1a1a08dc2963b708638359da654fadaf843669e4406d6ab348b4608
Analyzer Verdict Alert quad9 Sinkholed
GET /2259b946c3c744c58e3315af33cb643f.gif HTTP/1.1
Host: 287335kmu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "634524b9-b6a86"
Date: Fri, 25 Nov 2022 06:48:12 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 11 Oct 2022 08:09:29 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-20
Content-Length: 748166
9992210.com/views/image/20221129/2022112917420215414811_0_0.gif
154.223.4.168200 OK 583 kB URL HTTP/1.1 9992210.com/views/image/20221129/2022112917420215414811_0_0.gif
IP 154.223.4.168:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 583 kB (583422 bytes)
Hash 791975cf4fb856df78b7d234e2ee500f
9c5d6c539b9b951ddb9c9017ad91eb4eaa4be6d1
43e55a95231010c0fbd5ebff8a2403dfc315b76eca5f13f6418ddf55b2300af8
GET /views/image/20221129/2022112917420215414811_0_0.gif HTTP/1.1
Host: 9992210.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 04:48:36 GMT
Content-Type: image/gif
Last-Modified: Tue, 29 Nov 2022 09:42:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6385d3ea-924d5"
Expires: Sat, 10 Dec 2022 04:48:36 GMT
Cache-Control: max-age=259200
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Content-Encoding: gzip
84998085.com/8499/960x60.gif
154.39.67.229200 OK 331 kB URL HTTP/2 84998085.com/8499/960x60.gif
IP 154.39.67.229:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /8499/960x60.gif HTTP/1.1
Host: 84998085.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 04:48:37 GMT
content-type: image/gif
content-length: 331043
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "50d23-5ed03aef4304d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/PiajxSqBRaEL6CJZGYgAAMVv8Eqb0kKqmk8ZBGxSry9wDdbDrX4ZxIxycHEPiaOJdHNib4U7xBWDrs/0
43.154.254.32200 OK 331 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaEL6CJZGYgAAMVv8Eqb0kKqmk8ZBGxSry9wDdbDrX4ZxIxycHEPiaOJdHNib4U7xBWDrs/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /qqmail_head/PiajxSqBRaEL6CJZGYgAAMVv8Eqb0kKqmk8ZBGxSry9wDdbDrX4ZxIxycHEPiaOJdHNib4U7xBWDrs/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 07 Dec 2022 04:48:38 GMT
content-type: image/gif
content-length: 331043
vary: Accept,Origin
last-modified: Tue, 08 Nov 2022 23:41:39 GMT
cache-control: max-age=2592000
x-delay: 36746 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 331043
chid: 0
fid: 0
x-nws-log-uuid: 30d036c9-13b5-4256-ac21-1e4a9e0b0a38
X-Firefox-Spdy: h2
img.1137555.com/images/637b82c7cce1c6e2c29fed1b.gif
185.239.226.87302 Found 0 B URL HTTP/2 img.1137555.com/images/637b82c7cce1c6e2c29fed1b.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
GET /images/637b82c7cce1c6e2c29fed1b.gif HTTP/1.1
Host: img.1137555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://andht96.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/73ccd4bf70e648888fdc966c582690dc
X-Firefox-Spdy: h2