r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9572
Expires: Thu, 02 Feb 2023 03:06:45 GMT
Date: Thu, 02 Feb 2023 00:27:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12786
Expires: Thu, 02 Feb 2023 04:00:19 GMT
Date: Thu, 02 Feb 2023 00:27:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16231
Expires: Thu, 02 Feb 2023 04:57:44 GMT
Date: Thu, 02 Feb 2023 00:27:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 23:43:26 GMT
content-type: application/json
age: 2627
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MwfrBNriKYXNI7sFOEwqPLbModUmmzgKQML3OBBfofLhZbHK7c4yeF6cLTLFKIdtAVk4f7FMujE=
x-amz-request-id: DFQNHWBXJMBECEYQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 23:51:45 GMT
age: 2128
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 00:27:13 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.htjfdb.com/7l4axn_kivquv.html
108.186.106.231200 OK 513 B URL HTTP/1.1 www.htjfdb.com/7l4axn_kivquv.html
IP 108.186.106.231:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (688), with CRLF line terminators
Hash 8b3e31468b10949212cb9a6ac5de036f
6308a2402749cbbf1c5ec1abe9ca3bacf8b189be
4e4b3bda1cc354bdb9559d76013bc709450b1913af858623347b92171378a76e
GET /7l4axn_kivquv.html HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:27:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 23:49:05 GMT
age: 2289
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.htjfdb.com/tj.js
108.186.106.231200 OK 258 B IP 108.186.106.231:0
File type ASCII text, with CRLF line terminators
Hash 7b0ed5cf52b152b24f7b35b23716cb6e
c5304744e4ecf5d7d8b4a94fece3be45c2d66436
c22ab963898545ff10e0c0dc4d72ecacd53c30dbcc0b97b35431246172f51861
GET /tj.js HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/7l4axn_kivquv.html
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:27:13 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.htjfdb.com/common.js
108.186.106.231200 OK 681 B IP 108.186.106.231:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 3cb1c90c04f81b3c5e007bbb7a158420
a650a21fd616d5278524f64f6576ef844d169a7b
0dd610d3df6cba8b091f76701fe8be95e56f066a862507d74c0e3b1761b95601
GET /common.js HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/7l4axn_kivquv.html
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:27:13 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16892
Expires: Thu, 02 Feb 2023 05:08:46 GMT
Date: Thu, 02 Feb 2023 00:27:14 GMT
Connection: keep-alive
www.htjfdb.com/favicon.ico
108.186.106.231200 OK 1.2 kB URL HTTP/1.1 www.htjfdb.com/favicon.ico
IP 108.186.106.231:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/7l4axn_kivquv.html
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:27:13 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Tue, 07 Feb 2023 00:27:13 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
push.services.mozilla.com/
52.10.202.214101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.202.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: puwUjmsYj93vs8VZzF27YQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: igK92ulpTjVSkuZhgHYIfJAv6yQ=
sgnnusyd.top/
172.67.220.93200 OK 4.6 kB IP 172.67.220.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 19b256763a6dd7079db27f8af6529a60
25f0bbd9106c59a79a4c38177f8bce5fc7b46f38
b30b0848fb0e43a3c9bffbe906571512a7f1f5ae44702f34d263320ade7bf5cf
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t7vQdBrZH7j56MQMp41I9Tg%2FHJ0FhQHv8%2F7c8PXehcErumL2MmrfVCt%2BsgFCvRSlPeg9HNiSfimlvgdDiteTD5gDjicsXkrjzodUR0ROnWCMkRP%2FM8ex3trWiYr2K2E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792eccc8e88c0b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/style.css
172.67.220.93200 OK 3.5 kB URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/style.css
IP 172.67.220.93:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 66cb8aa56779e7bb6c8372deea7a9335
466dabea62174668da14a602dd5e4172df88c48a
8af809a347ae484242398ac680f5be8092da7a1ebc160792f81eaa7987190ab6
GET /template/smmmsp/assets/css/common/style.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Apr 2020 12:40:16 GMT
Vary: Accept-Encoding
ETag: W/"5ea975b0-48a2"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g%2BQYwRK%2FxtegMel9xnOgfv4lbBJOsNV0a53p%2Bk4wwbVAJPEfnrMRz%2FW26yc48ESWFPCR%2BgZH%2FuYcbVqCxIrTkXUr7i6qbpjqJlLLJaEs9JtdR36Fmnq7Vb7jNblkURw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccb89a80b06-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/banner.css
172.67.220.93200 OK 321 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/banner.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash 66e2134420e87365212f3432572d53a7
5ddf9c38c9b25f615d57d9a48eae0807ff6c2958
8fd908d798c5bd16d0a0f9d0d7dfd24d0b360c1dd8ec0bc8b66c9b55f3014ac6
GET /template/smmmsp/assets/css/custom/banner.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:47:46 GMT
Vary: Accept-Encoding
ETag: W/"5c7a4332-49c"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5%2BNQI1s%2F8kBD6ePp8iGpGcTBPNLjiQnuXFHsNyPvhjAWLVtmmFP%2BAHYygZu4wCwNaV41Epfy6mJBW%2BjYxdSvjp3xP%2BoQR%2FWc5yWCucUEPCxeNrmoqPcUvstQ082PcyU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccb8b2eb523-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/header.css
172.67.220.93200 OK 517 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/header.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash 0bb0fa81ed0f205181328e7758425737
8b9c97fbd73a1ac33397bfa5c26aac27a0557bd1
17024888daa4bf01f5097c4fc9e3c6fcdf09293ac13cf588a60a0ce424fb8bd0
GET /template/smmmsp/assets/css/custom/header.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:48:10 GMT
Vary: Accept-Encoding
ETag: W/"5c7a434a-5c8"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FsqKKGMOOSplyDYrt1sWhNbbh%2BKlhO9NVnPli%2FWZE0XjqcgtLUsJBGkM%2FrCxiibe5LKnviKweMTB%2FS4Q8kJHNXucNGayUGZDLJMg%2BMH0Ztga6d2x8YOhxjK6fAV5w4M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccb8bdbb521-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/main.css
172.67.220.93200 OK 549 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/main.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash 08b2e4bfeba023ec56e6a5d661ee59a7
331d65e1c07c021ac57febff6cbb3b7b7eb48186
d3846565e87aab70c9c517e975f30237535c1e8ac662706b68390c2f6e1bd9b6
GET /template/smmmsp/assets/css/custom/main.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:47:24 GMT
Vary: Accept-Encoding
ETag: W/"5c7a431c-7cd"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RLAiHAo2%2BNan%2BED60FWzMUTr%2Bi3AcVvwylP6r1JjswJkb5H7EIJvg1HI%2FntfcWexM%2FYuYhviLezQTe7Ua%2Fz9Dtsrb4w6J%2B3Q%2Fkg%2FGbhkQadD00D8Abcu9lCJUmdRWNA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccb88bf0b3d-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/menu.css
172.67.220.93200 OK 938 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/menu.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash 5e9b4ea54bc46458dfac766b78829488
4bddb65ff8ba79a92d746da36efa218027b77116
0ead24b794fe0231b7f445698e80911aa1774f6e9b499383d7e15f0fc8a8d6ad
GET /template/smmmsp/assets/css/custom/menu.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:48:48 GMT
Vary: Accept-Encoding
ETag: W/"5c7a4370-1c3c"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fX%2B05IATd2PRtUaY%2F4Mooa9XOZsmTrcKYcfxdisS2%2FSMg5QRok%2BLnerHxRnDwB1HaHUGt%2Fx6IrBCeU7Bq9d6pBdY0MIw5Gz5791GcZjuWLsx2pyYWTMuHzbzOfoJEVo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccb99b10b06-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/footer.css
172.67.220.93200 OK 191 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/footer.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash 965c36f19e7092d48b083b9a9b69f169
77bc1fae75919cf2da412c4300a2e4d9307517e0
de90b36509f77eb3bb1c7d17361aa5294dee501bcad6eb4f788e23d3eef91951
GET /template/smmmsp/assets/css/custom/footer.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:49:08 GMT
ETag: W/"5c7a4384-242"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yuyx%2BqFPU9aCifRyes9x2qR9JrlYDA75ilUYYYhypshwBDvMm5WvLFIRfvD6%2BYrrSpEmo1QYCZZi8kv2D8dMYw1iz3doZa9vzYughsUcazr5%2FQ8nJtiDjOxwQQfezzY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccb9b3db523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/flickity.min.css
172.67.220.93200 OK 815 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/flickity.min.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash bc40d4e4a3fd99000dfcfe3d5f01bf1e
70630dc523095734c9975cbe9122c8598ec56275
05805a64e2b9412ca8cb1c2f13989a9db83761b62e7a074649fbba0f086e36c9
GET /template/smmmsp/assets/css/common/flickity.min.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:49:50 GMT
Vary: Accept-Encoding
ETag: W/"5c7a43ae-ab1"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S4HoO%2FbsP%2F76R1DCB9lowqC8E9456%2ByqoLIN%2B9f7dVOnXJh2wxSx9r0kidOUL39ud3zgdYaDFw6Cpcqq%2FbxT9MoFTqZXUP7nnHIKlWFGFeO%2B1TjqtajhXZHKfswRdqk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccb9be5b521-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/theme/default.css
172.67.220.93200 OK 24 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/theme/default.css
IP 172.67.220.93:0
File type ASCII text, with no line terminators
Hash 45fdb73a80a833ea9b3a7707fcad0566
093d4fa40f57b35a96154fbe74fb5eb7376eda24
82871fdb8f75fa02a9f2a4c390da56fcdee1f4da212ebb27e345008c04530f7f
GET /template/smmmsp/assets/css/theme/default.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Content-Length: 24
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:50:38 GMT
ETag: "5c7a43de-18"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: HIT
Age: 26214
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=96VJd0Sc6CUVgtrjkFGyCSA1jaCurhG%2FCbPx%2FR3CBf0MvnzhRLfi8OU%2Ffy3iW38pbDbKY2vl8Uwtq3xrBQs00KVvNHSyHP7brHS3Pykik2hM80mhWLZMBXxHMJGpIZQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccba8cd0b3d-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/img_list.css
172.67.220.93200 OK 656 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/img_list.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash 813a474b419fb5460acae1b3b978951e
2587685b7bcdc8bfc992d91e41b5c1239455b5df
92b54eb33215edf0c63ac28f6d3d4d1a0294fc4bab9893a8a8f274c7e46b4a6c
GET /template/smmmsp/assets/css/custom/img_list.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 11:24:28 GMT
Vary: Accept-Encoding
ETag: W/"5c7a67ec-cae"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OjSpOx7Ab0LCqvzUlCrFZWcsEIbX2HkeSNch02rYGHO%2BoST9y2YUgvryqTeXeLkVVdzzZOWr7Tr1jBvaQujDCczs%2BvSdMI7CZq7QPGh5m%2BNUmer5lNk%2BXYWKWQukVLc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccbab47b523-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/ads/2dl.js
172.67.220.93200 OK 566 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/2dl.js
IP 172.67.220.93:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (507), with CRLF line terminators
Hash cb2618285c9ac0baa29c7c2fab5a17c4
29c9ae7396dc3e4baba6f3e12d31a02012e3ee69
b3424cb960c839ade2dfb4b1a630770fde32d28638ebe2e9a4e28ddb3ff25f81
GET /template/smmmsp/ads/2dl.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 10:34:54 GMT
ETag: W/"63c91cce-360"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lYgJtLsyQpBYDE84ssJRogMCPY9So5vau1UkKYGs8odGfpOqBSf%2FyDcozCmya6p1xeduJpzZVRi%2FgoTvSxEs5pU7bG3a5ucVMFvy9SxoG86e9kBqmBEu7UH4%2BzfXnzI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccbabe9b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sgnnusyd.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.220.93200 OK 655 B URL HTTP/1.1 sgnnusyd.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.220.93:0
File type HTML document, ASCII text, with very long lines (1238)
Hash bc3ba461c8a309acf61b6d9c41cb6236
88482306ecc9258d5e9cbb9ba5314dab223a5db4
31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 14:59:41 GMT
ETag: W/"63d7db5d-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m8kp%2FqAXTEw1vkGF9FPdplPmQnL36BAOAkn58SQhTlFMWsGT%2FPnAn3bdcevqmeHRZTKBbA4i0AZXGjPcAcPVpbcxB72zJZYPBomPOMD9LsVxd%2B8%2BpWEJeI2%2BGqFc0Wo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccbabb0b4fd-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Sat, 04 Feb 2023 00:27:15 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
sgnnusyd.top/template/smmmsp/ads/xx2.js
172.67.220.93200 OK 214 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/xx2.js
IP 172.67.220.93:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 5aeab064807fdfe2cb38ce1636ba3d46
85540d3bdccc4652e8b68e8fb1ddeff4c74dd99c
60f56369414fd7e9f3ff9a7d700614526aa980629edb02b27c6458d64ec6e086
GET /template/smmmsp/ads/xx2.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 11:06:15 GMT
ETag: W/"63c68127-1d7"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6gpg4yzHmx9khWDZrm%2F5Mxb8V08HrGb9gFgyq%2By8FNnrvw8effwlRtM7cJopFKMfU0%2FxW8ioJ1D4NV2h4DK8GvgbMtxFRPb9FO4872PDSWED426AxH18TQ8uCTQYJuI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccbbb4cb523-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/ads/xx1.js
172.67.220.93200 OK 402 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/xx1.js
IP 172.67.220.93:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 866fea0bf8448410e3b905b147c265a7
c0d86a83955450c355fd81827065ce66519c1fe2
c88d042d1408c46cc75b8b33f493649b48dcfe3d7c08267f027cea0f11483166
GET /template/smmmsp/ads/xx1.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 11:06:15 GMT
Vary: Accept-Encoding
ETag: W/"63c68127-6df"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KyQhEDy9d42UMZd8JeErGqtiAox%2B2EyEqjg5zAetyXE8g6DzxwdsVknsX6P4SN31sNJ4dfLbfZ3Y3B7povRad4YgpvBLlxsU2J6tWNTJrBp1EbOnwVspIQz1LGziUPg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccbaa3eb500-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/common.css
172.67.220.93200 OK 528 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/common.css
IP 172.67.220.93:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 20cb2d9dcda1d9384faff84dccc54b34
53415d1e6f671fdbd93608a26335d66aeddbf72b
b3e62e6ede81f54ed5c4621c96b47da7226499766278004c8ab7686771b45a31
GET /template/smmmsp/assets/css/common/common.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:45:28 GMT
Vary: Accept-Encoding
ETag: W/"5c7a42a8-5e2"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YyHA%2FfE6258QlpSPxtXjgYmYPhikSIb4LwL9KMBX82isdNU%2B2fKvkpxp8QYIZscdCK7sjCbc7aGuUtHeCG6Vv3OG%2B6X%2Fel9AFQFolB5vC5%2F9Mb6XO%2BcrLtrf912tztE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccbdb5cb523-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/icon.css
172.67.220.93200 OK 324 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/icon.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash 25b281150e31f0d158beace91ac17b74
25210828fcf7fe46fd841b531b20bb7f72301d02
5a4896037e25ce7def690326ad152f7b3cad3d5f3da392591ca0574e6708d79b
GET /template/smmmsp/assets/css/common/icon.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:46:36 GMT
Vary: Accept-Encoding
ETag: W/"5c7a42ec-496"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uBfBYrHxNdH3KRhONt9zWTf9gZEx77kBUw5o4oiHqdBdworWMDLPylhJyegMUKbvwkE3eGgHCVo6WAUVKPh%2FWSXE3ZPs%2FR9ZPgfTOMwXkFksecbj9I5elJO8EoTUyP8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccbd8df0b3d-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/pagination.css
172.67.220.93200 OK 411 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/pagination.css
IP 172.67.220.93:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 756f111ee343465ac3fdfcd6a7d56aac
72d2d9ae0b73197af2e343e54e469692a39e276d
d14d1e91f99c7287522285b812621b4003acc0ddd7e0098f30cd048a21699b7c
GET /template/smmmsp/assets/css/common/pagination.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:45:54 GMT
Vary: Accept-Encoding
ETag: W/"5c7a42c2-51e"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U4FixVh1mQz7pB1PE6cznwVWUug%2FYLXaAbxxY6j37nbGsH2bfgVnGShGZX9TX5i5%2B2n8DtYvIgArxuHwvHKpfXDr%2F4nhvt4ZZxvqWKwQSRVhKkxHSdeiyIq%2F9oyVC6A%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccbdbc3b4fd-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/theme/blue.css
172.67.220.93200 OK 696 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/theme/blue.css
IP 172.67.220.93:0
File type ASCII text, with CRLF line terminators
Hash d1b6791f4679bcab3ab01381c2504a49
6625522320cbe2f9339cb2f1208fd7c52ce774ca
8d57cfc0b7f72f5cae88513d97110c2237908888a2fd47971feb9ac6a33b80ed
GET /template/smmmsp/assets/css/theme/blue.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/theme/default.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Jul 2020 14:19:36 GMT
Vary: Accept-Encoding
ETag: W/"5f1ee278-a2c"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fy5N6g6KouefF4VBvGSFiEiuKKR9hpcHBC8Q6khw9r9C%2FwKXY7%2BFeMgfL65AN%2FK1znRZqY81cNo4dl7n19TJeUZIgidL6aLUOIPTWBXAUTnmcZJMLeV0awrMj42StbE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccbda5bb500-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/ads/xx3.js
172.67.220.93200 OK 400 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/xx3.js
IP 172.67.220.93:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 4278cddb28bcee78a6953ed41ff61d16
e533d209f02d4efef33c129c4b97862c7a0488b8
2d464bdcc0c676c20115a1e215eb49ec6c0fbecfe936d254383bdf302a2aad10
GET /template/smmmsp/ads/xx3.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 Jan 2023 07:05:27 GMT
Vary: Accept-Encoding
ETag: W/"63c3a5b7-51d"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 26214
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BseVbBWkrxa%2FL2s7iNsLZ9k%2BZeEBJYRTgwNgGWOHZFO83H%2FSvBNpbZSGdi4fi0YCemsv%2B6IsvqoXKVEMRudn4tPzmcWA4RaeeVlJ0al0YpcTKgyIUZJR%2FQv4HREnbkU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792ecccbcbf6b521-OSL
alt-svc: h2=":443"; ma=60
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 849c8664a21ef0e6d9e22a0501c72873
eb89f5d05ebb9a8515f693614e32aa6743ab2e46
aa45dde820df2e9e9c5642e44e624dfc2973503b34e738b7e153cb0ea94909a0
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 05 Feb 2023 21:01:24 GMT
ETag: "eb89f5d05ebb9a8515f693614e32aa6743ab2e46"
Last-Modified: Wed, 01 Feb 2023 21:01:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1798
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccc4a400b39-OSL
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cdca04f7548da6ec3bd3bf017f80f575
244f4478ca4dcfdfd8f1e62fe08920a435d5cbfb
e6bdb7fb44fdbf862299332b419431f4849c24d620dae21e1585893d695714c6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E6BDB7FB44FDBF862299332B419431F4849C24D620DAE21E1585893D695714C6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5825
Expires: Thu, 02 Feb 2023 02:04:20 GMT
Date: Thu, 02 Feb 2023 00:27:15 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 63c7cd7248374a479a89d61771eca500
592bf42306d45b6cbdb7d1d1cf64fa778b3ba1c4
155d8eed2aa118d4a9a4d6329370cffbb9fa8a4b4b3f5b02a29550e606220ab8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155D8EED2AA118D4A9A4D6329370CFFBB9FA8A4B4B3F5B02A29550E606220AB8"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5900
Expires: Thu, 02 Feb 2023 02:05:35 GMT
Date: Thu, 02 Feb 2023 00:27:15 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cdca04f7548da6ec3bd3bf017f80f575
244f4478ca4dcfdfd8f1e62fe08920a435d5cbfb
e6bdb7fb44fdbf862299332b419431f4849c24d620dae21e1585893d695714c6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E6BDB7FB44FDBF862299332B419431F4849C24D620DAE21E1585893D695714C6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5877
Expires: Thu, 02 Feb 2023 02:05:12 GMT
Date: Thu, 02 Feb 2023 00:27:15 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cdca04f7548da6ec3bd3bf017f80f575
244f4478ca4dcfdfd8f1e62fe08920a435d5cbfb
e6bdb7fb44fdbf862299332b419431f4849c24d620dae21e1585893d695714c6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E6BDB7FB44FDBF862299332B419431F4849C24D620DAE21E1585893D695714C6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21553
Expires: Thu, 02 Feb 2023 06:26:28 GMT
Date: Thu, 02 Feb 2023 00:27:15 GMT
Connection: keep-alive
sgnnusyd.top/template/smmmsp/assets/js/common/juqery/jquery.js
172.67.220.93404 Not Found 109 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/js/common/juqery/jquery.js
IP 172.67.220.93:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /template/smmmsp/assets/js/common/juqery/jquery.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uhg0UaaI%2BmSDxHIdzI%2B2PUiCghoZtPhASepTpwmGlMvRgBrUBT2LDPL%2Bil0cMxzS9nbcNfMFpk6fIe0MBZ%2BfZF1D9sNQK4Nr%2BD%2FYzaiw8SO8u247ZnC1Gw%2FBOYjaFjU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccba9b50b06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/images/theme/default/share_person.png
172.67.220.93200 OK 120 kB URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/images/theme/default/share_person.png
IP 172.67.220.93:0
File type PNG image data, 209 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size 120 kB (120413 bytes)
Hash 0d14c8e56fc563d379c937900ded0d55
203a9f011bade5af589203b10506e7e0cccc7668
eeebb7933f599e6ddab118b4501dc623b4511350acaca1ea40230c1722b520ac
GET /template/smmmsp/assets/images/theme/default/share_person.png HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/custom/header.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:15 GMT
Content-Type: image/png
Content-Length: 120413
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 09:00:22 GMT
ETag: "5c7a4626-1d65d"
Expires: Thu, 02 Mar 2023 04:12:49 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 159266
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ANk5XN7WUxE%2FVffiUKM15pOa5pqxTx11HnU22E69CK0JimQrgA21Xg2wzKIfQxwWCkzUwWyWcoaSyXa9H%2BUka2vm0bGPvvWbO6KrCazrW%2BYSwrVVLVHSORFVzJlWdNU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ecccddab90b06-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7104b12d0f5bade5cc12b4e1aec85e8a
62cb4dc8a09c3ef5b6d689e09148c3f7b550cb44
3a1ac8682c371ce62e86fe37df6f44c16a0dc61b5e590ac76db1083ffe834b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5559
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:27:15 GMT
Last-Modified: Wed, 01 Feb 2023 22:54:36 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
IP 142.250.74.131:0
Hash 747b1ebf0bbe436fda57d08462c5fb3d
2da3921a5111c3df026dd1dfb282c5de603b148d
ec123d282ed8c3109d4b300ff224ad6fd92215774c3fb5767bc6079b76ba3db8
POST /s/gts1p5/_xrTVnExDmw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:27:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsjsjs.xyz/happy/newyear/kongkong/960x60ns.gif
104.21.63.42200 OK 406 kB URL HTTP/2 cdn.jsjsjs.xyz/happy/newyear/kongkong/960x60ns.gif
IP 104.21.63.42:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 406 kB (406419 bytes)
Hash 91949a67089d61d1c111d50f6e101660
fab540d8a71b28159836bf995e398a9569314e47
35ede3c11832a2e4f6562a484535420d010601981e3b07fdc271f160b0a81507
GET /happy/newyear/kongkong/960x60ns.gif HTTP/1.1
Host: cdn.jsjsjs.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/gif
content-length: 406419
last-modified: Wed, 16 Feb 2022 13:39:39 GMT
etag: "620cfe9b-63393"
expires: Thu, 02 Feb 2023 08:50:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 2561801
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gi9dHyOfEQzBlEI6athKOUuoo76uHHG4cOetq64BPCQJsOau3zr723fMA02%2BKOeyf%2FXdEBUtiGYYG%2F7HaqS2kwNdg0PNsYymlMpL9%2B%2F0K7GLPE3hX%2BzyW7DYLwl6PkjlZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792ecccebf031bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/tfp0kgn3js41749tfp0kgn3js4554839.jpg
104.22.13.214200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/tfp0kgn3js41749tfp0kgn3js4554839.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9454d205c1313e1e28b603d29612d5c1
74c686f2f7dba3c61b01642f4b124b727c012459
8edff0fd5299971ac83f5a8a28cf913bca00605514812774d60eb8dd003c0ee9
GET /upload/vod/2021/06-22/17/tfp0kgn3js41749tfp0kgn3js4554839.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/webp
content-length: 8140
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9089
content-disposition: inline; filename="tfp0kgn3js41749tfp0kgn3js4554839.webp"
etag: "60d1b243-2381"
last-modified: Tue, 22 Jun 2021 09:49:55 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792eccccd98bb503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/mwxjuuefr1l1749mwxjuuefr1l244809.jpg
104.22.13.214200 OK 9.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/mwxjuuefr1l1749mwxjuuefr1l244809.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4439df86e95746fc01e25776584035bb
899b0e8db51d275ec13b7f75e338c9cee668b34d
8352d4d413ac0bab8beb83ed6ecdf7fdf3c37a784c94a56c04c1f7b9c1c81560
GET /upload/vod/2021/06-22/17/mwxjuuefr1l1749mwxjuuefr1l244809.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/webp
content-length: 9656
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10312
content-disposition: inline; filename="mwxjuuefr1l1749mwxjuuefr1l244809.webp"
etag: "60d1b239-2848"
last-modified: Tue, 22 Jun 2021 09:49:45 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792eccccd98db503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/vnzqyxfs0ez1750vnzqyxfs0ez004848.jpg
104.22.13.214200 OK 4.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/vnzqyxfs0ez1750vnzqyxfs0ez004848.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e222605e0a41a95808cb2daac7e767da
7b82ef7394badca30517844f336162ed9bf65e83
706bacb26a8528db04ec3122fd176d578a95c0fa2ed2bba8765280aa3141c3cd
GET /upload/vod/2021/06-22/17/vnzqyxfs0ez1750vnzqyxfs0ez004848.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/webp
content-length: 4170
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6784
content-disposition: inline; filename="vnzqyxfs0ez1750vnzqyxfs0ez004848.webp"
etag: "60d1b248-1a80"
last-modified: Tue, 22 Jun 2021 09:50:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792eccccd994b503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/dtacykglaav1749dtacykglaav594847.jpg
104.22.13.214200 OK 8.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/dtacykglaav1749dtacykglaav594847.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eb5e4e6d77e2ded3974cc838cfa5b7f5
ba769fc1b204094e4d36cff0353c3909439be699
9026364c863d4516cc2b3420c76174bf5db74780147acce91379331bdce95c03
GET /upload/vod/2021/06-22/17/dtacykglaav1749dtacykglaav594847.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/webp
content-length: 8904
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10508
content-disposition: inline; filename="dtacykglaav1749dtacykglaav594847.webp"
etag: "60d1b247-290c"
last-modified: Tue, 22 Jun 2021 09:49:59 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792eccccd990b503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/xwimk3olh4p1749xwimk3olh4p484823.jpg
104.22.13.214200 OK 7.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/xwimk3olh4p1749xwimk3olh4p484823.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cccbd7b79a098839b684e66c06424e56
41273e6704e4a26f8d1bd0f536a603824881733b
58ab3ecf9c9a3a1bb65fbd3b606008ece24bfd1713345d4bf30301e0354eeae1
GET /upload/vod/2021/06-22/17/xwimk3olh4p1749xwimk3olh4p484823.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/webp
content-length: 6982
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9568
content-disposition: inline; filename="xwimk3olh4p1749xwimk3olh4p484823.webp"
etag: "60d1b23c-2560"
last-modified: Tue, 22 Jun 2021 09:49:48 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792eccccd986b503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/sajmtrucwri1749sajmtrucwri574845.jpg
104.22.13.214200 OK 7.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/sajmtrucwri1749sajmtrucwri574845.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 82b8c7bc5e9a1a1d478a2184553138d1
835d60d19c7e997cfef4d2cb0f7b12319f616a87
4bebb6b5b9a50167a2dbd271c2c16edf27b8c3b100e9d12c3693f40c435a2289
GET /upload/vod/2021/06-22/17/sajmtrucwri1749sajmtrucwri574845.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/webp
content-length: 6990
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8311
content-disposition: inline; filename="sajmtrucwri1749sajmtrucwri574845.webp"
etag: "60d1b245-2077"
last-modified: Tue, 22 Jun 2021 09:49:57 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792eccccd991b503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/se3apt002o01749se3apt002o0514831.jpg
104.22.13.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/se3apt002o01749se3apt002o0514831.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 5b3668016b874f3088943c24c75acca8
1093e974063a51cbbecc78c53ccda8cff3667711
b21b95668a3afe2f2c3132e87f9ce3fe3b1e9f2ec2cac16d9a4c590671416566
GET /upload/vod/2021/06-22/17/se3apt002o01749se3apt002o0514831.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/jpeg
content-length: 10370
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10918, status=webp_bigger
etag: "60d1b240-2aa6"
last-modified: Tue, 22 Jun 2021 09:49:52 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792eccccd993b503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/whopfk3v1up1749whopfk3v1up464814.jpg
104.22.13.214200 OK 7.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/whopfk3v1up1749whopfk3v1up464814.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1290e1ac09d50124cac7d7c2bc4359e6
482ac933a9ca065de8ac6e9f2ca99705d7924af6
a8fd083a6a7cacaef5fa83436094730099733ad4c37a5b47068bba2bc4da8d60
GET /upload/vod/2021/06-22/17/whopfk3v1up1749whopfk3v1up464814.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/webp
content-length: 6958
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8356
content-disposition: inline; filename="whopfk3v1up1749whopfk3v1up464814.webp"
etag: "60d1b23a-20a4"
last-modified: Tue, 22 Jun 2021 09:49:46 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792eccccd995b503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/ch1b3g0luop1749ch1b3g0luop564843.jpg
104.22.13.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/ch1b3g0luop1749ch1b3g0luop564843.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash d5ff5229d0e8d309ff135f35b15b7166
068822ed896536ee034773652cfc5aabed87a53d
095164023ecf0f27f3ee847158f9ac60f84794752875ffd033605c2230ec8b31
GET /upload/vod/2021/06-22/17/ch1b3g0luop1749ch1b3g0luop564843.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/jpeg
content-length: 11030
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11666, status=webp_bigger
etag: "60d1b244-2d92"
last-modified: Tue, 22 Jun 2021 09:49:56 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792eccccd98eb503-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/oyrbbw3xvqm1749oyrbbw3xvqm234807.jpg
104.22.13.214200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/oyrbbw3xvqm1749oyrbbw3xvqm234807.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 299996fb40aed6556d6a6e887ff6f028
6b5bae81c2d0a10b80114773fbb119d23bf264f0
235afe7bfa7e7b9cb2717f26c5ba95b2e1bebb94a88c226ee6bff443d3fcf495
GET /upload/vod/2021/06-22/17/oyrbbw3xvqm1749oyrbbw3xvqm234807.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:15 GMT
content-type: image/jpeg
content-length: 12155
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12908, status=webp_bigger
etag: "60d1b223-326c"
last-modified: Tue, 22 Jun 2021 09:49:23 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792eccccd996b503-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
IP 142.250.74.131:0
Hash 747b1ebf0bbe436fda57d08462c5fb3d
2da3921a5111c3df026dd1dfb282c5de603b148d
ec123d282ed8c3109d4b300ff224ad6fd92215774c3fb5767bc6079b76ba3db8
POST /s/gts1p5/_xrTVnExDmw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:27:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dimg04.c-ctrip.com/images/0102y12000abt01aa9FED.gif
104.110.17.24200 OK 121 kB URL HTTP/2 dimg04.c-ctrip.com/images/0102y12000abt01aa9FED.gif
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 121 kB (120581 bytes)
Hash df98d05eafcc98d4a8beb8fdaea33d7b
e2fe0e1248eee770d0160151fd5d15822a5a9058
6c9bfee3b3175e72068b00c27a767920960a51080930ba550da900debc25d311
GET /images/0102y12000abt01aa9FED.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 120581
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=4642948
expires: Mon, 27 Mar 2023 18:09:43 GMT
date: Thu, 02 Feb 2023 00:27:15 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0101112000abt01g10476.gif
104.110.17.24200 OK 173 kB URL HTTP/2 dimg04.c-ctrip.com/images/0101112000abt01g10476.gif
IP 104.110.17.24:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 173 kB (172727 bytes)
Hash 97984b725f20d8e6784d91528cda2f22
a6e6cac1afac6ea410287147be6becb23f620fa3
43514c1bc343a8f1dccdd02ee1b018b1d1b5ba3d5c7ff414125b3922d979132e
GET /images/0101112000abt01g10476.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 172727
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=4619473
expires: Mon, 27 Mar 2023 11:38:28 GMT
date: Thu, 02 Feb 2023 00:27:15 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10576
Expires: Thu, 02 Feb 2023 03:23:32 GMT
Date: Thu, 02 Feb 2023 00:27:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10576
Expires: Thu, 02 Feb 2023 03:23:32 GMT
Date: Thu, 02 Feb 2023 00:27:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10576
Expires: Thu, 02 Feb 2023 03:23:32 GMT
Date: Thu, 02 Feb 2023 00:27:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 9650
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: htcecPD3kYwCPwPPCqgVuXnCuKo6TTKntzaB2xFID5fvBXpZQe463A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:38 GMT
age: 8858
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1d06527f75868ea84da730b7c8b5660
6c0cb65a477d6bc7d013529411d5735bd39e3d46
2ff4fb12b9ac4dff67bf89cc69f1bfce3ffa738696f904172044a5a537a704c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6783
x-amzn-requestid: 5ab60169-ec65-483a-828b-3312c74ee4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BGjqoAMFV6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-73a465244f89adaa27626246;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S012XKdrl7ID1qnfD-G2fcAxWoseP_mAnaDi12Y-UmdBW8yXgGlpgQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:46 GMT
age: 7710
etag: "6c0cb65a477d6bc7d013529411d5735bd39e3d46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 7701
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 7713
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 79038
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?ab312e1a1aa72763b1e7369ae6196eed
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ab312e1a1aa72763b1e7369ae6196eed
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 4db2f95087a14e6e60af9ddc8f7304ff
31e0f61ec7c3de3c94d2feb82aac929af40cbcac
cbf207efd5f35f48ad01809ba65df766e841b37e83e52593825fd624d43ff6fe
GET /hm.js?ab312e1a1aa72763b1e7369ae6196eed HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.htjfdb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Thu, 02 Feb 2023 00:27:15 GMT
Etag: 8d65e905cacb8d70bc63c4d4ffc29918
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8F2D71844D37E80E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
s2.loli.net/2022/07/02/cEnQm235N4OABoT.jpg
172.67.69.40200 OK 9.2 kB URL HTTP/2 s2.loli.net/2022/07/02/cEnQm235N4OABoT.jpg
IP 172.67.69.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /2022/07/02/cEnQm235N4OABoT.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:16 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Sat, 02 Jul 2022 02:48:11 GMT
etag: "62bfb1eb-23ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XVpOskd1C44AIvodVAZpA9ia7mjuY%2F4VGetLfrDEL3eR67xykKC1PerjNqd6YSIMaj7219OJgJST4OFyWRXFQDptzXUqOd93D7Lj%2F7i9ErSAlprUJzu3LSwE0HoJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792eccce9ded1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7104b12d0f5bade5cc12b4e1aec85e8a
62cb4dc8a09c3ef5b6d689e09148c3f7b550cb44
3a1ac8682c371ce62e86fe37df6f44c16a0dc61b5e590ac76db1083ffe834b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5560
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:27:16 GMT
Last-Modified: Wed, 01 Feb 2023 22:54:36 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=669955842&si=ab312e1a1aa72763b1e7369ae6196eed&v=1.3.0&lv=1&sn=26455&r=0&ww=1280&u=http%3A%2F%2Fwww.htjfdb.com%2F7l4axn_kivquv.html&tt=%E6%BC%AF%E6%B2%B3%E7%A8%BC%E5%A5%BD%E9%9B%86%E5%9B%A2%E6%9C%89%E9%99%90%E8%B4%A3%E4%BB%BB%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=669955842&si=ab312e1a1aa72763b1e7369ae6196eed&v=1.3.0&lv=1&sn=26455&r=0&ww=1280&u=http%3A%2F%2Fwww.htjfdb.com%2F7l4axn_kivquv.html&tt=%E6%BC%AF%E6%B2%B3%E7%A8%BC%E5%A5%BD%E9%9B%86%E5%9B%A2%E6%9C%89%E9%99%90%E8%B4%A3%E4%BB%BB%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=669955842&si=ab312e1a1aa72763b1e7369ae6196eed&v=1.3.0&lv=1&sn=26455&r=0&ww=1280&u=http%3A%2F%2Fwww.htjfdb.com%2F7l4axn_kivquv.html&tt=%E6%BC%AF%E6%B2%B3%E7%A8%BC%E5%A5%BD%E9%9B%86%E5%9B%A2%E6%9C%89%E9%99%90%E8%B4%A3%E4%BB%BB%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.htjfdb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 02 Feb 2023 00:27:16 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F88D9AE7B1431F5D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?bb5df629d89651b4be132773570ee52d
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?bb5df629d89651b4be132773570ee52d
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 7082d76a682c6e1d6188aa9d719ac31f
4946b799a2e01dd200a1eed3b8e2c63ac59ebeb9
c488ac9659d5fe39e6d021ae06248fbeb2870b2c495008ee4dffddcec4ad13c5
GET /hm.js?bb5df629d89651b4be132773570ee52d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Thu, 02 Feb 2023 00:27:16 GMT
Etag: 68bb9fd4e9a940ddccde6506e1bf0912
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=36147DAAD4249FE4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash f98cd379b1a9ed5aa79cd45bc7ada124
fc7cb7fbd2b488f482318db6e17262fcc0fd1474
514aa6ecda34a090e1ec8096ac64aae61411ad539530e4225d8f8eee9b07fedf
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:16 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 19:03:59 GMT
Expires: Tue, 07 Feb 2023 19:03:58 GMT
Etag: "fc7cb7fbd2b488f482318db6e17262fcc0fd1474"
Cache-Control: max-age=498401,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792eccd68fa7b503-OSL
hm.baidu.com/hm.js?65dd0edee86b82f2424cf951cbae0bc3
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?65dd0edee86b82f2424cf951cbae0bc3
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 629beb90429b039e484da44a02cac36d
80bb87b519cfa7ec428d8880d07a11201cfead5d
f78e0dcdb035ef726f73c9b4c022a0497288b31f37c0466491518bd739e5b266
GET /hm.js?65dd0edee86b82f2424cf951cbae0bc3 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Thu, 02 Feb 2023 00:27:16 GMT
Etag: 6f7409491919047c89698c73535a587c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=09525746DA59A052; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 9794eeeb0d04a7f500c9bfba8d928ccf
327ec6a4d28f8d728870e619b838db41ad10e02b
b3780c3e362ae6185424a3f1e52028680901407821c489abe3ad76a24e33cb69
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:17 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 23:20:32 GMT
Expires: Wed, 08 Feb 2023 23:20:31 GMT
Etag: "327ec6a4d28f8d728870e619b838db41ad10e02b"
Cache-Control: max-age=600193,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792eccd68abeb4f3-OSL
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 900c8f2816f4d14398f70f64a62d7c08
36783e9c0b33d26dda6d736eec71b5093ac9fee5
5541cfd50c013b47d8345b0119c8d6a8a0ad6f16afab28493f874c3ee52a2f68
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Thu, 02 Feb 2023 00:27:17 GMT
Connection: keep-alive
X-N: S
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1144936922&si=bb5df629d89651b4be132773570ee52d&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=26456&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1144936922&si=bb5df629d89651b4be132773570ee52d&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=26456&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1144936922&si=bb5df629d89651b4be132773570ee52d&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=26456&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 02 Feb 2023 00:27:17 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=B530E7A08061A6DD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
595tuchuang.com/960x80.gif
183.255.106.33301 Moved Permanently 166 B URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 183.255.106.33:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 00:27:17 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://595tuchuang.com/960x80.gif
Server: cdn
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash be3af2efb5a57acf854d5f991857d1f6
fa04143d697ae9361360605e5978545f0469e3f1
c8ea1d5001bfd299733efcb1350344477258f6d1449b5f414689b9e990386bec
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 18:00:46 GMT
Expires: Mon, 06 Feb 2023 18:00:45 GMT
Etag: "fa04143d697ae9361360605e5978545f0469e3f1"
Cache-Control: max-age=408207,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792eccd7afc2b50f-OSL
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash f98cd379b1a9ed5aa79cd45bc7ada124
fc7cb7fbd2b488f482318db6e17262fcc0fd1474
514aa6ecda34a090e1ec8096ac64aae61411ad539530e4225d8f8eee9b07fedf
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:17 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 19:03:59 GMT
Expires: Tue, 07 Feb 2023 19:03:58 GMT
Etag: "fc7cb7fbd2b488f482318db6e17262fcc0fd1474"
Cache-Control: max-age=498400,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792eccd689ce0b59-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=919701144&si=65dd0edee86b82f2424cf951cbae0bc3&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=26456&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=919701144&si=65dd0edee86b82f2424cf951cbae0bc3&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=26456&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=919701144&si=65dd0edee86b82f2424cf951cbae0bc3&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=26456&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 02 Feb 2023 00:27:17 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=593D5DE1ADF9541A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
8499159.com/8499/s/960x60.gif
162.209.128.163200 OK 291 kB URL HTTP/2 8499159.com/8499/s/960x60.gif
IP 162.209.128.163:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/s/960x60.gif HTTP/1.1
Host: 8499159.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:17 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:22:23 GMT
etag: "46f0c-5f092cae807d2"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
8499136.com/8499/960x100.gif
172.247.50.228200 OK 479 kB URL HTTP/2 8499136.com/8499/960x100.gif
IP 172.247.50.228:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 479 kB (479036 bytes)
Hash f586fcd7d6a54725a2d0d26355f16a06
338916b44a69b6820f8b741d0c47e68830e6234a
af1a7ed89fa356285f747cd80c8d7d33b980066a02051706c41083edd567414d
GET /8499/960x100.gif HTTP/1.1
Host: 8499136.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:17 GMT
content-type: image/gif
content-length: 479036
last-modified: Sat, 24 Dec 2022 13:20:16 GMT
etag: "74f3c-5f092c34fedc2"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
8499159.com/8499/zzxx/960x60.gif
162.209.128.163200 OK 291 kB URL HTTP/2 8499159.com/8499/zzxx/960x60.gif
IP 162.209.128.163:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/zzxx/960x60.gif HTTP/1.1
Host: 8499159.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:27:17 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "46f0c-5f092cf097c3f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
95.101.10.107200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash a54d48aed16b90eb53daa9a677273bf0
be609c00c2a967c4253e39eac4c09fd7400ab961
f0da3b724a4ba187f0322161a26908b7aac695da7c22e85726a2989954024bee
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=853
Date: Thu, 02 Feb 2023 00:27:18 GMT
Connection: keep-alive
X-N: S
5999218ccc.com/d978576ad7634777a7e4122bdd1a28a3.gif
45.61.212.116200 OK 579 kB URL HTTP/1.1 5999218ccc.com/d978576ad7634777a7e4122bdd1a28a3.gif
IP 45.61.212.116:0
File type GIF image data, version 89a, 750 x 120\012- data
Size 579 kB (579018 bytes)
Hash 54c2a3fb838c8e711bbe07220637d637
77e33ed77eb68c23320c059105fb2c900141301e
fc832269e62682138155c4f5e7f34f36512d1bfe69482fbc4a2cc3d27251c8e1
GET /d978576ad7634777a7e4122bdd1a28a3.gif HTTP/1.1
Host: 5999218ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "639ad110-8d5ca"
Date: Fri, 20 Jan 2023 03:41:45 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 15 Dec 2022 07:47:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-16
Content-Length: 579018
595tuchuang.com/960x80.gif
183.255.106.33200 OK 145 kB URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 183.255.106.33:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 145 kB (144990 bytes)
Hash 9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sgnnusyd.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 00:27:18 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Wed, 01 Mar 2023 06:45:41 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes