firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 22:03:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PiXglPPcp1qN2KhbyMvr99JO9B7ugRtVXX4ZEejqrvdC2MUv5ntkgg==
Age: 2820
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10030
Expires: Wed, 28 Sep 2022 01:37:49 GMT
Date: Tue, 27 Sep 2022 22:50:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3824
Expires: Tue, 27 Sep 2022 23:54:23 GMT
Date: Tue, 27 Sep 2022 22:50:39 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bsSQjFW+sYVPxqCtHWLuOLNpTS38GI0u6WiRJNKbmBCFjrGgHUW1fUojSe4t/70xqS2T3qY9bAs/xS6YRn1jNw==
x-amz-request-id: 3TQP0K5XNMBK73NZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 27 Sep 2022 22:49:41 GMT
age: 58
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.bipeks.com/
142.252.229.59200 OK 785 B IP 142.252.229.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash 4c3f18c075676402749fee4854e50a84
1d9a878152cfa6941a94256af2d867d74a290e34
105f5b3f26b96a4ba7228d93894a0d66f45ef87a3d1a0581bd8152dc4e948d97
GET / HTTP/1.1
Host: www.bipeks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:39 GMT
Content-Type: text/html
Content-Length: 785
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.bipeks.com/tj.js
142.252.229.59200 OK 518 B IP 142.252.229.59:0
File type ASCII text, with CRLF line terminators
Hash 5a3006672e311960bf28fb8e9e7ba11c
916f73f4608801fbef0ec4fc0a1baf1d824cec2a
fbc404a8e397bc05ff28232099a26e33292f1f52bc951677ff2bfb539337ff21
GET /tj.js HTTP/1.1
Host: www.bipeks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bipeks.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:39 GMT
Content-Type: application/x-javascript
Content-Length: 518
Connection: keep-alive
www.bipeks.com/common.js
142.252.229.59200 OK 738 B IP 142.252.229.59:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 70670d0986c3d241b2799f9b5ae5e100
e0a9285c476b9339f8ee575c4cbc26ecfc4d0a8b
788c72241a91da39f72a02d61ea2da8aa6a57d0db6b1118e583ad166b61b1ea6
GET /common.js HTTP/1.1
Host: www.bipeks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bipeks.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:39 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 22:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 23:08:53 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Am2yYfMMV_jTMYdC2kKPBNbxMO_mHzIHcBV_A7ed-2MtizrGAxOY4w==
Age: 2394
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4147
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:40 GMT
Last-Modified: Tue, 27 Sep 2022 21:41:33 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16331ac35f62390881db2d086d941dc1
9ac07a444f143cdfdfd2ca72aa417fdbe29b065f
ffda8d75bcc56e6f43bcf6d2c4a15b2b99469b7bb4332652aa377f90a5db59fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FFDA8D75BCC56E6F43BCF6D2C4A15B2B99469B7BB4332652AA377F90A5DB59FC"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13903
Expires: Wed, 28 Sep 2022 02:42:23 GMT
Date: Tue, 27 Sep 2022 22:50:40 GMT
Connection: keep-alive
www.bipeks.com/favicon.ico
142.252.229.59200 OK 1.2 kB URL HTTP/1.1 www.bipeks.com/favicon.ico
IP 142.252.229.59:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.bipeks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bipeks.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:40 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sun, 02 Oct 2022 22:50:40 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
push.services.mozilla.com/
52.43.46.140101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.46.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Qb3QSLQvxAMAW33AQbvGdA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RoB8zRsz+GJlIlOB4RdhH0YmpUs=
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 60a1803314ee0f53a36e08c205e5b208
c76f07162383d25cdd9f1b99d0ef98274610ecf9
7f70ef5a9e56c8939495c42722a4aa54b0b1a5b68bd3571e3d2dcc179172a535
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 01 Oct 2022 19:08:29 GMT
ETag: "c76f07162383d25cdd9f1b99d0ef98274610ecf9"
Last-Modified: Tue, 27 Sep 2022 19:08:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1131
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7517ccb94d90b529-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 60a1803314ee0f53a36e08c205e5b208
c76f07162383d25cdd9f1b99d0ef98274610ecf9
7f70ef5a9e56c8939495c42722a4aa54b0b1a5b68bd3571e3d2dcc179172a535
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 01 Oct 2022 19:08:29 GMT
ETag: "c76f07162383d25cdd9f1b99d0ef98274610ecf9"
Last-Modified: Tue, 27 Sep 2022 19:08:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1131
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7517ccb9598db4e8-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:50:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:50:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:50:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:50:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:50:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43d7c0db2af42ad4d0095324b2691f6c
1a1139cff14aff6755b9e43ff4ef8c9ece1102c1
42073c84e0c215109b54ab55a53cce9e6cce44f4619f5988fa4e2776ff70b362
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9780
x-amzn-requestid: 9938422e-12cd-4aab-9e58-c26b8fee53b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UOH3DoAMFZRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-37105d923f19437025abec71;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Halsx09hxT_sMRc2jy-fJA0tE85F6Bgz9P9Trx02Z9aMfIZVLkLW4g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:11:14 GMT
age: 2367
etag: "1a1139cff14aff6755b9e43ff4ef8c9ece1102c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
push.zhanzhang.baidu.com/push.js
112.34.113.148200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bipeks.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Tue, 27 Sep 2022 22:50:41 GMT
Etag: "4078521116"
Expires: Wed, 27 Sep 2023 22:50:41 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=DF6B01E4958344EB349E1E4DFA54D8F7:FG=1; max-age=31536000; expires=Wed, 27-Sep-23 22:50:41 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 4192
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc892aae9-4381-46ed-9dd8-bd581d7389ee.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc892aae9-4381-46ed-9dd8-bd581d7389ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59163c799f3d48e74abdd285ee615119
883e61d46ef6c09013724aa7b8f560272ee08574
e1bafc575ff4274b210bee481a8e73c065de5bc14ddf46c269ef91eda0df8d84
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc892aae9-4381-46ed-9dd8-bd581d7389ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8621
x-amzn-requestid: 5a828651-41c2-4aa0-931d-6522098a8438
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASUWEYvIAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffdb5-5ace75523a98a9237fabca8f;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:05:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _r1yeWUGcjSAzmlPcqiZrNgOGrGb29Dxgrz3AOm9oU0-wgHy7axiKw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 07:40:36 GMT
age: 54605
etag: "883e61d46ef6c09013724aa7b8f560272ee08574"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vak91l2UKRnX0Go62y1yPwJ8E-Af7XBurmQATw5MSZXBqhUJrIgOCQ==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 04:55:01 GMT
age: 64540
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4a66beda24621e812a929933c52025d
e951f6b11e473b68d2fdd95b822cef120d37b1eb
28efb1495fdb363cea9ccc6c38f84b2731dbd44dd4dbbe42996fa6fab74e1ce6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6721
x-amzn-requestid: ea4416a4-ffbe-4006-bb09-aa0a70763ab2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xTGNOoAMFXeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-6634cd372bd677227f755769;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TlEcmqE03c_aVOwGbXRCTsU5MOTiUF4C93U3zcIVqzg6NCGJJGup7A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:09:10 GMT
age: 2491
etag: "e951f6b11e473b68d2fdd95b822cef120d37b1eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 3978
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.jxys88.net/news/data.php
173.231.12.68200 OK 691 B URL HTTP/2 www.jxys88.net/news/data.php
IP 173.231.12.68:0
Hash 184f02e5084a0285b5fbbc3134c41977
b74c8e7796509d2d8c77409384c12e35627cc96e
d280f18be0bafdeaca7a8fce9ef5008daa721045795958b1403c58af8f20432d
GET /news/data.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys88.net/news/list.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:41 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (627)
Hash b8352f228d42d655d53202d6af063c1b
f7bf5cc47381ce7e0b583d6d72d91864d0b4e297
1d78eb4846ab3a66dc879c4f48c4c6e30c101d2be498766ae1a57a31fc3011c2
GET /hm.js?ac926d0332f02f4f5a734812940af824 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bipeks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11340
Content-Type: application/javascript
Date: Tue, 27 Sep 2022 22:50:42 GMT
Etag: 205138823d51d34c912b5b0e8652f8d5
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A0B218C2346422FD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?0ee32b18ae3fb0d5be402eca0c146922
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?0ee32b18ae3fb0d5be402eca0c146922
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash 787af1879cd43514af3b67dcb598621a
21d773d6159c5d38639c29fc676b1a92a52b3a77
ba193c6aec05e1a88c1be0764629a6d4a18cc8825702b681effe19487b7863ef
GET /hm.js?0ee32b18ae3fb0d5be402eca0c146922 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bipeks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11337
Content-Type: application/javascript
Date: Tue, 27 Sep 2022 22:50:42 GMT
Etag: be9fce2fbd84fc8f084a5a27744d1d48
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C508EA3CCE640247; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.jxys49.site/template/m1938pc/html9/ads/1.gif
173.231.38.5200 OK 254 B URL HTTP/2 www.jxys49.site/template/m1938pc/html9/ads/1.gif
IP 173.231.38.5:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/html9/ads/1.gif HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: image/gif
content-length: 254
last-modified: Sat, 02 Apr 2022 12:20:12 GMT
etag: "62483f7c-fe"
expires: Thu, 27 Oct 2022 22:50:42 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
api.share.baidu.com/s.gif?l=http://www.bipeks.com/
39.156.68.163200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.bipeks.com/
IP 39.156.68.163:0
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.bipeks.com/ HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bipeks.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Tue, 27 Sep 2022 22:50:43 GMT
www.jxys49.site/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
173.231.38.5200 OK 13 kB URL HTTP/2 www.jxys49.site/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
IP 173.231.38.5:0
File type Web Open Font Format, TrueType, length 13408, version 1.0\012- data
Hash 99af6debcdaba3e7ffe01b4c3cbccacb
4efda64b06cd7c294f6214623bcb634f3def3bd1
1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72
GET /template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.jxys49.site/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:43 GMT
content-type: font/woff
content-length: 13408
last-modified: Fri, 14 Jan 2022 04:47:30 GMT
etag: "61e10062-3460"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jxys49.site/template/m1938pc/static/css/bootstrap.min.css
173.231.38.5200 OK 28 kB URL HTTP/2 www.jxys49.site/template/m1938pc/static/css/bootstrap.min.css
IP 173.231.38.5:0
Hash 7ba5660f33971569b4bfa9748efa7b0f
e1f4bfb4929b91955cb30783d6292a7f5f96d30d
96719f97d928f53928e46707d0ac2bd1008caf07b402bbf127b26bca5d6e9239
GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:04 GMT
vary: Accept-Encoding
etag: W/"61e1000c-23816"
expires: Wed, 28 Sep 2022 10:50:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=34643089&si=ac926d0332f02f4f5a734812940af824&v=1.2.97&lv=1&sn=57716&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.bipeks.com%2F&tt=%E4%B8%8A%E6%B5%B7%E5%B3%A1%E4%B9%B1%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=34643089&si=ac926d0332f02f4f5a734812940af824&v=1.2.97&lv=1&sn=57716&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.bipeks.com%2F&tt=%E4%B8%8A%E6%B5%B7%E5%B3%A1%E4%B9%B1%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=34643089&si=ac926d0332f02f4f5a734812940af824&v=1.2.97&lv=1&sn=57716&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.bipeks.com%2F&tt=%E4%B8%8A%E6%B5%B7%E5%B3%A1%E4%B9%B1%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bipeks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 27 Sep 2022 22:50:43 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=3352D722A50EAD71; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c7b58d708b2bffa505b78f6f9d1cdd89
5fa79b283369f7d6f8d15d8e3e07e7d1a23a45bc
d1c482d190ab282a3d6dcfa4d18b849d8c87d9efcd70f33164f30f26d46b26b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1C482D190AB282A3D6DCFA4D18B849D8C87D9EFCD70F33164F30F26D46B26B4"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11017
Expires: Wed, 28 Sep 2022 01:54:20 GMT
Date: Tue, 27 Sep 2022 22:50:43 GMT
Connection: keep-alive
ob699.cc/aaa12345.gif
103.55.25.226200 OK 23 kB IP 103.55.25.226:0
ASN #55933 Cloudie Limited
File type GIF image data, version 89a, 960 x 80\012- data
Hash aa41b5478e7ee58073b7b2a6d552010e
de93de2cda74726f8ba1a880f2862e670a166122
250d8df2360a6380d3927e65a126754e6424485333718c594fbaed325855314c
GET /aaa12345.gif HTTP/1.1
Host: ob699.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:43 GMT
Content-Type: image/gif
Content-Length: 23072
Last-Modified: Mon, 26 Sep 2022 10:10:39 GMT
Connection: keep-alive
ETag: "63317a9f-5a20"
Expires: Thu, 27 Oct 2022 22:50:43 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
dimg04.c-ctrip.com/images/0102y120009tf26vrA1E9.gif?proc=autoorient
104.110.17.24200 OK 151 kB URL HTTP/2 dimg04.c-ctrip.com/images/0102y120009tf26vrA1E9.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 151 kB (151061 bytes)
Hash 89c820a186cb325d9979cdae663875eb
e9dbc77e9d46e03ebec28aaca2bf5e302767064f
9116f460b6f4c7d03cf9be95d414ba83d6bcba145a4f1eddd9decec6127e0ade
GET /images/0102y120009tf26vrA1E9.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 151061
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=13534950
expires: Fri, 03 Mar 2023 14:33:13 GMT
date: Tue, 27 Sep 2022 22:50:43 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/03964120009z0w8i44344.gif
104.110.17.24200 OK 446 kB URL HTTP/2 dimg04.c-ctrip.com/images/03964120009z0w8i44344.gif
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 446 kB (445879 bytes)
Hash dfbf81fb5d0c62a4890d1362f950c5d7
725b5307b3976bd29822d38f3a22d119086498da
aeefa12a7a2daa7ef3c04e1545d05163f8f6d95e1b8651fe7ea2893115bb6315
GET /images/03964120009z0w8i44344.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 445879
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=14799786
expires: Sat, 18 Mar 2023 05:53:49 GMT
date: Tue, 27 Sep 2022 22:50:43 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
ob699.cc/bbb12345.gif
103.55.25.226200 OK 43 kB IP 103.55.25.226:0
ASN #55933 Cloudie Limited
File type GIF image data, version 89a, 960 x 80\012- data
Hash a09229886e70f6c39716c3b8434f6520
cfaaca7c2ad891e74ce827ca82ae0cd554834444
b848c9dcaf05e2c39472758ab0d0701cb4672651dafcb6c411d0c45fe0289a4c
GET /bbb12345.gif HTTP/1.1
Host: ob699.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:43 GMT
Content-Type: image/gif
Content-Length: 43115
Last-Modified: Mon, 26 Sep 2022 10:10:39 GMT
Connection: keep-alive
ETag: "63317a9f-a86b"
Expires: Thu, 27 Oct 2022 22:50:43 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 61ec1e2e0393b9316e98cd2aed2d2059
2e5021fdcf80365be64e15a6d79175eeaffd46d1
e118a29de3a41961bc5022d1806f454220a0a7256cb3446beb451c30aff2a2d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E118A29DE3A41961BC5022D1806F454220A0A7256CB3446BEB451C30AFF2A2D9"
Last-Modified: Tue, 27 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10377
Expires: Wed, 28 Sep 2022 01:43:40 GMT
Date: Tue, 27 Sep 2022 22:50:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c7b58d708b2bffa505b78f6f9d1cdd89
5fa79b283369f7d6f8d15d8e3e07e7d1a23a45bc
d1c482d190ab282a3d6dcfa4d18b849d8c87d9efcd70f33164f30f26d46b26b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1C482D190AB282A3D6DCFA4D18B849D8C87D9EFCD70F33164F30F26D46B26B4"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11017
Expires: Wed, 28 Sep 2022 01:54:20 GMT
Date: Tue, 27 Sep 2022 22:50:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 61ec1e2e0393b9316e98cd2aed2d2059
2e5021fdcf80365be64e15a6d79175eeaffd46d1
e118a29de3a41961bc5022d1806f454220a0a7256cb3446beb451c30aff2a2d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E118A29DE3A41961BC5022D1806F454220A0A7256CB3446BEB451C30AFF2A2D9"
Last-Modified: Tue, 27 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10377
Expires: Wed, 28 Sep 2022 01:43:40 GMT
Date: Tue, 27 Sep 2022 22:50:43 GMT
Connection: keep-alive
kvmaa.com/0faf263b1025a51efcea7acd844cc402.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kvmaa.com/0faf263b1025a51efcea7acd844cc402.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /0faf263b1025a51efcea7acd844cc402.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 27 Sep 2022 22:50:43 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/0faf263b1025a51efcea7acd844cc402.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.jxys49.site/template/m1938pc/static/css/style.css
173.231.38.5200 OK 15 kB URL HTTP/2 www.jxys49.site/template/m1938pc/static/css/style.css
IP 173.231.38.5:0
Hash bb39cb8783d8293bd8e9d4508e115de4
1fcc98aedfdc480fd78b611bc6d9d35740ba02cb
964d792389dce149523cea40e6157364735e7b3042f60fd38f501acc1509fb9b
GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-10aff"
expires: Wed, 28 Sep 2022 10:50:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
pic.picnewsss.com/tu-2022290039/250-150.gif
23.225.139.251200 OK 15 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/250-150.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 250 x 150\012- data
Hash aab2c8e3e0b65b7dc076703d9c6180b0
7f8c62ec8d1df683c7b0ea7fbe7f4122eaf12435
af9fca558859236893c18170fce073bdfca98bda7257e54ba88f6eaecfb829ba
GET /tu-2022290039/250-150.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Tue, 27 Sep 2022 17:29:28 GMT
etag: "1664317465"
expires: Thu, 27 Oct 2022 17:29:28 GMT
last-modified: Tue, 27 Sep 2022 22:24:25 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 14672
X-Firefox-Spdy: h2
ob699.cc/abc12345.gif
103.55.25.226200 OK 107 kB IP 103.55.25.226:0
ASN #55933 Cloudie Limited
File type GIF image data, version 89a, 960 x 80\012- data
Size 107 kB (106771 bytes)
Hash 374c814b412120cf5a25699d6bd35cba
da4496f168645be33c35efd1dc6b80847b01bb4c
0b82c6b414f7ca3e7443d4b9eda64bdec839dd0a595613e509967c150b62c611
GET /abc12345.gif HTTP/1.1
Host: ob699.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:43 GMT
Content-Type: image/gif
Content-Length: 106771
Last-Modified: Sun, 25 Sep 2022 10:19:57 GMT
Connection: keep-alive
ETag: "63302b4d-1a113"
Expires: Thu, 27 Oct 2022 22:50:43 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.jxys49.site/template/m1938pc/static/css/1.css
173.231.38.5200 OK 12 kB URL HTTP/2 www.jxys49.site/template/m1938pc/static/css/1.css
IP 173.231.38.5:0
File type Unicode text, UTF-8 text, with very long lines (632), with CRLF, LF line terminators
Hash 712fc5b1d3239f32947ce95c2bf96923
180dd3dfadefd0a39f769c8dddde244b95faf5bf
6103c941b4248245c1da48fab7d8c1e50e2011d9eda4dc9c8298fbcf1b6a39be
GET /template/m1938pc/static/css/1.css HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: text/css
last-modified: Sun, 16 Jan 2022 07:31:51 GMT
vary: Accept-Encoding
etag: W/"61e3c9e7-50e"
expires: Wed, 28 Sep 2022 10:50:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1441869914&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.97&lv=1&sn=57717&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fwww.jxys49.site%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1441869914&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.97&lv=1&sn=57717&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fwww.jxys49.site%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1441869914&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.97&lv=1&sn=57717&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fwww.jxys49.site%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 27 Sep 2022 22:50:44 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=ABCD24311FE05731; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
pic.picnewsss.com/tu-2022290039/960-120.gif
23.225.139.251200 OK 369 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/960-120.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 369 kB (369108 bytes)
Hash d3f9f17ed067ebb6ee0792014656333e
1f5593ee409f13d7734fd538a9a779dbe469a7c1
69da833d60a8ae1c0d5f64a25dfb6b42579ac7d20046a2db7c2be4256b601b68
GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Tue, 27 Sep 2022 21:51:30 GMT
etag: "1664315490"
expires: Thu, 27 Oct 2022 21:51:30 GMT
last-modified: Tue, 27 Sep 2022 21:51:30 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 369108
X-Firefox-Spdy: h2
ads-6686.top/960-60.gif
118.107.10.31200 OK 179 kB IP 118.107.10.31:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 60\012- data
Size 179 kB (179135 bytes)
Hash e66d01a700c00399b345a3f71477b98a
4cc3b5c09ce2e791e55fba866b8632816cf68d79
87bdc50d1208a7dc3d1819b9b9c33682ec1826c902b7cc7dd4635b188dcccb1e
Analyzer Verdict Alert quad9 Sinkholed
GET /960-60.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
last-modified: Tue, 20 Sep 2022 12:28:46 GMT
accept-ranges: bytes
etag: "fed63387ecccd81:0"
server: Microsoft-IIS/10.0
date: Tue, 27 Sep 2022 22:50:42 GMT
content-length: 179135
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 202cf6f477d6d3bfdb7823870fd08265
b4606654f9548ef6c30ee2a1df69c918d17fdc10
ead28dc626c1fee1aaf071128b27501a29be3054510f552937de73c6032e13ee
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 01 Oct 2022 19:55:07 GMT
ETag: "b4606654f9548ef6c30ee2a1df69c918d17fdc10"
Last-Modified: Tue, 27 Sep 2022 19:55:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7517ccce9f7eb524-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 202cf6f477d6d3bfdb7823870fd08265
b4606654f9548ef6c30ee2a1df69c918d17fdc10
ead28dc626c1fee1aaf071128b27501a29be3054510f552937de73c6032e13ee
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 01 Oct 2022 19:55:07 GMT
ETag: "b4606654f9548ef6c30ee2a1df69c918d17fdc10"
Last-Modified: Tue, 27 Sep 2022 19:55:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7517ccce9f7fb524-OSL
ads-6686.top/225X135.gif
118.107.10.31200 OK 82 kB IP 118.107.10.31:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 225 x 135\012- data
Hash 93507608c701135ff054561125eec3ce
1d0fc7d6da393ea9a4c085e214ed407ba04077f8
81eb175d1283407105372ad04a40fdee5fccefb842ff5b671c4faecc209a3f2b
Analyzer Verdict Alert quad9 Sinkholed
GET /225X135.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
last-modified: Sun, 25 Sep 2022 07:54:14 GMT
accept-ranges: bytes
etag: "0572f1b4d0d81:0"
server: Microsoft-IIS/10.0
date: Tue, 27 Sep 2022 22:50:42 GMT
content-length: 82460
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 148b9b8056d828f51b701bd935d49268
8e443e644677532ee41950cfea939ca9e2cd3ae8
208753c99b6b1897ef4262cb62884cf398656805129ea1849db1f58ba36937db
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 09:44:16 GMT
Expires: Tue, 04 Oct 2022 09:44:15 GMT
Etag: "8e443e644677532ee41950cfea939ca9e2cd3ae8"
Cache-Control: max-age=557010,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517cccf0ac0b51e-OSL
img.x939.xyz/images/6331c9920262760f377de8bc.gif
23.225.228.34302 Found 471 B URL HTTP/2 img.x939.xyz/images/6331c9920262760f377de8bc.gif
IP 23.225.228.34:0
Hash 9febc0cc818534a786fdb2b90996abd9
d8ddad9e06ceed1eae53a71d5b46e614d3cb08c5
44cb213a54234504ed2d8b54abe66a7fd6ddb853362e2e725bd36fb63a924e63
GET /images/6331c9920262760f377de8bc.gif HTTP/1.1
Host: img.x939.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b
cache-control: max-age=3600
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 81035e0d8523350decffa5a6b428aca4
147e76496cc52e04dd0d85265b53e755cc2e5066
5ce7e59dd75349ef7d382d03a6a87c0728fe1b50c1a06eccabb3db0190497a44
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:44 GMT
Server: ECS (amb/6B80)
Content-Length: 279
acoozzh.top/30e6eb2de3e8d7da7879e39548fdfe92.gif
104.21.33.100200 OK 158 kB URL HTTP/2 acoozzh.top/30e6eb2de3e8d7da7879e39548fdfe92.gif
IP 104.21.33.100:0
File type GIF image data, version 89a, 500 x 300\012- data
Size 158 kB (158376 bytes)
Hash 55574ea2b72e2fbe45871f66165442a8
7fd461a708c87486335dde3e12740c188af0facd
005f42b2004591c7bdb51b40cab0711f489c32bb10ddc2061c5c48469fd769a0
GET /30e6eb2de3e8d7da7879e39548fdfe92.gif HTTP/1.1
Host: acoozzh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 158376
last-modified: Mon, 02 May 2022 19:18:16 GMT
etag: "62702e78-26aa8"
expires: Sun, 16 Oct 2022 13:15:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 984921
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qd7eoGpaxdowMlg2U5OA0q4PX0rUjuYAuJ1ecT8252GsXbztlHeRLWOxU9DVSwhjk5dYqp%2FxsSUhhJvD9Rp9l1WJJrbifV4zXWwzh9AqWtTm2fm1MouJw%2FVU8JWevQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517cccfbc430b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5d9cf801b425cd1bf943fe598b21362e
438fa2d45a52a8655f81710842789ad49fb6b9de
d60a5559938888a9a26bc039d63ba28e9b322a94b43226d567ce885ce70f59c4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 04:48:17 GMT
Expires: Tue, 04 Oct 2022 04:48:16 GMT
Etag: "438fa2d45a52a8655f81710842789ad49fb6b9de"
Cache-Control: max-age=539250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517cccfbb6eb51e-OSL
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b60c184c422aca7645b2ce02886f986
19029002cc9500baf471dc6cb27b2fbb047e6ee4
27087e96a615a35428249292e99b87cf1792f9d3f35e310b935dcfeed9b03364
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "27087E96A615A35428249292E99B87CF1792F9D3F35E310B935DCFEED9B03364"
Last-Modified: Sun, 25 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Wed, 28 Sep 2022 04:50:41 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a96e4a48881f13199e2216a795fab42d
23797318f001143e0ef2243d22173e168862bcf6
34feead6da61a33cbfd1df6dfc9ee76746757576bf27f5a73135ada525803259
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34FEEAD6DA61A33CBFD1DF6DFC9EE76746757576BF27F5A73135ADA525803259"
Last-Modified: Tue, 27 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10611
Expires: Wed, 28 Sep 2022 01:47:36 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
www.jxys49.site/template/m1938pc/static/css/swiper.min.css
173.231.38.5200 OK 51 kB URL HTTP/2 www.jxys49.site/template/m1938pc/static/css/swiper.min.css
IP 173.231.38.5:0
Hash 7b8baa2a7b89274d551b5aaa0cb0e2db
e58a7e2cbc18374610ed780142e61eaae16ba5fb
9443145311557d9c758d2c952c40ff634debc14082d15a42867b9050fb85bb57
GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:06 GMT
vary: Accept-Encoding
etag: W/"61e1000e-456d"
expires: Wed, 28 Sep 2022 10:50:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe0ef100a7195a9e368ae08c3bcce76e
9f586d60ea6f1d4773ec1cfdda523d872126ec15
99059b1f952686e6d21998849efe2436cde96331c164f8b6a7a484ab281ecadf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99059B1F952686E6D21998849EFE2436CDE96331C164F8B6A7A484AB281ECADF"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13760
Expires: Wed, 28 Sep 2022 02:40:05 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0a72b28916ac5e7a56638ed2fc9a665a
1e23740c08c3cab42d31ad1abfa90ace0b066526
8a6f4a83ba20fe611fb65271a3ed62cfa52524aeb01d633ded5ff76d3f7c4c7d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A6F4A83BA20FE611FB65271A3ED62CFA52524AEB01D633DED5FF76D3F7C4C7D"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1610
Expires: Tue, 27 Sep 2022 23:17:35 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
kvhmm.com/94747760f9a86fa539e3ba23345db0a4.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kvhmm.com/94747760f9a86fa539e3ba23345db0a4.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /94747760f9a86fa539e3ba23345db0a4.gif HTTP/1.1
Host: kvhmm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: text/html
content-length: 162
location: https://kvtfff.top/94747760f9a86fa539e3ba23345db0a4.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.jxys49.site/template/m1938pc/static/css/mm-content.css
173.231.38.5200 OK 231 kB URL HTTP/2 www.jxys49.site/template/m1938pc/static/css/mm-content.css
IP 173.231.38.5:0
Size 231 kB (231311 bytes)
Hash 66236162af88a8897e97e8e97460a348
18701a56e5621ef8e747b316b2534f544ffe132c
801f4dd824854bab0b98dadcab42e0ab8d66ad9bad0d2a2b0adf905d3ed454f2
GET /template/m1938pc/static/css/mm-content.css HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-1ccb"
expires: Wed, 28 Sep 2022 10:50:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wpwl.wq72.xyz/view.php/61b977b3527d7c0e27e2af877b5a5c59.jpg
34.228.143.175200 OK 57 kB URL HTTP/1.1 wpwl.wq72.xyz/view.php/61b977b3527d7c0e27e2af877b5a5c59.jpg
IP 34.228.143.175:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=5, height=805, orientation=[*0*], datetime=MM, width=1080], progressive, precision 8, 1080x805, components 3\012- data
Hash 61b977b3527d7c0e27e2af877b5a5c59
4a1f0beee6c8215da2bfda76b5f1c87d62925bfc
945a7b57589fc601eb17079a589c721417a1307db96c103791138bce8b5a7fff
GET /view.php/61b977b3527d7c0e27e2af877b5a5c59.jpg HTTP/1.1
Host: wpwl.wq72.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/jpeg
Content-Length: 57375
Connection: keep-alive
Expires: Thu, 27 Oct 2022 22:50:45 GMT
Pragma: cache
Cache-Control: max-age=2592000
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ef787fd0f2a6d7b60c7202bcd735bf09
9d3599a1216402117187094789b5bc15521f736b
83e7785982439111355943c531520078e241a918769107f0023eef8d8eea44fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Server: ECS (amb/6B80)
Content-Length: 280
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5d9cf801b425cd1bf943fe598b21362e
438fa2d45a52a8655f81710842789ad49fb6b9de
d60a5559938888a9a26bc039d63ba28e9b322a94b43226d567ce885ce70f59c4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 04:48:17 GMT
Expires: Tue, 04 Oct 2022 04:48:16 GMT
Etag: "438fa2d45a52a8655f81710842789ad49fb6b9de"
Cache-Control: max-age=539250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517cccfcd13b4ee-OSL
acoosso.top/3c1bcbe1527d69a7efc3687b42d7ea1f.gif
104.21.57.86200 OK 148 kB URL HTTP/2 acoosso.top/3c1bcbe1527d69a7efc3687b42d7ea1f.gif
IP 104.21.57.86:0
File type GIF image data, version 89a, 500 x 300\012- data
Size 148 kB (147487 bytes)
Hash 75089f0d90ce5105b34d5570d6907c02
03e4fc67658fc34b261235102c279af038590041
03471ba9f1e6dc5c88972a90fcd0eab22c0f7e9d75f0f0e4be93a41e3dbc6021
GET /3c1bcbe1527d69a7efc3687b42d7ea1f.gif HTTP/1.1
Host: acoosso.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 147487
last-modified: Wed, 25 May 2022 14:11:04 GMT
etag: "628e38f8-2401f"
expires: Wed, 26 Oct 2022 10:17:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 131619
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zT3T%2FkbAVWV2I9g7CCzdfcmBOPOI7F3%2BCrrS0rNONSHc0R0OZUAeH8QnwvoGCh7Iy8%2F64b9xq78C0IXLbbQzNUEcG0mCgJVXCu%2FD8UdtWCZaEsASXJKNVaQjlYJPUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd11d5ab506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvezz.com/800a83efcf662b60b2ec0c6bb37ce110.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kvezz.com/800a83efcf662b60b2ec0c6bb37ce110.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /800a83efcf662b60b2ec0c6bb37ce110.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: text/html
content-length: 162
location: https://acoossu.top/800a83efcf662b60b2ec0c6bb37ce110.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
104.143.94.110301 Moved Permanently 162 B URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 104.143.94.110:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: text/html
content-length: 162
location: https://acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 947fad3a501cc2fa0a5d2a6d1ace1490
9c84443e809fb58ef9f69ed1c982913d71dca5e4
b54748ac40a6d650c2b83bd6c70062873683cbe9b90b2ce4e26663c182b78cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 00:22:27 GMT
Expires: Tue, 04 Oct 2022 00:22:26 GMT
Etag: "9c84443e809fb58ef9f69ed1c982913d71dca5e4"
Cache-Control: max-age=523300,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd11dceb4ee-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 57cfa6d3e88c408702ddfde322cfffbb
4433dcac2f6698571117ffa6731964dd56246278
f57ae81fed66821ba269c56566574fd334e54e2ef451753bbd1f0fb9f618443f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F57AE81FED66821BA269C56566574FD334E54E2EF451753BBD1F0FB9F618443F"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21500
Expires: Wed, 28 Sep 2022 04:49:05 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4a0c2b5f9a2969dd43bfeb4c460d7389
fc1f09b435c4e1060cceeadb89d7f1dcb81e648b
75a2ff6461b5ddeb0bb1b126a21999caf5ea1f29f99c001607d018c28d7d9668
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75A2FF6461B5DDEB0BB1B126A21999CAF5EA1F29F99C001607D018C28D7D9668"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 28 Sep 2022 04:50:45 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d77c880cb70b82ee6b929a28dd9fe5fb
0716a1bd2072d13140ee51e555fec2a7c2b0d1b3
519d4c2fcf02e84b93e6513316ead9dcaadaca1112944229ca7f4e044f301632
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1613
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Last-Modified: Tue, 27 Sep 2022 22:23:52 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d77c880cb70b82ee6b929a28dd9fe5fb
0716a1bd2072d13140ee51e555fec2a7c2b0d1b3
519d4c2fcf02e84b93e6513316ead9dcaadaca1112944229ca7f4e044f301632
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1069
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Last-Modified: Tue, 27 Sep 2022 22:32:56 GMT
Server: ECS (amb/6B80)
X-Cache: HIT
Content-Length: 279
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash af80c12e1f94e0c74ff5a65c2ddcec0b
63a524499186efdf85a0a3be5d1aa8f0b515e664
8ebff80ebc55537da052dc3ccf43964f82b13fc683bd4ab1956d5e229fd27942
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 12:29:18 GMT
Expires: Mon, 03 Oct 2022 12:29:17 GMT
Etag: "63a524499186efdf85a0a3be5d1aa8f0b515e664"
Cache-Control: max-age=480511,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd19c10b523-OSL
fmlb.netlbtu.com/upload/vod/2022/09-28/03/ho5fu0ddoaj0337ho5fu0ddoaj232161.jpg
172.64.141.29200 OK 8.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/ho5fu0ddoaj0337ho5fu0ddoaj232161.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a32e345f632b1501e816de1146986073
93cda281b300a8f45c5b7d54a0a16cab2e0fd768
ca037c9543b7eb849465120120ea51234e614f48409d33a524a8974138b5cb94
GET /upload/vod/2022/09-28/03/ho5fu0ddoaj0337ho5fu0ddoaj232161.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 8173
cf-bgj: h2pri
etag: "e0ba3891a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 369
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6j5SMqZC%2FYb7lJTcmKyqhpvarWEFdmE22f5wgH%2FyyLuEOA6VfYm6OH7RIVdDpRTu7%2B0UOGoFEDv1i%2F0XEEEyOW5Y%2FaNxZqgDjtR8uwNcQWpxofNQLRhAtezm5DUaccHIGDAY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea5fe684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/0a5unoxqlb003370a5unoxqlb0132147.jpg
172.64.141.29200 OK 8.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/0a5unoxqlb003370a5unoxqlb0132147.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 758411accc1ef391658f4ee176567d9d
3ca3deaf3a7e2e508a97001a06838ce1b0453ff5
4c31eff80aae9d871e58a02902a04251bedd0a7f26a3f5f70b45dc977830c429
GET /upload/vod/2022/09-28/03/0a5unoxqlb003370a5unoxqlb0132147.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 8370
cf-bgj: h2pri
etag: "94fee8aa8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:13 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 371
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wdL5iryT3QdsfvtKiyWTXd4Rhyfxr6mi2cj7ufnUUib4M2YXTXA7e6haSd0s7ds2DCtbmQznGVrCgP%2FVorpYY8kHW3C9T5qNu4ndpgf536TjEI9aj2ZS5%2BUOnHP2wQYDt5ZJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea5ce684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/n5ud5uemkbd0337n5ud5uemkbd142149.jpg
172.64.141.29200 OK 5.5 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/n5ud5uemkbd0337n5ud5uemkbd142149.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7b513c2f041c8e122cc41e821627da13
0878b87cc117a32cf72d882f152a826b32abc85f
f2fad84200c4b657edb85f21ccdc01c939b24bc3874113b7148903ca35acddc5
GET /upload/vod/2022/09-28/03/n5ud5uemkbd0337n5ud5uemkbd142149.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 5544
cf-bgj: h2pri
etag: "5762df8ba8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:15 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XmdoDGaDaiOpt1JIkab%2FEgs7MdCaalLc333OxUt6FPPedUCdCtp38FNuJTFR6dB9fZ0KbRM0wnaWp%2FBVyA7Htvl1wfVb1qiy7LyTOpQvEBYyIesCyg7yDJCeo0Nz7UX7GeNQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea59e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/5wkgog3o1xh03375wkgog3o1xh162151.jpg
172.64.141.29200 OK 7.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/5wkgog3o1xh03375wkgog3o1xh162151.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7493e017178d196da036e2421ddce6e2
ad3d1ceecce04e229b06d6ba19fde92ce927cc64
2c59c7324f6785da77d155d2b1b0072bf9088f4675e65e31453f97dffe53cc1b
GET /upload/vod/2022/09-28/03/5wkgog3o1xh03375wkgog3o1xh162151.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 7036
cf-bgj: h2pri
etag: "7d59ce8ca8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:16 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bbF0uBDrHXrCR3IlWuaxzFa8r0LG8rPblVuH%2FLakf58%2Fh%2B6WWG21FJOMOhrkvTzd8cUnXDAyJG4lCw%2FDSNw4v2Ea8n7vx2GLAUsVtLqBOZEtWh5zOng2sFgGNKCgz5a2RTF6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea5be684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/3vzkmrmoqrs03373vzkmrmoqrs222159.jpg
172.64.141.29200 OK 8.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/3vzkmrmoqrs03373vzkmrmoqrs222159.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9c3b06aa13b558d168e603b4a26f9fd3
87664b1a64f5ade0baf64f86093adf20747829e3
d62bfbe72dcd5e1cc2b26aa8970d93a1de20ed25e4fbc4acf9f6f85c8c3ca814
GET /upload/vod/2022/09-28/03/3vzkmrmoqrs03373vzkmrmoqrs222159.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 8344
cf-bgj: h2pri
etag: "283a3990a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:22 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 369
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FGSMQ5s5%2F%2F06ziOSTO3p5LBjrlG8602Jj3sfmq01kfkHxwODXhU1AGefVBIXW%2BFvp1FOJxfe64tsXwS1gOf8eeKeEYwu%2B8KZGU6TFe9csLKenwnVSQ7zKiI0QKgGxDT5WrGC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea63e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-26/15/mus5q5uummd1516mus5q5uummd121842.jpg
172.64.141.29200 OK 7.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-26/15/mus5q5uummd1516mus5q5uummd121842.jpg
IP 172.64.141.29:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 0f1c4007154f75c35d75f408e001bc6a
64724f653ce003586c12680c0ede2638533b9404
ebe54255a4390cb473cf6c734a3dba31e94a9ade9d5b9443eb2e2c5ed46c4f3e
GET /upload/vod/2022/09-26/15/mus5q5uummd1516mus5q5uummd121842.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 7756
cf-bgj: h2pri
etag: "43f379db77d1d81:0"
last-modified: Mon, 26 Sep 2022 07:16:12 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3702
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BuHLB13GXQoDby1xyuEe8G0VTBV8SIeC68zAr%2FFvjIlt76jtLpTevX37gg6ULOLIefx5pM4smesCVhKVloxk5P6g6QbPV5WG%2FwdCy21Qx1O%2Fr9PjfY0h3aFR75fyK5%2Fih0oD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1fa70e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c50768041f7e90bc8b4f2511afc0c29a
2fbd7683fa42ccfd19d489386bf9c45cbc18d0d7
b4bc1359c421d3b03239117d6449dc0b692299e3c0050fb8466655eaf39c4ea8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 554
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Last-Modified: Tue, 27 Sep 2022 22:41:31 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 278
fmlb.netlbtu.com/upload/vod/2022/09-28/03/dazefu4wbsq0337dazefu4wbsq202157.jpg
172.64.141.29200 OK 13 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/dazefu4wbsq0337dazefu4wbsq202157.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b6125aaff60d468fc705a2f40e5df4ac
f0362c6468999b5c9bcef2f9903dac49f9b9e8af
c3e589d376d83bf550b6236df3160ed8ea18ad665103143df3e9f1f4657ff936
GET /upload/vod/2022/09-28/03/dazefu4wbsq0337dazefu4wbsq202157.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 13168
cf-bgj: h2pri
etag: "124d3d8fa8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:20 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uIwAIPIAkTWo7nAwyoOdyuAoWwQ1vmi87cc7qAUyI2oRHXOgI1Op7YQjFcD8ko81OOesaWWUYS%2BAHi8x90LoNlbB0JHfgqZjVsNgtrYK88altgNqqgo%2FzQoO7%2FS2cyshYm6p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1fa6fe684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/tdf4ae5qiwd0337tdf4ae5qiwd192155.jpg
172.64.141.29200 OK 9.7 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/tdf4ae5qiwd0337tdf4ae5qiwd192155.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6874c4669c10cb4bc7b3ac3ba29253b0
b5a06571f1671122d6c47c7ec777e7c60d518275
9c37710c97c103a5584bf39f9c662feba5027803d59b6c59b37a21261f8e1623
GET /upload/vod/2022/09-28/03/tdf4ae5qiwd0337tdf4ae5qiwd192155.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 9712
cf-bgj: h2pri
etag: "6ca1b08ea8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:19 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eC1yOgLdDItW0LKa2OL3dCwt35rG2gY6LsXXa4trTTxG72fuFGmdScAyxUfXgrSiY%2FyiiQxrlHwkcvI1UrKvI2jXnO9SjXPqjVCRmBone%2BXEV3iEOo6T%2BOBvJlWPeGsAAKHx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea5ee684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-08/12/4dwy2314pki12444dwy2314pki362215.jpg
172.64.141.29200 OK 9.5 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-08/12/4dwy2314pki12444dwy2314pki362215.jpg
IP 172.64.141.29:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 94c69091495ef3e545231f727e40b561
0fffd4d05b26675001000dc46926327972741c7b
51dc5b5deef050157098695832c70c3a73260dc3279b6ea9d977f8b88f6eda29
GET /upload/vod/2022/09-08/12/4dwy2314pki12444dwy2314pki362215.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 9467
cf-bgj: h2pri
etag: "1c9975b23dc3d81:0"
last-modified: Thu, 08 Sep 2022 04:44:36 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 406
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rl2Mp7ejNnKKPBrpYjTGsV5EkCqS8ki9jHi54GyR6PUKH7JsObv%2BbCjyLRAGbA8oWjDlN7eHE7MUiR%2FnrB6vhVD9tVLBdunUznO2cZLYj8mzf8qPxkFF93I0gBo8ffyNFrTB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1fa71e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/zzvgq3s1zsb0337zzvgq3s1zsb182153.jpg
172.64.141.29200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/zzvgq3s1zsb0337zzvgq3s1zsb182153.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ef3475ef87385a578206d7d97d66e55d
80608721ca840fd36c879d6cec68b33cf46c2d93
a1aede3b0ba7141e7e014312f31d007713ed8e59a4a6cbaa695edb26f528692f
GET /upload/vod/2022/09-28/03/zzvgq3s1zsb0337zzvgq3s1zsb182153.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 10010
cf-bgj: h2pri
etag: "833fbf8da8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:18 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xN%2Fh6g%2BVxDxo8x1Zy6O73%2BEF3QEfnnAtPDYCXrVB3puKt3Od0EghVCR9OxyurIFS09J9QUPHEaA5OwvdPU%2FyeIEkcd3h7iqkhurZbrs1Xbx23VnsKO3PY2DcT57fTwS03t4S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea5de684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 637318cdb6e0380ddd2c7ac649aaa9c2
649ec02ce71c72bbbddd4137eec8b40bfc726a5e
2e7c193445f06dd70d179d47b4a8e367d878616218bf6b263479425c7fe584a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2E7C193445F06DD70D179D47B4A8E367D878616218BF6B263479425C7FE584A7"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1255
Expires: Tue, 27 Sep 2022 23:11:40 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
nvhbbb.top/0faf263b1025a51efcea7acd844cc402.gif
104.21.55.74200 OK 1.1 MB URL HTTP/2 nvhbbb.top/0faf263b1025a51efcea7acd844cc402.gif
IP 104.21.55.74:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 1.1 MB (1082384 bytes)
Hash a2513b4510f6797c4cbe4012fc79c64c
41f15aa49c66eed88a541224dedda5d215f9e7ef
16e775f7ac1e0368c216cdcf70bc3d56d7d952d7653898dbb8093efcd712cc71
GET /0faf263b1025a51efcea7acd844cc402.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys49.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 1082384
last-modified: Sat, 27 Aug 2022 07:44:24 GMT
etag: "6309cb58-108410"
expires: Sat, 15 Oct 2022 15:15:24 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1064121
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gPZ2WrJYLvqlx53oiXiD7yNEO34mCMNv4fcPKFrufmAIjdf1Q5n1PDiOV8%2FXAp%2FI99T0yDa79DBNqETd602qwvvUvpRoS4od1YC%2B4aF2L0TXYyOC7s0e%2FELu2tbT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd2492eb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash af80c12e1f94e0c74ff5a65c2ddcec0b
63a524499186efdf85a0a3be5d1aa8f0b515e664
8ebff80ebc55537da052dc3ccf43964f82b13fc683bd4ab1956d5e229fd27942
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 12:29:18 GMT
Expires: Mon, 03 Oct 2022 12:29:17 GMT
Etag: "63a524499186efdf85a0a3be5d1aa8f0b515e664"
Cache-Control: max-age=480511,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd12804b527-OSL
58tu.1468tu.com/58tu/405-204.gif
20.196.247.21200 OK 100 kB URL HTTP/1.1 58tu.1468tu.com/58tu/405-204.gif
IP 20.196.247.21:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 225 x 135\012- data
Hash ec28b653037be78e9f57edfbdb48ee0a
8cc064dcc135bc3087bd373f219ac83c79a46e69
ce38de35af89761cad42c16b1296e7087a76e36e87d0a0b5212f239e36a5b281
GET /58tu/405-204.gif HTTP/1.1
Host: 58tu.1468tu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:44 GMT
Content-Type: image/gif
Content-Length: 99739
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 04:45:12 GMT
ETag: "9f48d36ed0cfd81:0"
X-Powered-By: ASP.NET
Server: X-Y
X-Cache-Status: HIT
Accept-Ranges: bytes
www.jxys88.net/news/list.php
173.231.12.68200 OK 171 kB URL HTTP/2 www.jxys88.net/news/list.php
IP 173.231.12.68:0
Size 171 kB (171323 bytes)
Hash e937e2bdb4f10b789db609b7106806fb
5fe4a8750ac76f04a591436c0a3906203feb6d2d
3aab84ca86fb824bfa2bdb0fc49965f368ea321f2f90ee01df771677d346ca17
GET /news/list.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys88.net/news/index.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:41 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c50768041f7e90bc8b4f2511afc0c29a
2fbd7683fa42ccfd19d489386bf9c45cbc18d0d7
b4bc1359c421d3b03239117d6449dc0b692299e3c0050fb8466655eaf39c4ea8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Server: ECS (amb/6B80)
Content-Length: 278
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 1dcc40e790a0541092bcd078e1123eb0
d2c2fee85bc9b564e2f560d9e4606cb9bab164f0
15474a3aaec042a988c1d24c6dcc7255d56e36fbe4dafba673132fff72e1a7b7
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 01 Oct 2022 20:06:25 GMT
ETag: "d2c2fee85bc9b564e2f560d9e4606cb9bab164f0"
Last-Modified: Tue, 27 Sep 2022 20:06:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7517ccd29a2db524-OSL
fmlb.netlbtu.com/upload/vod/2020/04-23/18/iaklx01b0pe1804iaklx01b0pe4311413.jpg
172.64.141.29200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-23/18/iaklx01b0pe1804iaklx01b0pe4311413.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 67cd5b028a7eff2a6a1b9210d2e01270
b767f43ce400bedadceb3e688ebe0db54a37df53
4ca646184d98b782c7b5928304f1ea76dffaeae6c0835ca5bf0927f06d8e1594
GET /upload/vod/2020/04-23/18/iaklx01b0pe1804iaklx01b0pe4311413.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 10811
cf-bgj: h2pri
etag: "5061979c5619d61:0"
last-modified: Thu, 23 Apr 2020 10:04:43 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8GE%2FZ7oJ3cJut1rOzQc9sP16OHMlsuA4tL2IdB%2Fvrasqrd3L%2B91qVEPObjOmeMagm6C%2FlNg36kB7t2glt%2F73BBu7kqxZgLv2KE2SUwWGx%2FH1o%2FBo%2FpocfNtIpNLsY60W6GX8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da40e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/01-05/17/r2pp3jv0apa1755r2pp3jv0apa122511.jpg
172.64.141.29200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/01-05/17/r2pp3jv0apa1755r2pp3jv0apa122511.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash bde5197cbef45807a46e8ea1f48b9c24
4bb26bf05a79955276c6d8834253818e2125e9b5
f3f1ca5c751f8893b6d05edc5b233cf823260a5afc7a3096254f2aa4bb806159
GET /upload/vod/2020/01-05/17/r2pp3jv0apa1755r2pp3jv0apa122511.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 11011
cf-bgj: h2pri
etag: "ee56df38aec3d51:0"
last-modified: Sun, 05 Jan 2020 09:55:12 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M8V806gk8SCbtZr6SOItXjNAj3A6HqaA97qJGh5j1p5FpQ8rIXtfQwo9IOib7HFnbG0x%2Be%2BrzZtdrAd%2F8CX0dq1eTRO0Cl0pBEorDASPVwbirCkHcI2WFwWLWU84DrniG347"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da41e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.06fgej.com/sh/328.js
20.239.135.26200 OK 854 B IP 20.239.135.26:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (854), with no line terminators
Hash de1296202f7779264ce531e15f2ee916
30d4167df03f6047d0422909bf26f13922209b19
44b9be7448d190f9d2d5ebc211b1ecacb10458cfbfb2d8d79bc186c79ec29c61
GET /sh/328.js HTTP/1.1
Host: api.06fgej.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 854
Connection: keep-alive
Server: Tengine
X-Cache-Status: MISS
api.06fgej.com/sh/317.js
20.239.135.26200 OK 909 B IP 20.239.135.26:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (909), with no line terminators
Hash 2f009c3409d24d3a30c1017216541ef1
894eae84e1440fbf6260463461e118bef0d540ac
873ade06077f0b1ae14aefc92fb9111b0ad07133e1bf47901207c7b9f9b29702
GET /sh/317.js HTTP/1.1
Host: api.06fgej.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 909
Connection: keep-alive
Server: Tengine
X-Cache-Status: MISS
fmlb.netlbtu.com/upload/vod/2022/09-28/03/geghjzjolhs0337geghjzjolhs312173.jpg
172.64.141.29200 OK 6.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/geghjzjolhs0337geghjzjolhs312173.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 35c575bc8a2fecff3af00f7fb66b17d3
9ddd44d3ba0b02aab7903aae72ae739340ad9ff4
584ba252ec32a620e10223ab3c78b36ab12e56c725e234882739dce5c03f4bdb
GET /upload/vod/2022/09-28/03/geghjzjolhs0337geghjzjolhs312173.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 6414
cf-bgj: h2pri
etag: "82a695a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:31 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S8X6ZzF52PU0S3%2Fi6F02Bm%2FTauUQLBX4RXJ23I39RTKew%2BkpGrT6yQEo%2Fd1z2vhGjNHUIbyvyvXDDKeGZkZY3bWzwt2bi5hZKRuqN%2BRaS%2BkGiiQL6jjjH5LI2Qe%2BQRhcoBYC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea66e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/pcifgrpxjxf0337pcifgrpxjxf322175.jpg
172.64.141.29200 OK 7.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/pcifgrpxjxf0337pcifgrpxjxf322175.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 08429579c994155afb1f6129dc512a32
c94e99d677d619931adc8fc47ba247f8f7e09c2b
501d54a8f27bb69162a90b8ece886a772db0a7a1b8d73272e1fbdbd72ad84f42
GET /upload/vod/2022/09-28/03/pcifgrpxjxf0337pcifgrpxjxf322175.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 7563
cf-bgj: h2pri
etag: "9fc22696a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:32 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2BjIukR5woJgqdYvAJ0tqmNY3fPOzgBb947wTEqc6iRh9YZcCH2AHFUyYBF5ezuPs2Bxg2F3N6ZYDj5xaUnB7I7R1rkSpP4QFM5vjI6UiMrBRS4QRNUilyja%2BLtq4B7wGKfe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea67e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nvhbbb.top/99d9b625f2ad0e82d1c36c0d0f18e725.gif
104.21.55.74200 OK 524 kB URL HTTP/2 nvhbbb.top/99d9b625f2ad0e82d1c36c0d0f18e725.gif
IP 104.21.55.74:0
File type GIF image data, version 89a, 325 x 143\012- data
Size 524 kB (523775 bytes)
Hash 2e77865c5e60159691251f889fbcbde5
538cd55848422448bbfe390a20c3dff6d78998fe
fda43c5dafab5df63cca29ea0c9c36e80930634c9d07a788adadf45f7833d1cc
GET /99d9b625f2ad0e82d1c36c0d0f18e725.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys49.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 523775
last-modified: Sun, 28 Aug 2022 11:22:29 GMT
etag: "630b4ff5-7fdff"
expires: Mon, 17 Oct 2022 14:16:06 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 894879
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b%2FRS2ebF%2BH8ZgnN0zq48bbwXXjWrIJBcF7Gavcym8U%2BGqeg%2FZEFtrrw5AJGh1%2FtjflgRfY6mJHPUT9%2B10zdvJb8RE2Ru%2FIqmiQe3G22jV2nl9aDodT%2Fla9dyOOLD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd2e9fbb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/edptiqyg5ca0337edptiqyg5ca302171.jpg
172.64.141.29200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/edptiqyg5ca0337edptiqyg5ca302171.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash afbbfe0f4624bdfa26407c441b65d6db
6d05a31180fc2a3792ad78fc17129cf14a0d4ae6
17102b4dc6fdd9eb4f1a6e858f811cb9ca3e82ba1fd11c8635a0d09ef046891c
GET /upload/vod/2022/09-28/03/edptiqyg5ca0337edptiqyg5ca302171.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 10787
cf-bgj: h2pri
etag: "507e2095a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:30 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FY9rWbBzjkf4HG8L8k91tM32CUNZ5f9YhH9stHFwPvhSyRxl1WI4NiVBv5Ry8V9%2B8Lg6meF616w4OEazJR18gmTw9ZThSD25w6fGNiGWu5zXwdhInaLnaqhhshakfExHVgs0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea68e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0d7e3b14bc554ff785411ae543163a67
a6694b03d942ba35c210a1b1a872f9157755de4b
4e313b2ce2cd80011a54f4c580eedfd4abd5023c704061e33b8fe686a9e1c27d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4E313B2CE2CD80011A54F4C580EEDFD4ABD5023C704061E33B8FE686A9E1C27D"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 28 Sep 2022 04:50:45 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash aee41ca5f4e436f45194b06975616658
e9b81f54b1d044cd719d011ccf296dd94372fb61
aca2adcde26835ea4f0fc872ad5445ebf3dfa51f243852bfaa4ce93e806f2858
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 06:36:25 GMT
Expires: Mon, 03 Oct 2022 06:36:24 GMT
Etag: "e9b81f54b1d044cd719d011ccf296dd94372fb61"
Cache-Control: max-age=459338,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd07bdfb51e-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash aee41ca5f4e436f45194b06975616658
e9b81f54b1d044cd719d011ccf296dd94372fb61
aca2adcde26835ea4f0fc872ad5445ebf3dfa51f243852bfaa4ce93e806f2858
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 06:36:25 GMT
Expires: Mon, 03 Oct 2022 06:36:24 GMT
Etag: "e9b81f54b1d044cd719d011ccf296dd94372fb61"
Cache-Control: max-age=459338,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd2efbbb4ee-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 81035e0d8523350decffa5a6b428aca4
147e76496cc52e04dd0d85265b53e755cc2e5066
5ce7e59dd75349ef7d382d03a6a87c0728fe1b50c1a06eccabb3db0190497a44
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Last-Modified: Tue, 27 Sep 2022 22:50:45 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7b60c184c422aca7645b2ce02886f986
19029002cc9500baf471dc6cb27b2fbb047e6ee4
27087e96a615a35428249292e99b87cf1792f9d3f35e310b935dcfeed9b03364
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "27087E96A615A35428249292E99B87CF1792F9D3F35E310B935DCFEED9B03364"
Last-Modified: Sun, 25 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Wed, 28 Sep 2022 04:50:41 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash d13245af986caa3bce82c4587d409a89
145d2522c8efdc8e04c23dd5aba965e0ecaf1c0d
590d4078ee39351449c7d6f8ca2f09d30450fc0b3f5ffde280f4cf3921105739
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "51E3203909BCC9B460379F05E7F7753CC006FEC8"
Expires: Wed, 28 Sep 2022 09:00:00 GMT
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3085
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7517ccd38995b529-OSL
fmlb.netlbtu.com/upload/vod/2022/08-09/11/4emvz4chswy11054emvz4chswy4314401.jpg
172.64.141.29200 OK 7.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-09/11/4emvz4chswy11054emvz4chswy4314401.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 89f5866e452889bce1a70741d1a18ffe
7bb9ec22f0bf782ae37657a6ccef85700d25055f
b511dabc217b91d814c2d041c66bb5635cf64bd00f084e2692c96c7ef753ea6a
GET /upload/vod/2022/08-09/11/4emvz4chswy11054emvz4chswy4314401.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 7762
cf-bgj: h2pri
etag: "87d821ea9cabd81:0"
last-modified: Tue, 09 Aug 2022 03:05:43 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PLJGt8jnWrf3PgKqlFokavAMT5Son7LlfuQtI9MhfHatPpnkCa%2BtYUTOf%2B8Tm0fLYLCbSsPfV0sFXoOM1QCgC8h42WpXKuHJkpAE6DkVithxWQBwyByEUHvO1Gb9D5qDU1p5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da42e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg
172.64.141.29200 OK 8.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 30ed76a00c6ba5a0743421c79a85a456
84ab818e94afb878dd64e354b69cbb2eb0bdbb22
09df0ec846ddca07df9c60f975436a9ffc469f260fad2fa5cd731b686d01500d
GET /upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 8805
cf-bgj: h2pri
etag: "f0d146cff9bcd81:0"
last-modified: Wed, 31 Aug 2022 05:23:31 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qV3tDz4141FYio6aC3xlvp%2FihGdEC3ForkpudB8VeKiNPmuEsgR3umng2bBhrISfZR7%2BZh%2BEbX0Q0nYKX8XVzAPvlc7NSJvXJtxiSQZs%2BE36aEmNOe69jjIzeLOcg5w8cHIb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da3be684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-25/12/fnwnzck4rmh1242fnwnzck4rmh5220641.jpg
172.64.141.29200 OK 8.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-25/12/fnwnzck4rmh1242fnwnzck4rmh5220641.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 37d53d478b274e76e9cb9f9d45056897
17e082e2982add2172f586268789d193ffa8bf65
329cb55c0065ab1e9176fb434011f9a690429f0030b70328e673a432f54eee50
GET /upload/vod/2022/08-25/12/fnwnzck4rmh1242fnwnzck4rmh5220641.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 8816
cf-bgj: h2pri
etag: "f28eb7223db8d81:0"
last-modified: Thu, 25 Aug 2022 04:42:52 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yRjp6unHe4GkoE%2BDGinCtdtOZZpU1nT65d2kHSRbSVBZJZIpsjkQmCtr45830lookaZFwUTaVW4c5dt%2FRjbQV48YvNONeJdIQutQQ2Jazvt6t%2BbYN2mdPuypj4BkGMSl1z9L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da3de684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-16/13/shyle4d5u5e1307shyle4d5u5e355159.jpg
172.64.141.29200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-16/13/shyle4d5u5e1307shyle4d5u5e355159.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 210017a2e4c4bc0fc1e2bb38b6dc0fc0
0ca2944bba6b226edf9e34e946be5b89514c2b8e
ad7473be1790573e9adb33a0ff6c934dd11f20dfc8b4f4802cdd56744cca7cdc
GET /upload/vod/2022/09-16/13/shyle4d5u5e1307shyle4d5u5e355159.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 10010
cf-bgj: h2pri
etag: "19fad23b8ac9d81:0"
last-modified: Fri, 16 Sep 2022 05:07:35 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s3ATT4UZHpPwODz3Wuu30Xo5tXGYlTK%2FhzP5AfPMhIOpqJaAv7Qcqj0YipiOHXgvXYo%2BFSZHyXDjsxerExnFhItcr0F%2BeFjAnyU%2Be31vIcgDKDt%2BFkvU5%2BNrZCcYJ8eXst8K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da3fe684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-03/12/e0klawjnksm1252e0klawjnksm2712661.jpg
172.64.141.29200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-03/12/e0klawjnksm1252e0klawjnksm2712661.jpg
IP 172.64.141.29:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash ab2d140a99eefd840872ab3460b6eb3d
9cc04d812b06aa0a8b35b843feb95e08bea1e713
fd9593d4050745df89650568c75935a3f9efa2f7fb6584f66b7be68f5df6e1f6
GET /upload/vod/2022/08-03/12/e0klawjnksm1252e0klawjnksm2712661.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 9568
cf-bgj: h2pri
etag: "9e447bd4f4a6d81:0"
last-modified: Wed, 03 Aug 2022 04:52:27 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ghVG3aq6rANUAzIzeeM9BIuTJR1c5KO4BbjkAq3IWbKBd%2B0OsE3t%2B%2BJ1PMJ13cL5NwWPo8TeGOClqCWq58K9QLL7KwXQqc7y7ZuMCroSTP15OYweEUIOB0aJOQINYbL2qqzI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea58e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-22/06/isxumod44si0602isxumod44si315499.jpg
172.64.141.29200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-22/06/isxumod44si0602isxumod44si315499.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 84cdf376aca38535d31baa57f566fdf5
c3fb6f9b7fe9d1e26ee0bca9d6af04f4960ff2f9
5ab0bd8108192488970b8be2552dbc0b18048cdf9e7b78eea5a1f4455237057b
GET /upload/vod/2020/05-22/06/isxumod44si0602isxumod44si315499.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 11115
cf-bgj: h2pri
etag: "767e6b86bb2fd61:0"
last-modified: Thu, 21 May 2020 22:02:31 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FUII0ZQbnQrYLjb192sbyG3%2FbgXGs4frUZDh9OV01dOaXgTBRQVTq1OOVnYpVTHpd5%2FVTkLMbcUCHvYI4uw2ByZYlT6z4cgbVagVdo3XV071X1QxpRsSZPkS316AhOb1kLGH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da43e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-15/12/ukv4amj1scx1243ukv4amj1scx2916719.jpg
172.64.141.29200 OK 7.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-15/12/ukv4amj1scx1243ukv4amj1scx2916719.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash eb6eb28aa2989226ff0d61488ebecebc
038fcdec42032906de63c1c6a3ef242dde0b7f8f
648d71776f6fff48456dc291e9e74011cbf04ad07eef0078f51604464c051003
GET /upload/vod/2022/08-15/12/ukv4amj1scx1243ukv4amj1scx2916719.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 7399
cf-bgj: h2pri
etag: "2bcb99061b0d81:0"
last-modified: Mon, 15 Aug 2022 04:43:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=llHOCAP30NxyoaeohMxVBFwIjN7f029n1L%2Bo%2BtIuNYULXQ23mRkPQaUMbrbGyDuCXMdDw%2FgVI%2FB%2FG4ap8m18%2F26zrjoEql0FVrkS4BvPVZzIkdXsMDvo%2BY7oHcFd%2BzrpYt3p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1da3ae684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-05/09/agq51f4uom20943agq51f4uom23912911.jpg
172.64.141.29200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-05/09/agq51f4uom20943agq51f4uom23912911.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 59b8d9b74e2f8d9998a15bbaf993a329
f8b17359f7e3b8a2b3d95dca5ecc81da85e43cc4
672e78a754dac2cf7410abdd8a1bcbee94ef26edb2d092991d8ac8563b7dffac
GET /upload/vod/2022/08-05/09/agq51f4uom20943agq51f4uom23912911.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 11928
cf-bgj: h2pri
etag: "90bca1c96ca8d81:0"
last-modified: Fri, 05 Aug 2022 01:43:40 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LW4XlydSStgOZjiQpe2Fx34ShDq5vmQFS1qOxwXgZmq9FWDq6a53rvV6geTFrjQjtPlaIdQcYtPjzth329IigmtKd%2FqkUcNSt%2F9TU8CbIrBMHf%2FcVB7VPw2P02E4PtSWza%2Bl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea56e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/m21i5ohjosi0337m21i5ohjosi292169.jpg
172.64.141.29200 OK 14 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/m21i5ohjosi0337m21i5ohjosi292169.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c130fca34572718b8fd8d804d4ce147b
3286e8db43bf176b2d4751a2870cca683710c32c
a019f5955b64af258e410415dc72f4441ba26b673bc0edbf89e8a8ff56190b47
GET /upload/vod/2022/09-28/03/m21i5ohjosi0337m21i5ohjosi292169.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 13810
cf-bgj: h2pri
etag: "eef49a94a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4NbHY%2Fwlc63V5DAfPbNEEi0CPxO3WgpxVqzqaCveRhJGKyxRQKp0RMRqYrPY9o%2FavV%2B4qe9YF2Sp3oKuQYpetJ598IIdJd2jOp%2BW%2BW0lmpXudgI%2BjtMxhcluSVvKDCwQWeFY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea62e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 07d5f72cc92bb2cc771dc60c4726af12
051c83e921dbc3dbf74bd0d55581148d6fbfaa08
b6f6ba3313c2a281147a996e9b9f869c43bf0f85fe3fac534dbac6e44bc89ad8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B6F6BA3313C2A281147A996E9B9F869C43BF0F85FE3FAC534DBAC6E44BC89AD8"
Last-Modified: Mon, 26 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13834
Expires: Wed, 28 Sep 2022 02:41:19 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2022/09-28/03/zc11y00fafj0337zc11y00fafj262165.jpg
172.64.141.29200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/zc11y00fafj0337zc11y00fafj262165.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ffadbd4ad3f9627fc619e8602dcd2911
954a52cbb20156de2d50a7c5cdc0244fcb83253c
34d8983ad9ce1fe98b9046d1c79e12573b9d28cb4a0e4abe47da8b41962553a3
GET /upload/vod/2022/09-28/03/zc11y00fafj0337zc11y00fafj262165.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 10178
cf-bgj: h2pri
etag: "66dad92a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:26 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=81PeJFd0sLO2%2FsDd%2B69pY98nMRtdWP6S7l8Uc3BD0brz9823LZstdFe6dsd7xQ1f%2FDU7UZyzO2Z8MA1lXYEUf5u%2FdsuZ8SngZNQPxOhIGEHtda9zGHkvFWJnfJX%2BRz4p2INg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea64e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/rnj5fdikkqn0337rnj5fdikkqn282167.jpg
172.64.141.29200 OK 9.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/rnj5fdikkqn0337rnj5fdikkqn282167.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2d3525756eefb4fbcf9ecc553aac8a7b
a5ed105f91abe284a02585766909ffbbcf864fb9
a6d0ff184c8381e2f88ddbeb723d1904ac5f1000c4ffab5ffadc060097a919c9
GET /upload/vod/2022/09-28/03/rnj5fdikkqn0337rnj5fdikkqn282167.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 9181
cf-bgj: h2pri
etag: "46e8a993a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:28 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ULvpobvvCPGOuba84qhnqIcd68NZ8nK2ga383tRr%2BuI3Zqy5qWGUc%2FN6IYDJQEEw5njdLCyQkDGDAFYnbcjRMaCi6S7qn1GD718Y98SkHUviLcJh8FBjaHK4iFww7QPPzOcw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea65e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2019/11-08/07/v3e2zae5rwp0717v3e2zae5rwp3619110.jpg
172.64.141.29200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2019/11-08/07/v3e2zae5rwp0717v3e2zae5rwp3619110.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f6d5cdf2907fb31c463cc373838d12d3
bbe5419ff8861df45fd2af60c585f9cbcc814a38
bb3f04b6f333f07ea6a77fb23d0e1d2bb6501708e8302004cd194f9cf2b917bd
GET /upload/vod/2019/11-08/07/v3e2zae5rwp0717v3e2zae5rwp3619110.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 9613
cf-bgj: h2pri
etag: "9767bb8ac195d51:0"
last-modified: Thu, 07 Nov 2019 23:17:36 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RNOprpeb3K2AbjuVRe7JwTHq%2BrUtqHTSb0%2BUhR5GkAtAWmIXGeuxhCZznzUS5757F9fwhnVt4c63vd4Y80%2BS%2FcHTuC5WNIFvPBwjrclcT4NelUAomu%2BIZ8plf7aC8i63ypd6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1fa72e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/07-29/11/5000yqfstlj11335000yqfstlj5510563.jpg
172.64.141.29200 OK 14 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/07-29/11/5000yqfstlj11335000yqfstlj5510563.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 66ad1a9e3498b0c8aea1dfc7dc134ebf
9afeb4a06eb7a614dd3fe56eab917500ae3b30e6
25fc845d7813ece47e76f0bec2d681b11b0cd75e038c6534d99e5ee5e80ada08
GET /upload/vod/2022/07-29/11/5000yqfstlj11335000yqfstlj5510563.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 13639
cf-bgj: h2pri
etag: "3634a17fca2d81:0"
last-modified: Fri, 29 Jul 2022 03:33:55 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ga9eFTuPjEtSu0RjNeIKYS8Jwjpu8GyHxTh44LjJQPTvXkTf1fW7vJs4k6UTPCgAcClFiD129mi8PRU35yIn%2FHbeKo8XnG22ilNiRpOZfFZiZL8QUf7Kt4LXJa7Rd9yaz58c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea55e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 80b1013f3a0a236ce1a63029721ec225
748c35ecf84dd93b7d4424ea26ddc0abb5c10e68
37081721a779329fd0338db88989d7ac34d7d38f315dc902dd0d1b64a340b902
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 12:43:04 GMT
Expires: Sun, 02 Oct 2022 12:43:03 GMT
Etag: "748c35ecf84dd93b7d4424ea26ddc0abb5c10e68"
Cache-Control: max-age=394937,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd3be8db51e-OSL
fmlb.netlbtu.com/upload/vod/2022/09-28/03/hhcxpx1j3jv0337hhcxpx1j3jv242163.jpg
172.64.141.29200 OK 8.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/hhcxpx1j3jv0337hhcxpx1j3jv242163.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6ae74b070394a6549116b8f904f8bc3b
8cac50419c4e3c4750b4b18819f70c2d49e8d8ba
15e087a13dc43f26de981a574e55f4d098aca5cd046cea7831ad7fae4bb3dffe
GET /upload/vod/2022/09-28/03/hhcxpx1j3jv0337hhcxpx1j3jv242163.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 8393
cf-bgj: h2pri
etag: "d078be91a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:24 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kau69E%2B7eYPuqyQmuilSm3cZBc75IUticOjASf87%2Bj4iZPCQ7zvWgVvqbAbB9%2BSD2X%2Fo4LZEidUj0KTr%2B0PhjsayN0aA%2FBo6uqRf6fVKKsnOOLFFCijWwxFtKblesdjNiMjK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1ea60e684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-28/03/n2ty52knjb20337n2ty52knjb2332177.jpg
172.64.141.29200 OK 8.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-28/03/n2ty52knjb20337n2ty52knjb2332177.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 75a7a64965e27d7748ea85d184361d04
972f4b7ca8c0f8a58fddb4b87231dc475f01c13e
d6840d9c333a0f4780180bb8c686f50a01f687a2610684e9d396d49e6715b908
GET /upload/vod/2022/09-28/03/n2ty52knjb20337n2ty52knjb2332177.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/jpeg
content-length: 8829
cf-bgj: h2pri
etag: "5d392197a8d2d81:0"
last-modified: Tue, 27 Sep 2022 19:37:33 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AqGfMJrxkHhS0I%2BlYl0LvNGJrkePOlO9IjCb60PipBCX9Z9Xz7kFiemjy0fU35IdHZg65C68rOtLtukxdBfvbQlAsLcam2BCNDYB%2FPkwXd9u32ZjjdV4ovicH8oleh6eVMwL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd1fa6ee684-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ef787fd0f2a6d7b60c7202bcd735bf09
9d3599a1216402117187094789b5bc15521f736b
83e7785982439111355943c531520078e241a918769107f0023eef8d8eea44fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Last-Modified: Tue, 27 Sep 2022 22:50:45 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
kvtfff.top/94747760f9a86fa539e3ba23345db0a4.gif
172.67.149.70200 OK 888 kB URL HTTP/2 kvtfff.top/94747760f9a86fa539e3ba23345db0a4.gif
IP 172.67.149.70:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 888 kB (888376 bytes)
Hash fedb3aaeb3cdc4b12aed1f9235094f0e
6fa984cfb8d8bc50d1ca8d20a8bf0bb29b36e2e7
953d594e6f49223defd9b3a6b42b60f900dcb52c8b57cd52fa9fe1e08eec7d8b
GET /94747760f9a86fa539e3ba23345db0a4.gif HTTP/1.1
Host: kvtfff.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys49.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 888376
last-modified: Mon, 19 Sep 2022 14:58:59 GMT
etag: "632883b3-d8e38"
expires: Sun, 23 Oct 2022 07:19:17 GMT
cache-control: max-age=5356800
cf-cache-status: HIT
age: 401488
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VMSTN24J2ALzXs5GEUV3vcVoT8C4SCTZdS5IkqgBYsO9LwJwYZNrwMMCuf%2B1%2BcgPw0jNd1ZS3E6gmJ1f2K%2FvdMUaKqNFwrffBjqQs64b%2FBFemUBsA9mNA1e6i2eL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd41d0cb505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 423621da12877cb88835286f9598fc12
5aeec650060ee46b0b9d6dda06d0fbca55dd4574
a7f1c3e64f6b2dc7648f30218cdd950c778f65e49c2c178266fe0f5f080dd13d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A7F1C3E64F6B2DC7648F30218CDD950C778F65E49C2C178266FE0F5F080DD13D"
Last-Modified: Mon, 26 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12962
Expires: Wed, 28 Sep 2022 02:26:47 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash b2ee0b1f4b688c58ecee1c0c83e0e1fc
57a8ca741ce6bb55c5018be55edcab42e2662a8f
ccb26f33938d6ecf28f70da5d3704b6e7024dc7a9eeb4f079f2b29fd5026d2c5
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Tue, 27 Sep 2022 22:50:45 GMT
last-modified: Mon, 26 Sep 2022 20:24:14 GMT
expires: Mon, 03 Oct 2022 20:24:13 GMT
etag: "57a8ca741ce6bb55c5018be55edcab42e2662a8f"
cache-control: max-age=600409,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 7517ccd41bb09956-FRA
via: cache5.l2de2[39,0], cache1.se1[61,0], cache1.se1[64,0]
timing-allow-origin: *, *
eagleid: 2ff62c9516643190457352632e, 2ff62c9516643190457352632e
img.syhy.top/2022/09/13/63f153796b8ae.gif
23.225.48.162200 OK 32 kB URL HTTP/1.1 img.syhy.top/2022/09/13/63f153796b8ae.gif
IP 23.225.48.162:0
File type GIF image data, version 89a, 224 x 134\012- data
Hash de4aaef1e42711deb4701509cb15229e
dc6f9818bdc0023a94b42ceac86ae2b715d5447e
a1cb2cd4a0062198e6138619eaec51842a94074042f9ca3a946a19887a43ade7
GET /2022/09/13/63f153796b8ae.gif HTTP/1.1
Host: img.syhy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 31454
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 10:41:28 GMT
ETag: "63205e58-7ade"
Expires: Thu, 27 Oct 2022 10:42:14 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash b2ee0b1f4b688c58ecee1c0c83e0e1fc
57a8ca741ce6bb55c5018be55edcab42e2662a8f
ccb26f33938d6ecf28f70da5d3704b6e7024dc7a9eeb4f079f2b29fd5026d2c5
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Tue, 27 Sep 2022 22:50:45 GMT
last-modified: Mon, 26 Sep 2022 20:24:14 GMT
expires: Mon, 03 Oct 2022 20:24:13 GMT
etag: "57a8ca741ce6bb55c5018be55edcab42e2662a8f"
cache-control: max-age=600409,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
accept-ranges: bytes
cf-ray: 7517ccd41a4c916b-FRA
via: cache10.l2de2[32,0], cache1.se1[53,0], cache7.se1[56,0]
timing-allow-origin: *, *
eagleid: 2ff62c9b16643190457332694e, 2ff62c9b16643190457332694e
api.06fgej.com/js/dom.js
20.239.135.26200 OK 4.8 kB IP 20.239.135.26:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1791)
Hash 271c3e5f6f883bf1187eb95946d8246e
4b32995d1e5dce4ba696e0aaf57794db6884d2b6
a5451841cb1edffb1130d0e4c564cfeb352d7f2283665a4d01221f84dc72c1fd
GET /js/dom.js HTTP/1.1
Host: api.06fgej.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"1d8c96ac8343425"
Last-Modified: Fri, 16 Sep 2022 01:22:27 GMT
Server: Tengine
X-Cache-Status: MISS
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f97a7cf87c323b5c21a4510935751e14
63c40bde8e9ed4203a6dbb8cd375c0dc5617f4c8
43a3eff6202aabeb3fd2ed51584ac14833d2dde04e4a894841e803befd478c5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A3EFF6202AABEB3FD2ED51584AC14833D2DDE04E4A894841E803BEFD478C5E"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Wed, 28 Sep 2022 04:50:01 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 423621da12877cb88835286f9598fc12
5aeec650060ee46b0b9d6dda06d0fbca55dd4574
a7f1c3e64f6b2dc7648f30218cdd950c778f65e49c2c178266fe0f5f080dd13d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A7F1C3E64F6B2DC7648F30218CDD950C778F65E49C2C178266FE0F5F080DD13D"
Last-Modified: Mon, 26 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1317
Expires: Tue, 27 Sep 2022 23:12:42 GMT
Date: Tue, 27 Sep 2022 22:50:45 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 19bf043682b931cc832a08e3f6998ca1
81adcc1820a62a2ded293810bcac0937495d4f70
f94f04205b781f05f32eb00385435fd01d1c18a32d77a70ea91decee4f9bb6b3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 03:02:52 GMT
Expires: Tue, 04 Oct 2022 03:02:51 GMT
Etag: "81adcc1820a62a2ded293810bcac0937495d4f70"
Cache-Control: max-age=532925,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd3d868b4ee-OSL
acoossu.top/800a83efcf662b60b2ec0c6bb37ce110.gif
104.21.33.223200 OK 740 kB URL HTTP/2 acoossu.top/800a83efcf662b60b2ec0c6bb37ce110.gif
IP 104.21.33.223:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 740 kB (739561 bytes)
Hash 5318e42d25e6b9b53726d8166248cc33
762b03c16562865a9a58a02dba471f78608376db
b632e7a04d032c4853a8460e9d636ac032f697db8f50cfee6a6016587ed8f62c
GET /800a83efcf662b60b2ec0c6bb37ce110.gif HTTP/1.1
Host: acoossu.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys49.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 739561
last-modified: Mon, 02 May 2022 19:20:49 GMT
etag: "62702f11-b48e9"
expires: Wed, 26 Oct 2022 22:33:38 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 87427
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MSREK1q5SLTbxixQi%2B%2Bs3MHKL65LobB9F%2FTsZaOQV0uLRGWUrd5S%2Bvda19o8cNoigjcIv7ek8W2lClQbg%2BV%2BhRiH0YKc5mYJ6%2BBAP8nQdpuTRfxQR4a7CJBugZASFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd50ad4b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d77c880cb70b82ee6b929a28dd9fe5fb
0716a1bd2072d13140ee51e555fec2a7c2b0d1b3
519d4c2fcf02e84b93e6513316ead9dcaadaca1112944229ca7f4e044f301632
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1069
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:45 GMT
Last-Modified: Tue, 27 Sep 2022 22:32:56 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
75625358935.com/8a36278d1de548a3b5d15ccb322d3892.gif
45.61.212.230200 OK 880 kB URL HTTP/1.1 75625358935.com/8a36278d1de548a3b5d15ccb322d3892.gif
IP 45.61.212.230:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 880 kB (880233 bytes)
Hash 2705c538758943c49e10dee08655851c
9946289a03cb5034448bc57c325515ef5c0996e6
487d1d9209c62f62d81facdd97f4f2a2b2d4bb1d9d393978ef95c5494617729e
Analyzer Verdict Alert quad9 Sinkholed
GET /8a36278d1de548a3b5d15ccb322d3892.gif HTTP/1.1
Host: 75625358935.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631b0e5e-d6e69"
Date: Fri, 09 Sep 2022 11:07:58 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 09 Sep 2022 09:58:54 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-30
Content-Length: 880233
87193776899.com/137dd6d87688482eb020c1c774325059.185.gif
103.170.15.110200 OK 149 kB URL HTTP/1.1 87193776899.com/137dd6d87688482eb020c1c774325059.185.gif
IP 103.170.15.110:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 320 x 185\012- data
Size 149 kB (149081 bytes)
Hash ca110f84ebcc10dd498b26dc6c90087b
cfaf975d43693cfc7c2e05305068b0d933748d98
04dff307dc6fdc4da149bad386613e102c1f0e6d2b26974c5666505c7d97ef2e
Analyzer Verdict Alert quad9 Sinkholed
GET /137dd6d87688482eb020c1c774325059.185.gif HTTP/1.1
Host: 87193776899.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62f2795c-24659"
Date: Mon, 26 Sep 2022 08:07:00 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 09 Aug 2022 15:12:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-40
Content-Length: 149081
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8d2aec2d24714178ec676a6d3ca3bd6e
dacc447f20fb283c175858cd9da34a71d6d950e9
e9d3307174704791c2ba4212835cce1c219dcc979b6dbf5e36ae5b448b7081e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9D3307174704791C2BA4212835CCE1C219DCC979B6DBF5E36AE5B448B7081E6"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6310
Expires: Wed, 28 Sep 2022 00:35:56 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash c7f48ce721d03ec6dd477d1240ea80e1
c064fa8b6308966b09a9afdf88f24ebdb8a57442
0eb1437d496d2d0fc1b255c4f6d2d573ca0934880a4cde8e5bf5ae21fa63586c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 21:16:05 GMT
Expires: Sat, 01 Oct 2022 21:16:04 GMT
Etag: "c064fa8b6308966b09a9afdf88f24ebdb8a57442"
Cache-Control: max-age=339317,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd49af7b527-OSL
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9e3395cd0d63ff37ab4a375dd4b97221
340b28a2cf4be13d9acfdf5b117642f81bf7928d
c329e0c77d36f0c3af46a1430ee7c55a0838d84d82a52a716507fda4d992af8a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C329E0C77D36F0C3AF46A1430EE7C55A0838D84D82A52A716507FDA4D992AF8A"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Wed, 28 Sep 2022 04:50:01 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d768097404ebf5ebb07e9b1ec92146d0
a058b024253d44ae3ba1a25d24c2d4089c77fa13
82409f18a2ddbcc12d3fbdc0feea9a169122b0e2393b48ab5464e513c1e7ee69
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:46 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 13:28:27 GMT
Expires: Sat, 01 Oct 2022 13:28:26 GMT
Etag: "a058b024253d44ae3ba1a25d24c2d4089c77fa13"
Cache-Control: max-age=311260,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7517ccd48f3fb51e-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8d2aec2d24714178ec676a6d3ca3bd6e
dacc447f20fb283c175858cd9da34a71d6d950e9
e9d3307174704791c2ba4212835cce1c219dcc979b6dbf5e36ae5b448b7081e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9D3307174704791C2BA4212835CCE1C219DCC979B6DBF5E36AE5B448B7081E6"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6310
Expires: Wed, 28 Sep 2022 00:35:56 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c50768041f7e90bc8b4f2511afc0c29a
2fbd7683fa42ccfd19d489386bf9c45cbc18d0d7
b4bc1359c421d3b03239117d6449dc0b692299e3c0050fb8466655eaf39c4ea8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:46 GMT
Last-Modified: Tue, 27 Sep 2022 22:41:31 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 07d5f72cc92bb2cc771dc60c4726af12
051c83e921dbc3dbf74bd0d55581148d6fbfaa08
b6f6ba3313c2a281147a996e9b9f869c43bf0f85fe3fac534dbac6e44bc89ad8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B6F6BA3313C2A281147A996E9B9F869C43BF0F85FE3FAC534DBAC6E44BC89AD8"
Last-Modified: Mon, 26 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13833
Expires: Wed, 28 Sep 2022 02:41:19 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
87193776899.com/73f23e1f7ead40baa32cf579a4bb735b.gif
103.170.15.110200 OK 553 kB URL HTTP/1.1 87193776899.com/73f23e1f7ead40baa32cf579a4bb735b.gif
IP 103.170.15.110:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 553 kB (552818 bytes)
Hash 097e6fa9314192dc3dd55cb1c5023ee5
c30366c4c910616f1a3c1b773ffb4af967e20eb5
db020d7293807326453f5848c0bf219e2b835f2530468a9d816a3c1c7941023a
Analyzer Verdict Alert quad9 Sinkholed
GET /73f23e1f7ead40baa32cf579a4bb735b.gif HTTP/1.1
Host: 87193776899.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62f27ac4-86f72"
Date: Sat, 17 Sep 2022 21:34:45 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 09 Aug 2022 15:18:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-40
Content-Length: 552818
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 9b1df4bba6e8b5f0dad58628de922d39
69bfcef4baa6568971c21912551b71a5a739655f
c3fcfe9b2981fbabac89d1ee561f8834bced1e274286058ea34d8c9cede8da13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 794
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:46 GMT
Last-Modified: Tue, 27 Sep 2022 22:37:33 GMT
Server: ECS (amb/6B8A)
X-Cache: HIT
Content-Length: 727
acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
104.21.235.96200 OK 864 kB URL HTTP/2 acooss.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 104.21.235.96:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: acooss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys49.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:46 GMT
content-type: image/gif
content-length: 864004
last-modified: Sun, 04 Sep 2022 09:11:53 GMT
etag: "63146bd9-d2f04"
expires: Wed, 26 Oct 2022 10:18:23 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 131543
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hMfpwZD6%2BDDhWppziP4gpfbi5jL1vYRzE8O8qxDmrXlWLj9rkB8fpzPkr0fu9I4q4pd6UReG1UUs4qHqhCPT454OOTttw%2BpDshamWtN3FR%2BPEbMfCNHp0BvlYChR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd65cd6773e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 9b1df4bba6e8b5f0dad58628de922d39
69bfcef4baa6568971c21912551b71a5a739655f
c3fcfe9b2981fbabac89d1ee561f8834bced1e274286058ea34d8c9cede8da13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:46 GMT
Server: ECS (amb/6B80)
Content-Length: 727
93533557591.com/7c572867c08941819e5390af65418338.gif
103.170.15.105200 OK 1.2 MB URL HTTP/1.1 93533557591.com/7c572867c08941819e5390af65418338.gif
IP 103.170.15.105:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 100\012- data
Size 1.2 MB (1184271 bytes)
Hash a0d9c3776a1e7616e6c1471d4378e348
1958e68d4544d881c08e58ba3fb7f921db78b212
a49fb807e3e7d520fc3dfe9c6031159266a6083ee708f623259e0158060c58f0
GET /7c572867c08941819e5390af65418338.gif HTTP/1.1
Host: 93533557591.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6310a377-12120f"
Date: Thu, 15 Sep 2022 14:02:22 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 01 Sep 2022 12:20:07 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-35
Content-Length: 1184271
p3.douyinpic.com/obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb
47.246.44.228200 OK 358 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb
IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 440 x 240\012- data
Size 358 kB (358276 bytes)
Hash 40b26808b7743791705f32cf49aa84d0
4ad6b4a4aea098d64566cb7d1efe401821890591
091c7316fb23f6614d103255be50c63bcb15e04c3dc5c3574456acedf9977d43
GET /obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 358276
date: Sat, 10 Sep 2022 12:28:41 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 10 Sep 2022 12:21:56 GMT
nw-session-id: 2022091020215601015803720938646A40fb4zp01dy
nw-session-trace: 2022-09-10T20:21:56.577698599+08:00 60
x-bdcdn-cache-status: TCP_HIT
x-length: 358276
x-powered-by: ImageX
x-response-date: Sat, 10 Sep 2022 20:21:56 GMT
x-tt-logid: 2022091020215601015803720938646A40
via: n204-100-029, cache9.l2de2[0,0,206-0,H], cache1.l2de2[0,0], cache1.l2de2[1,0], cache2.se1[0,0,200-0,H], cache4.se1[1,0]
x-request-ip: fdbd:dc01:27:155::141
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 01174b39532af94304e7942e465d42c12a7eb2252123cca16f7d6563df8b2fa159806672698020d6a4bc7a2b4e0cd60d8597a1cbc89401bf5c50053a094c262bf613c5b1e25c9abbb9f1a0072821fedd03f767c1548192be6727388f22514f6710
x-response-lb: image
ali-swift-global-savetime: 1662812921
age: 1506125
x-cache: HIT TCP_MEM_HIT dirn:6:181756916
x-swift-savetime: Sat, 10 Sep 2022 12:30:52 GMT
x-swift-cachetime: 31535869
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9816643190461941324e
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 6ed85f500cdafbcae4cf8a43b7e4650f
23c5c1e3b6dabb2ee43ed61d09f4b51488f0f129
476f2cb7430ba35d5732cccc8f8f7c06d20eef8c6cc9749105ce6acd0d1ba18a
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 22:50:46 GMT
Ali-Swift-Global-Savetime: 1664319046
Via: cache4.l2de2[47,47,200-0,M], cache4.l2de2[48,0], cache8.se1[70,69,200-0,M], cache8.se1[72,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 27 Sep 2022 22:50:46 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9c16643190461454019e
kzeaa.com/9f40845b27097d68beff34e10f37d7ef.gif
66.150.130.123301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/9f40845b27097d68beff34e10f37d7ef.gif
IP 66.150.130.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /9f40845b27097d68beff34e10f37d7ef.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 27 Sep 2022 22:50:46 GMT
content-type: text/html
content-length: 162
location: https://acoossi.top/9f40845b27097d68beff34e10f37d7ef.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9e3395cd0d63ff37ab4a375dd4b97221
340b28a2cf4be13d9acfdf5b117642f81bf7928d
c329e0c77d36f0c3af46a1430ee7c55a0838d84d82a52a716507fda4d992af8a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C329E0C77D36F0C3AF46A1430EE7C55A0838D84D82A52A716507FDA4D992AF8A"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Wed, 28 Sep 2022 04:50:01 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 6ed85f500cdafbcae4cf8a43b7e4650f
23c5c1e3b6dabb2ee43ed61d09f4b51488f0f129
476f2cb7430ba35d5732cccc8f8f7c06d20eef8c6cc9749105ce6acd0d1ba18a
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 22:50:46 GMT
Ali-Swift-Global-Savetime: 1664319046
Via: cache15.l2de2[50,50,200-0,M], cache15.l2de2[51,0], cache1.se1[82,81,200-0,M], cache1.se1[83,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 27 Sep 2022 22:50:46 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9516643190461462824e
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
66.150.130.123301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP 66.150.130.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 27 Sep 2022 22:50:46 GMT
content-type: text/html
content-length: 162
location: https://acoossi.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b
47.246.44.228200 OK 498 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b
IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 70\012- data
Size 498 kB (497844 bytes)
Hash 9d43f768f1897d7d3fd5ba803e1a770a
ff8fb3f427df7b6cfef65fcae162e0abab9474a4
00fe4f1ccfc623639abadf4e745aca22b946365e932a7a794d6c108fee0d85af
GET /obj/tos-cn-i-dy/5221178d1109428e912192689c4a224b HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 497844
date: Mon, 26 Sep 2022 15:51:55 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 26 Sep 2022 15:48:09 GMT
nw-session-id: 202209262348090101311360522A56A372wh9fn01dy
nw-session-trace: 2022-09-26T23:48:09.499467597+08:00 35
x-bdcdn-cache-status: TCP_HIT
x-length: 497844
x-powered-by: ImageX
x-response-date: Mon, 26 Sep 2022 23:48:09 GMT
x-tt-logid: 202209262348090101311360522A56A372
via: n204-100-050, cache3.l2de2[0,0,206-0,H], cache25.l2de2[0,0], cache25.l2de2[2,0], cache3.se1[0,0,200-0,H], cache4.se1[1,0]
x-request-ip: fdbd:dc01:27:681::45
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 012b00969317ff7be8260d35d00bf7715dbd42a2e2519f19bce5077d154f0c450651b5c390e296599c13bbb00b38fd8cd36464c815d54035da5290c5bd9169301cdb764bda59cc61d074f70a5947cce39eaced8ed2aa7690b8250fc25a0d33d00b
x-response-lb: image
ali-swift-global-savetime: 1664207518
age: 111528
x-cache: HIT TCP_MEM_HIT dirn:11:347589186
x-swift-savetime: Mon, 26 Sep 2022 16:02:29 GMT
x-swift-cachetime: 31535369
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9816643190462911363e
X-Firefox-Spdy: h2
www.jxys49.site/template/m1938pc/html9/ads/zxf.js
173.231.38.5200 OK 76 kB URL HTTP/2 www.jxys49.site/template/m1938pc/html9/ads/zxf.js
IP 173.231.38.5:0
Hash e9186d4bc4fe38520a3301df6c4f02ff
52c66ec93953506ec4b0239fdeb0c09d704ae8d7
46e9e153da2be7f2cbe0143401fb40d4fd8d04b3f4559758a9761bd9d5a6863e
GET /template/m1938pc/html9/ads/zxf.js HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 07:16:27 GMT
vary: Accept-Encoding
etag: W/"631450cb-502"
expires: Wed, 28 Sep 2022 10:50:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
513575528.com/5763fcb110e746d991dc36aad301dda5.gif
47.75.19.14200 OK 68 kB URL HTTP/1.1 513575528.com/5763fcb110e746d991dc36aad301dda5.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 750 x 240\012- data
Hash 7fb729164de96495010d31173b4dfde9
48e6c18b318b6dbe66739b2a97b1ca536a260a5b
eb89dbf10519257d735db5ba0731ed566cd5b8fac2a72ffd7bd299a9e8c4c10b
GET /5763fcb110e746d991dc36aad301dda5.gif HTTP/1.1
Host: 513575528.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 67749
Connection: keep-alive
x-oss-request-id: 63337E459DB5783833AD72CD
Accept-Ranges: bytes
ETag: "7FB729164DE96495010D31173B4DFDE9"
Last-Modified: Fri, 23 Sep 2022 10:07:05 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3572186298259414675
x-oss-storage-class: Standard
Content-MD5: f7cpFk3pZJUBDTEXO0396Q==
x-oss-server-time: 1
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d9adb3511d96fca4a56498dc0cd72b5
67e4ff06aa3c880d485da58bbe9cdbc9d896f48e
98dda9ad0a3e2f6b12e5b74c445244bfb6513bbde7f2d45a9c04047366dcf027
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "98DDA9AD0A3E2F6B12E5B74C445244BFB6513BBDE7F2D45A9C04047366DCF027"
Last-Modified: Mon, 26 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3983
Expires: Tue, 27 Sep 2022 23:57:09 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
taiyangchengjituantupian.oss-cn-hongkong.aliyuncs.com/sezhantuiguang2/220X145.gif
47.75.19.234200 OK 34 kB URL HTTP/1.1 taiyangchengjituantupian.oss-cn-hongkong.aliyuncs.com/sezhantuiguang2/220X145.gif
IP 47.75.19.234:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 220 x 145\012- data
Hash da841ebf9fdb1eecfd2a87209745ce34
ab76c119e1f65a511d4af51231248a1c8637369a
16c1ac8470a3909d1c979035df23a03043e17d6a28f7a1315b652431e58d12e5
GET /sezhantuiguang2/220X145.gif HTTP/1.1
Host: taiyangchengjituantupian.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 34177
Connection: keep-alive
x-oss-request-id: 63337E4523C0543435C9F2F6
Accept-Ranges: bytes
ETag: "DA841EBF9FDB1EECFD2A87209745CE34"
Last-Modified: Sun, 07 Aug 2022 04:58:17 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17999182063302881669
x-oss-storage-class: Standard
Content-MD5: 2oQev5/bHuz9Kocgl0XONA==
x-oss-server-time: 1
acoossi.top/9f40845b27097d68beff34e10f37d7ef.gif
104.21.234.201200 OK 45 kB URL HTTP/2 acoossi.top/9f40845b27097d68beff34e10f37d7ef.gif
IP 104.21.234.201:0
File type GIF image data, version 89a, 300 x 150\012- data
Hash f290cbd6e3db05d8539291b35a96a5a6
1ddfc4b6940f79c029084b39280921231962a5f9
c2c3b89f6ccc9df70f4ecca798dab047531f8652831ed831f5adeb13a3b5cf12
GET /9f40845b27097d68beff34e10f37d7ef.gif HTTP/1.1
Host: acoossi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys49.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:46 GMT
content-type: image/gif
content-length: 45267
last-modified: Wed, 25 May 2022 13:52:17 GMT
etag: "628e3491-b0d3"
expires: Thu, 27 Oct 2022 01:10:04 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 78042
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4r2PfxFlze4oE4hM7ax%2FtxThHVdTn0tFuJXzD5rbMKIyThVmGH5Lw%2Fmzp7gMj5LbgXkE61V7nXNUIfMZctdZExuh5frLt5ENGQOD2kRfZmkt4oeXuL8LTjWG1YHbSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd8be3c72a6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.syhy.top/2022/05/19/b3e29dd487b2b.gif
23.225.48.162200 OK 536 kB URL HTTP/1.1 img.syhy.top/2022/05/19/b3e29dd487b2b.gif
IP 23.225.48.162:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 536 kB (536519 bytes)
Hash 6c475c6d1a80641ecea6fc80c2798d87
dd77ebd4c8c568267f6d28000650324d68a10f1d
258557a327c1ebf554beb73af7c6faa540ddec90bd27f3bf863eb8aeff67416b
GET /2022/05/19/b3e29dd487b2b.gif HTTP/1.1
Host: img.syhy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 536519
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 16:33:12 GMT
ETag: "62851fc8-82fc7"
Expires: Thu, 27 Oct 2022 04:38:48 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
zhibo128x.xyz/128/318X216.gif
154.83.25.141200 OK 90 kB URL HTTP/1.1 zhibo128x.xyz/128/318X216.gif
IP 154.83.25.141:0
File type GIF image data, version 89a, 318 x 216\012- data
Hash fcfb39891df6c04744982e2f8c67f6b7
7a667d860bab955b1e95bce9a455cc5555783076
534db09ef852e7d2de2fe879e2ea4447b28ae30d9093e3854da39ee604db801d
Analyzer Verdict Alert quad9 Sinkholed
GET /128/318X216.gif HTTP/1.1
Host: zhibo128x.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 89870
Connection: keep-alive
Last-Modified: Sun, 04 Sep 2022 08:04:23 GMT
ETag: "63145c07-15f0e"
Expires: Sun, 23 Oct 2022 16:34:26 GMT
Cache-Control: max-age=2592000
Via: 154.83.25.138
CDN-Cache: HIT
Accept-Ranges: bytes
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d9adb3511d96fca4a56498dc0cd72b5
67e4ff06aa3c880d485da58bbe9cdbc9d896f48e
98dda9ad0a3e2f6b12e5b74c445244bfb6513bbde7f2d45a9c04047366dcf027
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "98DDA9AD0A3E2F6B12E5B74C445244BFB6513BBDE7F2D45A9C04047366DCF027"
Last-Modified: Mon, 26 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13361
Expires: Wed, 28 Sep 2022 02:33:27 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d9adb3511d96fca4a56498dc0cd72b5
67e4ff06aa3c880d485da58bbe9cdbc9d896f48e
98dda9ad0a3e2f6b12e5b74c445244bfb6513bbde7f2d45a9c04047366dcf027
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "98DDA9AD0A3E2F6B12E5B74C445244BFB6513BBDE7F2D45A9C04047366DCF027"
Last-Modified: Mon, 26 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13361
Expires: Wed, 28 Sep 2022 02:33:27 GMT
Date: Tue, 27 Sep 2022 22:50:46 GMT
Connection: keep-alive
885364.com/af487946377641ea8b2db51483f4b919.gif
47.75.19.14200 OK 33 kB URL HTTP/1.1 885364.com/af487946377641ea8b2db51483f4b919.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 250 x 150\012- data
Hash bc3f27f450ad0ebd19370d3737fc2e07
f1ac03dc00b5370bafdfdc604cea7f8bbdb3d75b
f76a84ddee61f9d582915900d7074fbb4c989b9669c3f871fd9fbf465895cbe1
GET /af487946377641ea8b2db51483f4b919.gif HTTP/1.1
Host: 885364.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:46 GMT
Content-Type: image/gif
Content-Length: 33267
Connection: keep-alive
x-oss-request-id: 63337E4622AAFC3031959266
Accept-Ranges: bytes
ETag: "BC3F27F450AD0EBD19370D3737FC2E07"
Last-Modified: Tue, 02 Aug 2022 10:36:32 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2465277436600690179
x-oss-storage-class: Standard
Content-MD5: vD8n9FCtDr0ZNw03N/wuBw==
x-oss-server-time: 1
79181531227.com/5d290bfde1f54fff880e9553e702bbbb.jpg
103.170.15.110200 OK 110 kB URL HTTP/1.1 79181531227.com/5d290bfde1f54fff880e9553e702bbbb.jpg
IP 103.170.15.110:0
ASN #7483 Skycloud Computing co., Ltd.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 380x200, components 3\012- data
Size 110 kB (109701 bytes)
Hash 8e887859b22620e1b57d94d7db4a5a59
a8221eb24b4d49072cd5fc9d715357b492db6b58
ace8f023527467099bfe159e5fb84637a71d6afd1e4282ac8f9fe6bb58428dcf
Analyzer Verdict Alert quad9 Sinkholed
GET /5d290bfde1f54fff880e9553e702bbbb.jpg HTTP/1.1
Host: 79181531227.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "630db366-1ac85"
Date: Tue, 27 Sep 2022 05:28:58 GMT
Content-Type: image/jpeg
Server: nginx
Last-Modified: Tue, 30 Aug 2022 06:51:18 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-40
Content-Length: 109701
acoossi.top/92f0c144d76dd785f7c04f84ae149b33.gif
104.21.234.201200 OK 1.0 MB URL HTTP/2 acoossi.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP 104.21.234.201:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.0 MB (1024160 bytes)
Hash 52748c8ca30fe48c822541046bceafc0
8640926f83b9c0d635fb28403505a7c0f0753857
2e292531362f37bf7a1cd01330efb234450b1f836e975c55f2b2179c0be32ae6
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: acoossi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys49.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:46 GMT
content-type: image/gif
content-length: 1024160
last-modified: Wed, 25 May 2022 13:49:10 GMT
etag: "628e33d6-fa0a0"
expires: Thu, 27 Oct 2022 18:41:03 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 14983
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IrSkcMJr%2B34tpjNs1SVQPPbE2kDYAUZXaKnYcP7qv0NrJb61%2Bd%2FvVySzT8wPVVAC30bikBxoPxIxCyqpZnX5Hcmg6wSX4z2MWHE15KyaCbluphvcsgmDj5KckW9clA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7517ccd94ecc72a6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
666222258.com/static/960120logo.gif
180.215.227.150200 OK 211 kB URL HTTP/2 666222258.com/static/960120logo.gif
IP 180.215.227.150:0
ASN #64050 BGPNET Global ASN
File type GIF image data, version 89a, 960 x 120\012- data
Size 211 kB (211240 bytes)
Hash 67e541a6b9571a70e72eaea63435d0cc
6b93a9afed7684e3084993d6a9cacdf764229b58
3006bd4b7cc9fd9635f89f9c4d8d911b765371df18667dcd2cfcabc0cb2d5ca5
GET /static/960120logo.gif HTTP/1.1
Host: 666222258.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 211240
last-modified: Thu, 22 Sep 2022 11:52:24 GMT
etag: "632c4c78-33928"
expires: Thu, 27 Oct 2022 22:50:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jxys49.site/
173.231.38.5200 OK 40 kB IP 173.231.38.5:0
Hash c6be970d70f4250953a1b359023d383e
68f7d3f5e180745662a87f1efe90ed9795e612f1
7eac696483deade171efc0f025fd5eff10a756edabd1c28b9ba01f089b7cba99
GET / HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys88.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
zhibo128x.xyz/128/960x120.gif
154.83.25.141200 OK 647 kB URL HTTP/1.1 zhibo128x.xyz/128/960x120.gif
IP 154.83.25.141:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 647 kB (647290 bytes)
Hash 4fd1179d632274467f2d161456d79264
7e14d27cde6b11c437d17d7abf8ea273a5e63798
4a24512ccf73527d8996dc5a02acc63fe7fcb7c9f9ae22cac178345c6d46361c
GET /128/960x120.gif HTTP/1.1
Host: zhibo128x.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 647290
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 15:01:06 GMT
ETag: "6325e132-9e07a"
Expires: Mon, 17 Oct 2022 15:01:37 GMT
Cache-Control: max-age=2592000
Via: 154.83.25.138
CDN-Cache: HIT
Accept-Ranges: bytes
85939597192.com/cefb291ffc434fb09c8379d6df4c5ed0.gif
45.61.212.47200 OK 359 kB URL HTTP/1.1 85939597192.com/cefb291ffc434fb09c8379d6df4c5ed0.gif
IP 45.61.212.47:0
File type GIF image data, version 89a, 320 x 185\012- data
Size 359 kB (359419 bytes)
Hash 97a062f09e9adc4233640d8c8254dc4c
3441e39b52b751a3c24424782055a8d721f93c8d
7cf6cbfb09cd3534c5ab69bebd6afd6f4548abe5255eb408736d2c90b01d924c
Analyzer Verdict Alert quad9 Sinkholed
GET /cefb291ffc434fb09c8379d6df4c5ed0.gif HTTP/1.1
Host: 85939597192.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631b105f-57bfb"
Date: Wed, 21 Sep 2022 15:46:31 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 09 Sep 2022 10:07:27 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-17
Content-Length: 359419
tupaiyy.oss-cn-hongkong.aliyuncs.com/huazidongtu/hybbff.gif
47.75.19.83200 OK 1.1 MB URL HTTP/1.1 tupaiyy.oss-cn-hongkong.aliyuncs.com/huazidongtu/hybbff.gif
IP 47.75.19.83:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 1.1 MB (1071505 bytes)
Hash d71a0585aedaa3ec4afda6baec03ac6b
ad3a590c022e5d82b43efc4b9f159eb6598c4890
6bfb388b33c1e444ca7382fceadf93b83a753f7ff0c4c960f7b142732ac28cd8
GET /huazidongtu/hybbff.gif HTTP/1.1
Host: tupaiyy.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 1071505
Connection: keep-alive
x-oss-request-id: 63337E450E14E434349A69DF
Accept-Ranges: bytes
ETag: "D71A0585AEDAA3EC4AFDA6BAEC03AC6B"
Last-Modified: Mon, 04 Jul 2022 07:26:38 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7665046247320685581
x-oss-storage-class: Standard
Content-MD5: 1xoFha7ao+xK/aa67AOsaw==
x-oss-server-time: 2
p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d4767c40b66114c992edbcaac2af9d9ba2182/0.png
43.129.255.47200 OK 121 kB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa05168424fa80afa512d4767c40b66114c992edbcaac2af9d9ba2182/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 650 x 350\012- data
Size 121 kB (121197 bytes)
Hash c333d9318beb5b59bc7fd1dbe71ed7f3
7f59fbc05d4302bc5768755ed10aa58932bf8c7a
58ae8f93dc8f4805de239cc27796b1a97bd67acd9ef72cd7f0ed73119175d4f5
GET /hy_personal/3e28f14aa05168424fa80afa512d4767c40b66114c992edbcaac2af9d9ba2182/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 121197
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 15:24:44 GMT
cache-control: max-age=2592000
x-delay: 22356 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 121197
chid: 0
fid: 0
x-nws-log-uuid: 0f756916-8bd3-4092-9b33-01a2d5f7286a
X-Firefox-Spdy: h2
si1.go2yd.com/get-image/0yFVWR9AM6k
58.254.180.65200 OK 140 kB URL HTTP/2 si1.go2yd.com/get-image/0yFVWR9AM6k
IP 58.254.180.65:0
ASN #136958 China Unicom Guangdong IP network
File type GIF image data, version 89a, 750 x 376\012- data
Size 140 kB (140259 bytes)
Hash 4125d9bf66b1a755f42abaea805ee9af
17232f64827beb19e2a717d1bdbf384b3e938249
d3c1b29a4d2c0fa6fc41d308d6c110eeb868276c2a74697766283838ebe1f732
GET /get-image/0yFVWR9AM6k HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 27 Sep 2022 22:50:46 GMT
content-type: image/gif
content-length: 140259
last-modified: Mon, 28 Feb 2022 07:48:08 GMT
etag: "4125d9bf66b1a755f42abaea805ee9af"
age: 2295149
accept-ranges: bytes
x-application-context: application
x-kss-request-id: b8d0dad1b76d4aeeabd3c1f4e62e1a52
content-md5: QSXZv2axp1X0KrrqgF7prw==
timing-allow-origin: *
ohc-cache-hit: gz3un54 [2], xauncache75 [2], suzix242 [2]
ohc-file-size: 140259
x-cache-status: HIT
X-Firefox-Spdy: h2
539397377.com/db431bafa2474156b9fddc3d9c277b4d.gif
47.75.19.14200 OK 177 kB URL HTTP/1.1 539397377.com/db431bafa2474156b9fddc3d9c277b4d.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 240 x 140\012- data
Size 177 kB (176976 bytes)
Hash 5c383b781891f009bfe7545eb03e78d9
75d4973454dc1243aeb3e10c8f58033b904f55a0
3fcb048f35db216dd311386f685b6dd7ed68384951f09cc018287cdb49d1d35b
GET /db431bafa2474156b9fddc3d9c277b4d.gif HTTP/1.1
Host: 539397377.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 176976
Connection: keep-alive
x-oss-request-id: 63337E454C8B373530B36C6E
Accept-Ranges: bytes
ETag: "5C383B781891F009BFE7545EB03E78D9"
Last-Modified: Fri, 23 Sep 2022 09:18:01 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8278321731206139918
x-oss-storage-class: Standard
Content-MD5: XDg7eBiR8Am/51ResD542Q==
x-oss-server-time: 1
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash 822b96df776a54c6a75c9f8663d003ef
72077f2b6806363a3e6b1be933222e58c968a202
e5ccabed257188e3eafb5dcd1cbfc54feca574cace5f4cac5b3202b2b375b90e
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6659
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:47 GMT
Last-Modified: Tue, 27 Sep 2022 20:59:48 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
taiwtp1.com/img/960240.gif
220.128.218.220200 OK 224 kB URL HTTP/2 taiwtp1.com/img/960240.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 240\012- data
Size 224 kB (223879 bytes)
Hash a39bb27f09ccd6961fe1c0f3074a8b97
0e914bc58abc78e7275d3c639e2aeb548313d627
269a642190139efcc044a53f3194f196e79d8e981d3e8cf0184ce4e8eb134020
GET /img/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:48:59 GMT
content-type: image/gif
content-length: 223879
last-modified: Wed, 09 Mar 2022 04:06:14 GMT
etag: "622827b6-36a87"
expires: Thu, 27 Oct 2022 22:48:59 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash 822b96df776a54c6a75c9f8663d003ef
72077f2b6806363a3e6b1be933222e58c968a202
e5ccabed257188e3eafb5dcd1cbfc54feca574cace5f4cac5b3202b2b375b90e
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 569
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:50:47 GMT
Last-Modified: Tue, 27 Sep 2022 22:41:18 GMT
Server: ECS (amb/6B79)
X-Cache: HIT
Content-Length: 471
pic.rmb.bdstatic.com/bjh/fae45aa7d02e74dc0fbbd71d056edd1a.gif
185.10.104.115200 OK 116 kB URL HTTP/2 pic.rmb.bdstatic.com/bjh/fae45aa7d02e74dc0fbbd71d056edd1a.gif
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 640 x 200\012- data
Size 116 kB (116153 bytes)
Hash fae45aa7d02e74dc0fbbd71d056edd1a
0da9aa28a21f15d6142fd33632c52dde14598f86
120fdf1071bd8fd95a368875aa67ac85e859dc5d025e849be30b10137e4a6353
GET /bjh/fae45aa7d02e74dc0fbbd71d056edd1a.gif HTTP/1.1
Host: pic.rmb.bdstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 27 Sep 2022 22:50:47 GMT
content-type: image/gif
content-length: 116153
expires: Wed, 10 Aug 2022 11:40:55 GMT
last-modified: Thu, 04 Aug 2022 04:37:28 GMT
etag: "fae45aa7d02e74dc0fbbd71d056edd1a"
age: 2077372
accept-ranges: bytes
content-md5: +uRap9AudNwPu9cdBW7dGg==
x-bce-content-crc32: 351985379
x-bce-debug-id: Mh1RlcvX3vkSaqBL/y6LDh/oLSvdzJz3Oz9meVSBtSPXaaFrdnUAOKERqdi1pEjV8ppK5HJ0JcwkTew0OTRw2A==
x-bce-request-id: e0d62a77-7339-44bb-83bb-2838a00396ac
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
timing-allow-origin: *
ohc-cache-hit: fra01-sys-jomo1.fra01.baidu.com [2], jnuncache50 [4], wzix50 [2]
ohc-file-size: 116153
x-cache-status: HIT
X-Firefox-Spdy: h2
pic.rmb.bdstatic.com/bjh/17244f3a8b60a0f7b291f5621c873713.gif
185.10.104.115200 OK 1.6 MB URL HTTP/2 pic.rmb.bdstatic.com/bjh/17244f3a8b60a0f7b291f5621c873713.gif
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 500 x 281\012- data
Size 1.6 MB (1626999 bytes)
Hash 17244f3a8b60a0f7b291f5621c873713
c523f5d5b60d2eabc9084e9ba5803647ac08c2cd
4aed8c090aa7bff3de4c028efced6a87dd7645bc15d265cdddf106f3f5dd9435
GET /bjh/17244f3a8b60a0f7b291f5621c873713.gif HTTP/1.1
Host: pic.rmb.bdstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 27 Sep 2022 22:50:47 GMT
content-type: image/gif
content-length: 1626999
expires: Tue, 06 Sep 2022 02:14:33 GMT
last-modified: Fri, 05 Aug 2022 12:05:01 GMT
etag: "17244f3a8b60a0f7b291f5621c873713"
age: 2025753
accept-ranges: bytes
content-md5: FyRPOotgoPeykfViHIc3Ew==
x-bce-content-crc32: 2236402188
x-bce-debug-id: To5Ii6e5ruq3XhnFvxFfNKk+aTuEv1Rs9BFz/CFUbJxN1IWDo5QCbV+8zPWS73WsgW1/9vgMJSUBunO3575huA==
x-bce-request-id: 8b1d7270-ba6a-4bb6-adc0-e264be29d524
x-bce-restore-cache: -
x-bce-restore-tier: -
x-bce-storage-class: STANDARD
timing-allow-origin: *
ohc-cache-hit: fra01-sys-jomo4.fra01.baidu.com [2], zhuzuncache107 [2], czix231 [1]
ohc-file-size: 1626999
x-cache-status: HIT
X-Firefox-Spdy: h2
613711567.com/4aa44d1866a149878b6b79cadb7ab527.gif
47.75.19.14200 OK 748 kB URL HTTP/1.1 613711567.com/4aa44d1866a149878b6b79cadb7ab527.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 750 x 120\012- data
Size 748 kB (748166 bytes)
Hash dc16c165d9da37bf4a9e9596a765425c
824e5729161352cd5f7b57faea8a32c54d35b410
4abb336ff1a1a08dc2963b708638359da654fadaf843669e4406d6ab348b4608
GET /4aa44d1866a149878b6b79cadb7ab527.gif HTTP/1.1
Host: 613711567.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 748166
Connection: keep-alive
x-oss-request-id: 63337E4523C0543133BEF1F6
Accept-Ranges: bytes
ETag: "DC16C165D9DA37BF4A9E9596A765425C"
Last-Modified: Fri, 23 Sep 2022 09:19:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3478477367098298607
x-oss-storage-class: Standard
Content-MD5: 3BbBZdnaN79KnpWWp2VCXA==
x-oss-server-time: 2
si1.go2yd.com/get-image/0yFQ28gLGhP
58.254.180.65200 OK 280 kB URL HTTP/2 si1.go2yd.com/get-image/0yFQ28gLGhP
IP 58.254.180.65:0
ASN #136958 China Unicom Guangdong IP network
File type GIF image data, version 89a, 600 x 350\012- data
Size 280 kB (279676 bytes)
Hash b25d41aed5450abed3b57ce91edeb1ef
32246d3032e682f04be554c60fa343835bf7a1c9
3198df78ef5491bd63c4dbd8fea3604f34dad6baa285ea8629ec250954f405ba
GET /get-image/0yFQ28gLGhP HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 27 Sep 2022 22:50:46 GMT
content-type: image/gif
content-length: 279676
last-modified: Mon, 28 Feb 2022 06:31:20 GMT
etag: "b25d41aed5450abed3b57ce91edeb1ef"
age: 2294873
accept-ranges: bytes
x-application-context: application
x-kss-request-id: f130ot80n86obs74opib5np8lk60k9tf
content-md5: sl1BrtVFCr7TtXzpHt6x7w==
timing-allow-origin: *
ohc-cache-hit: gz3un52 [2], cangzuncache52 [2], xaix239 [2]
ohc-file-size: 279676
x-cache-status: HIT
X-Firefox-Spdy: h2
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash f077e99c5b6afaf1f188668f713ecf3a
4151bb0c9c0ee7e7b2fe0e2cc318f799162636f2
d298e467ece2227e38c69d2d4cd2bc5be6efe31ae64658520252eee61431b793
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Tue, 27 Sep 2022 22:50:47 GMT
last-modified: Tue, 27 Sep 2022 02:45:12 GMT
expires: Tue, 04 Oct 2022 02:45:11 GMT
etag: "4151bb0c9c0ee7e7b2fe0e2cc318f799162636f2"
cache-control: max-age=603289,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb5
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 813
accept-ranges: bytes
cf-ray: 7517ccdcdda4913d-FRA
via: cache6.l2de2[11,0], cache1.se1[33,0], cache1.se1[35,0]
timing-allow-origin: *, *
eagleid: 2ff62c9516643190471403264e, 2ff62c9516643190471403264e
fsadcx1.com/tututu/yue.gif
23.225.3.254200 OK 4.0 MB URL HTTP/2 fsadcx1.com/tututu/yue.gif
IP 23.225.3.254:0
File type GIF image data, version 89a, 540 x 260\012- data
Size 4.0 MB (3960978 bytes)
Hash d8cb43dc553102ce0f6f051f33c1e801
2129e8cc2a17aed95bf77d70074cd779125f88ae
21e3ff28623e466cb2d36e805b1f47a83292022a9e98266a05960b62e95b67e0
GET /tututu/yue.gif HTTP/1.1
Host: fsadcx1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 3960978
last-modified: Thu, 29 Jul 2021 12:00:20 GMT
etag: "61029854-3c7092"
expires: Thu, 27 Oct 2022 22:50:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.imimimi.top/uploads/material/202012/a1a214b93e426af4c145592b4cc1dafa.gif
104.166.160.228200 OK 160 kB URL HTTP/1.1 img.imimimi.top/uploads/material/202012/a1a214b93e426af4c145592b4cc1dafa.gif
IP 104.166.160.228:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 160 kB (159832 bytes)
Hash 59b66d29a1ace744c2d4944ebaa9dbee
759c68d9f3803a6b2e6b5ab28f03ceb6112ceb05
db93b50488f3aaf00578d23aff444880ab2e06442e72069bd8b024bb6478bb70
GET /uploads/material/202012/a1a214b93e426af4c145592b4cc1dafa.gif HTTP/1.1
Host: img.imimimi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:50:47 GMT
Content-Type: image/gif
Content-Length: 159832
Connection: keep-alive
Expires: Sat, 08 Oct 2022 16:24:10 GMT
Server: nginx
Last-Modified: Wed, 23 Dec 2020 08:51:05 GMT
ETag: "5fe304f9-27058"
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=15768000
Accept-Ranges: bytes
X-Ser: BC115_US-Washington-seattle-1-cache-3, BC229_GB-london-london-3-cache-2
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/650X300.gif
47.75.19.91200 OK 395 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/650X300.gif
IP 47.75.19.91:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 650 x 300\012- data
Size 395 kB (395390 bytes)
Hash 9bce931eae7162ce6125a3934eff17fd
0e7e1a8cd09453544a83419f2d825f1329768a86
1e42edee8fe36b8b73d193388a0a64c57a6953c1d7090f168ecd14aab4aae0f0
GET /gg/650X300.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 395390
Connection: keep-alive
x-oss-request-id: 63337E451F85633931C66C86
Accept-Ranges: bytes
ETag: "9BCE931EAE7162CE6125A3934EFF17FD"
Last-Modified: Sat, 09 Jul 2022 12:36:58 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5755723134353325919
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: m86THq5xYs5hJaOTTv8X/Q==
x-oss-server-time: 1
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 456390
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:11:26 GMT
cache-control: max-age=2592000
x-delay: 69649 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 456390
chid: 0
fid: 0
x-nws-log-uuid: 65b6b898-3c44-4a4d-a4b6-2040d67723fe
X-Firefox-Spdy: h2
quo.qianqishop.cn/v21/uploads/images/interim/o509/42b31fdd-3eaf-4afc-af1b-4b8a4c66c540.gif
138.113.141.2200 OK 0 B URL HTTP/2 quo.qianqishop.cn/v21/uploads/images/interim/o509/42b31fdd-3eaf-4afc-af1b-4b8a4c66c540.gif
IP 138.113.141.2:0
ASN #54994 QUANTILNETWORKS
GET /v21/uploads/images/interim/o509/42b31fdd-3eaf-4afc-af1b-4b8a4c66c540.gif HTTP/1.1
Host: quo.qianqishop.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
last-modified: Wed, 24 Aug 2022 09:16:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
age: 1
x-via: 1.1 PSxgHK6gh105:4 (Cdn Cache Server V2.0), 1.1 VM-ARN-01Obg11:1 (Cdn Cache Server V2.0)
x-ws-request-id: 63337e45_VM-ARN-01Obg11_23875-47844
cache-control: max-age=31536000
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 893726
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 16:38:38 GMT
cache-control: max-age=2592000
x-delay: 88672 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 893726
chid: 0
fid: 0
x-nws-log-uuid: ce94b266-a20b-4ef5-bf8f-6252eda5724f
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 1362871
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:47 GMT
cache-control: max-age=2592000
x-delay: 93457 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1362871
chid: 0
fid: 0
x-nws-log-uuid: ec81743a-92c1-481b-8d11-bac905543160
X-Firefox-Spdy: h2
quo.qianqishop.cn/v21/uploads/images/interim/o509/bbc9b9f5-9374-463e-bfcf-883af3ceb7cf.gif
138.113.141.2200 OK 0 B URL HTTP/2 quo.qianqishop.cn/v21/uploads/images/interim/o509/bbc9b9f5-9374-463e-bfcf-883af3ceb7cf.gif
IP 138.113.141.2:0
ASN #54994 QUANTILNETWORKS
GET /v21/uploads/images/interim/o509/bbc9b9f5-9374-463e-bfcf-883af3ceb7cf.gif HTTP/1.1
Host: quo.qianqishop.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
last-modified: Wed, 24 Aug 2022 09:16:52 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
age: 1
x-via: 1.1 PSxgHK6gh105:4 (Cdn Cache Server V2.0), 1.1 VM-ARN-01Obg11:1 (Cdn Cache Server V2.0)
x-ws-request-id: 63337e45_VM-ARN-01Obg11_23875-47845
cache-control: max-age=31536000
X-Firefox-Spdy: h2
img.999993.co/images/631c815761ac02a3c057d0fb.gif
23.225.222.2302 Found 0 B URL HTTP/2 img.999993.co/images/631c815761ac02a3c057d0fb.gif
IP 23.225.222.2:0
GET /images/631c815761ac02a3c057d0fb.gif HTTP/1.1
Host: img.999993.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/d3a13ee486ae419c97cc3b15c34ebadb
cache-control: max-age=3600
X-Firefox-Spdy: h2
www.jxys88.net/news/index.php
173.231.12.68200 OK 0 B URL HTTP/2 www.jxys88.net/news/index.php
IP 173.231.12.68:0
GET /news/index.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bipeks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:40 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
aliyun-static-oss.oss-cn-hongkong.aliyuncs.com/b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif
47.56.33.17200 OK 0 B URL HTTP/1.1 aliyun-static-oss.oss-cn-hongkong.aliyuncs.com/b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif
IP 47.56.33.17:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif HTTP/1.1
Host: aliyun-static-oss.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 27 Sep 2022 22:50:45 GMT
Content-Type: image/gif
Content-Length: 294418
Connection: keep-alive
x-oss-request-id: 63337E451F856337300B6C86
Vary: Origin
Accept-Ranges: bytes
ETag: "B5F554E2887180883376A154C0D49550"
Last-Modified: Tue, 25 Jan 2022 08:46:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7927258656666560621
x-oss-storage-class: Standard
Content-Disposition: inline;filename=899E8306-3565-4974-AD46-916F3A0C3E17.gif
Content-MD5: tfVU4ohxgIgzdqFUwNSVUA==
x-oss-server-time: 2
www.jxys49.site/template/m1938pc/static/css/white.css
173.231.38.5200 OK 0 B URL HTTP/2 www.jxys49.site/template/m1938pc/static/css/white.css
IP 173.231.38.5:0
GET /template/m1938pc/static/css/white.css HTTP/1.1
Host: www.jxys49.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:50:42 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-29d9"
expires: Wed, 28 Sep 2022 10:50:42 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 2668995
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:04:56 GMT
cache-control: max-age=2592000
x-delay: 140942 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 2668995
chid: 0
fid: 0
x-nws-log-uuid: 9478c45f-81bb-4f03-a1ee-9eb57c54b565
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys49.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 27 Sep 2022 22:50:45 GMT
content-type: image/gif
content-length: 1495356
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:08:11 GMT
cache-control: max-age=2592000
x-delay: 128965 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1495356
chid: 0
fid: 0
x-nws-log-uuid: c675850d-7c5a-4b05-8a8d-2d60ab73464d
X-Firefox-Spdy: h2