r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19265
Expires: Thu, 08 Dec 2022 02:32:13 GMT
Date: Wed, 07 Dec 2022 21:11:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2574
Expires: Wed, 07 Dec 2022 21:54:02 GMT
Date: Wed, 07 Dec 2022 21:11:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 21:08:05 GMT
content-type: application/json
age: 183
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4073
Expires: Wed, 07 Dec 2022 22:19:01 GMT
Date: Wed, 07 Dec 2022 21:11:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: an/82lVRfsf+1Nh09oO43qQJEel0blhEIumcGwdSmQLW9bBwbxkcNmPCEKlaiafJERc2I9Ap/rAGzr98HQaMtg==
x-amz-request-id: QE2DX2YRMW325BNC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 20:49:30 GMT
age: 1298
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 21:11:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
933d9ab2e884e7164105.hb-win.com/
154.12.60.194200 OK 29 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/
IP 154.12.60.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (473), with CRLF, LF line terminators
Hash 62b96293765caaa71ea045f8b12dd9a8
b2d69fe1d3e596f41e0731f4b3ef40a98c3c9c1f
f5365442b8d1618fdc00d976c2279639930a573114e9f4ddef51e6ca782a025c
GET / HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: text/html
Content-Length: 28617
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
933d9ab2e884e7164105.hb-win.com/sastatic/css/font-awesome.min.css
154.12.60.194200 OK 7.8 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/css/font-awesome.min.css
IP 154.12.60.194:0
File type ASCII text, with very long lines (30837)
Hash 72e5580f63813b931f26cc394f03dafe
a142f0f90b34d3119e7a20d45faff1aa32864bf2
5b2d00a1e9b566eec47655ce8c8981d87493da936a57a3857a35bb526c5f75e9
GET /sastatic/css/font-awesome.min.css HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: text/css
Last-Modified: Thu, 16 Jul 2020 13:12:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f105228-7918"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/css/animate.css
154.12.60.194200 OK 3.6 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/css/animate.css
IP 154.12.60.194:0
Hash 1a3a1368c3001891fbbe9b4b77b12cbc
c0e87f5c0d2f55b449cb1bc93c238685f710c112
7932a3bb39d669c41f84f786536182c4df62896b2d0b1764614300f31e569840
GET /sastatic/css/animate.css HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: text/css
Last-Modified: Thu, 16 Jul 2020 13:12:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f105226-5d29"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/css/style.css
154.12.60.194200 OK 1.3 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/css/style.css
IP 154.12.60.194:0
File type ASCII text, with CRLF line terminators
Hash fa21d086bc037c12d343fdf661d9e729
637d030a3b3725baa34d1467d7c4dcb52baa34a2
07923fc72d1c66027630924bc4dff4115c7ec5704d79cc28c6f76622497fd497
GET /sastatic/css/style.css HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: text/css
Last-Modified: Thu, 28 Apr 2022 12:25:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"626a87ac-c95"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/modernizr-2.8.3.min.js
154.12.60.194200 OK 6.7 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/modernizr-2.8.3.min.js
IP 154.12.60.194:0
File type HTML document, ASCII text, with very long lines (14856)
Hash b1a79906041b63db1197ade108b1f4da
4ecb017cd58155ff4cc689febb2eb5d42aa5101c
08106751a7da79418a8cd8f86175b1a6e3967b11c90da6cec42991229d6a550c
GET /sastatic/js/modernizr-2.8.3.min.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:12:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f105230-3c9a"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/css/bootstrap.min.css
154.12.60.194200 OK 28 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/css/bootstrap.min.css
IP 154.12.60.194:0
File type ASCII text, with CRLF line terminators
Hash a92efdcbf80ff3ef87c5b5c31157ea40
8db8c98d4b9b49c177e6c88f4aa14f9899bdf0a8
e2364cf4d642d277c88e6cff733655c45cdb6d397caa5052a929d5bf58cc88d1
GET /sastatic/css/bootstrap.min.css HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: text/css
Last-Modified: Fri, 22 Apr 2022 12:52:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6262a51d-2b9c8"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/ads/float.js
154.12.60.194200 OK 1.0 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/ads/float.js
IP 154.12.60.194:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (555)
Hash f05a8194dbc1408723400bfc3c7c9ecb
a603a5b801ac14aad6d8ce857d1948bcd4c8444e
b16daa9a075ab2cf203e5f897dbb5fe469411639b895937beda320ca1bf3c198
GET /ads/float.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Last-Modified: Sat, 03 Dec 2022 09:05:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"638b1172-f17"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/tj.js
154.12.60.194200 OK 258 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/tj.js
IP 154.12.60.194:0
File type ASCII text, with CRLF line terminators
Hash ec3d7c1a7134d4e05e32860780a80fea
b8a8ce1d4bb8ca221860adb22842f063419c0ebc
768e3b727e31365a88017eca8f4e6a384cecb7d602ef0369fab4a963d0cd8237
GET /sastatic/js/tj.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Content-Length: 258
Last-Modified: Wed, 04 May 2022 17:06:27 GMT
Connection: keep-alive
ETag: "6272b293-102"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/sastatic/css/newstoday.min.css
154.12.60.194200 OK 20 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/css/newstoday.min.css
IP 154.12.60.194:0
File type ASCII text, with CRLF line terminators
Hash b7485acc044ae47d1f43962dcb0d0893
718b793887da402c25b2427948fe0e4e629cdcc4
a5c404aaf7c5005f72042255db66cc4f458ddb67f1603052f1ab604eed407e6c
GET /sastatic/css/newstoday.min.css HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: text/css
Last-Modified: Tue, 03 May 2022 11:32:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"627112b7-1c683"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/nav-pc.js
154.12.60.194200 OK 840 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/nav-pc.js
IP 154.12.60.194:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 0975c5fc808c8f34e7acfe64978f0485
95ac2d41336e64dec881f42aa51f0a168e8a35da
edc72a3223d4c57a8b5c42ed78fb61894b8f4d99a12f80b48792f8f62aa878ee
GET /sastatic/js/nav-pc.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Last-Modified: Thu, 15 Sep 2022 06:12:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6322c240-19b0"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/search-pc.js
154.12.60.194200 OK 760 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/search-pc.js
IP 154.12.60.194:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash ef93d06353a16dede17ee7460fdeb98f
8706058b741845090912370c6590b5806e3df08f
10317ac4d0f69dc3fa172a78bd15db981d73ecf463aad77c12a86c7be5152c96
GET /sastatic/js/search-pc.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Content-Length: 760
Last-Modified: Thu, 15 Sep 2022 06:12:37 GMT
Connection: keep-alive
ETag: "6322c255-2f8"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.js
154.12.60.194200 OK 37 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.js
IP 154.12.60.194:0
File type ASCII text, with very long lines (32089)
Hash ecb5a5b0c520535a5dedef53186c0079
232708f689fd7efa0bef4b61f169f054504bd22a
d220a5333de3774d06aa124d2e7f8cab2310b2780883a1cd49296d0614ab2a9c
GET /sastatic/js/jquery.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Last-Modified: Tue, 03 May 2022 12:20:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62711e23-169d5"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/nav-wap.js
154.12.60.194200 OK 831 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/nav-wap.js
IP 154.12.60.194:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash b9e618ff773df11085eb71c029ebb57f
de413352390f03b23d510bab819f4a028aca5d42
a523ac5fcce00ed4f2f3a7801ca8f865272cfce4ec0cc3802e044fd742411f61
GET /sastatic/js/nav-wap.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Last-Modified: Thu, 15 Sep 2022 06:12:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6322c24f-16f1"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/search-wap.js
154.12.60.194200 OK 357 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/search-wap.js
IP 154.12.60.194:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 6e164408e519a7498a197532c8217292
85586c5ef1f72ed5c8aebdd22845407bc01e24a1
8bee208487cc699323f4cd67dc331b426e37e6d446abe3537e6e142d4add2795
GET /sastatic/js/search-wap.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:08 GMT
Content-Type: application/javascript
Content-Length: 357
Last-Modified: Thu, 15 Sep 2022 06:12:42 GMT
Connection: keep-alive
ETag: "6322c25a-165"
Expires: Thu, 08 Dec 2022 09:11:08 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/ads/shipinshang.php
154.12.60.194200 OK 142 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/ads/shipinshang.php
IP 154.12.60.194:0
Hash 250de57835bb4c50a5ffdefe769429e4
67dd379756894209d628548a14c47e8b418daae1
26de67afab31dedab17a276f8c75a244dc5a54f60fd500c92af2a3edab7c1415
GET /ads/shipinshang.php HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/ads/shipin.js
154.12.60.194200 OK 678 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/ads/shipin.js
IP 154.12.60.194:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash a4245b05902480d37d3aad007fbe681c
475f6998f2cb719a5c0243ee1eff9bf2e2b0eb08
5eb55c0f5359b68b4673de17a0b7eddff8ec081903935a30f48d277585ca1291
GET /ads/shipin.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Content-Length: 678
Last-Modified: Sat, 10 Sep 2022 13:47:08 GMT
Connection: keep-alive
ETag: "631c955c-2a6"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/sastatic/js/dibuwenzi.js
154.12.60.194200 OK 755 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/dibuwenzi.js
IP 154.12.60.194:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 545fefaeede58542baf217d55f95cdc1
b4f77a1124f8d80f213c8356a225445646370f09
6bb2e79b3189d4148f5595d1c652d2f5da8dd75756db93560f7e2fce168c1e6e
GET /sastatic/js/dibuwenzi.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Content-Length: 755
Last-Modified: Mon, 04 Jul 2022 06:54:57 GMT
Connection: keep-alive
ETag: "62c28ec1-2f3"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/ads/ggs.js
154.12.60.194404 Not Found 54 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/ads/ggs.js
IP 154.12.60.194:0
File type ASCII text, with no line terminators
Hash 0679e55966f876454368f27f6b87c10a
ee7fe064b21bb51d2d8ed98b65a1fbc93ca6c0b3
29e98f278f6be667127202accbb5d65a2f5e740b588b648f3c2cb3172f9604b6
GET /ads/ggs.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ljcdn.comtucdncom.com/upload/vod/20190526-1/863a51997f798a0d522ed48fa6405d8c.jpg
45.89.208.114200 OK 5.9 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190526-1/863a51997f798a0d522ed48fa6405d8c.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3795fbd6c459b51913de0ab890d64b54
c7402f39b7c00e3ee0279a680cb581436d5fbac3
2743de070bb1e802fad152f3a69b83538195972e7c2fab2791b2d84518f4adca
GET /upload/vod/20190526-1/863a51997f798a0d522ed48fa6405d8c.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 5944
Last-Modified: Thu, 11 Aug 2022 04:55:19 GMT
Connection: keep-alive
ETag: "62f48bb7-1738"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/sastatic/js/popper.min.js
154.12.60.194200 OK 7.5 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/popper.min.js
IP 154.12.60.194:0
File type ASCII text, with very long lines (19015)
Hash 23990e4ea45c102fd4edc9f2cd468cdf
e9627b3b510113d3095c7417fedd877f6165c9eb
7f25d15c3bbb5393d2567b706f9056dff8ba32ee14d9bbda3d128942e9aed7d0
GET /sastatic/js/popper.min.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:13:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f105292-4af4"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.sticky-kit.js
154.12.60.194200 OK 2.2 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.sticky-kit.js
IP 154.12.60.194:0
Hash caf71b8a284ee739324da49a5e5b7593
b18a17805cf1d6e80bf03ec928ae59dc9bfa4877
4535736cf71e59b9ab83de3f05a927fbf907aa5081da18830348a36713fc7790
GET /sastatic/js/jquery.sticky-kit.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:14:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f10529a-1e9f"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/owl.carousel.min.js
154.12.60.194200 OK 13 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/owl.carousel.min.js
IP 154.12.60.194:0
File type ASCII text, with very long lines (32018)
Hash fcf462300475f03bdc42b71535815a5a
793bef636adda663dd210d0fa067705d340d6a84
fc0d8b3ac6c5e2b13fae84832a6fa584494a95253f5a7cf7d006e17df6de02d6
GET /sastatic/js/owl.carousel.min.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:14:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f105298-a723"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/flexmenu.min.js
154.12.60.194200 OK 1.2 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/flexmenu.min.js
IP 154.12.60.194:0
File type HTML document, ASCII text, with very long lines (2301)
Hash 47ace0bd0e58babc3c2580d46618e677
2c9777873abc2290cbb205796661baff6e082adb
d54b8785aea06617d712d5fbdc74b32178643dfba7b6adc5daaa5a5eec829cf7
GET /sastatic/js/flexmenu.min.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:14:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f10529c-a14"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.magnific-popup.min.js
154.12.60.194200 OK 8.4 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.magnific-popup.min.js
IP 154.12.60.194:0
File type ASCII text, with very long lines (21014)
Hash 3980342c4b941409f6e7d82a029034b2
eb626cd63ba397b153137f48c9b91483a13a419d
88393d3902ec16576086854b55f6b4a9920926a5be6b41cba2c936078e7b5cdc
GET /sastatic/js/jquery.magnific-popup.min.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:14:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f10529e-5297"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ljcdn.comtucdncom.com/upload/vod/20190506-1/9c5de15567286436ce60f58357230df6.jpg
45.89.208.114200 OK 9.5 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190506-1/9c5de15567286436ce60f58357230df6.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash fec049e0fa4dba52ea506b8bc783b8c0
c9d0643af1379f10d012bc5b631917bb1e080411
d44da3e1773a6f0b1c5409d45f718517b4562521ef4411f397a10e35367e70f0
GET /upload/vod/20190506-1/9c5de15567286436ce60f58357230df6.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 9490
Last-Modified: Thu, 11 Aug 2022 04:52:25 GMT
Connection: keep-alive
ETag: "62f48b09-2512"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190526-1/766948dc5a04a5f0ea822af921ad2b3b.jpg
45.89.208.114200 OK 6.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190526-1/766948dc5a04a5f0ea822af921ad2b3b.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 1cc480ecfa6c7d3c47e60425f4625bd3
ea15c8419dc6b3bc366601b4ce027717a0e33c47
f9811c49d68d62695dfe6ea9e7d326471599bd6d433e955e6a42ac3aaafd8eaa
GET /upload/vod/20190526-1/766948dc5a04a5f0ea822af921ad2b3b.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 6295
Last-Modified: Thu, 11 Aug 2022 04:55:31 GMT
Connection: keep-alive
ETag: "62f48bc3-1897"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/sastatic/js/bootstrap.min.js
154.12.60.194200 OK 15 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/bootstrap.min.js
IP 154.12.60.194:0
File type ASCII text, with very long lines (48664)
Hash 555bf2e41677da45ae01dfc7e2df561c
12c3623abfa1cef2d1597f58366952188b54edad
b465c86b52bb6e79bfb8b7cf15d7e272df620337f6b95e670d36f3a845d87578
GET /sastatic/js/bootstrap.min.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:13:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f105294-bf30"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.nicescroll.min.js
154.12.60.194200 OK 20 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/jquery.nicescroll.min.js
IP 154.12.60.194:0
File type ASCII text, with very long lines (64577)
Hash ada7f170f90f0e7c7016095f52ea4d38
5619816e5f2e4152b4843f4a7059cadd2bf57026
cfabc4a6aff0f429fc934f998d976d872ccc66ce1ac4322896944544496d008e
GET /sastatic/js/jquery.nicescroll.min.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:14:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f1052a0-fc8b"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/newstoday.js
154.12.60.194200 OK 1.3 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/newstoday.js
IP 154.12.60.194:0
Hash a3bf90b839cb47b2cd47274819b06894
d3912fbd30c990844e94bae59b44edf793c0102d
24119642c8c3eeee0d015633563b5fd3b451115695c543bfcb18a49c6fb5b526
GET /sastatic/js/newstoday.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Jul 2020 13:14:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f1052a4-f16"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
933d9ab2e884e7164105.hb-win.com/sastatic/js/51tj.js
154.12.60.194200 OK 0 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/js/51tj.js
IP 154.12.60.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sastatic/js/51tj.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: application/javascript
Content-Length: 0
Last-Modified: Tue, 03 May 2022 13:22:25 GMT
Connection: keep-alive
ETag: "62712c91-0"
Expires: Thu, 08 Dec 2022 09:11:09 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190514-1/906d80461fd420e4bd3d800b8da73950.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190514-1/906d80461fd420e4bd3d800b8da73950.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 0dfa42bea2720d10cd897fe860c8f2c9
a6dbb1cbbbebcb05ccf501f71fef3c67aca48cdd
a0a14be08075eac203b5193365b6d68998da92b9a6ba20ca73a70011e27d83cd
GET /upload/vod/20190514-1/906d80461fd420e4bd3d800b8da73950.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 10712
Last-Modified: Thu, 11 Aug 2022 05:00:41 GMT
Connection: keep-alive
ETag: "62f48cf9-29d8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210918-1/d9e6140ba6a79d9b43a8ee6533a87129.jpg
23.224.136.186200 OK 5.6 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210918-1/d9e6140ba6a79d9b43a8ee6533a87129.jpg
IP 23.224.136.186:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 7b55fdf8cd4dd5546f2ef3cfa35ab215
a83413c811f8519647ce1b5c9b6692dd29597f35
8d80c565f03ff3bb2315d9fd2f21789abaebc20b27d46cf53ac689301834faa4
GET /upload/vod/20210918-1/d9e6140ba6a79d9b43a8ee6533a87129.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 5632
Last-Modified: Tue, 07 Jun 2022 09:13:09 GMT
Connection: keep-alive
ETag: "629f16a5-1600"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190518-1/9b3f5882487c22bd75d977c03cc6135d.jpg
45.89.208.114200 OK 18 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190518-1/9b3f5882487c22bd75d977c03cc6135d.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 400x224, components 3\012- data
Hash 2f7b8c63e10e8dd8971f9fe50d0e4bf5
45e49aa946d736419f0acfba73cd776d22c33954
eca0bf7d7116aa8908944b38a28a98c6a27c1f188004fa4a4bea242e24a4b7ef
GET /upload/vod/20190518-1/9b3f5882487c22bd75d977c03cc6135d.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 18077
Last-Modified: Thu, 11 Aug 2022 04:54:47 GMT
Connection: keep-alive
ETag: "62f48b97-469d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/ads/ggs.js
154.12.60.194404 Not Found 54 B URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/ads/ggs.js
IP 154.12.60.194:0
File type ASCII text, with no line terminators
Hash 0679e55966f876454368f27f6b87c10a
ee7fe064b21bb51d2d8ed98b65a1fbc93ca6c0b3
29e98f278f6be667127202accbb5d65a2f5e740b588b648f3c2cb3172f9604b6
GET /ads/ggs.js HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
fmlb.netlbtu.com/images/2022/01/13/hey5265.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2022/01/13/hey5265.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2022/01/13/hey5265.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2022/01/13/hey5265.jpg
fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
45.89.208.114301 Moved Permanently 239 B URL HTTP/1.1 fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
IP 45.89.208.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 67194376ec810b1466000b45b043ab94
b5b0840425f5602244750801336e7e8b9efd022f
39e3595d59216b98e54c6f089954d1397d9eb7f75a2a85914881cec2eef07164
GET /images/2022/01/10/hey5224.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 301 Moved Permanently
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: text/html
Content-Length: 239
Connection: keep-alive
Location: https://fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
ljcdn.comtucdncom.com/upload/vod/20190524-1/2b03fb5f50edf3ca8922a57d87c3ab8e.jpg
45.89.208.114200 OK 7.5 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190524-1/2b03fb5f50edf3ca8922a57d87c3ab8e.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash cf375efa1d8385b803c355fad607cc39
ab7fdf3d6d01ecde4e305a4e84dc8d3ff95b5639
e0df3fb77e4d7384bc17742f3ce7f04631a3f77c4274e59106fbd59d6d81e47b
GET /upload/vod/20190524-1/2b03fb5f50edf3ca8922a57d87c3ab8e.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 7481
Last-Modified: Thu, 11 Aug 2022 04:57:23 GMT
Connection: keep-alive
ETag: "62f48c33-1d39"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190514-1/d21ac0aa23251d664a8ca84c760cbf6f.jpg
45.89.208.114200 OK 8.0 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190514-1/d21ac0aa23251d664a8ca84c760cbf6f.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d1ef41d20552c6433f115351897106f7
7c2d978e2a8a23ffe66cdbf01d2cc548672f62c2
36f705a8dd9b6704d6c033be5bdf452137b1450f2432e5ca08d37ec82d2e8fba
GET /upload/vod/20190514-1/d21ac0aa23251d664a8ca84c760cbf6f.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 7999
Last-Modified: Thu, 11 Aug 2022 04:54:52 GMT
Connection: keep-alive
ETag: "62f48b9c-1f3f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190917-1/8e2e7f49307688a88c4604d661ed55fd.jpg
45.89.208.114200 OK 30 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190917-1/8e2e7f49307688a88c4604d661ed55fd.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 960x540, components 3\012- data
Hash 2582aecfdca9559de00fddbc37389480
74948102f4eb9587326e6edfc2cc0cff77128c90
4ced7b46903c02186700c6fbe65529728dc05981323cd2b9230b2b6cf573802f
GET /upload/vod/20190917-1/8e2e7f49307688a88c4604d661ed55fd.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 29476
Last-Modified: Thu, 11 Aug 2022 05:12:37 GMT
Connection: keep-alive
ETag: "62f48fc5-7324"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190508-1/d3af46eac45b8d1955873cb067c777be.jpg
45.89.208.114200 OK 30 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190508-1/d3af46eac45b8d1955873cb067c777be.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 480x270, components 3\012- data
Hash 47f6b208d18de5a432603e38b394e3ac
656f06682db5c59ac8c84fbb3995ab66f1c3dca0
6b9b9cf8d6c615c699b4fc2e87462923ebc66dfccd3a74c74ffa7aa8dbcd5d31
GET /upload/vod/20190508-1/d3af46eac45b8d1955873cb067c777be.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 29697
Last-Modified: Thu, 11 Aug 2022 04:53:49 GMT
Connection: keep-alive
ETag: "62f48b5d-7401"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210811-1/648b586de1477125074e52f3395f42bf.jpg
23.224.136.186200 OK 75 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210811-1/648b586de1477125074e52f3395f42bf.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 795x447, components 3\012- data
Hash 525edf81a75100181fa8754a26199ab4
83ac594ea348b5a58d375fec242e6786362ab61b
b20951f7561f3825ee5e469d35aec3d79950ce438abac5ae9f0924337f34c652
GET /upload/vod/20210811-1/648b586de1477125074e52f3395f42bf.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 74588
Last-Modified: Tue, 07 Jun 2022 09:15:45 GMT
Connection: keep-alive
ETag: "629f1741-1235c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190802-1/ac42eb694afa13a892280f856987fc99.jpg
45.89.208.114200 OK 195 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190802-1/ac42eb694afa13a892280f856987fc99.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x537, components 3\012- data
Size 195 kB (195096 bytes)
Hash 0e4137ed8f0cbb2787a7de3f9d042172
a92af22f06304ee53da2a426c74ba5d7968d4f2a
563812003755ded81829439cf22b9995d4fa146a9dc7056a3977b89b327d4882
GET /upload/vod/20190802-1/ac42eb694afa13a892280f856987fc99.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 195096
Last-Modified: Thu, 11 Aug 2022 04:57:03 GMT
Connection: keep-alive
ETag: "62f48c1f-2fa18"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190706-1/5bd9a486ebec9be7c32a8bd45d8f1711.jpg
45.89.208.114200 OK 37 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190706-1/5bd9a486ebec9be7c32a8bd45d8f1711.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Hash bb25402422fb1a3f824f3e268e7fcf32
2b3c9ef1357326b3929b4a9f779aa4d43b81b7fd
63aaab9da13efc3507960bd682acfa8233930a6549ba6a249e62519ca4d88f7f
GET /upload/vod/20190706-1/5bd9a486ebec9be7c32a8bd45d8f1711.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 37432
Last-Modified: Thu, 11 Aug 2022 04:59:29 GMT
Connection: keep-alive
ETag: "62f48cb1-9238"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210920-1/60e1a6c56a5b46b53f58417fd9374483.jpg
23.224.136.186200 OK 62 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210920-1/60e1a6c56a5b46b53f58417fd9374483.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Hash 9929f2b73b981724324327c759bb8108
37bc3c302fc53573d2d6b89a13f3140daa0105a6
375789768d9b4b40e3cf48ba04f35d797b30be9c81bf97ae371f253331b7c4ce
GET /upload/vod/20210920-1/60e1a6c56a5b46b53f58417fd9374483.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 61941
Last-Modified: Tue, 07 Jun 2022 09:17:15 GMT
Connection: keep-alive
ETag: "629f179b-f1f5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210811-1/cf7dbac4db539d5b637b73342bd58364.jpg
23.224.136.186200 OK 74 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210811-1/cf7dbac4db539d5b637b73342bd58364.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1077x610, components 3\012- data
Hash 8c83a55d2b7abc7f463ec81437f437d1
ae890ea9af8c71298c869f832e44e7bba1d2f9d2
432b96337cc5889e901c83a3bcb2affb68ab6d6cc35457f982b228ca544e5711
GET /upload/vod/20210811-1/cf7dbac4db539d5b637b73342bd58364.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 73626
Last-Modified: Tue, 07 Jun 2022 09:13:07 GMT
Connection: keep-alive
ETag: "629f16a3-11f9a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20191115-1/afb8d4d2690c108060dbb2e3f46b6b9d.jpg
45.89.208.114200 OK 6.8 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20191115-1/afb8d4d2690c108060dbb2e3f46b6b9d.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash effcfb92aa46ef3ce764ceb5352f48a7
bdda41b92aa3f6974b04500fef915a1befd6f881
83e1c314143fc48cec4b3ca89cd19f305ac075db91e8619d8015c3b54da39322
GET /upload/vod/20191115-1/afb8d4d2690c108060dbb2e3f46b6b9d.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 6831
Last-Modified: Thu, 11 Aug 2022 04:55:34 GMT
Connection: keep-alive
ETag: "62f48bc6-1aaf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210918-1/96d9e5b06b45301ebbb2af4d9290bec3.jpg
23.224.136.186200 OK 87 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210918-1/96d9e5b06b45301ebbb2af4d9290bec3.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 761x513, components 3\012- data
Hash 099ff666e30edb484eb71f45ecae53a9
26e7c69c19f8f3f0e7c82c42af72adcbc3184490
dd1055670ca25d430dbbfb4e392e203b09c3da70a2ce2217c6c490e1a9264861
GET /upload/vod/20210918-1/96d9e5b06b45301ebbb2af4d9290bec3.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 86896
Last-Modified: Tue, 07 Jun 2022 09:13:31 GMT
Connection: keep-alive
ETag: "629f16bb-15370"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210906-3/fcf96f2f02dd2217711189d2f769cccc.jpg
23.224.136.186200 OK 102 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210906-3/fcf96f2f02dd2217711189d2f769cccc.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x535, components 3\012- data
Size 102 kB (102175 bytes)
Hash 883d797033d232ada96075270ae1f008
b5e9f442e5e2a2bdaedde306d2abc81c529b50e0
53ccf7221b1d070cc2143e3c0178ab5b907e61c8869642415776f14988eaadf3
GET /upload/vod/20210906-3/fcf96f2f02dd2217711189d2f769cccc.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 102175
Last-Modified: Tue, 07 Jun 2022 09:16:02 GMT
Connection: keep-alive
ETag: "629f1752-18f1f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210811-1/7ea050fa50df5844a2a577fb1a3eca0d.jpg
23.224.136.186200 OK 8.4 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210811-1/7ea050fa50df5844a2a577fb1a3eca0d.jpg
IP 23.224.136.186:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 9a5ec5849f32d06699bbfb823c1b8feb
1f13d56fee6a4efbc3d889b73ccd8d0ecde10e45
ba4aeb42f1de6f5c20872c049c2bdb8265afef57b24149bd51a27da3b8bc6251
GET /upload/vod/20210811-1/7ea050fa50df5844a2a577fb1a3eca0d.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 8369
Last-Modified: Tue, 07 Jun 2022 09:16:02 GMT
Connection: keep-alive
ETag: "629f1752-20b1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190510-1/83189e9a7df57f955b30e7950cfd53d9.jpg
45.89.208.114200 OK 73 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190510-1/83189e9a7df57f955b30e7950cfd53d9.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x533, components 3\012- data
Hash f977c9b4c8bfdecd3378bcad092d9da6
a8f82038eff3624f49a269e764dccc53f756c724
589a0e5b51dced9b39ce844e14a478f6be254c71d6b7c8f218aeb397f53e7099
GET /upload/vod/20190510-1/83189e9a7df57f955b30e7950cfd53d9.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 73078
Last-Modified: Thu, 11 Aug 2022 05:02:43 GMT
Connection: keep-alive
ETag: "62f48d73-11d76"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20200117-1/dd84fb2a326c1e28c9094e8cbf10596f.jpg
45.89.208.114200 OK 28 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200117-1/dd84fb2a326c1e28c9094e8cbf10596f.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x450, components 3\012- data
Hash f7c6683eef9d770575590d20a83daf09
8c30f0eb83ba8405037bb8aa38aa5d98be265818
9c2a353d264190eacc81a7b77f5f3463e1c847e0d0a7cb471beb3496a05ae440
GET /upload/vod/20200117-1/dd84fb2a326c1e28c9094e8cbf10596f.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 27453
Last-Modified: Thu, 11 Aug 2022 05:09:32 GMT
Connection: keep-alive
ETag: "62f48f0c-6b3d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210911-1/d529e553bfb6bb38c920ff1b9c575bc1.jpg
23.224.136.186200 OK 186 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210911-1/d529e553bfb6bb38c920ff1b9c575bc1.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 186 kB (186348 bytes)
Hash e48c118adae86398c1478ce02c8d8535
4604ec81b386a6f0af0f742930913e4cc6badcbf
d548fe3e98f35c86cf92ea2bef603fb515403284bde83511ae2c22d35a24caa1
GET /upload/vod/20210911-1/d529e553bfb6bb38c920ff1b9c575bc1.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 186348
Last-Modified: Tue, 07 Jun 2022 09:15:54 GMT
Connection: keep-alive
ETag: "629f174a-2d7ec"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190508-1/f589f2de95a53589ea3194e7f8e8ccf2.jpg
45.89.208.114200 OK 34 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190508-1/f589f2de95a53589ea3194e7f8e8ccf2.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.107.100", baseline, precision 8, 480x270, components 3\012- data
Hash 3c9ca05865e56d85205a2a66eb078b8c
c19c9f5265ebcb45716e80477e776e0bdd41d4e2
f4f3a2c5ba40d82bf22bef44dba6649063199acaf9abff9391f5bced1dcffba4
GET /upload/vod/20190508-1/f589f2de95a53589ea3194e7f8e8ccf2.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 34434
Last-Modified: Thu, 11 Aug 2022 04:55:10 GMT
Connection: keep-alive
ETag: "62f48bae-8682"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210821-1/341368a49b3466e9dd5340d46728d632.jpg
23.224.136.186200 OK 80 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210821-1/341368a49b3466e9dd5340d46728d632.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Hash 13bb35c7db8f306b0e7074de12899e0b
b6cb5ccb458f957f679e10e0addbe54f998ecf3e
86b5b548f8c47c803acefd50154934b4f1d8c58c6391c680eaab0f0ec5c6ac7c
GET /upload/vod/20210821-1/341368a49b3466e9dd5340d46728d632.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 79717
Last-Modified: Tue, 07 Jun 2022 09:11:44 GMT
Connection: keep-alive
ETag: "629f1650-13765"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190520-1/7774b4e38e35824b1268d282f4a4b48f.jpg
45.89.208.114200 OK 101 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190520-1/7774b4e38e35824b1268d282f4a4b48f.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 101 kB (100654 bytes)
Hash d11ce5da18048a030b5263e0e0c51edc
7cc9ab02b515471c717b7e67849c9e9897db1cbc
b5673623d067a64ba2f5da8653dbc7308224b4c32a0f115f96b1d41c47b1dbc9
GET /upload/vod/20190520-1/7774b4e38e35824b1268d282f4a4b48f.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 100654
Last-Modified: Thu, 11 Aug 2022 04:56:30 GMT
Connection: keep-alive
ETag: "62f48bfe-1892e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210907-1/2ff0b066e008959f8e2732a53bd5be2b.jpg
23.224.136.186200 OK 189 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210907-1/2ff0b066e008959f8e2732a53bd5be2b.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 189 kB (188953 bytes)
Hash eda0d30fc704bb9d66e52d7910d4c8b1
23784665de445172b8fd6ab9b65e27efbd7de74b
36cfe84f0ccbe0e3a2c43fa10765146b0354e87695ba5b7ee78dc79f5200a0db
GET /upload/vod/20210907-1/2ff0b066e008959f8e2732a53bd5be2b.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:09 GMT
Content-Type: image/jpeg
Content-Length: 188953
Last-Modified: Tue, 07 Jun 2022 09:12:47 GMT
Connection: keep-alive
ETag: "629f168f-2e219"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20210908-1/d5901c07c3c4d29fa1c4268165c2e452.jpg
23.224.136.186200 OK 177 kB URL HTTP/1.1 ttzytp.com/upload/vod/20210908-1/d5901c07c3c4d29fa1c4268165c2e452.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 177 kB (176804 bytes)
Hash 6abd81e94d8af5c2f77ee6c32698242f
5761f76d31f1c380f8b97c7992d322edbd0d7d7f
a4ae34d1234ced2c02eca6658687dfcdb9f3a17ca2accd574128b569a855c0b9
GET /upload/vod/20210908-1/d5901c07c3c4d29fa1c4268165c2e452.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 176804
Last-Modified: Tue, 07 Jun 2022 09:12:36 GMT
Connection: keep-alive
ETag: "629f1684-2b2a4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190526-1/9723fd19b1bd57eaa9c786b171e05bd4.jpg
45.89.208.114200 OK 8.6 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190526-1/9723fd19b1bd57eaa9c786b171e05bd4.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash da726f74fb795561665f3742775dec17
4cbaec16a28abc508a4aeca85f2c49f7bde8fd3f
d344c8a17b0716a0f748dd0b8bc49b65f348f3dd12be46202062c49081df1e34
GET /upload/vod/20190526-1/9723fd19b1bd57eaa9c786b171e05bd4.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 8562
Last-Modified: Thu, 11 Aug 2022 04:56:23 GMT
Connection: keep-alive
ETag: "62f48bf7-2172"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp.com/upload/vod/20211213-1/b73b2122f8bd048a427d2f29bdc94c7f.jpg
23.224.136.186200 OK 200 kB URL HTTP/1.1 ttzytp.com/upload/vod/20211213-1/b73b2122f8bd048a427d2f29bdc94c7f.jpg
IP 23.224.136.186:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 200 kB (200327 bytes)
Hash 21cb76fe19e3a028ab7fe075a9740623
af2d0dc564d0bcfb4500f31f854437534a6c0055
f9c17d03d5c74249a69c000a9c668f873c3bad9edf60cc03effc8e6d0a45dd13
GET /upload/vod/20211213-1/b73b2122f8bd048a427d2f29bdc94c7f.jpg HTTP/1.1
Host: ttzytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 200327
Last-Modified: Tue, 07 Jun 2022 09:16:24 GMT
Connection: keep-alive
ETag: "629f1768-30e87"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20200527-1/95c0c100abeaf1b8848cf93fb27fd5ad.jpg
45.89.208.114200 OK 99 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200527-1/95c0c100abeaf1b8848cf93fb27fd5ad.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 960x540, components 3\012- data
Hash 1d6f1dba6a872c70de93e26cf6c9e6ce
81abc70bb62c58ee2359f97ce2f04f15e6f66309
65b7562ea949519c9cc6d565e226e0b80d6cc531f04234ebcfc32da8eb0d8284
GET /upload/vod/20200527-1/95c0c100abeaf1b8848cf93fb27fd5ad.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 98944
Last-Modified: Thu, 11 Aug 2022 05:26:30 GMT
Connection: keep-alive
ETag: "62f49306-18280"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 9b54967cfee97290b2e9390c5c626df6
3dab662f41c7df841d6ea30c2eed04a23562c8b8
66b6b15d50ee99162e196691e416216e32b3dc0faeb8fcd8497c5f4242adc73b
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=485
Date: Wed, 07 Dec 2022 21:11:10 GMT
Connection: keep-alive
X-N: S
push.services.mozilla.com/
34.210.150.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.150.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G/ARMGI64O1k7Q4oM4lSLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iFFDJqu2M+jQ+ylQs5sv2TMROzU=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1997dfef789ddb51957ed6555056e0e5
512b6543d1a0b6937edd64a024199059b62173f9
4bf67b64afc0d8891cdfc9716e621e5d40839b391bab8eef9a4db0824420d954
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BF67B64AFC0D8891CDFC9716E621E5D40839B391BAB8EEF9A4DB0824420D954"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2601
Expires: Wed, 07 Dec 2022 21:54:31 GMT
Date: Wed, 07 Dec 2022 21:11:10 GMT
Connection: keep-alive
ljcdn.comtucdncom.com/upload/vod/20210428-1/44644bc312e5348608ad77af0e56d428.jpg
45.89.208.114200 OK 8.2 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210428-1/44644bc312e5348608ad77af0e56d428.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 9edd37626d625076a0c410054bbc4b60
12b8f13890879f82303ad662530d7971a2d6acc2
eee9fde259ab198ffbc5fc56091b7d0020ffda019aee699b9d9a303c1507bb55
GET /upload/vod/20210428-1/44644bc312e5348608ad77af0e56d428.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 8205
Last-Modified: Thu, 11 Aug 2022 05:01:19 GMT
Connection: keep-alive
ETag: "62f48d1f-200d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
xiusebf1.com/20210812/Auo3OHE7/1.jpg
45.13.92.68200 OK 12 kB URL HTTP/1.1 xiusebf1.com/20210812/Auo3OHE7/1.jpg
IP 45.13.92.68:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 66d0c93270582f8fb9a900bfcb090678
2a0f72c734846054ed77351df4cda35b972ac5e6
de0ce7ce707b5577496b885871bfef4bb2e7ae6b821e8310feab2e5f33dbc7e6
GET /20210812/Auo3OHE7/1.jpg HTTP/1.1
Host: xiusebf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:10:23 GMT
Content-Type: image/jpeg
Content-Length: 11823
Last-Modified: Sat, 23 Jul 2022 06:13:50 GMT
Connection: keep-alive
ETag: "62db919e-2e2f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 9b54967cfee97290b2e9390c5c626df6
3dab662f41c7df841d6ea30c2eed04a23562c8b8
66b6b15d50ee99162e196691e416216e32b3dc0faeb8fcd8497c5f4242adc73b
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=485
Date: Wed, 07 Dec 2022 21:11:10 GMT
Connection: keep-alive
X-N: S
ljcdn.comtucdncom.com/upload/vod/20190621-1/40d40789d678c0ec9ee0c4cc61210fd1.jpg
45.89.208.114200 OK 95 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190621-1/40d40789d678c0ec9ee0c4cc61210fd1.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 820x460, components 3\012- data
Hash 2ae366c808c18e7d49bb3231ffc5f3bf
e1c81c04f5e8defc2b94ac57ec014f1afb7c8bcd
ed802149ba2eb0a50e77abd4ad56529f60fca8f99efb4fa7f2873cfb65f14f43
GET /upload/vod/20190621-1/40d40789d678c0ec9ee0c4cc61210fd1.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 94808
Last-Modified: Thu, 11 Aug 2022 04:55:10 GMT
Connection: keep-alive
ETag: "62f48bae-17258"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20190728-1/1c6c396d431fccfeaa59f925fac5f1f7.jpg
45.89.208.114200 OK 135 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20190728-1/1c6c396d431fccfeaa59f925fac5f1f7.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x539, components 3\012- data
Size 135 kB (135346 bytes)
Hash 4318a93da7be4ec34b5585a119da8053
132be6b6455e9e0136c9b36b33a979556e6df324
67b61b01b68d688c7f0dff1e0e7b6d5ba71e4b08dcf9df7558368691dfe89010
GET /upload/vod/20190728-1/1c6c396d431fccfeaa59f925fac5f1f7.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 135346
Last-Modified: Thu, 11 Aug 2022 05:01:05 GMT
Connection: keep-alive
ETag: "62f48d11-210b2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20201224-1/48341bade06a5b085e314dd27eb4b45c.jpg
45.89.208.114200 OK 136 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201224-1/48341bade06a5b085e314dd27eb4b45c.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x536, components 3\012- data
Size 136 kB (135451 bytes)
Hash 950e94c87ada793b42afd5d871ca7e07
66a722a5c456df38eec6c455e9341db09b6d6a9b
e7529058ddda52b32bb6890a6d76ea01ba817a25c3bac14676e15ab33a15ba2b
GET /upload/vod/20201224-1/48341bade06a5b085e314dd27eb4b45c.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 135451
Last-Modified: Thu, 11 Aug 2022 04:58:41 GMT
Connection: keep-alive
ETag: "62f48c81-2111b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash db09148f80463034fa3c595e0dfe3613
38c4b97516a08b91adf7881e4947eb4832c7dca0
b00fc45c020c479bf9e3d38af23941706eec99305d6c52a9e6a4ac27a0fd7437
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 11 Dec 2022 19:27:34 GMT
ETag: "38c4b97516a08b91adf7881e4947eb4832c7dca0"
Last-Modified: Wed, 07 Dec 2022 19:27:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2140
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77604095fd01b529-OSL
ljcdn.comtucdncom.com/upload/vod/20211129-1/0e304adff1d733604df8e9c06ecd6587.jpg
45.89.208.114200 OK 9.5 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211129-1/0e304adff1d733604df8e9c06ecd6587.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 1594d293a980d656e89ff60b4016b684
1a6b011cebbd21623f8022c76aecd8cb05661661
8c871b1808985a571c8629a05a0475cbbaa6c2b8b6ad099f14cf8552249ecb0b
GET /upload/vod/20211129-1/0e304adff1d733604df8e9c06ecd6587.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 9493
Last-Modified: Thu, 11 Aug 2022 04:57:20 GMT
Connection: keep-alive
ETag: "62f48c30-2515"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220207/4BAE415223C2CF7B/4BAE415223C2CF7B.jpg
162.209.200.154200 OK 8.5 kB URL HTTP/1.1 data1.huakuibf1.com/20220207/4BAE415223C2CF7B/4BAE415223C2CF7B.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e77789776aee3122d4e97ea8d4e9bb72
07da6b14490869188bc252449e3aa150180f2c70
b65b1d250e48460cd110721a0a0f3e04359cbf9b9d576e470e8ad7fe861c4c7f
GET /20220207/4BAE415223C2CF7B/4BAE415223C2CF7B.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 8458
Last-Modified: Fri, 24 Jun 2022 07:54:10 GMT
Connection: keep-alive
ETag: "62b56da2-210a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220122/86AF661FB9B340C4/86AF661FB9B340C4.jpg
162.209.200.154200 OK 11 kB URL HTTP/1.1 data1.huakuibf1.com/20220122/86AF661FB9B340C4/86AF661FB9B340C4.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c2d44dc882cbcbf26978413a8d799d20
1b1668890a1947befd6369728f1e4fb5696b6ddb
c042d66bb92b13fd7bb3c0d83731d95dc4397332abab6e66287d81c9044a9346
GET /20220122/86AF661FB9B340C4/86AF661FB9B340C4.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 10871
Last-Modified: Fri, 24 Jun 2022 08:14:31 GMT
Connection: keep-alive
ETag: "62b57267-2a77"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220301/2DCD7B2F112C1D85/2DCD7B2F112C1D85.jpg
162.209.200.154200 OK 10 kB URL HTTP/1.1 data1.huakuibf1.com/20220301/2DCD7B2F112C1D85/2DCD7B2F112C1D85.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a12c00158296c4aa8abce105f84866d4
84c19b975adb8c9cf103b93fa549f4aa9d56b4a2
6e5624e7b907dbe702dead4a0fb4238c2d7aad151dd5eac7e4047004f81a1518
GET /20220301/2DCD7B2F112C1D85/2DCD7B2F112C1D85.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 10389
Last-Modified: Fri, 24 Jun 2022 08:14:20 GMT
Connection: keep-alive
ETag: "62b5725c-2895"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
xiusebf1.com/20210812/1BSjoDbv/1.jpg
45.13.92.68200 OK 12 kB URL HTTP/1.1 xiusebf1.com/20210812/1BSjoDbv/1.jpg
IP 45.13.92.68:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 10719e5af56ada70386d7a390d1f7a54
d58bd32ad309a6631eb039af06917452801987bb
43564173497536ba71bb97d3675c21678d30ba9ab32b27a4707c47419df4897a
GET /20210812/1BSjoDbv/1.jpg HTTP/1.1
Host: xiusebf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:10:24 GMT
Content-Type: image/jpeg
Content-Length: 11604
Last-Modified: Sat, 23 Jul 2022 06:14:04 GMT
Connection: keep-alive
ETag: "62db91ac-2d54"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220208/048C3757CA136990/048C3757CA136990.jpg
162.209.200.154200 OK 10 kB URL HTTP/1.1 data1.huakuibf1.com/20220208/048C3757CA136990/048C3757CA136990.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 891f6e42cda219b0ac4fb519c5ea8832
fca572d1990bdf995ff174ef3e428d064f11abdb
af64115acccf560fa900241de6016140b8928643b1502fa0e87ea61bbf052f3f
GET /20220208/048C3757CA136990/048C3757CA136990.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 10224
Last-Modified: Fri, 24 Jun 2022 07:48:26 GMT
Connection: keep-alive
ETag: "62b56c4a-27f0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220209/2A6E3E10D66AFC9A/2A6E3E10D66AFC9A.jpg
162.209.200.154200 OK 10 kB URL HTTP/1.1 data1.huakuibf1.com/20220209/2A6E3E10D66AFC9A/2A6E3E10D66AFC9A.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash cb4dc82ad24cbba168bae3d2dcbe4d1f
2a415cc25825c71282c9d4be24f134f7597f33ef
2617b09838a38a705191e04bf56719d7ae1422a31a1a940a44952dff8a37901f
GET /20220209/2A6E3E10D66AFC9A/2A6E3E10D66AFC9A.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 10169
Last-Modified: Fri, 24 Jun 2022 07:48:29 GMT
Connection: keep-alive
ETag: "62b56c4d-27b9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20201126-1/888fc63890cc2edce1ec041bbbd48460.jpg
45.89.208.114200 OK 8.9 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201126-1/888fc63890cc2edce1ec041bbbd48460.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2b5a51c3b4ae5fb09db601b5986f624a
1ef743554396d50b13c7c5c2176629fe8b6cad82
531b69b87c5fa73e9bfc71149061d036ba44b0ee3058613f802669d7410e216b
GET /upload/vod/20201126-1/888fc63890cc2edce1ec041bbbd48460.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 8934
Last-Modified: Thu, 11 Aug 2022 04:55:02 GMT
Connection: keep-alive
ETag: "62f48ba6-22e6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/sastatic/fonts/icobase.ttf?ffook9
154.12.60.194200 OK 3.8 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/fonts/icobase.ttf?ffook9
IP 154.12.60.194:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icobase \012- data
Hash de8578b8f5fd35a397be914666accdcc
8656e48e1327bdc36e1e08a52b8db72032037626
51d8b9cabbc05f72eb0b83b36747778f8a3e19938b9ddafa72312df94ed4af51
GET /sastatic/fonts/icobase.ttf?ffook9 HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/sastatic/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: application/octet-stream
Content-Length: 3844
Last-Modified: Thu, 16 Jul 2020 13:34:32 GMT
Connection: keep-alive
ETag: "5f105768-f04"
Accept-Ranges: bytes
data1.huakuibf1.com/20220209/E8A656C5AD20D4EF/E8A656C5AD20D4EF.jpg
162.209.200.154200 OK 9.4 kB URL HTTP/1.1 data1.huakuibf1.com/20220209/E8A656C5AD20D4EF/E8A656C5AD20D4EF.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 27x64, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3dc205957b527d2f2da8e0a4fe42d785
fa8c1ca530eb887ae6e714b4bf28c541482b58b7
99b1700fd0a716b7b0e169b2dd1093ac0d64bd88e8f2e3a270f2ca2f4e61b6b2
GET /20220209/E8A656C5AD20D4EF/E8A656C5AD20D4EF.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 9435
Last-Modified: Fri, 24 Jun 2022 07:53:47 GMT
Connection: keep-alive
ETag: "62b56d8b-24db"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220118/0642DD89E266F191/0642DD89E266F191.jpg
162.209.200.154200 OK 9.2 kB URL HTTP/1.1 data1.huakuibf1.com/20220118/0642DD89E266F191/0642DD89E266F191.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 07469a5286b21fccc17fa5b19242afc0
229a6f9b5e1c73937917c1b5a3a17386b02525ed
c3ef799cbe4f3a877a35aa23cb33b9a6ad1865ef91612fe2c2d7a56e5464f660
GET /20220118/0642DD89E266F191/0642DD89E266F191.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 9171
Last-Modified: Fri, 24 Jun 2022 08:03:10 GMT
Connection: keep-alive
ETag: "62b56fbe-23d3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5335
Cache-Control: max-age=134674
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:11 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:35:45 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash f8cb02c96611504b09865dbf12bc6984
6c013615e562a010942124545e91982421efb75a
688543044f84b4d9245eab554189babce41a2b5f8d44fd673674e7e45a668dd9
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=533
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
ljcdn.comtucdncom.com/upload/vod/20201202-1/5150ef708cfbf6b86a2624be0bce987f.jpg
45.89.208.114200 OK 176 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201202-1/5150ef708cfbf6b86a2624be0bce987f.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 176 kB (176071 bytes)
Hash 5151f13c5cc0b9aa1aaf31cf1ad84afc
eab0eedd142b34a0617148ca2e23a781c5e40d58
4488cf28aaceec97a716aa3cd4d1d09a73e22ee614b08251284fac5a77c6e9ab
GET /upload/vod/20201202-1/5150ef708cfbf6b86a2624be0bce987f.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 176071
Last-Modified: Thu, 11 Aug 2022 04:56:03 GMT
Connection: keep-alive
ETag: "62f48be3-2afc7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
data1.huakuibf1.com/20220208/E882A2AA0FAB493B/E882A2AA0FAB493B.jpg
162.209.200.154200 OK 5.4 kB URL HTTP/1.1 data1.huakuibf1.com/20220208/E882A2AA0FAB493B/E882A2AA0FAB493B.jpg
IP 162.209.200.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ddd2ca0be4577297b87611174c935cd5
61e666dd69d0d2e40678c1a49be396fea4ecc4b2
97ec30b79b99abeefc3e7ac7fd74c2fa3889cebab66d49c52079f4191625f64b
GET /20220208/E882A2AA0FAB493B/E882A2AA0FAB493B.jpg HTTP/1.1
Host: data1.huakuibf1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 5388
Last-Modified: Fri, 24 Jun 2022 09:24:00 GMT
Connection: keep-alive
ETag: "62b582b0-150c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
vip5.bobolj.com/20220112/wuyy1N9E/1.jpg
23.224.112.146200 OK 6.9 kB URL HTTP/1.1 vip5.bobolj.com/20220112/wuyy1N9E/1.jpg
IP 23.224.112.146:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash f1c7a56a2bafc4eeb75efba8e572be5a
c6f890df9f08813bb9348b138c9ee91eee8d36d8
1cfda7e7d2938e0fd11df6e85017113cfe0f0d67915a2e0bd9f6c094b6960f78
GET /20220112/wuyy1N9E/1.jpg HTTP/1.1
Host: vip5.bobolj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: application/octet-stream
Content-Length: 6911
Last-Modified: Tue, 11 Jan 2022 18:14:56 GMT
Connection: keep-alive
Content-Disposition: attachment; filename="1.jpg"
ETag: "61ddc920-1aff"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: POST, GET, OPTIONS
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210706-1/6a7f1aba011f6c3b737a9ceb4e67dc52.jpg
45.89.208.114200 OK 57 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210706-1/6a7f1aba011f6c3b737a9ceb4e67dc52.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 960x540, components 3\012- data
Hash 905a9b2543c9e6974e7981d57e9029ee
2045ae1302db63a1637e13b3e23086d143630613
093520ff757dc2174adb28b4c8b45220efa22be655787553c552e093f1e677a1
GET /upload/vod/20210706-1/6a7f1aba011f6c3b737a9ceb4e67dc52.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 56631
Last-Modified: Thu, 11 Aug 2022 05:05:37 GMT
Connection: keep-alive
ETag: "62f48e21-dd37"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210405-1/735aeccd2c2f3e807258270617f649c7.jpg
45.89.208.114200 OK 60 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210405-1/735aeccd2c2f3e807258270617f649c7.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 500x375, components 3\012- data
Hash 2b3969fc746b9009bb1f69ef1f662130
da63daae9b62863cb5c8c02a14aa1dfced470071
a0414cb56819add05545eee22f710483d6a34a4decd25f1c7c735eac9bf61e2e
GET /upload/vod/20210405-1/735aeccd2c2f3e807258270617f649c7.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 60199
Last-Modified: Thu, 11 Aug 2022 05:01:18 GMT
Connection: keep-alive
ETag: "62f48d1e-eb27"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210407-1/a9e40e923e23044fd041d91a0b28dac0.jpg
45.89.208.114200 OK 9.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210407-1/a9e40e923e23044fd041d91a0b28dac0.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 213x160, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7b4427a0b8790f27ab721c7bfdffe87c
a8ce79443e6137394b4bc1a2c339443a916a62b4
16f2297dc707a4229a470b21e7a5d4cc7f33a0481245c7edeba66482a7193cbb
GET /upload/vod/20210407-1/a9e40e923e23044fd041d91a0b28dac0.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 9339
Last-Modified: Thu, 11 Aug 2022 04:56:11 GMT
Connection: keep-alive
ETag: "62f48beb-247b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash f8cb02c96611504b09865dbf12bc6984
6c013615e562a010942124545e91982421efb75a
688543044f84b4d9245eab554189babce41a2b5f8d44fd673674e7e45a668dd9
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=533
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
ljcdn.comtucdncom.com/upload/vod/20201023-1/cb71a46218b117a132c24b52126eda32.jpg
45.89.208.114200 OK 117 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201023-1/cb71a46218b117a132c24b52126eda32.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Size 117 kB (116664 bytes)
Hash 4780f91262994b4a2543ae81d004ef77
f968cb39096973f4ae425087d546bfa6b5169a06
56efc5dd1ac960d897000cf313eee44b7b8dce9e145c886c44ce9348efcae88a
GET /upload/vod/20201023-1/cb71a46218b117a132c24b52126eda32.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:10 GMT
Content-Type: image/jpeg
Content-Length: 116664
Last-Modified: Thu, 11 Aug 2022 04:54:46 GMT
Connection: keep-alive
ETag: "62f48b96-1c7b8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 61b7b61ebfaca90d76084546c1b643b3
cf1f061473fd32d58e96908c6bc96401763dede0
8d80381f99f944b3d7ea849f1afe04037757e23ab8fe206eb97bf838c206b9c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D80381F99F944B3D7EA849F1AFE04037757E23AB8FE206EB97BF838C206B9C2"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4103
Expires: Wed, 07 Dec 2022 22:19:34 GMT
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 61b7b61ebfaca90d76084546c1b643b3
cf1f061473fd32d58e96908c6bc96401763dede0
8d80381f99f944b3d7ea849f1afe04037757e23ab8fe206eb97bf838c206b9c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D80381F99F944B3D7EA849F1AFE04037757E23AB8FE206EB97BF838C206B9C2"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4103
Expires: Wed, 07 Dec 2022 22:19:34 GMT
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 61b7b61ebfaca90d76084546c1b643b3
cf1f061473fd32d58e96908c6bc96401763dede0
8d80381f99f944b3d7ea849f1afe04037757e23ab8fe206eb97bf838c206b9c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D80381F99F944B3D7EA849F1AFE04037757E23AB8FE206EB97BF838C206B9C2"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4103
Expires: Wed, 07 Dec 2022 22:19:34 GMT
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
933d9ab2e884e7164105.hb-win.com/sastatic/fonts/fontawesome-webfont.woff2?v=4.7.0
154.12.60.194200 OK 77 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 154.12.60.194:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /sastatic/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/sastatic/css/font-awesome.min.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Sun, 24 Nov 2019 13:13:06 GMT
Connection: keep-alive
ETag: "5dda81e2-12d68"
Accept-Ranges: bytes
933d9ab2e884e7164105.hb-win.com/ads/shipinshang.html
154.12.60.194200 OK 3.2 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/ads/shipinshang.html
IP 154.12.60.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash e35d08b98966f23881990e97ff3a77b6
f8542c6fd58523d2318de9fad9d330cd068b92d0
f1ec9778ffa7d7924dde1c762ecbec7dc0d8ac50736fc4f8140a5b263bd5ab5f
GET /ads/shipinshang.html HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: text/html
Last-Modified: Tue, 06 Dec 2022 09:55:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"638f119a-35c8"
Content-Encoding: gzip
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 781b2177ecb1e62d4811145cc890467d
19835be0a133ec527b2a86c65c8761ccfcda86af
c2b10d3e4637f625e5e1688396449f474d84b4089bd7fcd19baef206ac29265c
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash edf39baf1aacae8581e83380bf62ff9f
ac4fcba8b13a96e8d71332aeae2c295e851e7837
87533cb23a5a1d72e653a24f57a782b62fd492e86ffa3c51e933ddf967649a79
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=560
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash edf39baf1aacae8581e83380bf62ff9f
ac4fcba8b13a96e8d71332aeae2c295e851e7837
87533cb23a5a1d72e653a24f57a782b62fd492e86ffa3c51e933ddf967649a79
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=560
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash edf39baf1aacae8581e83380bf62ff9f
ac4fcba8b13a96e8d71332aeae2c295e851e7837
87533cb23a5a1d72e653a24f57a782b62fd492e86ffa3c51e933ddf967649a79
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=560
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
ljcdn.comtucdncom.com/upload/vod/20210921-1/fe952b28ace76b5fc7f68283aca13c8f.jpg
45.89.208.114200 OK 15 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210921-1/fe952b28ace76b5fc7f68283aca13c8f.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 72f2d0820b25690193164c440c28e531
5614c67b153afb9b4a57f947a852d8e0e8de2148
89472198f52bf3bd0d1243f8460be8ff4f02ff13b6ebc5755af6f46d7a4cd1b9
GET /upload/vod/20210921-1/fe952b28ace76b5fc7f68283aca13c8f.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 14718
Last-Modified: Thu, 11 Aug 2022 05:02:32 GMT
Connection: keep-alive
ETag: "62f48d68-397e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210914-1/735670601019ef9789528721f5c31c43.jpg
45.89.208.114200 OK 9.8 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210914-1/735670601019ef9789528721f5c31c43.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 6d1d5546d3a4c112b3772b247549fb0a
ed3e442ca14a2ed66dc4fa0ac8225a6daa5a8a1b
1787f193be8c1a81529ed6fdd23816a5ed961f6d31078680db7548aba9af1e9e
GET /upload/vod/20210914-1/735670601019ef9789528721f5c31c43.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 9844
Last-Modified: Thu, 11 Aug 2022 04:58:03 GMT
Connection: keep-alive
ETag: "62f48c5b-2674"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210421-1/d3b8a4baeabd7ccdf42736fedd774208.jpg
45.89.208.114200 OK 13 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210421-1/d3b8a4baeabd7ccdf42736fedd774208.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 3db3c2eb4b89912b5ef9e78c36024af2
b188745a0eb79a4d0df43fef779408cf2b27319c
afe8c3ff84d8aa4c3780569b24ab5130bf6f858e2bce51709a4c55164bc1e0c2
GET /upload/vod/20210421-1/d3b8a4baeabd7ccdf42736fedd774208.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 12953
Last-Modified: Thu, 11 Aug 2022 05:01:00 GMT
Connection: keep-alive
ETag: "62f48d0c-3299"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20200713-1/cd400f8e0a34b3b12d2e884b61ff8344.jpg
45.89.208.114200 OK 192 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200713-1/cd400f8e0a34b3b12d2e884b61ff8344.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 192 kB (192273 bytes)
Hash ebd4c93d95c03d5d8eb43922e2ebe07d
fb9a2849ad23ccc2b55d7dd989e62bc712561dba
07bada36b0381d8c29ae43ff65db0a8668ea907d82e6370bb00949d960dc82c4
GET /upload/vod/20200713-1/cd400f8e0a34b3b12d2e884b61ff8344.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 192273
Last-Modified: Thu, 11 Aug 2022 05:01:28 GMT
Connection: keep-alive
ETag: "62f48d28-2ef11"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20201230-1/c41002c2a0f1cca527d5ab459d26abb1.jpg
45.89.208.114200 OK 7.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201230-1/c41002c2a0f1cca527d5ab459d26abb1.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 40e8353f184a770ec6378cb453834aa8
8627720dc8842c1b4645dc837278a6a49873616b
741996ec21d8e1117f02b2a3fc2637e9bf62c9c97d52868eb747de12059d4576
GET /upload/vod/20201230-1/c41002c2a0f1cca527d5ab459d26abb1.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 7306
Last-Modified: Thu, 11 Aug 2022 04:59:10 GMT
Connection: keep-alive
ETag: "62f48c9e-1c8a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash edf39baf1aacae8581e83380bf62ff9f
ac4fcba8b13a96e8d71332aeae2c295e851e7837
87533cb23a5a1d72e653a24f57a782b62fd492e86ffa3c51e933ddf967649a79
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=560
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 21:07:55 GMT
age: 196
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash edf39baf1aacae8581e83380bf62ff9f
ac4fcba8b13a96e8d71332aeae2c295e851e7837
87533cb23a5a1d72e653a24f57a782b62fd492e86ffa3c51e933ddf967649a79
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=560
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
X-N: S
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2564
Expires: Wed, 07 Dec 2022 21:53:55 GMT
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2564
Expires: Wed, 07 Dec 2022 21:53:55 GMT
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 06:11:41 GMT
age: 53970
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 535710165275856757bd7d1689f79de3
d51162b7fcba50022482b7130a556f3a7dfe822f
c93e2df13b78cd4b718eb4fe3fe70a9d6d12fd0a0d7f505219ec0d5e6a70653c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4ORpzqbzQyJz_i3wpxf_07mXK3ovj1JT8kn-M9fdrGRgDVig7hhN5w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 12:20:15 GMT
age: 31856
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0KDl4udV3YI9NY99GktHKWVIICWh7wsHcPpKVBHkABkEmvPsT7-SDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:22:24 GMT
age: 82127
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViuPsZBEVJ-aGOcsfrl3nXu244mzMUMQVhpPeNlO7W3sBrrfuUfXpA==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:32:04 GMT
age: 81547
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7ee62c5e846e8ad4808f4724f15146d
6d55b299f906908309f91eaf0a720ad65866db04
0d8f51d6f7f3bad4bb9d9c3000999739147f6dd718b290b0dca71a4cba85cb38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6846
x-amzn-requestid: 53452103-6559-460c-ac40-4685e6816aa4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGx4E-mIAMFatg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a5-5327ec9a2f247cc91654df80;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Znjnq24wuXoi43Bfc9aPdcUHhMh-a00hSCXUHFpHq3sTtQQoUYe6Uw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:10:36 GMT
age: 50435
etag: "6d55b299f906908309f91eaf0a720ad65866db04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
933d9ab2e884e7164105.hb-win.com/sastatic/images/logo.jpg
154.12.60.194200 OK 20 kB URL HTTP/1.1 933d9ab2e884e7164105.hb-win.com/sastatic/images/logo.jpg
IP 154.12.60.194:0
File type GIF image data, version 89a, 500 x 167\012- data
Hash 31cb2f175682f998f00ae14fe85b2398
f49c7bde583a3cffb975bbed11e5ced648a5e398
c9a0c08a2243eaf2771d3eebcbeda091b1616b546d9c3b5bf49148f4b7e0a1f9
GET /sastatic/images/logo.jpg HTTP/1.1
Host: 933d9ab2e884e7164105.hb-win.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 19586
Last-Modified: Mon, 02 May 2022 10:07:10 GMT
Connection: keep-alive
ETag: "626fad4e-4c82"
Expires: Fri, 06 Jan 2023 21:11:11 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20211223-1/3f729a0433edfddc869b9ac824d1f2fb.jpg
45.89.208.114200 OK 126 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211223-1/3f729a0433edfddc869b9ac824d1f2fb.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 126 kB (125631 bytes)
Hash ae2e60ebb38e4a742b0a49a39cff133d
a7f1e3cf6395474b7615dab93deedf38ada400c6
f523604df79785e1d32e3e1138db0a9827b5e9c54c5e7f7d548b471d26dac771
GET /upload/vod/20211223-1/3f729a0433edfddc869b9ac824d1f2fb.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 125631
Last-Modified: Thu, 11 Aug 2022 04:55:41 GMT
Connection: keep-alive
ETag: "62f48bcd-1eabf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 02dc795d847242cda5def76b1c10d583
25ecd6a112528273c64f0eda986dabda95103f73
ef27dd3ce1e733a50adae575d601db841034a4c51e2cf0c01ee84e7ad3e62919
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF27DD3CE1E733A50ADAE575D601DB841034A4C51E2CF0C01EE84E7AD3E62919"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18778
Expires: Thu, 08 Dec 2022 02:24:09 GMT
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2020/04-28/00/uzcroxswdsk0003uzcroxswdsk4721872.jpg
45.89.208.114200 OK 7.5 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/04-28/00/uzcroxswdsk0003uzcroxswdsk4721872.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f454eae922eec2480c2135a74d1a8f25
f88dace1349138987a9a1e3cdaff2fde35a1b7ad
b05e2c5f8fa44176dae8418857a4f213e2cc114adaab09f6e272d360a19eea96
GET /upload/vod/2020/04-28/00/uzcroxswdsk0003uzcroxswdsk4721872.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 7501
Last-Modified: Wed, 09 Nov 2022 11:43:58 GMT
Connection: keep-alive
ETag: "636b927e-1d4d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2019/11-08/05/xned5rfcmdl0518xned5rfcmdl5314206.jpg
45.89.208.114200 OK 7.6 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2019/11-08/05/xned5rfcmdl0518xned5rfcmdl5314206.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2e15542cca0fd35e69da99dc35b41894
02d7827e9fc8cafc57f3f95b3f0bee32f6e7ed2f
248e7d629cf78bfdc02a5d49c6d86568d390d933c16998ab1a30f7f01ddf876c
GET /upload/vod/2019/11-08/05/xned5rfcmdl0518xned5rfcmdl5314206.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 7610
Last-Modified: Wed, 09 Nov 2022 12:00:31 GMT
Connection: keep-alive
ETag: "636b965f-1dba"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/05-22/00/bgbxdpjoyqo0003bgbxdpjoyqo344693.jpg
45.89.208.114200 OK 6.7 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-22/00/bgbxdpjoyqo0003bgbxdpjoyqo344693.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a2fe2618c727522d73dbc3efa16aab93
d9f978910be6c882fc424eedf918a378fb3dbcb2
0df032060899700b2ad64066711588d997c936f58970cdc452bed57f474be72a
GET /upload/vod/2020/05-22/00/bgbxdpjoyqo0003bgbxdpjoyqo344693.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 6735
Last-Modified: Wed, 09 Nov 2022 11:59:19 GMT
Connection: keep-alive
ETag: "636b9617-1a4f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/04-28/18/ncitxz5w0sn1802ncitxz5w0sn3423754.jpg
45.89.208.114200 OK 8.0 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/04-28/18/ncitxz5w0sn1802ncitxz5w0sn3423754.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8d8f111b8afb4d746db0896bf6f91b01
e7ec70bf513cc92c822bdbdbe6742425c73d07e5
f7de98e738ae2925f9c06bb1112cb02b2ff8aba81925daf70ee78d05bd580663
GET /upload/vod/2020/04-28/18/ncitxz5w0sn1802ncitxz5w0sn3423754.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 7954
Last-Modified: Wed, 09 Nov 2022 12:05:42 GMT
Connection: keep-alive
ETag: "636b9796-1f12"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210726-1/1c68879ae5c4617b02bd6fd8cec7836a.jpg
45.89.208.114200 OK 8.3 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210726-1/1c68879ae5c4617b02bd6fd8cec7836a.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 376cb8b76c6d3a4bdbfcc2ceb4d3d050
65d654df93b9c23ce6498e7152cc6fe69487a94d
fe9f75c5024cc33763541911448793f495599b025b21b43807511c06d9a62a56
GET /upload/vod/20210726-1/1c68879ae5c4617b02bd6fd8cec7836a.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 8309
Last-Modified: Thu, 11 Aug 2022 04:56:15 GMT
Connection: keep-alive
ETag: "62f48bef-2075"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20211021-1/170f25d27e112b11876467883c3de2f5.jpg
45.89.208.114200 OK 9.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20211021-1/170f25d27e112b11876467883c3de2f5.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 275x206, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 717bf7bba67819743680a76d843a1a75
017a1726611d143715575f46826041af45d7e071
d4a1d6876a979c8742c19ad59fe8ec7734b4e44fa083307b50e8ace761098a01
GET /upload/vod/20211021-1/170f25d27e112b11876467883c3de2f5.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 9369
Last-Modified: Thu, 11 Aug 2022 04:55:06 GMT
Connection: keep-alive
ETag: "62f48baa-2499"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20200826-1/ee942b1927932b0d86d278620b0220a9.jpg
45.89.208.114200 OK 19 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200826-1/ee942b1927932b0d86d278620b0220a9.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Hash dfcaa577aaf1ca85072dbc31ec0dab83
401cf51f15fba6d7d29b9a1dbf08ad51b4f90e89
e4bb1a8ba7b43c221d593471c624aaf42c81e0958fffbe251fb180f0ff1e6f4e
GET /upload/vod/20200826-1/ee942b1927932b0d86d278620b0220a9.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 18633
Last-Modified: Thu, 11 Aug 2022 04:56:22 GMT
Connection: keep-alive
ETag: "62f48bf6-48c9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/08-04/18/515fwp1ka5u1812515fwp1ka5u067308.jpg
45.89.208.114200 OK 7.7 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/08-04/18/515fwp1ka5u1812515fwp1ka5u067308.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 339e05cfeb3924b04588d74c05b81aec
205eaf512e7dcff9168b4692ed36365f02041f7c
6dc81c3df412eadf2fb78591d82f5679bda9a9577d1d2a12f13f5b7fec2bc338
GET /upload/vod/2020/08-04/18/515fwp1ka5u1812515fwp1ka5u067308.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 7706
Last-Modified: Wed, 09 Nov 2022 12:06:29 GMT
Connection: keep-alive
ETag: "636b97c5-1e1a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210903-1/fd4c39a0692bba7fb6cf3a2c4583c1cb.jpg
45.89.208.114200 OK 6.2 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210903-1/fd4c39a0692bba7fb6cf3a2c4583c1cb.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 735x736, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c8403ac30a5b6fdd734d56848bf1d441
b6fdef9eed171b6d3e0634e672c842a0c108400e
438c694226be1202ed6de03904575d4605c510a18626749d27902274b2afc25f
GET /upload/vod/20210903-1/fd4c39a0692bba7fb6cf3a2c4583c1cb.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 6204
Last-Modified: Thu, 11 Aug 2022 04:54:45 GMT
Connection: keep-alive
ETag: "62f48b95-183c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/03-28/18/wr4zq0wmymn1817wr4zq0wmymn093968.jpg
45.89.208.114200 OK 8.4 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/03-28/18/wr4zq0wmymn1817wr4zq0wmymn093968.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8ac428f30b96dd6512f75615982e2f7b
56d2c79327152e4aab6106160e9fed9c45bdb0f4
1c6a0078b27aaa740cb6f5040b7dfbfe51dd888c141ab8022a854df8fd3e3058
GET /upload/vod/2020/03-28/18/wr4zq0wmymn1817wr4zq0wmymn093968.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 8384
Last-Modified: Wed, 09 Nov 2022 11:57:00 GMT
Connection: keep-alive
ETag: "636b958c-20c0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.js?e00a0a202edffc8fdab94ba740570517
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?e00a0a202edffc8fdab94ba740570517
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 9a41a9bfb98b4a38418936f8a07f7c0e
841b1a2bcba05b1b331aa84220e82f0815ae95a4
feae3eb2e3718cba8a5ea35bb44550db99999ad4542e61f8b42c7d88e1938bf3
GET /hm.js?e00a0a202edffc8fdab94ba740570517 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Wed, 07 Dec 2022 21:11:11 GMT
Etag: 440e30f8963b1821e7449cd99ab1a0ad
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=151ECE173C11AF17; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ljcdn.comtucdncom.com/upload/vod/20210204-1/7e310f0fa572af52bedd4c9ecd6ee34e.jpg
45.89.208.114200 OK 120 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210204-1/7e310f0fa572af52bedd4c9ecd6ee34e.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Size 120 kB (120397 bytes)
Hash bf3bac8731bd3f29a6dda996527b629c
e31fda43487df0740940cd160e636c296e6f3706
c611e5bd669b2b12af08ce016b258166e18c41f8e94dc16dd353b61306dbfefe
GET /upload/vod/20210204-1/7e310f0fa572af52bedd4c9ecd6ee34e.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 120397
Last-Modified: Thu, 11 Aug 2022 05:00:49 GMT
Connection: keep-alive
ETag: "62f48d01-1d64d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2564
Expires: Wed, 07 Dec 2022 21:53:55 GMT
Date: Wed, 07 Dec 2022 21:11:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98d2cf29c710d25bd2f03ff216fdd369
b8eb2e11f9655f19334befc036f21489a6473827
614c9b4a7ace908c1ef807964709cb292b33b48ce1d81ccbd2959c2c0ee156ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8351
x-amzn-requestid: 607d07ab-6833-4001-82ed-699ea91f84c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlitFk9oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb611-3e5f14f833b332647ef7358d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0w5Usq-LJMNHxw9UrwUqSslSVROXVHTmY_UhSHNaGh4k4xqh-FSa0A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:55:40 GMT
etag: "b8eb2e11f9655f19334befc036f21489a6473827"
content-type: image/jpeg
age: 83731
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-23/00/ese4tjxz0v40008ese4tjxz0v4099989.jpg
45.89.208.114200 OK 6.5 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-23/00/ese4tjxz0v40008ese4tjxz0v4099989.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 70ec949fe21439ad239c4d36054bde86
afec97e9c47f65ff830e51003f09c53f3d936309
24621563a269ac0b991a99c47f89f5932cdf7783785889df178f89780fbfb77f
GET /upload/vod/2020/05-23/00/ese4tjxz0v40008ese4tjxz0v4099989.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 6482
Last-Modified: Wed, 09 Nov 2022 11:44:07 GMT
Connection: keep-alive
ETag: "636b9287-1952"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/01-05/17/wnvmb2c0n3x1724wnvmb2c0n3x371475.jpg
45.89.208.114200 OK 9.5 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/01-05/17/wnvmb2c0n3x1724wnvmb2c0n3x371475.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 21379bb59f25eb056a6a66f87b3b48d2
e8590f1b99085f93c56e47aa68f8841cc9e1a435
e388b768b96f2cf59133cb322f4dc3fad4ae55a1f1aabcdec92b5ca5c8dd56d6
GET /upload/vod/2020/01-05/17/wnvmb2c0n3x1724wnvmb2c0n3x371475.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 9514
Last-Modified: Wed, 09 Nov 2022 11:56:21 GMT
Connection: keep-alive
ETag: "636b9565-252a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/04-05/12/sektchk0d2d1207sektchk0d2d151835.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/04-05/12/sektchk0d2d1207sektchk0d2d151835.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b52637becd42c5f47393d55012c12800
741f9d1e1efa1bfa4bd330b8feebf19c21fc330e
b3fe44c0a7747d5dc61e70aad7a9856290ab09d16d69988ad22fd2515a753391
GET /upload/vod/2020/04-05/12/sektchk0d2d1207sektchk0d2d151835.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 10654
Last-Modified: Wed, 09 Nov 2022 12:05:07 GMT
Connection: keep-alive
ETag: "636b9773-299e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20210312-1/94384472cf67c456426d659d156497b0.jpg
45.89.208.114200 OK 6.4 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20210312-1/94384472cf67c456426d659d156497b0.jpg
IP 45.89.208.114:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 7c7d1925fdba13cf7d03445adf45a728
9d1f94af7981c83ea8b50ed301ae9cef0516d78a
03f7d82bd7f0b8cf4500d5e736ab7b89b95209a7f0f50c6919df0726aad28c86
GET /upload/vod/20210312-1/94384472cf67c456426d659d156497b0.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 6362
Last-Modified: Thu, 11 Aug 2022 04:53:49 GMT
Connection: keep-alive
ETag: "62f48b5d-18da"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/08-03/18/l1155fr4bl31802l1155fr4bl342737.jpg
45.89.208.114200 OK 8.5 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/08-03/18/l1155fr4bl31802l1155fr4bl342737.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6f97f6e3c835938ab39b937b177ba7c3
b5f83316b2600c340ba39f0e1c5e77af0aaa2b9e
995a35cf4099b8f7dfb31ad9a5acac600fbaf3482dd4dc80d87c227a826b4174
GET /upload/vod/2020/08-03/18/l1155fr4bl31802l1155fr4bl342737.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 8510
Last-Modified: Wed, 09 Nov 2022 11:43:32 GMT
Connection: keep-alive
ETag: "636b9264-213e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5a4434f19e91a74083b858172686aba6
f8b1c724a699bc431709e436d3eeb98f3a0d1d90
227f84febcffdac11cef3fa9200990d51ff9666e2469f995bc14458b78b261cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "227F84FEBCFFDAC11CEF3FA9200990D51FF9666E2469F995BC14458B78B261CC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13829
Expires: Thu, 08 Dec 2022 01:01:41 GMT
Date: Wed, 07 Dec 2022 21:11:12 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2020/04-28/06/4e0pdejr5xb06034e0pdejr5xb1522482.jpg
45.89.208.114200 OK 6.1 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/04-28/06/4e0pdejr5xb06034e0pdejr5xb1522482.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4c99fec8d9a88293bd220e0c157c7a3d
44c30c96add5b3563aab5e8eb5942e4b935be7a2
b9d7827388f482996eb7f383643d8b066f676f5283c8666e98fbcb7bd908e05e
GET /upload/vod/2020/04-28/06/4e0pdejr5xb06034e0pdejr5xb1522482.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 6146
Last-Modified: Wed, 09 Nov 2022 11:43:52 GMT
Connection: keep-alive
ETag: "636b9278-1802"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20200717-1/6f14eeac93ce66a1b2804b2f31607993.jpg
45.89.208.114200 OK 175 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20200717-1/6f14eeac93ce66a1b2804b2f31607993.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x536, components 3\012- data
Size 175 kB (175388 bytes)
Hash 1c657efe271649db610753625e290f69
d2631cfb37b6c1401af3cad2eb39ce4f665c64c0
b55c77625363ed6c8b0ef030015c281dd395ca023c2a30bb4a85476051e0211b
GET /upload/vod/20200717-1/6f14eeac93ce66a1b2804b2f31607993.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 175388
Last-Modified: Thu, 11 Aug 2022 05:06:26 GMT
Connection: keep-alive
ETag: "62f48e52-2ad1c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/03-27/04/wriabka51jg0421wriabka51jg23991.jpg
45.89.208.114200 OK 14 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/03-27/04/wriabka51jg0421wriabka51jg23991.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6334c8ffabbef61c7fe7d8fb8ad3abc4
77f63212843e36000ae706900bd2f208b61b8f77
ce2e99061d6b74f7401f8f9c5b3d32199841afb4f235f9d444f68b1143fbed18
GET /upload/vod/2020/03-27/04/wriabka51jg0421wriabka51jg23991.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 14451
Last-Modified: Wed, 09 Nov 2022 12:00:36 GMT
Connection: keep-alive
ETag: "636b9664-3873"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/03-28/06/qrpbay2qasi0603qrpbay2qasi47761.jpg
45.89.208.114200 OK 7.7 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/03-28/06/qrpbay2qasi0603qrpbay2qasi47761.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3e4ab2c517882dda8aad247397ba088a
c00f841e81012585f2247e4e35eca7d599a42a88
39c50e041b3a278be50c8a33b31c29b772d303f03355444bb86f5c0ee18530cb
GET /upload/vod/2020/03-28/06/qrpbay2qasi0603qrpbay2qasi47761.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 7671
Last-Modified: Wed, 09 Nov 2022 11:56:16 GMT
Connection: keep-alive
ETag: "636b9560-1df7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
137.175.13.78301 Moved Permanently 162 B URL HTTP/2 kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
IP 137.175.13.78:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /0e243abb7057b68d7362544cbbe032ba.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 07 Dec 2022 21:11:18 GMT
content-type: text/html
content-length: 162
location: https://kvteee.top/0e243abb7057b68d7362544cbbe032ba.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzeoo.com/dc6a101fe66ff5b5451c5cfd06a5d193.gif
137.175.13.78301 Moved Permanently 162 B URL HTTP/2 kzeoo.com/dc6a101fe66ff5b5451c5cfd06a5d193.gif
IP 137.175.13.78:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /dc6a101fe66ff5b5451c5cfd06a5d193.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 07 Dec 2022 21:11:18 GMT
content-type: text/html
content-length: 162
location: https://kvteee.top/dc6a101fe66ff5b5451c5cfd06a5d193.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
137.175.13.78301 Moved Permanently 162 B URL HTTP/2 kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 137.175.13.78:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 07 Dec 2022 21:11:18 GMT
content-type: text/html
content-length: 162
location: https://kvteee.top/68a7807de3933bf7079116fa9df99e6f.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/03-27/04/5lzxyvvakr504275lzxyvvakr5463002.jpg
45.89.208.114200 OK 9.0 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/03-27/04/5lzxyvvakr504275lzxyvvakr5463002.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ce40ce9cdf4e97a1b32fa63316e75953
8c44a7ddae98684121bb12c08be2e391eb23a126
49ac6eb872a05dd15bfcedccaf2f2ac5f19ed5960f1054359c63595d45067950
GET /upload/vod/2020/03-27/04/5lzxyvvakr504275lzxyvvakr5463002.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 9035
Last-Modified: Wed, 09 Nov 2022 11:56:18 GMT
Connection: keep-alive
ETag: "636b9562-234b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2019/11-08/05/xikxsgaslkw0505xikxsgaslkw2113492.jpg
45.89.208.114200 OK 14 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2019/11-08/05/xikxsgaslkw0505xikxsgaslkw2113492.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 32x25, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e2fbe70a26b69dd626d2ebab3f37f1c8
b71838a4be9b791b084e9e7db5a3c587ecb44d9a
0de955bfb20d8bbb8d45da8aed966839a5db7a0eead3cd5ebaa80fdd5457dd12
GET /upload/vod/2019/11-08/05/xikxsgaslkw0505xikxsgaslkw2113492.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 13602
Last-Modified: Wed, 09 Nov 2022 11:42:37 GMT
Connection: keep-alive
ETag: "636b922d-3522"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2019/11-08/03/hhk3ejkhder0301hhk3ejkhder092251.jpg
45.89.208.114200 OK 8.5 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2019/11-08/03/hhk3ejkhder0301hhk3ejkhder092251.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 578f586fa0e7dca1071776393489479a
eb3df522fed2b1fca4cd8a3f4cb2ba47437c91cd
dc93b87ec6dae2c622d8a44dca30f963317fc58e4434fef7083d6715f096fae9
GET /upload/vod/2019/11-08/03/hhk3ejkhder0301hhk3ejkhder092251.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 8474
Last-Modified: Wed, 09 Nov 2022 11:59:52 GMT
Connection: keep-alive
ETag: "636b9638-211a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/03-28/06/k5rob0c0zjh0605k5rob0c0zjh141396.jpg
45.89.208.114200 OK 14 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/03-28/06/k5rob0c0zjh0605k5rob0c0zjh141396.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash da68022c6680db5d7659490612907d57
a045d1ab778f63c5e62490e7fc063b8c8f85c55d
ae7d01ac839b53cb7b169c4619c0f48a6c00b729980836a9be34e967702f577c
GET /upload/vod/2020/03-28/06/k5rob0c0zjh0605k5rob0c0zjh141396.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 13566
Last-Modified: Wed, 09 Nov 2022 11:44:40 GMT
Connection: keep-alive
ETag: "636b92a8-34fe"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=774028472&si=e00a0a202edffc8fdab94ba740570517&v=1.3.0&lv=1&sn=25856&r=0&ww=1280&u=http%3A%2F%2F933d9ab2e884e7164105.hb-win.com%2F&tt=%E5%9B%BD%E4%BA%A7%E7%9C%9F%E5%AE%9E%E9%9C%B2%E8%84%B8%E4%B9%B1%E5%AD%90%E4%BC%A6%2C%E5%9B%BD%E4%BA%A7%E4%B8%89%E7%BA%A7%E7%B2%BE%E5%93%81%E4%B8%89%E7%BA%A7%E7%94%B7%E4%BA%BA%E7%9A%84%E5%A4%A9%E5%A0%82%2C%E7%94%B7%E5%A5%B3%E6%97%A0%E9%81%AE%E6%8C%A1%E9%AB%98%E6%B8%85%E6%80%A7%E8%A7%86%E9%A2%91%2C%E4%BA%B2%E5%AD%90%E4%B9%B1%E5%AD%90%E4%BC%A6XXXX%E8%A7%86%E9%A2%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=774028472&si=e00a0a202edffc8fdab94ba740570517&v=1.3.0&lv=1&sn=25856&r=0&ww=1280&u=http%3A%2F%2F933d9ab2e884e7164105.hb-win.com%2F&tt=%E5%9B%BD%E4%BA%A7%E7%9C%9F%E5%AE%9E%E9%9C%B2%E8%84%B8%E4%B9%B1%E5%AD%90%E4%BC%A6%2C%E5%9B%BD%E4%BA%A7%E4%B8%89%E7%BA%A7%E7%B2%BE%E5%93%81%E4%B8%89%E7%BA%A7%E7%94%B7%E4%BA%BA%E7%9A%84%E5%A4%A9%E5%A0%82%2C%E7%94%B7%E5%A5%B3%E6%97%A0%E9%81%AE%E6%8C%A1%E9%AB%98%E6%B8%85%E6%80%A7%E8%A7%86%E9%A2%91%2C%E4%BA%B2%E5%AD%90%E4%B9%B1%E5%AD%90%E4%BC%A6XXXX%E8%A7%86%E9%A2%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=774028472&si=e00a0a202edffc8fdab94ba740570517&v=1.3.0&lv=1&sn=25856&r=0&ww=1280&u=http%3A%2F%2F933d9ab2e884e7164105.hb-win.com%2F&tt=%E5%9B%BD%E4%BA%A7%E7%9C%9F%E5%AE%9E%E9%9C%B2%E8%84%B8%E4%B9%B1%E5%AD%90%E4%BC%A6%2C%E5%9B%BD%E4%BA%A7%E4%B8%89%E7%BA%A7%E7%B2%BE%E5%93%81%E4%B8%89%E7%BA%A7%E7%94%B7%E4%BA%BA%E7%9A%84%E5%A4%A9%E5%A0%82%2C%E7%94%B7%E5%A5%B3%E6%97%A0%E9%81%AE%E6%8C%A1%E9%AB%98%E6%B8%85%E6%80%A7%E8%A7%86%E9%A2%91%2C%E4%BA%B2%E5%AD%90%E4%B9%B1%E5%AD%90%E4%BC%A6XXXX%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 07 Dec 2022 21:11:12 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0163FB9510F7E3CB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
fmlb.netlbtu.com/upload/vod/2020/05-22/18/1snu1gixmlh18051snu1gixmlh378857.jpg
45.89.208.114200 OK 13 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-22/18/1snu1gixmlh18051snu1gixmlh378857.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b44660d6c44a47c1abb394b775c2b34b
f9d1e22a14dd5fe7c4de31243a847bcb7f9ddc5e
386b0f121af90252ca23c64348c44ccff72d9a71481dd64c80a99e591168804c
GET /upload/vod/2020/05-22/18/1snu1gixmlh18051snu1gixmlh378857.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 13353
Last-Modified: Wed, 09 Nov 2022 11:59:29 GMT
Connection: keep-alive
ETag: "636b9621-3429"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ljcdn.comtucdncom.com/upload/vod/20201127-1/d3847a11b6b040e0aed6e510b8fb021d.jpg
45.89.208.114200 OK 204 kB URL HTTP/1.1 ljcdn.comtucdncom.com/upload/vod/20201127-1/d3847a11b6b040e0aed6e510b8fb021d.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 204 kB (203970 bytes)
Hash ab393946816b009e1f4e17a692dd29c7
8a2731dcc15f319d6919f6ab42cca7b530d45730
96b725af1f68155da687ab90f7b01eca0304d506f337d3984d649c8b39a402a4
GET /upload/vod/20201127-1/d3847a11b6b040e0aed6e510b8fb021d.jpg HTTP/1.1
Host: ljcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/jpeg
Content-Length: 203970
Last-Modified: Thu, 11 Aug 2022 05:12:49 GMT
Connection: keep-alive
ETag: "62f48fd1-31cc2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/03-27/04/kmhfv3mfnlj0427kmhfv3mfnlj012788.jpg
45.89.208.114200 OK 9.1 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/03-27/04/kmhfv3mfnlj0427kmhfv3mfnlj012788.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e60bcad339392bc6af6ca0d03762b909
e8caa76861b7436d8c882b20442ad7eb16ae68d2
fe56e255da13f2bedbd88e66cd1dbbd764ca228dc7d431029fa957ec4c5c296f
GET /upload/vod/2020/03-27/04/kmhfv3mfnlj0427kmhfv3mfnlj012788.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 9052
Last-Modified: Wed, 09 Nov 2022 11:40:21 GMT
Connection: keep-alive
ETag: "636b91a5-235c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2019/11-08/10/dvahmdc1dab1039dvahmdc1dab5924487.jpg
45.89.208.114200 OK 9.9 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2019/11-08/10/dvahmdc1dab1039dvahmdc1dab5924487.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8fa30d4155c402e04e1ce3d4f02252b5
8038a415d8a8fc12975dfa2233672090b45471a4
55fdfa24ef58cd2a717472a34b364b1fa011123216433199d89b49479215b7cc
GET /upload/vod/2019/11-08/10/dvahmdc1dab1039dvahmdc1dab5924487.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 9923
Last-Modified: Wed, 09 Nov 2022 11:43:26 GMT
Connection: keep-alive
ETag: "636b925e-26c3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
678tktp.com/tp/960x240.gif
154.83.24.157200 OK 154 kB URL HTTP/1.1 678tktp.com/tp/960x240.gif
IP 154.83.24.157:0
File type GIF image data, version 89a, 960 x 240\012- data
Size 154 kB (153705 bytes)
Hash 139c4e49f679f0f403f8d6c3cebe82f0
9524753838044573287b4038751160d3d6d6e727
7e541b46683d2fd8f750c51a50a69c9848b95182c8f1ba9f881ff32842936a28
GET /tp/960x240.gif HTTP/1.1
Host: 678tktp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 07 Dec 2022 21:11:11 GMT
Content-Type: image/gif
Content-Length: 153705
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 05:17:35 GMT
ETag: "636c896f-25869"
Expires: Fri, 23 Dec 2022 08:46:33 GMT
Cache-Control: max-age=2592000
Via: 154.83.24.154
CDN-Cache: HIT
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/05-21/18/gdq4vzbzu251802gdq4vzbzu25372773.jpg
45.89.208.114200 OK 14 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-21/18/gdq4vzbzu251802gdq4vzbzu25372773.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a845f1cc0fb53dee7a14f4d48c418501
ef0c24af79bf166aa49ffe46017d2f09eddf97a4
d2a5e2f2d85c490e17e03c298742d024596bc6687525329c3faf1b1fa27ef3ad
GET /upload/vod/2020/05-21/18/gdq4vzbzu251802gdq4vzbzu25372773.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 14304
Last-Modified: Wed, 09 Nov 2022 12:26:26 GMT
Connection: keep-alive
ETag: "636b9c72-37e0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/01-05/20/d31gq24m5442000d31gq24m544474873.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/01-05/20/d31gq24m5442000d31gq24m544474873.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b0bbfcfe987aca51667913bfa0694b0a
fdd3e8afc4b1cace2916ee4a28a080811974c45a
f0177ab4c8175e659da2c5f00cff9c888cc53d06b803429353946ca1a084510d
GET /upload/vod/2020/01-05/20/d31gq24m5442000d31gq24m544474873.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 11060
Last-Modified: Wed, 09 Nov 2022 12:15:39 GMT
Connection: keep-alive
ETag: "636b99eb-2b34"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/05-21/06/cdx3bqwzsbf0602cdx3bqwzsbf52491.jpg
45.89.208.114200 OK 16 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2020/05-21/06/cdx3bqwzsbf0602cdx3bqwzsbf52491.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1328b2de3347029845cf4a91f0cc6bb4
8df7499e3bf2173b08bfec70ec6bbec7260a3e88
135a4e6f2c5b8c541f6c8c598cb67867f42f6fb2562caf760949893a45f950d7
GET /upload/vod/2020/05-21/06/cdx3bqwzsbf0602cdx3bqwzsbf52491.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 15742
Last-Modified: Wed, 09 Nov 2022 11:43:57 GMT
Connection: keep-alive
ETag: "636b927d-3d7e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2021/05-19/06/guedszqmwsx0609guedszqmwsx101091.jpg
45.89.208.114200 OK 11 kB URL HTTP/1.1 fmlb.netlbtu.com/upload/vod/2021/05-19/06/guedszqmwsx0609guedszqmwsx101091.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5645a5edbee55f9b9454b3666de6f5bf
fa4825b6ecdea5928bea8fc390b2244df07bbec9
bdfb72b3aa7b4922a3197d0fd780bd54218eabe9e11c1647dc72ed541eb42b0d
GET /upload/vod/2021/05-19/06/guedszqmwsx0609guedszqmwsx101091.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 10987
Last-Modified: Wed, 09 Nov 2022 11:40:30 GMT
Connection: keep-alive
ETag: "636b91ae-2aeb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2022/01/13/hey5265.jpg
45.89.208.114200 OK 116 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2022/01/13/hey5265.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 960x540, components 3\012- data
Size 116 kB (115694 bytes)
Hash 5e63f9f5aebbe7d674565bfde786b728
046aab3096a57c251fffbc598a596310d4980d7c
8cd22ce1ae67f73c2b2db47f0c2f7c4d4670bfc0d02d3a0ae60c337619559a0a
GET /images/2022/01/13/hey5265.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 115694
Last-Modified: Wed, 09 Nov 2022 11:56:26 GMT
Connection: keep-alive
ETag: "636b956a-1c3ee"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
45.89.208.114200 OK 117 kB URL HTTP/1.1 fmlb.netlbtu.com/images/2022/01/10/hey5224.jpg
IP 45.89.208.114:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 820x462, components 3\012- data
Size 117 kB (117293 bytes)
Hash bf5f1e98fb38d8a9e7276a833d9bc039
89d0974d5d8fbac4e28c30a75f04071e95329f3e
ca73a864a52cc50cc26accd4caa2944a7ef1119233d9a5b3dd3ef08ee7f02543
GET /images/2022/01/10/hey5224.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 07 Dec 2022 21:11:12 GMT
Content-Type: image/jpeg
Content-Length: 117293
Last-Modified: Wed, 09 Nov 2022 11:42:05 GMT
Connection: keep-alive
ETag: "636b920d-1ca2d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8163c2a0d2b7b032295fdc97a7c1a6fb
17bc02a19f2dcbc04d941b76c1567a08b04f63df
9a7b6e298af4e2e3cdf503fe4f81cb8f7594d2210ec07a8820804f13b6774c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A7B6E298AF4E2E3CDF503FE4F81CB8F7594D2210EC07A8820804F13B6774C34"
Last-Modified: Mon, 05 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6103
Expires: Wed, 07 Dec 2022 22:52:56 GMT
Date: Wed, 07 Dec 2022 21:11:13 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash aad08c571ab417fd6f656f1ece3420ba
fb6645d80ec255783e776c6befa758a2bac11245
0513cc82608adda32d990ea41edb51c53552c54e600c7cf696a7dff15fd8ad4d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 07 Dec 2022 06:09:16 GMT
Expires: Thu, 08 Dec 2022 06:09:16 GMT
ETag: "fb6645d80ec255783e776c6befa758a2bac11245"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash fb233d8a9190f1b110f3c5de66d6f06d
39f919623d91151fd91d52e1e0352a84108311c5
0232b2e58dd12700e059d4e855e490d844c00827a898f083292374742b6c4f9c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 01:20:35 GMT
Expires: Mon, 12 Dec 2022 01:20:34 GMT
Etag: "39f919623d91151fd91d52e1e0352a84108311c5"
Cache-Control: max-age=359960,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040a3ed0eb515-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f563d574361d001ab88c401c3cfe2159
95af7bc569fa65bae5e3d8ba393f730a94ffe925
8eec936048264a5c7d822f303961dcc18ecfbe53d5eb1b3381ce058046199cf4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 03:57:12 GMT
Expires: Wed, 14 Dec 2022 03:57:11 GMT
Etag: "95af7bc569fa65bae5e3d8ba393f730a94ffe925"
Cache-Control: max-age=542157,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040a338291c06-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ecfa5530f8c83277ab0081399bdf566d
b2a92f755b1896e4f4e0eb298b781ac9e5b7f72e
bbb21c89fe827f4e9b9b82e0c909977b7076655bfa554e06f8e2b4179b6bf920
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=111345
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:13 GMT
Etag: "63901162-117"
Expires: Fri, 09 Dec 2022 04:06:58 GMT
Last-Modified: Wed, 07 Dec 2022 04:06:58 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ecfa5530f8c83277ab0081399bdf566d
b2a92f755b1896e4f4e0eb298b781ac9e5b7f72e
bbb21c89fe827f4e9b9b82e0c909977b7076655bfa554e06f8e2b4179b6bf920
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2776
Cache-Control: max-age=114121
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:13 GMT
Etag: "63901162-117"
Expires: Fri, 09 Dec 2022 04:53:14 GMT
Last-Modified: Wed, 07 Dec 2022 04:06:58 GMT
Server: ECS (amb/6B98)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ecfa5530f8c83277ab0081399bdf566d
b2a92f755b1896e4f4e0eb298b781ac9e5b7f72e
bbb21c89fe827f4e9b9b82e0c909977b7076655bfa554e06f8e2b4179b6bf920
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=111345
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:13 GMT
Etag: "63901162-117"
Expires: Fri, 09 Dec 2022 04:06:58 GMT
Last-Modified: Wed, 07 Dec 2022 04:06:58 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
kvezz.com/95ca29ec3907b3bf2d8a24b35e3eda22.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kvezz.com/95ca29ec3907b3bf2d8a24b35e3eda22.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /95ca29ec3907b3bf2d8a24b35e3eda22.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: text/html
content-length: 162
location: https://kvkggg.top/95ca29ec3907b3bf2d8a24b35e3eda22.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ecfa5530f8c83277ab0081399bdf566d
b2a92f755b1896e4f4e0eb298b781ac9e5b7f72e
bbb21c89fe827f4e9b9b82e0c909977b7076655bfa554e06f8e2b4179b6bf920
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=111345
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:13 GMT
Etag: "63901162-117"
Expires: Fri, 09 Dec 2022 04:06:58 GMT
Last-Modified: Wed, 07 Dec 2022 04:06:58 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
kvteee.top/0e243abb7057b68d7362544cbbe032ba.gif
104.21.233.124200 OK 270 kB URL HTTP/2 kvteee.top/0e243abb7057b68d7362544cbbe032ba.gif
IP 104.21.233.124:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 270 kB (270145 bytes)
Hash 2e0432b5ead77702ac433d71c5caeeb4
91f7f7320673eb770bd2b82c82d898fa6ed5de97
63ccf288b83f2c2d1995165c5f15cf3980c947cff737800d8119cdad406d3c7a
GET /0e243abb7057b68d7362544cbbe032ba.gif HTTP/1.1
Host: kvteee.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: image/gif
content-length: 270145
last-modified: Wed, 26 Oct 2022 13:37:18 GMT
etag: "6359380e-41f41"
expires: Thu, 05 Jan 2023 08:37:12 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 131641
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vcF%2BS%2Bci3c4monLOL0lfGnEWcd1kuFYo2vIhRWdpJ4O1h%2B4aFkNhVimMPdwwK5dIHc4lCzdSmaWn3YkchjUgBpo7oZdC5nFtOaSlnSB2V6qknCdL2C13bBDUwPat"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776040a4bf8d7701-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvteee.top/68a7807de3933bf7079116fa9df99e6f.gif
104.21.233.124200 OK 366 kB URL HTTP/2 kvteee.top/68a7807de3933bf7079116fa9df99e6f.gif
IP 104.21.233.124:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kvteee.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Thu, 05 Jan 2023 14:39:43 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 109890
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fLbKOEnHA5YiTHIZ3nqgi6tPFgt7MYcnoNsOGXqaLCkEawvYrlVNpe2ZU2XNSrqRn1IvQe177XZcmWoC1trXnQJlZfcLMo%2B8PWb4u12%2B6RzxktoV70wxdympuLq0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776040a4bf7b7701-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvteee.top/dc6a101fe66ff5b5451c5cfd06a5d193.gif
104.21.233.124200 OK 370 kB URL HTTP/2 kvteee.top/dc6a101fe66ff5b5451c5cfd06a5d193.gif
IP 104.21.233.124:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 370 kB (369588 bytes)
Hash 8798d5e84c5026dc0ae409029e085cea
97ac4e376967d94bed563a5682f6dce3b3f797cc
d916e69d45187a9dc42167043c6e45406a088e6d7352c6c79cefcc0e60c8c6e3
GET /dc6a101fe66ff5b5451c5cfd06a5d193.gif HTTP/1.1
Host: kvteee.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: image/gif
content-length: 369588
last-modified: Tue, 16 Aug 2022 11:19:06 GMT
etag: "62fb7d2a-5a3b4"
expires: Thu, 05 Jan 2023 08:42:18 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 131335
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VHmMSQu5Va2EDgKY8QDvqPRjsaektMX6fPv2rceepD7ffcMZ47F0Ded%2FiKL0x9RBCGZ84iCH7YO0Jm70Qei3ZruTlyS%2Bv8a72b7SzfQynL0n75WcmLioOKdgOZcy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776040a4bf707701-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6d8950ef92f501c59096bfe5cec9c0bd
1a05be97d4c414d5683919febc755a4b4b9fc814
92ebb25e37ae1480a22168b3c74c9d46273fb878fdacbd85d2bfec9b13c12be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92EBB25E37AE1480A22168B3C74C9D46273FB878FDACBD85D2BFEC9B13C12BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11582
Expires: Thu, 08 Dec 2022 00:24:15 GMT
Date: Wed, 07 Dec 2022 21:11:13 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/yJiqwzofsT4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/yJiqwzofsT4
IP 142.250.74.131:0
Hash 6c66df17993fb00aeb6fd38f62e45f48
669f0752a09c38a3831b8efeb577176c8278fa5b
9574afdad83c1a09a3ee69f00be215fc2dba38cfaa1b4db14a57505e177c6818
POST /s/gts1p5/yJiqwzofsT4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash fb233d8a9190f1b110f3c5de66d6f06d
39f919623d91151fd91d52e1e0352a84108311c5
0232b2e58dd12700e059d4e855e490d844c00827a898f083292374742b6c4f9c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 01:20:35 GMT
Expires: Mon, 12 Dec 2022 01:20:34 GMT
Etag: "39f919623d91151fd91d52e1e0352a84108311c5"
Cache-Control: max-age=359960,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040a33d05b503-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 6329ab8814b9daa2733625b9ad0c5bc4
cf258071a03db33680353cf849a8108fa9e12002
de30aece9a36bf5281ecc66539d6016ac8018fb6f70c38673dceccdda0956c52
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 11:52:05 GMT
Expires: Mon, 12 Dec 2022 11:52:04 GMT
Etag: "cf258071a03db33680353cf849a8108fa9e12002"
Cache-Control: max-age=397850,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040a33a5d0b31-OSL
kvkggg.top/95ca29ec3907b3bf2d8a24b35e3eda22.gif
172.67.154.165200 OK 400 kB URL HTTP/2 kvkggg.top/95ca29ec3907b3bf2d8a24b35e3eda22.gif
IP 172.67.154.165:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 400 kB (400264 bytes)
Hash b722c3905b96f11823e04826aafdd50e
68b63b572a042d40ab210aa313b7ebbc372be5a1
630c6a955789d5bb6311db75ce52e57ff4c12074ef5a5a080cf5459f907e9dc1
Analyzer Verdict Alert quad9 Sinkholed
GET /95ca29ec3907b3bf2d8a24b35e3eda22.gif HTTP/1.1
Host: kvkggg.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: image/gif
content-length: 400264
last-modified: Mon, 02 May 2022 19:22:39 GMT
etag: "62702f7f-61b88"
expires: Sat, 10 Dec 2022 11:40:47 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2367026
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D6bVTxhry8j8xX571p5CSQFDxDDY6PxG2l1ipdoHuN%2Fwdc4eCP37gFI9nFBQCYsJLB03DWmkbYRuxiieQbtGhVAEYSUx1iA8Sw%2F6dEMMN%2BMKTdvTf%2FG%2FLbxd1NSw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776040a67e39b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ec8ecb90d81516760f28d164f27bcfb0
86b7640c722daab85ba2a61c08ba62277b8fd7c3
010b1aa1e0daab82f3ac2518375607a8d52926fb0ebfa4fe3f6a2f5261c1f619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "010B1AA1E0DAAB82F3AC2518375607A8D52926FB0EBFA4FE3F6A2F5261C1F619"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15774
Expires: Thu, 08 Dec 2022 01:34:07 GMT
Date: Wed, 07 Dec 2022 21:11:13 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 82a0f47318edfa8ecd47a48b341bd6c3
986605611b8c12c9e1a63d7ee4c71d0775e355a7
0416429662617199114f0952ea88f91a1540788ed747f236083cfce9075a360d
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 11 Dec 2022 20:52:18 GMT
ETag: "986605611b8c12c9e1a63d7ee4c71d0775e355a7"
Last-Modified: Wed, 07 Dec 2022 20:52:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 438
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776040a6fa0a0b02-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash dead2e00e168a10d601bb7a89adbf685
af098c02f9dbfcfd54b05a8240784289ac4c4e5e
bfcb66ede81dea5c0f70f5375347e35835b240c8ca7baada2450637c6e2c5f8d
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 11 Dec 2022 17:45:43 GMT
ETag: "af098c02f9dbfcfd54b05a8240784289ac4c4e5e"
Last-Modified: Wed, 07 Dec 2022 17:45:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2243
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776040a70a170b02-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 82a0f47318edfa8ecd47a48b341bd6c3
986605611b8c12c9e1a63d7ee4c71d0775e355a7
0416429662617199114f0952ea88f91a1540788ed747f236083cfce9075a360d
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 11 Dec 2022 20:52:18 GMT
ETag: "986605611b8c12c9e1a63d7ee4c71d0775e355a7"
Last-Modified: Wed, 07 Dec 2022 20:52:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 438
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776040a6fc17fab8-OSL
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
104.143.94.110301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP 104.143.94.110:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: text/html
content-length: 162
location: https://kvkfff.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/yJiqwzofsT4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/yJiqwzofsT4
IP 142.250.74.131:0
Hash 6c66df17993fb00aeb6fd38f62e45f48
669f0752a09c38a3831b8efeb577176c8278fa5b
9574afdad83c1a09a3ee69f00be215fc2dba38cfaa1b4db14a57505e177c6818
POST /s/gts1p5/yJiqwzofsT4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: text/html
content-length: 162
location: https://max004.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cbdec5b829f58a46b241cb0af96486cd
c234b776100591076bc644ca51c7bdbe095ad1b0
f888121fbe63f143a0e0bc429d07e536a2c79d403161d45a32f03c6754099112
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "F888121FBE63F143A0E0BC429D07E536A2C79D403161D45A32F03C6754099112"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 03:11:14 GMT
Date: Wed, 07 Dec 2022 21:11:14 GMT
Connection: keep-alive
kvkfff.top/92f0c144d76dd785f7c04f84ae149b33.gif
172.67.216.219200 OK 354 kB URL HTTP/2 kvkfff.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP 172.67.216.219:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 354 kB (354278 bytes)
Hash c6442fd82dd00372e745f394887172f2
dc8ce1d9b050eb7b70c1e47e815169c8ffdc77b9
813a5a49ef0682cdb74754e84f7b5d0159392b1fef69ec06e2875388e97d8843
Analyzer Verdict Alert quad9 Sinkholed
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kvkfff.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:14 GMT
content-type: image/gif
content-length: 354278
last-modified: Fri, 02 Dec 2022 09:18:24 GMT
etag: "6389c2e0-567e6"
expires: Sun, 01 Jan 2023 09:28:34 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 474160
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BmOvunvZBPbI8FiMiokXzxl40Km%2BlE%2Fk2kF40skcmkIXoajtDElFiXi45pK09EpeBTXXPW9pl2raAC4SBnShF11OJTzvWo53Xl67UUFo4FPIN1R2JKPJMAkmUKmw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776040a9bedfb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 92aeb63a40ee0e232ad8463c75caba53
64896eaa43a21a7b6404d026eac03828014402c9
a5bb546774dbfaa00e387f3268caeef97b1ff62827f44de9211a5fc13cc12229
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A5BB546774DBFAA00E387F3268CAEEF97B1FF62827F44DE9211A5FC13CC12229"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14244
Expires: Thu, 08 Dec 2022 01:08:38 GMT
Date: Wed, 07 Dec 2022 21:11:14 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cbdec5b829f58a46b241cb0af96486cd
c234b776100591076bc644ca51c7bdbe095ad1b0
f888121fbe63f143a0e0bc429d07e536a2c79d403161d45a32f03c6754099112
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "F888121FBE63F143A0E0BC429D07E536A2C79D403161D45A32F03C6754099112"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 03:11:14 GMT
Date: Wed, 07 Dec 2022 21:11:14 GMT
Connection: keep-alive
max004.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
172.67.222.73200 OK 864 kB URL HTTP/2 max004.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 172.67.222.73:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: max004.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://933d9ab2e884e7164105.hb-win.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:14 GMT
content-type: image/gif
content-length: 864004
last-modified: Sun, 04 Sep 2022 09:11:53 GMT
etag: "63146bd9-d2f04"
expires: Mon, 26 Dec 2022 12:02:46 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 983308
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LlZIUsbVdpUyAwhSUiqYrio1Rfry9eowbyM2bxf6xfWk%2BTC5zgpPZa71rAedPIsugWa4s3v29pUpKxKZcy5L1RRwsHEdpdbl4maoIazk6jKgFq4XTc%2FzEzsfXpVc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776040aa1aaeb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gi
120.77.166.72404 Not Found 268 B URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gi
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type XML 1.0 document text\012- XML document, ASCII text
Hash cba1d0a91a98eca3438cbcb65e97448f
67b13f94861f8a56224b55fb0e09cc76a16aa25f
2e99101793aadeba9b54ab915b6a95e695af3cdfcdc356fabde69a92072df6c4
GET /af/q960x80-6.gi HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: AliyunOSS
Date: Wed, 07 Dec 2022 21:11:14 GMT
Content-Type: application/xml
Content-Length: 268
Connection: keep-alive
x-oss-request-id: 63910172B1F52532392F7FB7
x-oss-server-time: 1
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 92aeb63a40ee0e232ad8463c75caba53
64896eaa43a21a7b6404d026eac03828014402c9
a5bb546774dbfaa00e387f3268caeef97b1ff62827f44de9211a5fc13cc12229
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A5BB546774DBFAA00E387F3268CAEEF97B1FF62827F44DE9211A5FC13CC12229"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14244
Expires: Thu, 08 Dec 2022 01:08:38 GMT
Date: Wed, 07 Dec 2022 21:11:14 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 0f16558350cdc0791ab380ce4cd55636
7a1654c58ed6498272e499839d14aa99909199e8
6162272254439de90561c9a5529ea309b8d2dbd2522299ec26ca6fed6afe4532
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5045
Cache-Control: max-age=94078
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 21:11:14 GMT
Etag: "638fba3b-2d7"
Expires: Thu, 08 Dec 2022 23:19:12 GMT
Last-Modified: Tue, 06 Dec 2022 21:55:07 GMT
Server: ECS (amb/6BAB)
X-Cache: HIT
Content-Length: 727
img.1200555.com/images/638def5109ca91e0020145dc.gif
185.239.226.87302 Found 460 kB URL HTTP/2 img.1200555.com/images/638def5109ca91e0020145dc.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 460 kB (459882 bytes)
Hash 9755d798f1df0ff90ff281daf889c27e
6684c546dc5b1e65c84786cf929562e4bf5a4854
86943358042194179070f2e3fa41e8296cd53999c5d025fdcaf6ddff98714f87
GET /images/638def5109ca91e0020145dc.gif HTTP/1.1
Host: img.1200555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/5f20e8f5c682499b8eb059dd144345a9
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4acfea37d23a346e8c0ec0be21e7786c
2eb3a31d5593392135ebc1eeba3cc48175552d2b
acd64699b8cb7fe8025a54b1af959ceafece9fe0742dfb7e4ec5511e9caebcb6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 23:53:07 GMT
Expires: Mon, 12 Dec 2022 23:53:06 GMT
Etag: "2eb3a31d5593392135ebc1eeba3cc48175552d2b"
Cache-Control: max-age=441111,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040ac4a790b31-OSL
n0533.com/2fd8d3e35d26441c80ed1cb0aac5a8be.gif
150.117.125.125200 OK 142 kB URL HTTP/1.1 n0533.com/2fd8d3e35d26441c80ed1cb0aac5a8be.gif
IP 150.117.125.125:0
ASN #131600 Chief Telecom Inc.
File type GIF image data, version 89a, 960 x 60\012- data
Size 142 kB (141802 bytes)
Hash d266492116a9903619eeb035b0f4cdd9
4444e9192f207b2b946d71bc38fdf7e23fe8912c
829c5302dd74ad53f4d8adf3de284908c5d6a1662b28b395fea1b4d3d9e78eed
GET /2fd8d3e35d26441c80ed1cb0aac5a8be.gif HTTP/1.1
Host: n0533.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 03 Nov 2022 15:03:49 GMT
ETag: W/"6363d855-4002e"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 782a0857bebad880cf25dbc86f0cdfd8
0cfa0bc92179f85d647cb7be3c78d01dd49fa4a6
556292e5dee756e00f1bad4504c6abf292ac8e5e1a29e57921b86219488aa4c6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 02:11:01 GMT
Expires: Mon, 12 Dec 2022 02:11:00 GMT
Etag: "0cfa0bc92179f85d647cb7be3c78d01dd49fa4a6"
Cache-Control: max-age=362985,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040ac3c271c06-OSL
tpkj2222.com/img/k80m/oJ8rVeomP.gif
103.93.126.32200 OK 213 kB URL HTTP/1.1 tpkj2222.com/img/k80m/oJ8rVeomP.gif
IP 103.93.126.32:0
ASN #59371 Dimension Network & Communication Limited
File type GIF image data, version 89a, 960 x 80\012- data
Size 213 kB (212917 bytes)
Hash d1931dd316b9ac2d1bd98a9c89bb2c77
5660ca5156b14a4b0df59089738774977eab5357
48886aed2c4e673776c75db728e4fddc8647a559dee0d8f3549cc6d7a5062053
GET /img/k80m/oJ8rVeomP.gif HTTP/1.1
Host: tpkj2222.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 07 Dec 2022 21:11:13 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"423944-1669660103000"
Last-Modified: Mon, 28 Nov 2022 18:28:23 GMT
Expires: Thu, 22 Dec 2022 21:11:13 GMT
Cache-Control: max-age=1296000
Content-Encoding: gzip
Nginx-Cache: EXPIRED, HIT
n0633.com/9688d88feaee44a2a1ab251d9577ee0e.gif
20.222.167.166200 OK 87 kB URL HTTP/2 n0633.com/9688d88feaee44a2a1ab251d9577ee0e.gif
IP 20.222.167.166:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 27babdb555752b3642f20154eff15cf8
28a1754429f913874f486317cf70b61899ef37d5
5f54aa50c160a433546633e8050770fc33002ba2846ef057e096918dd150b720
GET /9688d88feaee44a2a1ab251d9577ee0e.gif HTTP/1.1
Host: n0633.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Thu, 03 Nov 2022 15:04:01 GMT
etag: W/"6363d861-5ae62"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c201607c0ccc9532491e2fd2891bbe25
049145e4f61d6d8873d00f043a09af54fd22b137
43bfcfd455276ec1fcbe713e9a857721989a7782b8d8ea4476e584092db5a137
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 12:08:09 GMT
Expires: Sun, 11 Dec 2022 12:08:08 GMT
Etag: "049145e4f61d6d8873d00f043a09af54fd22b137"
Cache-Control: max-age=312412,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040ae7cc10b31-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c201607c0ccc9532491e2fd2891bbe25
049145e4f61d6d8873d00f043a09af54fd22b137
43bfcfd455276ec1fcbe713e9a857721989a7782b8d8ea4476e584092db5a137
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 21:11:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 12:08:09 GMT
Expires: Sun, 11 Dec 2022 12:08:08 GMT
Etag: "049145e4f61d6d8873d00f043a09af54fd22b137"
Cache-Control: max-age=312412,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776040aff8f71c06-OSL
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7uRgyIUdZINRwC7RXRibvCHJJGpaiavjEjblhiaFQoa2hhg/0
43.129.255.47200 OK 208 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7uRgyIUdZINRwC7RXRibvCHJJGpaiavjEjblhiaFQoa2hhg/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 208 kB (208040 bytes)
Hash 192c74d36701b586f3201dfd6d080d9b
e5b46de78b75c72974ba4a73638a581e7114d55b
b02c98fd0349520c864b26c96f998aa1814c1342db3e694568a437d90a523df0
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7uRgyIUdZINRwC7RXRibvCHJJGpaiavjEjblhiaFQoa2hhg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 07 Dec 2022 21:11:14 GMT
content-type: image/gif
content-length: 208040
vary: Accept,Origin
last-modified: Thu, 24 Nov 2022 08:38:02 GMT
cache-control: max-age=2592000
x-delay: 129 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 208040
chid: 0
fid: 0
x-nws-log-uuid: d7a63aa0-4f18-4e1e-846c-bbac1f9e63b2
X-Firefox-Spdy: h2
sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
120.77.166.72200 OK 339 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 339 kB (339049 bytes)
Hash 120f3a01e40b1e58017422e07a358e7b
201b8030f1dc57e1c5f503ab15459990f49c0850
f834cdc6d3baa837bcd3cb5dd42ddafbb903ccc07022dcca2822b451c6a0f7a1
GET /js960x80%20.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 07 Dec 2022 21:11:14 GMT
Content-Type: image/gif
Content-Length: 339049
Connection: keep-alive
x-oss-request-id: 6391017263094630347C6459
Accept-Ranges: bytes
ETag: "120F3A01E40B1E58017422E07A358E7B"
Last-Modified: Sun, 20 Nov 2022 08:09:52 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11820530545471216528
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: Eg86AeQLHlgBdCLgejWOew==
x-oss-server-time: 3
n5725.com/bf21aa0a5fde4da7b860c62fc9beb472.gif
103.170.15.113200 OK 654 kB URL HTTP/1.1 n5725.com/bf21aa0a5fde4da7b860c62fc9beb472.gif
IP 103.170.15.113:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 654 kB (653713 bytes)
Hash 6e1b913d233fb64271527a796618f37b
a858c96c304244dfa9d5cd159a3a5c80c6b98598
4dc0708abb2de56eaee1961f8143ec911357863a2b259c4154701ddd128d3a37
GET /bf21aa0a5fde4da7b860c62fc9beb472.gif HTTP/1.1
Host: n5725.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63142ccd-9f991"
Date: Mon, 05 Dec 2022 13:44:47 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 04 Sep 2022 04:42:53 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-43
Content-Length: 653713
828239sam.com/168fb88440b240ef92971efc94595d08.gif
103.170.15.109200 OK 837 kB URL HTTP/1.1 828239sam.com/168fb88440b240ef92971efc94595d08.gif
IP 103.170.15.109:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 837 kB (837008 bytes)
Hash 584c3e9b6c2fd77fbb6885fa31881b67
827d9c49b8315888c220f34ee366ed694569f32e
d97ecf8f032827472d136c190f837c6fdc9bccdee52788dc6055bd7faf973030
Analyzer Verdict Alert quad9 Sinkholed
GET /168fb88440b240ef92971efc94595d08.gif HTTP/1.1
Host: 828239sam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6374bd54-cc590"
Date: Sun, 04 Dec 2022 03:26:36 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 16 Nov 2022 10:37:08 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-39
Content-Length: 837008
n8389.com/39bc6948e3b6491ebcf4450c1f8f803b.gif
103.170.15.103200 OK 580 kB URL HTTP/1.1 n8389.com/39bc6948e3b6491ebcf4450c1f8f803b.gif
IP 103.170.15.103:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 580 kB (580315 bytes)
Hash 1a429adb0604b6dd52d269910a16df11
0e6e0b7135822c02ae159c14a1b4aebfa75b0982
819a4224605c47089d7456012a957beef9f0a59191a8a63e4c0aefa6c3ece6b7
GET /39bc6948e3b6491ebcf4450c1f8f803b.gif HTTP/1.1
Host: n8389.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63142ef5-8dadb"
Date: Sun, 16 Oct 2022 02:04:07 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 04 Sep 2022 04:52:05 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-33
Content-Length: 580315
u1099.com/9fe0988e928241f98bf7ea3241398cab.gif
103.189.109.73200 OK 218 kB URL HTTP/2 u1099.com/9fe0988e928241f98bf7ea3241398cab.gif
IP 103.189.109.73:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 218 kB (217826 bytes)
Hash 27ec5c83cb9575b31075dcd71389974e
681c71534d8c5bc8ec8526db4d56f63099809e69
b53d8f0e3870208d18544443eb3f76870a4c79e9a7c745b699bd8060e84fde01
GET /9fe0988e928241f98bf7ea3241398cab.gif HTTP/1.1
Host: u1099.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "637a1459-352e2"
server: nginx
date: Sun, 04 Dec 2022 03:03:16 GMT
content-type: image/gif
last-modified: Sun, 20 Nov 2022 11:49:45 GMT
accept-ranges: bytes
x-cache: HIT from ty8-cdn109-063
content-length: 217826
X-Firefox-Spdy: h2
u0082.com/726d4b95cd834e44a08884fdfc42821b.gif
20.89.95.197200 OK 0 B URL HTTP/2 u0082.com/726d4b95cd834e44a08884fdfc42821b.gif
IP 20.89.95.197:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /726d4b95cd834e44a08884fdfc42821b.gif HTTP/1.1
Host: u0082.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 21:11:13 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Thu, 13 Oct 2022 12:59:25 GMT
etag: W/"63480bad-54ee0"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg
104.18.3.157403 Forbidden 0 B URL HTTP/2 png.pngtree.com/png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg
IP 104.18.3.157:0
GET /png-vector/20190603/ourmid/pngtree-icon-close-button-png-image_1357955.jpg HTTP/1.1
Host: png.pngtree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://933d9ab2e884e7164105.hb-win.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Wed, 07 Dec 2022 21:11:10 GMT
content-type: application/xml
x-amz-request-id: MEAE1JG28MJQSAJ4
x-amz-id-2: H0rl3HQVfFj64oOKNrYHRuSlT+1j/NGoEtLyxhmvPn/Pm/zcptYWH7qHhFSn3Ps61SnDLnN1IfI=
cf-cache-status: MISS
set-cookie: __cf_bm=WIoGNs4gcJDK2KwSkZ1hv5BQHDe96RvYYX8uyxUDl94-1670447470-0-AY3+vTkSFscYnogXnHKJmtnuuOWC+e4sKWSHZnOOBPk7Poj97YyzwLBz5Li5dunDii85XggNCdcBXKMTUBoWIJY=; path=/; expires=Wed, 07-Dec-22 21:41:10 GMT; domain=.pngtree.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760408a28680b3d-OSL
content-encoding: br
X-Firefox-Spdy: h2