firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 20:02:58 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yG_-35okARjIjo_WxDsP4tmzFTnPhdVXHxwt5X8D6yNoYFSJ7MR2eg==
Age: 65
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7270
Expires: Sun, 18 Sep 2022 22:05:13 GMT
Date: Sun, 18 Sep 2022 20:04:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EQQPFhUrEtEVulCx5dhgfmKXWwNADBNlKi689178If3IQ7OB8DkY2w==
age: 55730
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 20:04:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
168youke.com/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 168youke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 18 Sep 2022 20:04:02 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.168youke.com/index.php
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 18 Sep 2022 20:03:22 GMT
Expires: Sun, 18 Sep 2022 20:13:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Od3lP-gSdH-MoVFPIj0moMM3xXfvSe6t1JOHkmPABjJcXQ7fjaKVGQ==
Age: 42
ocsp.digicert.com/
200 OK 471 B IP
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2153
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:04:04 GMT
Last-Modified: Sun, 18 Sep 2022 19:28:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.168youke.com/index.php
200 OK 633 B URL HTTP/1.1 www.168youke.com/index.php
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (922), with CRLF line terminators
Hash f703308319688fbebb502283e760785c
ed8eccc01849d52241a101ed1871a97eb92f0bb0
786a4233b7e011524db06293c395393bce723feb320cd6e9f8f341a76315aea9
GET /index.php HTTP/1.1
Host: www.168youke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 20:04:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gnneVzq0sbSvzGad4zAdZA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BsQcZooU6Nh7e89iBOJbS2UXq3g=
www.168youke.com/common.js
200 OK 1.8 kB URL HTTP/1.1 www.168youke.com/common.js
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 394d42df70e09c1264d39c5875130a29
f5a229f05c034a6a187dcf91cd22272521af8585
ee40092cf716773e5f6e14f04d36d50537232450100e199cc5189e4df7ac0546
GET /common.js HTTP/1.1
Host: www.168youke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.168youke.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 20:04:02 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.168youke.com/tj.js
200 OK 102 B IP
File type HTML document, ASCII text, with no line terminators
Hash 8c45c27edb65e9f9ed1747194dc79dc8
87813036abf883c7e9630dafe282798e4d5d7a35
fccde6d04940d918d1d5d702392cc302417f7f85050bbc0a7808c4a94353168d
GET /tj.js HTTP/1.1
Host: www.168youke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.168youke.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 20:04:03 GMT
Content-Type: application/x-javascript
Content-Length: 102
Connection: keep-alive
meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.5599374600652157?v=06967967254753678
200 OK 51 B URL HTTP/1.1 meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.5599374600652157?v=06967967254753678
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4b130d6073acd127d52c6cc99bf074c6
346743fb9f4a5bb4df4c31596cf391fb071dbf2c
36807300721e4dc9f7622f23b252d2ff2b7fc55ea2a27d0a5aa602a4f59fb0d8
GET /meicao_v01.php?val=bbgg1&t=0.5599374600652157?v=06967967254753678 HTTP/1.1
Host: meimeicaomeimeicao01.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.168youke.com
Connection: keep-alive
Referer: http://www.168youke.com/
HTTP/1.1 200 OK
Content-Type: application/json
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: *
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Sun, 18 Sep 2022 20:04:14 GMT
Content-Length: 51
meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.934956105413729?v=022552268359013472
200 OK 51 B URL HTTP/1.1 meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.934956105413729?v=022552268359013472
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4b130d6073acd127d52c6cc99bf074c6
346743fb9f4a5bb4df4c31596cf391fb071dbf2c
36807300721e4dc9f7622f23b252d2ff2b7fc55ea2a27d0a5aa602a4f59fb0d8
GET /meicao_v01.php?val=bbgg1&t=0.934956105413729?v=022552268359013472 HTTP/1.1
Host: meimeicaomeimeicao01.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.168youke.com
Connection: keep-alive
Referer: http://www.168youke.com/
HTTP/1.1 200 OK
Content-Type: application/json
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: *
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Sun, 18 Sep 2022 20:04:14 GMT
Content-Length: 51
ocsp.digicert.com/
200 OK 278 B IP
Hash feaff7cf5a95c7b1ef00da532c821230
4f698f9b936080b67db43d56778338a8596ebb18
9aba86953e8da3624202bbb7d1923798ff9767cad4f7d97718c0ff4525061031
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2642
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:04:05 GMT
Last-Modified: Sun, 18 Sep 2022 19:20:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
fmlb.netlbtu.com/upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg
200 OK 9.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5600b1dc0b13febccccad5ae5e8a2578
71badf0ab64bc26d7b50c8d82b35fe49da44986a
b8ac9990802b4fc1818c6c999c89337884a8f5c9cda42f47810047d2a723eaa3
GET /upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 8961
cf-bgj: h2pri
etag: "6bec1b477c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:19 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3748
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p8HFbSwSWHrRB9A2afqmrJX0k7dhZ8dlr4BoEePBo%2FU7P6yYFQvCSE0j3zJdw%2FAOYTUx7XRLkk9x2NkfbkdUBE2dpBlawP7J7JyZ6N09j2bAxBJIF2maPNC%2Fi%2FZ5jPXwxTZp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b7a76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg
200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a5a7e5a878944a89c074143f96a1c47f
7e552cf2c502b95a7608f65b23c3c020384a0b25
ad499e5c551c6e26e17c0cc06c9022dcd19cf5f592618bd2cbe5aa938260a626
GET /upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 11821
cf-bgj: h2pri
etag: "dc2639b477c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:18 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IxVur%2Bj0ppFVxPPdJuiH6%2FIEMoYW%2BFX7K88L9FD2N6W0wo4xzjIXX0PLtf4igt53r8oYS4pKyzfjNscpwr1P1og21ZouWKuSsYhEc8nfWTv2ME8EMhrl5UETFPJs2FPAsiO9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b7f76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg
200 OK 6.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a1029a786b088a2f378abfc33fe517f0
2c7cb1ba204c2b2b1b7fc630da4ca5652efee2d4
e1400dc677ff49a03091050f3ecf2636c7d4f0c3fae3e515786a528a510e9c03
GET /upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 6418
cf-bgj: h2pri
etag: "89a5f1d377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:12 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pMOt%2B4fTNcXdpjSWgDrLY9W0oFO4lyuZgII4LXhXnPZggfwjjbQidD4bos6GGee9%2FXD8ExuTgV%2BoTvXHW25j412zL9G3oVYjXmqiQaAMKRMKK2ftt0ya1fraLt%2FpgjY6ZBCY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b7776ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg
200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b39a8eb121c5f3928dc2f521a782c02d
bcff2caa6eff59086a15f4f1ed423151ed4bb342
cec74cf5c0f7f5ad60cb8cc7632a66fb422d35374c14ecab36d13c337a208228
GET /upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 10650
cf-bgj: h2pri
etag: "b4a6b5b377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:17 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQ3fqGqOxPJwfaKQzi5dDizIR5r2xyFnT74TzX%2Fnx8gdaqH7A39TYwJtEysKJ%2FfSq%2FgHbipydAIAE1dEFjNy3%2F2teEf39HxPb1kZg7jEi66lAwFDlpc%2B%2FflKazF322ajadQD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b8176ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg
200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d06c328e22376fae7f42a6354059e1ee
0ea733d3c13ae0894449a8b8c5b5076adad4252a
e2559cc8bfd2591633f94bca82080a744dd3d9a1f423207c316242666e8f83af
GET /upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 10535
cf-bgj: h2pri
etag: "878432b377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:17 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zeIg8aLUMe2uINAGGRXO6p2xT9MK2FyIhUMM0aYVQsq%2B2umPtczZSinOYTuOEBYrdNS%2BOiOY4etezbqiYKReagRwhtCPEUsu3X%2BAUu6cE6VWjibgxz4RUxw48b0Rs%2F9wEsID"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b8276ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg
200 OK 8.7 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f106414f2147b15cd1ad6f14d32eca5b
a31e44fc094210f6277754ca2ba6029a8acd579d
6d0206c36087c19c6218b5138e93129a868e7ca07440b7459e2b208e1879fdaf
GET /upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 8720
cf-bgj: h2pri
etag: "6ab94db577c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:20 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3748
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w7V7Z7VuGz%2F%2B6%2Bkfgp4USPamHTlEFj840iLeJ66j0ytndQhEYqI96NKTontN3kZZX0vExpCAt9MZ6tEF2AmLd4X6kQNeGOGWGgTwIi884DwynxN9Ee7Xzoze1jmywmDkoJjF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b7876ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg
200 OK 9.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ad97440bf656f930e7ae1b57b0d2d3f8
a6a2995e15d795d167d6bc795ea6bcf0aaad02c5
8ac9b2a7b2ab3c46b1ecfe9fbeb5449a797c13e5b3ea6b4349363fcf46b19088
GET /upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 9902
cf-bgj: h2pri
etag: "2f753fa76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2F8wMgIOHgPfXAeDjmaTY9o9JsmkTymlmYLo%2FKQec8AGWlLnmfePPwwFc0X%2BMFWpWudxyE%2FPpQ72ZWrVWtYA5eGy3qskl7uFeBYfaWMxEXeEIfLuDa815q%2FKlt3lt7mB9cFD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b8376ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/
200 OK 5.9 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash b19d882732101a50215ed4359044b459
58e835ef7256eeb96048e5435d6d2802a4c4649e
9844b78cac4f42297eb7ae47323613579a4601bb9351cab66654c0120015c5fa
GET / HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.168youke.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 5856
fmlb.netlbtu.com/upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg
200 OK 8.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash aa693b608481b6940793e5d374671ea4
fcf1ad1a12546bf5cf576763efa860c051c52bd1
625c8eaf4f9c75f8010a2c4931fc959abcfad3bb4f8a8dcb91eb709b67cb5dc6
GET /upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 8316
cf-bgj: h2pri
etag: "6fc369d377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:11 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3251
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Zo7LbCP48eJn%2BImPEBlqLMaK4LmGTSm0JMfsDZhuMPvDCmEzme8PbGQb2LQvYgK5qR85gVK%2F5Hl2JfW9lbX94J8tfxtvN%2FvA6em%2BQB1VRXHgGZvnGPeS%2BzUdP3%2BppLOGFxF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f5b7576ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg
200 OK 9.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4d472cda79c89dbd226dbfd0d0a633b4
f94512b27d68388ceee44bd2e3aa2cddb4601f01
2bb6b16b4d754b8bf1f659d4fef02f551ccb4045a754d4d92c1ab415001eb7d7
GET /upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 9932
cf-bgj: h2pri
etag: "b7f1b9976c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:23 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uh6ZM6ZYAYhFHKo84DbY8kHC%2Buev6xJAP6%2FLeMQoJlutZSsfPxun4bkB7x02GIroOFTM3qeyFc%2BBbgrpjvcXLOqGIIEt7fIE3mQPCZfi7Xh7GXseIjUQcIiwTgUkWp8y2ucz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bba76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg
200 OK 8.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9204e98c69d4684810e606d7b813d0d5
6d9a9d3708250c1e51922af80368702f329fe0cd
7a67d268ecd53295205c3b8cc512a881a1fe742d99860d80b9606403570db6f6
GET /upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 8190
cf-bgj: h2pri
etag: "24e32a976c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:22 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uxorRqDf%2F35Kwq89f5c%2Bap3IaSEMdIaatzCqROi94078nJ6W9sXAYUO7q%2FwB6a%2B3Ip4u3KkBERT5QwBlwLwC0dUgNM379Q4MWfBJgKnp8QjzEwjV6KqEG92oRiR5ykDYWNID"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bc076ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/q1o4bihtjx41307q1o4bihtjx4211535.jpg
200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/q1o4bihtjx41307q1o4bihtjx4211535.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7dd079cd1252b97a7c419ff368a7c8f5
7445171e1612dcaaad3717edd9197c554a3e33d0
1dbd8f7e33f7f920efd32f4a87b443eb6cc0e56c7fb9425015ee573a87fa5182
GET /upload/vod/2022/09-07/13/q1o4bihtjx41307q1o4bihtjx4211535.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 10488
cf-bgj: h2pri
etag: "1f3ed3b577c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3748
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BStRqIxmCiwqgxdH6Uxf%2BBkrCYeT6S6taA0VHQYLsXEwoMlT0flirRhmZjZR7pHdxwTsmBTW3MulTo%2FoBEmMfYY1B7RDpHEh%2FOg70%2FDJKo1NiXU7jZU%2Fl3xJ9A%2BvJqDkdHLX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bcb76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash feaff7cf5a95c7b1ef00da532c821230
4f698f9b936080b67db43d56778338a8596ebb18
9aba86953e8da3624202bbb7d1923798ff9767cad4f7d97718c0ff4525061031
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2642
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 20:04:05 GMT
Last-Modified: Sun, 18 Sep 2022 19:20:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
fmlb.netlbtu.com/upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg
200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9e6469b8504db4fb8a3517a0e8c51e4c
8ac09fd14dd49537951bfcbe846dbe6357e8971a
3e83a49d39868c14f56815ea4b8b206e204ae19ee3dfcd14adb0533beb4600d3
GET /upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 10208
cf-bgj: h2pri
etag: "9c6c57d277c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:09 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bC4lgG32Fzkk0wY9dPMsFC5jy2BxSAtve2%2BOWhsdY1ttSeQnwJi8MV4qzoNAAlUBbO%2BcI4NZQVW3zrSfob1rniIzAOgoPhZ0C7L1BYntgdIWv%2F9i15ihFfwPKkIM7DC0ZO8r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bdf76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg
200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 454ee1ac19092981fd8e96bab533fcfb
302ab66716bbe85532d35def00830a73e9810bb4
51af109a76c71f36a522bc5eaf966d9984b0d166621d8cf61510329ab84ee919
GET /upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 12352
cf-bgj: h2pri
etag: "3d6318fc75c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:00 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Tgvvw3%2B8xxvjz%2FgI%2FMGQ650vsSizIXO%2FaWoD%2FoQB3cz%2Buv0luwZGHVdEKochwZOHsHktTQWu480h1WNT8UFTzxFYedJWI5AMQCfJVMWK%2FTc9tGi6IyzJ7RuRAbbqCVQhNcG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bc776ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg
200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6f94e30c727d278d3575f3246ec329a2
31928d51a7892f354c9d03f6e767e06d2c4db77e
a56018bf4adc882e32ec42008ac59cd049b50f6e2517f7edd84a7fac45e9695f
GET /upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 11216
cf-bgj: h2pri
etag: "90e5d0a76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:25 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OptETYXcF7y3XkGina9TT9%2F8eqw7NkZFL2IO%2FGG0SqmUTD0BkputwAt7Q8i4vqUbGn7CYftM65wTcsBpPBF6xJqE4cYnmiUlMBE7zsXumsKXoNsVZaf7B9uT4gQR70Brlfi8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bd876ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg
200 OK 6.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1ad4b31ad1c424879d84e4ba999dba82
0c138ab9d68acf1511984816121aba4dbc660c0d
784849bcf5901415811ece90aefc69277e787963b58923bbd041f86213c9d93d
GET /upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 6154
cf-bgj: h2pri
etag: "ba1b76fe7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:51 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iSJ5R6cbwp6u9A3n9TvbNQdlHSYCoOc85hZyj8QEUjpV35bQsWBr3jgJo67QDQXcEIue6p8y26QZm1w7OGvy9xMTJOc5f9179kJO2IZfb7NIVBZZMUYWlY2OtQIHP6LIGJNO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bd376ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg
200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ca4b3f2903ef4433c7ab885a04726847
cbfa6636abc2a692f285a6504209023edcf080e3
8e60248e74afcb1a19ed134b7766cc2c86bde88843cdbbc4233952f90268c3af
GET /upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 9611
cf-bgj: h2pri
etag: "d51eefd7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:50 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cm0Ebg5O36yo4zW%2F5mJayVZADJEqaGmFhMlWivmBBCwQ%2BdfbFjFKeRpWZ5m8Az1zKlvD8f46vybxbcQZEOFL%2F5FtgoDCrH8KTuncdWPjYhoS1xtflc4J2NlpMK8RyA63TxP8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bd476ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg
200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 46746c8fb900de924ae65192f01f617a
02621393d1df5f12960002bf962889579dbf2217
fc0c9c98cca0009b63a00eb26c31e075eca511bfc9761ccf00922437a2ab48c8
GET /upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 9269
cf-bgj: h2pri
etag: "ec747fb76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:26 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bq2ZqLyQosuVIrW2tKMSsrTzuCDWiwMwYZkMZaCMndWZ%2By3tJtm%2Bgq05zeUYHIF48g9JTuLgwJHy6OtsAPRHROuUsoUE8bmV%2FHS8Jd3PWkxB%2By%2F05TalF1k5K4VVupGoM9O7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bd576ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg
200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash be5459c67f79d490bb930363863288d8
0e47ee21289b8a1ad7d1cf54f0531f8a15e9bd92
4288f99e1361c0ef9085132f7050848483b0c67855888206b511acefc6bce6b3
GET /upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 9258
cf-bgj: h2pri
etag: "35899f07bc2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:55 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3527
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zzHUAwj%2BIfD5GkTOwiGsv%2FZGbgspwS16UkQdzLW0R7fsPjOid9YlP77TMzgJb2w2IbVq8CjTyParqCbo1MlQIqrgGJn7q%2FPIjK5v04GJ%2BZraIHeb5raP1Hw3KVygfOQ1CxdR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bd976ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg
200 OK 8.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6b92d38c61f41a5a2dd70d7f314e9cf0
2d49d318d294c145af2eda5bb95cc8befaf9edaa
136e4be0a41b43ac9eca7106ed2c81f6aca8913751cdd6a049bb92f740bf45c7
GET /upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 8896
cf-bgj: h2pri
etag: "a361507bc2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:54 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TwQk8%2FTXmeQx7TrNZp9Bou5uB3uB80B6f40BIcr8A3Cs946jGPwwSsr7AFZWXMbShT46ILHQLIN1xeh8uuTPaW0ltHvSNU30EAIWxX0C8vXM%2Bv7e0DjohsXHcWJjd3fMyPY3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bda76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg
200 OK 7.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 38c1547789f05c6ce1cd2efe38c3ac08
d087ec9bcc278189e607f426b23c30f89bc85d27
4a466ad4cd847a119cc5bb58576663e22a56b06788546aab8e6208d2dfacf927
GET /upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 7366
cf-bgj: h2pri
etag: "33938fff7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:53 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SmRXYJ3ZvEaX%2BH6FwhNWaGzxEdlIHddUKygQ6eGzRdbFz1wP%2BJHBSjsxgdarq0V0A79Er0QYK2fs4LRQR1%2BbZyf3chLhGHX6ldruvfsrEkiEux%2BQ5Xb3ekUHAmfqKSvDFaOh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bdb76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg
200 OK 7.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 39a994d69d9156945e1f6b663cc44d50
b86ce9643daf36d6cb67ab5eac55f1b8d2f7736c
5373a333c07412b600c2003d0f2129021d10251558ea1cb4691dafc24c9e7bcc
GET /upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 6980
cf-bgj: h2pri
etag: "37a77ff7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:52 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MN0bybiHN0709s6MlPiy0VDUETSaVTfaBmdO%2BSJZqqvGxwKD6SbCQs7c7YypRoJXihtzJVTjtwG57XLG%2FMUVt%2FN1Vx6V2a5V2rFNDm2kY5l7sO%2Bqn5v43SyogBFho39KJrKv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bdc76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg
200 OK 9.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash abe3a22559f3a446376ffdfc5910b301
1eaca4d6bd46f8aaff5a5119f98b2010ef1f1937
2951bf4233224514476d183387fb21f8360e54b850feb10b4a2c7f1a9453d13e
GET /upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 9756
cf-bgj: h2pri
etag: "b013ddd277c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7AlPH8GG8LCG3N17A%2BnPdZJUuf415Yea2e8qdOj99qScNd%2BLXXKx4aaU34%2Bzx2FJGxPHsapQAxdvqaAVhEetS4JHv7APugWk96YPYRj4xXaexBztd1IcnLJbyyvK%2BPIdRpuT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7bdd76ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg
200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e9674310eadd5542ec475c0364c05dd5
3fe64e38b1075b73bfd5f6f1d84f981f4335ce42
39c25b2b230e63682443f00d4f2443323650b635b898f6e66afc53a3df5d8cfd
GET /upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 10429
cf-bgj: h2pri
etag: "22e8d1d177c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:08 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vo9LO%2BWzJMkP%2BjVZuzSeCKzIqJeSnHloTbGmZBIhPBMYm5ukcQFZhVxDvhG89zuWarHHTS3CEBWJIT1jsIgFJT6yKH2rgN3eSvdsis666stE%2FiTT3kdgMHYROIfxATNRw2GM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7be076ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg
200 OK 7.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 61f2c7fdba6ca013e309ee65934bff40
46447f0fcfeac5c363cec337a5739eb1a72c8f92
b318a31ca0beb5a574c92103dcec62e8b037d9228e1e4af86e67bedaa9e7a52b
GET /upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:05 GMT
content-type: image/jpeg
content-length: 7318
cf-bgj: h2pri
etag: "639147d177c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:07 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sElg6wW2qxjE%2BgZ8ArR1KmuiIUxc8mQD5eL9xEFkz8ZJj9119GU5IvDoRL6UTPFZ7ElyyfA%2B%2Bcb%2FjyMlMc5R8BEjWtDyO5F3CaEFZoOvikbdnEiJ5xuB67v6aboHk0f2wPPZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb04f7be176ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/css/ate.css
200 OK 4.5 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/css/ate.css
IP
File type ASCII text, with CRLF line terminators
Hash 1164a38c5186eff1838f351d96dbd192
1f5c06f7969ca9602774591594b1d4170137cdc3
fec2bebf191e9c67f3ce3234909acb71fa272057962f230dce334cdfd514b3e2
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 24 Jan 2021 07:28:36 GMT
Accept-Ranges: bytes
ETag: "06ae58622f2d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 4498
156.244.142.190/template/m1938pc/ads/xx1.js
200 OK 996 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx1.js
IP
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 0f146ee270d1283647db0646c35ddd82
d4e2bcdafec688cb5240e174468f83456c96ab00
5faa5035b3c6c7127ce772cc1e64af8455caaf49a7cf4727affa416f17e908e8
GET /template/m1938pc/ads/xx1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 08:21:11 GMT
Accept-Ranges: bytes
ETag: "80f5af716ecad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 996
156.244.142.190/template/m1938pc/ads/xx2.js
200 OK 655 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx2.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2c315b758e897bde5fab815de9a27e30
6cacb6d609a7e024779101eb5324868eb9906099
dfd9598680bd32f76c04df53addb22f0618924caef46fdccedf0040aef94e8f9
GET /template/m1938pc/ads/xx2.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 08:21:11 GMT
Accept-Ranges: bytes
ETag: "c24519726ecad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 655
156.244.142.190/template/m1938pc/ads/dh1.js
200 OK 702 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dh1.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash e5f397c03ba1d4aa4f24b2635cb6a6b9
9d97e51f24af73b2b539b2da996103d143448bf5
2586e8041343ef44424fd4c73969361fe2109a13765c14f07a8be2f92406d1f6
GET /template/m1938pc/ads/dh1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 05:18:47 GMT
Accept-Ranges: bytes
ETag: "fb9ad3f654cad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 702
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3272
Expires: Sun, 18 Sep 2022 20:58:37 GMT
Date: Sun, 18 Sep 2022 20:04:05 GMT
Connection: keep-alive
156.244.142.190/template/m1938pc/ads/dh.js
200 OK 558 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dh.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2eb0eb2dea379022d1393108ae11a497
4c678e34f273d7f946c173cac103aa6572be622f
23db644711719711a80603f86ac6ee7ba1aca934826093f0cc77ef46e98798b0
GET /template/m1938pc/ads/dh.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Sep 2022 11:49:59 GMT
Accept-Ranges: bytes
ETag: "808d2148f9c8d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 558
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3272
Expires: Sun, 18 Sep 2022 20:58:37 GMT
Date: Sun, 18 Sep 2022 20:04:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3272
Expires: Sun, 18 Sep 2022 20:58:37 GMT
Date: Sun, 18 Sep 2022 20:04:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QgOb-hraq20XpHk_0Cyz2UMxaIEjP8ilIXt2VuhiRJWJAOG5EuAb5A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 05:49:05 GMT
age: 51300
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29f4a52fb629dce4ef8038d4df7ea58a
4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0
32cee35b22110b83738f49f49edb6efcedb54fe793d5ccc900004e16e3fefda3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5827
x-amzn-requestid: a30d5a61-ccb2-4582-8298-1abb79830dda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7VSF21IAMFvGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63257288-5b79117f185617fb0f37a845;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:08:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2cYYmknnm5GHRMA69N-dqXXKHb1-tfN1PuRYB5xxtRJK5Gk3-PO0Bw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:16:15 GMT
age: 46070
etag: "4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fa6db45-871c-41e1-be1d-bc188fa9419b.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fa6db45-871c-41e1-be1d-bc188fa9419b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2e5759fd404a039955868b121bbd075
04fb3179255ba5ec897ffc4581966945cc9fe2ca
42623d1a0f52682db915b075a894d8cd18f2b53efc7815304b0304841536cf35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fa6db45-871c-41e1-be1d-bc188fa9419b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8005
x-amzn-requestid: 2ce67f7f-9a03-4f4d-b06c-ec0de59c2854
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6KhH9PoAMFh2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263d76-6aeeee3217540c5863913912;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:34:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hHE8PD-PBif2YjztVe4A08wILChFqRvVUrJD-XScWKENd8X0_jornw==
via: 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:11:46 GMT
age: 78739
etag: "04fb3179255ba5ec897ffc4581966945cc9fe2ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9a9211e94d6aa2429e9663ef317707e
ac0d1af96508d026f9a1252d358660bd5671f9bd
36663b67119ae58b665e43d86b73045472cf23d73bf2c981754f479989690791
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5448
x-amzn-requestid: 3b63d209-af92-4d64-866a-d8f677aa62a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn659H9DIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263ea5-30e7f8a32603ba70671addec;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: JKenU-KwXFVEu-tZnc_yoDis5Lt-2tY0RcjH7ZT592hqp0tIUF25Lg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:01 GMT
etag: "ac0d1af96508d026f9a1252d358660bd5671f9bd"
content-type: image/jpeg
age: 80104
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4-H_LbXRjS1PJkVz9OIhwsaPfu8ZlL98zTZG--hdmij9Tc6KtmNSFQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:51:29 GMT
age: 79956
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56ade9172e883c777dd974ca879bceba
b2aaf019e083443a6404c262206ee2e981d3165c
c8407ad191143d2d947464b357d8426efb334cb165c4fa5ca01573d8f7ca7b76
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5133
x-amzn-requestid: 01f39c0a-c86f-4057-a505-20200819203c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioKkFrFoAMFhMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420a9-5821f44144b61475180ec961;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:07:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mDe4BYbMkqkO3wq6onH6c_YOfWn32Z4L9t-QW_5mwez4bcrVkrQBuw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:38:13 GMT
age: 44752
etag: "b2aaf019e083443a6404c262206ee2e981d3165c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/ads/1.js
200 OK 477 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/1.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 4165a9ea79da47e086c5104e0ad7076d
9fda2d145afbaa4560d6cb9069a9462537672d97
7fd5b52d2b6d6aae4a10f502d192aa0d4818d87ccec19d95fd609c1e7f826950
GET /template/m1938pc/ads/1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Sep 2022 19:09:57 GMT
Accept-Ranges: bytes
ETag: "dc467bf36c9d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 477
156.244.142.190/template/m1938pc/css/zui.css
200 OK 15 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/css/zui.css
IP
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 48c376278eb9da985b90bb1612dbeee1
4d755742285a8bc38f9c73b3a5976c6b381e3c32
af7cb37270a26d66dd3bb89f42d9c122bb2a1bfe9f6fe076138d9864c7193bee
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 27 Jan 2021 05:34:18 GMT
Accept-Ranges: bytes
ETag: "0e972e6ef4d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 15351
156.244.142.190/template/m1938pc/ads/xx3.js
200 OK 0 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx3.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/m1938pc/ads/xx3.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Thu, 30 Jun 2022 14:22:56 GMT
Accept-Ranges: bytes
ETag: "de5c6e48c8cd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 0
156.244.142.190/template/m1938pc/ads/dl.js
200 OK 505 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dl.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 772113e53cc89ddbf3ae23dfe28f65d4
6440b765ef2dbc485bf7e433554b0b923da727ba
5f5b37a6179c09b01198a144a5478ce3ef9dcff5db8bce21f1b5ffd53c0dffc0
GET /template/m1938pc/ads/dl.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 05:17:46 GMT
Accept-Ranges: bytes
ETag: "4583bad254cad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 505
156.244.142.190/template/m1938pc/ads/tj.js
200 OK 207 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/tj.js
IP
File type HTML document, ASCII text, with no line terminators
Hash 04bb81185666d1c9d8a2493a4e5c2b71
5232eec6e742db8be8556571e72ab7dbaed474c3
29d87524da7c400e3a59d61db87572bab9f7e1d8ddd145aabedc996b150053e7
GET /template/m1938pc/ads/tj.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sun, 24 Jul 2022 08:56:23 GMT
Accept-Ranges: bytes
ETag: "7dfedb3f3b9fd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 207
156.244.142.190/template/m1938pc/images/1.gif
200 OK 254 B URL HTTP/1.1 156.244.142.190/template/m1938pc/images/1.gif
IP
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/images/1.gif HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 13 Oct 2021 12:55:54 GMT
Accept-Ranges: bytes
ETag: "7f8d6aa831c0d71:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 254
156.244.142.190/template/m1938pc/images/video-mask.png
200 OK 107 B URL HTTP/1.1 156.244.142.190/template/m1938pc/images/video-mask.png
IP
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 24 Jan 2021 07:28:42 GMT
Accept-Ranges: bytes
ETag: "b0b58b8a22f2d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 107
156.244.142.190/template/m1938pc/images/video-play.png
200 OK 1.6 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/images/video-play.png
IP
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 24 Jan 2021 07:28:46 GMT
Accept-Ranges: bytes
ETag: "4081698d22f2d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 20:04:15 GMT
Content-Length: 1567
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash f2cc6a6babd3818355d1ae8a2b53986a
c3f2dd2b00268be45eb9fa3cc8e4dcc1eac18ffb
bf4e8a2c97e8bcc2d9a984bf6bf081bf1d6fb4d057bbda6e37619c2f2796ca39
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "BF4E8A2C97E8BCC2D9A984BF6BF081BF1D6FB4D057BBDA6E37619C2F2796CA39"
Last-Modified: Sun, 18 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16457
Expires: Mon, 19 Sep 2022 00:38:23 GMT
Date: Sun, 18 Sep 2022 20:04:06 GMT
Connection: keep-alive
666999123.com/tu/267x160.gif
200 OK 40 kB URL HTTP/2 666999123.com/tu/267x160.gif
IP
File type GIF image data, version 89a, 267 x 160\012- data
Hash a0871ff9ae597a9568512e38903b1c2e
5d2906013451d67aa270268e8780dd8756bd0473
5dd718fd89e147d5ea3ae5044656b7dc8881a889b49583756ab46c6448480236
GET /tu/267x160.gif HTTP/1.1
Host: 666999123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:06 GMT
content-type: image/gif
content-length: 39782
last-modified: Thu, 25 Aug 2022 14:56:23 GMT
etag: "63078d97-9b66"
expires: Thu, 06 Oct 2022 07:17:19 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1082882
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ofuX99tGd2TeVZwZN8e0ms3hI7e%2Fgy%2FC5NDjVDnrSmL1q6Bt4MjLkdiaXTem5llAE97f%2Bi5AdYbxpMxDxiGlkW30NF0sfvnBuyg1cYqXWXhKAWNKNe3SPOQ%2BsHz%2FkKG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb0530cf2b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash f2cc6a6babd3818355d1ae8a2b53986a
c3f2dd2b00268be45eb9fa3cc8e4dcc1eac18ffb
bf4e8a2c97e8bcc2d9a984bf6bf081bf1d6fb4d057bbda6e37619c2f2796ca39
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "BF4E8A2C97E8BCC2D9A984BF6BF081BF1D6FB4D057BBDA6E37619C2F2796CA39"
Last-Modified: Sun, 18 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16457
Expires: Mon, 19 Sep 2022 00:38:23 GMT
Date: Sun, 18 Sep 2022 20:04:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aed2792ccded7dc027600d86680c2a5c
2ace3221b7b30d9840514b2bfeb7ab062afaafe1
e6b63cc200ae008f0b56cab1d8c1dee6f77060e20a060499c7403b5343f649b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6B63CC200AE008F0B56CAB1D8C1DEE6F77060E20A060499C7403B5343F649B3"
Last-Modified: Fri, 16 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20408
Expires: Mon, 19 Sep 2022 01:44:14 GMT
Date: Sun, 18 Sep 2022 20:04:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d530434ad61b3267ca2af0df0ae8f5e7
04c1b5043e7ca7ea7d589775e4233b487cfadaa8
0c20f667c32a0c9fd8d0ad0f129d3989bd6a6bb9703b492722d2a91fb0e3fe80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0C20F667C32A0C9FD8D0AD0F129D3989BD6A6BB9703B492722D2A91FB0E3FE80"
Last-Modified: Fri, 16 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3375
Expires: Sun, 18 Sep 2022 21:00:21 GMT
Date: Sun, 18 Sep 2022 20:04:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a17ba320a63135c67f8c466e2a5e75dd
0d44fcde357467d606336f7869484eae052af80f
f33b8a55443c8953a98959758f99ca0ab6d0baf4269c4604397b981ba6a2d349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F33B8A55443C8953A98959758F99CA0AB6D0BAF4269C4604397B981BA6A2D349"
Last-Modified: Sat, 17 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16538
Expires: Mon, 19 Sep 2022 00:39:44 GMT
Date: Sun, 18 Sep 2022 20:04:06 GMT
Connection: keep-alive
kveii.com/dc0247b33019ed0ca09c321bb6fb4656.gif
301 Moved Permanently 162 B URL HTTP/2 kveii.com/dc0247b33019ed0ca09c321bb6fb4656.gif
IP
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /dc0247b33019ed0ca09c321bb6fb4656.gif HTTP/1.1
Host: kveii.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 18 Sep 2022 20:04:06 GMT
content-type: text/html
content-length: 162
location: https://acoozza.top/dc0247b33019ed0ca09c321bb6fb4656.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 0f9bf0f8f9e7d8d231ace960803470df
30d773a389d01ec5638785fb9d843e2480b65393
71824923b4922e933a61e8992868c36ae533202e9207b5aba668a1bc7923f430
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 20:04:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 17:35:25 GMT
ETag: "30d773a389d01ec5638785fb9d843e2480b65393"
Last-Modified: Sun, 18 Sep 2022 17:35:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ccb056bc550b45-OSL
acoozza.top/dc0247b33019ed0ca09c321bb6fb4656.gif
200 OK 796 kB URL HTTP/2 acoozza.top/dc0247b33019ed0ca09c321bb6fb4656.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 796 kB (795791 bytes)
Hash a0fc10963ea2b912c10e39e46df5cd72
fa9e7953732f63170e38ed2dec8e945ba6f083e4
7ba4e934ee23a0c156e0b14b61757398bfff3e6c41b4b1ab72d803e39169b469
Analyzer Verdict Alert quad9 Sinkholed
GET /dc0247b33019ed0ca09c321bb6fb4656.gif HTTP/1.1
Host: acoozza.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://156.244.142.190/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:06 GMT
content-type: image/gif
content-length: 795791
last-modified: Wed, 23 Mar 2022 06:52:01 GMT
etag: "623ac391-c248f"
expires: Mon, 17 Oct 2022 23:00:42 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 75804
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pew7Rfj7p45vloS7EbrYtueU3lWd%2F9zoNXPDexvC6mfMFvUwS26r9g1NLB8BNpD58hoZ5T6LvLIHYDZwFTZsjqW8cuGlnkudKGc4dq4BQPNXbXMA%2FLlu1XafgkmY5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ccb056c871b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tvpbhvr.com/96x120.gif
200 OK 88 kB IP
File type GIF image data, version 89a, 960 x 120\012- data
Hash 9f47403a1048e94ca7a402b4f16383a1
facb5012af395501b990de13f256cf7f412f9444
3fcd8afece27d73f3afad475bd9e7bea853fb690cafe11e754a0fc14f7e0e0e7
Analyzer Verdict Alert quad9 Sinkholed
GET /96x120.gif HTTP/1.1
Host: tvpbhvr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Sun, 18 Sep 2022 20:04:06 GMT
Content-Type: image/gif
Content-Length: 87796
Connection: keep-alive
Last-Modified: Thu, 07 Apr 2022 11:25:26 GMT
ETag: "624eca26-156f4"
Expires: Tue, 18 Oct 2022 09:26:49 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Via: 154.83.27.178
CDN-Cache: HIT
Accept-Ranges: bytes
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash f98b443bbf4cf2bc581f5f0651072862
c72a0f0f54b5c6aab3c86561c11a9b7256cc42e7
7068e3c2172612a4c3c5dd8ec82bf26c99eac400eb8fb1d04f8b404e8a471df6
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 20:04:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 17:02:57 GMT
ETag: "c72a0f0f54b5c6aab3c86561c11a9b7256cc42e7"
Last-Modified: Sun, 18 Sep 2022 17:02:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2019
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ccb0573cfb0b45-OSL
s2.loli.net/2022/04/13/UVtxe3bBIg2Efn7.gif
200 OK 121 kB URL HTTP/2 s2.loli.net/2022/04/13/UVtxe3bBIg2Efn7.gif
IP
File type GIF image data, version 89a, 960 x 120\012- data
Size 121 kB (120952 bytes)
Hash 8b1ce22d19b73e71ec05f04491df7cae
101ed504920b13424231d6fb3540fb7dfdba69e3
5a7a72fa04186d44d08de8b590fcf1644ad8370bc65007e51ba9300af2541dce
GET /2022/04/13/UVtxe3bBIg2Efn7.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 20:04:06 GMT
content-type: image/gif
content-length: 120952
last-modified: Wed, 13 Apr 2022 10:25:19 GMT
etag: "6256a50f-1d878"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p4x3BF9SgNcrmEvAj5oX7ncThkJ%2BvhMGjF0hdBAltAi7CByZOGMFrQVN11JQVXJVpTLMAJTgMzl%2BX771E3bESxcLK6uVUub%2B%2B4Ij5uQswKCilCuGTR58MKm3fHok"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ccb05209ef0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pic.picnewsss.com/tu-2022290039/960-120.gif
200 OK 369 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/960-120.gif
IP
File type GIF image data, version 89a, 960 x 120\012- data
Size 369 kB (369108 bytes)
Hash d3f9f17ed067ebb6ee0792014656333e
1f5593ee409f13d7734fd538a9a779dbe469a7c1
69da833d60a8ae1c0d5f64a25dfb6b42579ac7d20046a2db7c2be4256b601b68
GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Sun, 18 Sep 2022 06:56:14 GMT
etag: "1663484174"
expires: Tue, 18 Oct 2022 06:56:14 GMT
last-modified: Sun, 18 Sep 2022 06:56:14 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 369108
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash b5d26506ede419fb3d3990c68658f290
785c9daf931aff1bf2bccf7a2a9402fb44ec1c01
837591176cdd036c7cb8d635da0dcb235d635ced3feb01c8f02a4e621e3b8ebb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 20:04:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 03:06:37 GMT
Expires: Fri, 23 Sep 2022 03:06:36 GMT
Etag: "785c9daf931aff1bf2bccf7a2a9402fb44ec1c01"
Cache-Control: max-age=370348,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ccb05889f60b49-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 93ec4180af6856353fa772e9c49bd2a5
ac1a6bffc22a46174977642bf6b3a78fb1411fcd
391b1bd14b60bca7a68c34d8d853cf7ec3cc25616f24a52abb8e0c13a0ccc63f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 20:04:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 02:35:21 GMT
Expires: Fri, 23 Sep 2022 02:35:20 GMT
Etag: "ac1a6bffc22a46174977642bf6b3a78fb1411fcd"
Cache-Control: max-age=368472,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ccb058bc750b3d-OSL
jcyunk2.com/dc0bcb706fb440cdaade3c0b609ead2b.gif
200 OK 128 kB URL HTTP/1.1 jcyunk2.com/dc0bcb706fb440cdaade3c0b609ead2b.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 128 kB (128460 bytes)
Hash a27db76daea20381e7603b29173315ad
de92fdc3f51b1ddd7c047d77f73b262aeb37a642
ddf43ab0e61b6cd25843e3ddf116b65e50e0eb4df11f4cddd813502d64a91844
GET /dc0bcb706fb440cdaade3c0b609ead2b.gif HTTP/1.1
Host: jcyunk2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62554ac8-1f5cc"
Date: Sun, 18 Sep 2022 18:57:14 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 12 Apr 2022 09:47:52 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-22
Content-Length: 128460
rrtwda9.com/946eee7be49243a49664096dddb44412.gif
200 OK 221 kB URL HTTP/1.1 rrtwda9.com/946eee7be49243a49664096dddb44412.gif
IP
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 221 kB (221037 bytes)
Hash 76d11f9f0142237f14743e2281f89cbb
7b79920e1fa187351ac3822530b786e61dd29e93
fb4831054a446e499446c681e3cfdc687e707414605e037616598c3ab51141e7
GET /946eee7be49243a49664096dddb44412.gif HTTP/1.1
Host: rrtwda9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62554ada-35f6d"
Date: Sat, 10 Sep 2022 05:22:34 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 12 Apr 2022 09:48:10 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-30
Content-Length: 221037
p.qlogo.cn/qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif
200 OK 47 kB URL HTTP/2 p.qlogo.cn/qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Hash 2b9c30b086d03d90a45a9174aef7b408
e87dbe76669e2f402826dd598bb047d793b1e20c
f1eb3044b464fb4b4b8f3e081295bc19cc4cddc9361adb34ad7fb73b93b25de6
GET /qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sun, 18 Sep 2022 20:04:07 GMT
content-type: image/gif
content-length: 46855
vary: Accept,Origin
last-modified: Wed, 13 Apr 2022 16:09:33 GMT
cache-control: max-age=2592000
x-delay: 16898 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 46855
chid: 0
fid: 0
x-nws-log-uuid: 4a295560-7524-4bd3-987d-d8454ae42965
X-Firefox-Spdy: h2
pic.newtupic.com/image/dongfang.gif
200 OK 260 kB URL HTTP/1.1 pic.newtupic.com/image/dongfang.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 260 kB (259681 bytes)
Hash dea56e9bf21a9d966dc144f5ec9e1db6
40d6d3f4be8ee4f8d4f2fe3c3264ffcf0c3a4546
27d0b3ff31e08d30f85fe19faf10a061a7e884d769702cee66e49fc30e1c8b38
GET /image/dongfang.gif HTTP/1.1
Host: pic.newtupic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 20:04:07 GMT
Content-Type: image/gif
Content-Length: 259681
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 09:05:14 GMT
ETag: "632047ca-3f661"
Expires: Tue, 18 Oct 2022 19:47:56 GMT
Cache-Control: max-age=1800
Strict-Transport-Security: max-age=31536000
server: ****
X-Cache: HIT
X-Cache-Hit: edge
X-Request-Id: 72ccb83ec1ade82e5c04e3a05cf63142
Accept-Ranges: bytes
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X120.gif
200 OK 212 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X120.gif
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 212 kB (212323 bytes)
Hash 1e7356e466a72b7c5d137501da414a9e
0ed2f34eabe2609bc15e05bf3e4a9d598519404e
f93680cd55fe1803408a139984dbe3e18ea2e9c6b184ab8ce353a68dc17878a7
GET /gg/960X120.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 20:04:07 GMT
Content-Type: image/gif
Content-Length: 212323
Connection: keep-alive
x-oss-request-id: 632779B7D14BBC30353CB349
Accept-Ranges: bytes
ETag: "1E7356E466A72B7C5D137501DA414A9E"
Last-Modified: Sat, 17 Sep 2022 09:20:48 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14666006998441618956
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: HnNW5GanK3xdE3UB2kFKng==
x-oss-server-time: 1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 257f4d8e6f4fdbd6f542fe8d2c357417
917f3c69a2c2e659b978781324bf3e648d4136cd
062e470f2540f2bd614713537f02e7291e62446155fb5391d1465cbb8af3f82f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "062E470F2540F2BD614713537F02E7291E62446155FB5391D1465CBB8AF3F82F"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19579
Expires: Mon, 19 Sep 2022 01:30:27 GMT
Date: Sun, 18 Sep 2022 20:04:08 GMT
Connection: keep-alive
u0062.com/62dcd681ac4f493889984a49140653d1.gif
200 OK 238 kB URL HTTP/1.1 u0062.com/62dcd681ac4f493889984a49140653d1.gif
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 120\012- data
Size 238 kB (238079 bytes)
Hash 0e654b6218f5cc6cdcb1910830206233
6e14b10f038e258c753558fdd139913139e642aa
2237d1b3cfcceda996092a426648bd8b9672ec10b57334a64e77262edb529a4b
GET /62dcd681ac4f493889984a49140653d1.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 20:04:08 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 21 Jul 2022 09:30:15 GMT
ETag: W/"62d91ca7-7d081"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc51940d1-99ea-441e-9490-3c863b1c3f7b.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc51940d1-99ea-441e-9490-3c863b1c3f7b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 317bec00e52d8d6e4262f1012671398d
faff41cb28c468d04dd70fe08345eb592e761682
752624baf3cb635f20b641b2cc7e2e7a51314b1f78ffa9967e0670cb85ff7d45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc51940d1-99ea-441e-9490-3c863b1c3f7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6790
x-amzn-requestid: 000e1980-43c3-48ce-9713-879d40672144
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl8TWHjeoAMFTJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63257415-38c78207086a541735461fb7;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:15:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDcEPiXVElasC0RWKmDdB9_L2pd-Esvq_lEGGGUK14IDa-2LmQ5EGQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:17:16 GMT
age: 46016
etag: "faff41cb28c468d04dd70fe08345eb592e761682"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
156.252.154.42
156.244.142.190
104.21.235.174
93.184.220.29
23.36.77.32
47.75.19.91
103.170.15.100
43.154.254.32