r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4229cfe19d214d22153fe5833a7b557a
2439958496306a257d266050b4313b9bac51c871
ddfa83afe45b77b508119ac50488a73c3c49a78fa7a64ad983bd4958e0c7a4f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDFA83AFE45B77B508119AC50488A73C3C49A78FA7A64AD983BD4958E0C7A4F9"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4804
Expires: Mon, 20 Feb 2023 04:23:23 GMT
Date: Mon, 20 Feb 2023 03:03:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff01d28c7e4c50fb1a146b10670170a2
645b169d11cd047eec9bee5e63719104e3776540
715f77554399136f5c4da17a22be9112ca0ee75ceb8b0c5910a005f70e255e94
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "715F77554399136F5C4DA17A22BE9112CA0EE75CEB8B0C5910A005F70E255E94"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3008
Expires: Mon, 20 Feb 2023 03:53:27 GMT
Date: Mon, 20 Feb 2023 03:03:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Feb 2023 02:53:32 GMT
content-type: application/json
age: 587
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5539e12eac82ed8486057f67e18231d3
866778ccdac94dbeff9bc217d4a057079ee71b2a
d82a876ba46480f2caa20e2112941bfb461bdb03e882949b347abb9e8006705f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D82A876BA46480F2CAA20E2112941BFB461BDB03E882949B347ABB9E8006705F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17306
Expires: Mon, 20 Feb 2023 07:51:45 GMT
Date: Mon, 20 Feb 2023 03:03:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: objFpoEoLxTF8cUuOdKPv4k5f3955riI7HSsXX9UYKS+rl5ZvzE7Y8JTBzn4qPf1IHb6YRmI/Qs=
x-amz-request-id: 0CNE5KGQXVG7RZJB
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
via: 1.1 google
date: Mon, 20 Feb 2023 02:51:47 GMT
age: 692
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
content-length: 5348
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
automatic-valve.com/
23.225.19.155301 Moved Permanently 0 B IP 23.225.19.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 20 Feb 2023 03:03:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.automatic-valve.com/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Feb 2023 03:03:19 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, Pragma, Expires, Cache-Control, Retry-After, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Feb 2023 02:51:25 GMT
age: 715
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ffe8651a83ebc937a53bf14c980c348e
8fe2f9219fbe52ee890533f94dd617da679050a4
96149e604ad1e11ab2b100b60e4605b7213f215b0a788506185def01954cb70f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96149E604AD1E11AB2B100B60E4605B7213F215B0A788506185DEF01954CB70F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10436
Expires: Mon, 20 Feb 2023 05:57:16 GMT
Date: Mon, 20 Feb 2023 03:03:20 GMT
Connection: keep-alive
push.services.mozilla.com/
54.149.156.115101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.156.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: okxxbjOcQQ9j9/zPFStZKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3R1iYRP9ogc1g1fwK21DX6lKkVI=
www.automatic-valve.com/
23.225.19.155200 OK 40 kB IP 23.225.19.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash b405f5f6ccdb035d759330d24bb46f2c
feb26338d80c15691228fc0c48cc3b91be8e7607
3b2c0e1df312d8c76766bbd7fd612af2d5aa3cecf51d6bcb8d943cb0a9a4eee6
GET / HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: text/html
Content-Length: 40113
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
www.automatic-valve.com/atic/js/tj.js
23.225.19.155200 OK 258 B URL HTTP/1.1 www.automatic-valve.com/atic/js/tj.js
IP 23.225.19.155:0
File type ASCII text, with CRLF line terminators
Hash 91a4f8db3862a90f0b187f78284b33f4
606275ba88d0b69dc8145c9c3a2f2832290d780d
73ec90550e16784a7014b602ac2e79772f291b87db5cc319a8cbcb54b189f1a3
GET /atic/js/tj.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Content-Length: 258
Last-Modified: Tue, 30 Aug 2022 08:27:45 GMT
Connection: keep-alive
ETag: "630dca01-102"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.automatic-valve.com/atic/js/stui_default.js
23.225.19.155200 OK 1.8 kB URL HTTP/1.1 www.automatic-valve.com/atic/js/stui_default.js
IP 23.225.19.155:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 88309ab2087abf77ffd6cd362306bdc2
a70ca083de465cd44c46d1522ed0a398da145fed
c1ee1083469f5915240855919148a951ad49493d2f0bf6ef62a587715eb727ce
GET /atic/js/stui_default.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Last-Modified: Tue, 07 Sep 2021 04:59:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6136f1c4-11b6"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/atic/js/jquery.cookie.min.js
23.225.19.155200 OK 707 B URL HTTP/1.1 www.automatic-valve.com/atic/js/jquery.cookie.min.js
IP 23.225.19.155:0
File type ASCII text, with very long lines (1266)
Hash 58dbd5fe203290a568f56b67b661e002
76f8bf540b3df5c5ec21957ce3d3f221fa4925b3
7965786891d81a4d8a5e9211cdc4db9b586c1dfb3b9c65d1079ba7999f980822
GET /atic/js/jquery.cookie.min.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Last-Modified: Tue, 07 Sep 2021 04:59:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6136f1c2-514"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/atic/js/jquery.lazyload.min.js
23.225.19.155200 OK 1.3 kB URL HTTP/1.1 www.automatic-valve.com/atic/js/jquery.lazyload.min.js
IP 23.225.19.155:0
File type ASCII text, with very long lines (3309)
Hash 107610b0db6edb28f23fa6225715d7b8
126dbbafb6d950bdad39ed43252935662102c427
d66c70427c0ca29dd4ca5649cb50c2f4c72e03506309ead0bbf9ca0d18d82f18
GET /atic/js/jquery.lazyload.min.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Last-Modified: Tue, 07 Sep 2021 04:59:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6136f1c2-d35"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/atic/js/home.js
23.225.19.155200 OK 8.9 kB URL HTTP/1.1 www.automatic-valve.com/atic/js/home.js
IP 23.225.19.155:0
Hash ef5684d1a2af89012b3f0c76e654ca77
92f8faba52aa48931d94d25d9d368af6a91fbce1
17f2053129817790271a8fce4d6a19dfdc31d322fc5707c7e3d30b82af8b2ac0
GET /atic/js/home.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Last-Modified: Tue, 31 May 2022 10:51:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6295f340-84cc"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/atic/js/sousuo.js
23.225.19.155200 OK 548 B URL HTTP/1.1 www.automatic-valve.com/atic/js/sousuo.js
IP 23.225.19.155:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash d0fda608390c1385bd8747d738cbf038
da6258f944a74650a3fafc95e0367d30ccb97c0b
d906c332510b3d99e40f656c1f471aa3596ac4117e712c2efa88a8c4327cec7d
GET /atic/js/sousuo.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Content-Length: 548
Last-Modified: Mon, 30 Jan 2023 07:54:40 GMT
Connection: keep-alive
ETag: "63d777c0-224"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.automatic-valve.com/atic/js/daohang1.js
23.225.19.155200 OK 585 B URL HTTP/1.1 www.automatic-valve.com/atic/js/daohang1.js
IP 23.225.19.155:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 3d27986ff164950a495daa44b47090b8
a4dc2acf4e47017f32363fd95201faf59cc6b46c
01fffbd3ab41f207807ad0fc376d574607d918b0db07deee0b97eb4e06febbea
GET /atic/js/daohang1.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Content-Length: 585
Last-Modified: Sat, 04 Feb 2023 14:04:01 GMT
Connection: keep-alive
ETag: "63de65d1-249"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.automatic-valve.com/atic/js/daohang2.js
23.225.19.155200 OK 470 B URL HTTP/1.1 www.automatic-valve.com/atic/js/daohang2.js
IP 23.225.19.155:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 8f2de6799369d50e782a282970fd69c0
24f7b0ba1c7a716fd345ab96417f4f6af6397f54
ba0f62f7cbecc6dba74450ba9e4f1756440bb7b5aa71a5b5fc068da4cb759821
GET /atic/js/daohang2.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Last-Modified: Sat, 04 Feb 2023 14:04:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63de65ea-a68"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/atic/js/daohang3.js
23.225.19.155200 OK 663 B URL HTTP/1.1 www.automatic-valve.com/atic/js/daohang3.js
IP 23.225.19.155:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash d1993d6454d83dd6886b41e001c07ebb
630efcca1c9c3c0b5775f1998a32f8f3acd2b778
937cb2f3f3aa3226e28556480b91ef27b05637543d590270e868fcd606f9d91c
GET /atic/js/daohang3.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Content-Length: 663
Last-Modified: Thu, 16 Feb 2023 08:22:42 GMT
Connection: keep-alive
ETag: "63ede7d2-297"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.automatic-valve.com/gg7f5kv/shang1i7d3.php
23.225.19.155200 OK 145 B URL HTTP/1.1 www.automatic-valve.com/gg7f5kv/shang1i7d3.php
IP 23.225.19.155:0
File type ASCII text, with no line terminators
Hash bb96a6d30568208fd3f16612dd2b26f9
81205719388442cdcb0e235ebc18b614e29b25d0
8ee6c3862c21aedd1f92ff37e04cdecb79607162c18b2c1077301473b2fc22ef
GET /gg7f5kv/shang1i7d3.php HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.automatic-valve.com/atic/js/jquery.min.js
23.225.19.155200 OK 33 kB URL HTTP/1.1 www.automatic-valve.com/atic/js/jquery.min.js
IP 23.225.19.155:0
File type ASCII text, with very long lines (32061)
Hash 86e98aeb7b032f4d77c7417cf01804c2
6dac186a17a276a44ab10be97ce7a7e68ea0f4ca
25122f689abc9b607b190b64254c6f70daa217593624db865e0a763d05aa4d28
GET /atic/js/jquery.min.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:20 GMT
Content-Type: application/javascript
Last-Modified: Tue, 07 Sep 2021 04:59:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6136f1c2-14938"
Expires: Mon, 20 Feb 2023 15:03:20 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/gg7f5kv/sxpf.js
23.225.19.155200 OK 1.0 kB URL HTTP/1.1 www.automatic-valve.com/gg7f5kv/sxpf.js
IP 23.225.19.155:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (509), with CRLF line terminators
Hash 56f9d75d65199cdc0516acb896f5605f
dc379389dcb6b1721bfed3627ebc3feabebd6a62
927cbbc47b67e4c87ce7c90e00c8fe925aa79ffbb9eeee4b6a48dbf629f0aee7
GET /gg7f5kv/sxpf.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: application/javascript
Last-Modified: Fri, 10 Feb 2023 11:36:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e62c48-dd1"
Expires: Mon, 20 Feb 2023 15:03:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/gg7f5kv/shipinqiangg.js
23.225.19.155200 OK 504 B URL HTTP/1.1 www.automatic-valve.com/gg7f5kv/shipinqiangg.js
IP 23.225.19.155:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 175fe48a8c49b09f4fff22dc47afa86d
618498a6c7a504cd5a3db7f5ee7f2a4ce724c37f
6c9d6e9aaa365fa9372b9e0f8c83f4b547a6152c346a1174091b99a28124082b
GET /gg7f5kv/shipinqiangg.js HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: application/javascript
Last-Modified: Sun, 19 Feb 2023 05:18:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f1b12a-6a2"
Expires: Mon, 20 Feb 2023 15:03:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/atic/css/iconfont.css
23.225.19.155200 OK 928 B URL HTTP/1.1 www.automatic-valve.com/atic/css/iconfont.css
IP 23.225.19.155:0
File type Unicode text, UTF-8 (with BOM) text
Hash d6f5821d0866c5ef4329519076096849
a006c2ca7493b9cd1954e2cc106fb72e361b8540
b8145589bb54c721a56e293facb2f6204779c4c3824e6b628c38dcf83c76150d
GET /atic/css/iconfont.css HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: text/css
Last-Modified: Tue, 07 Sep 2021 04:59:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6136f1c4-e41"
Expires: Mon, 20 Feb 2023 15:03:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.automatic-valve.com/atic/css/stui_default.css
23.225.19.155200 OK 4.9 kB URL HTTP/1.1 www.automatic-valve.com/atic/css/stui_default.css
IP 23.225.19.155:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with very long lines (310), with CRLF line terminators
Hash ffe86c65a45f4c1ce9f2729525c38610
fd54b3d1657e177e4eb3a0a22c8c9a59fd4cfd1b
e7c6d5d66dd623d6ff41e792b919b42a3508c7005fadb0e19d8ffb94eb9350d1
GET /atic/css/stui_default.css HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: text/css
Last-Modified: Mon, 01 Nov 2021 08:29:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617fa57c-4b1d"
Expires: Mon, 20 Feb 2023 15:03:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2cf1e16ea20c4bcf9821b2bd32f58c47
044dfb62e32383f492ea8f9c41943aa9dcbd7402
c0619985d849b7feeb2bf12c12f30baf1e11535ecca339bdf5810e0a317e445e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 451
Cache-Control: max-age=98555
Content-Type: application/ocsp-response
Date: Mon, 20 Feb 2023 03:03:21 GMT
Etag: "63f1bf31-117"
Expires: Tue, 21 Feb 2023 06:25:56 GMT
Last-Modified: Sun, 19 Feb 2023 06:18:25 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 279
www.automatic-valve.com/gg7f5kv/shouyeshang.html
23.225.19.155200 OK 4.5 kB URL HTTP/1.1 www.automatic-valve.com/gg7f5kv/shouyeshang.html
IP 23.225.19.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 36c8928b203f2da0b92ab817d907f42d
ac1a9bd239d560a896e1c8c5f252ea3b5e7a5eda
6bec8968872942d129f1667940694047c3a2253f24665afaeddd68ca07b852bb
GET /gg7f5kv/shouyeshang.html HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: text/html
Last-Modified: Sun, 19 Feb 2023 08:31:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f1de56-47af"
Content-Encoding: gzip
www.automatic-valve.com/atic/images/150x50.gif
23.225.19.155200 OK 6.5 kB URL HTTP/1.1 www.automatic-valve.com/atic/images/150x50.gif
IP 23.225.19.155:0
File type GIF image data, version 89a, 150 x 50\012- data
Hash 234bdd5dc2570a5ab1dc9c708245b395
375b93c3bc8f4382991d2ff4af446685e429bf2c
77cab73693745ce7a57f4e10d5b7213019939be397f526fd709e759bde032aa9
GET /atic/images/150x50.gif HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/atic/css/stui_default.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: image/gif
Content-Length: 6450
Last-Modified: Tue, 07 Sep 2021 04:59:40 GMT
Connection: keep-alive
ETag: "6136f1bc-1932"
Expires: Wed, 22 Mar 2023 03:03:21 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.automatic-valve.com/atic/images/load.gif
23.225.19.155200 OK 65 kB URL HTTP/1.1 www.automatic-valve.com/atic/images/load.gif
IP 23.225.19.155:0
File type GIF image data, version 89a, 150 x 210\012- data
Hash 1fbb5556099254502571ddee76ec3683
8d1bc81d78d45b97e0c031f813c338cf22043978
1a41d8b1fe312bd93ad4ce35db83af7647ab0ebef9d60c45d211cda7340ec4c8
GET /atic/images/load.gif HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/atic/css/stui_default.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: image/gif
Content-Length: 65214
Last-Modified: Tue, 07 Sep 2021 04:59:40 GMT
Connection: keep-alive
ETag: "6136f1bc-febe"
Expires: Wed, 22 Mar 2023 03:03:21 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.automatic-valve.com/atic/fonts/c8e1344f3d584efebecd98ce9573c7b8.woff
23.225.19.155200 OK 180 kB URL HTTP/1.1 www.automatic-valve.com/atic/fonts/c8e1344f3d584efebecd98ce9573c7b8.woff
IP 23.225.19.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size 180 kB (179750 bytes)
Hash 151316812bcf14678db0fd8c04e56123
4174cff4ebf3d8f69d21ab9e3616c0db68053c2d
b0a548538fc0ad78bba8da499c8cf73f485970e728c5df8c5c3fa4ae38a5c4f0
GET /atic/fonts/c8e1344f3d584efebecd98ce9573c7b8.woff HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.automatic-valve.com/atic/css/iconfont.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
www.automatic-valve.com/atic/fonts/iconfont-15417656157251.ttf
23.225.19.155200 OK 22 kB URL HTTP/1.1 www.automatic-valve.com/atic/fonts/iconfont-15417656157251.ttf
IP 23.225.19.155:0
File type TrueType Font data, 11 tables, 1st "GSUB", 18 names, Macintosh, \012- data
Hash ac82e9b2caf4353072767003329646d5
6711419177b4fd005c1c69900517af042504bb60
12cfa0fe87f6160e5fc1d1dd699e701e6c55f36b5c6a86a2e1fbcbf12f7b688e
GET /atic/fonts/iconfont-15417656157251.ttf HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/atic/css/iconfont.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:22 GMT
Content-Type: application/octet-stream
Content-Length: 21940
Last-Modified: Tue, 07 Sep 2021 04:59:38 GMT
Connection: keep-alive
ETag: "6136f1ba-55b4"
Accept-Ranges: bytes
s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
104.26.1.190200 OK 9.2 kB URL HTTP/2 s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
IP 104.26.1.190:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /2022/05/21/zAxwCKkLnFjlaQ8.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:22 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Sat, 21 May 2022 11:42:12 GMT
etag: "6288d014-23ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZDji7qmP7TfvsLfwLfplVP%2FinWCCVOxH1%2FDQfnf926Tr%2BucB4jEqrDvc9xr5ECjXH8Z9s%2BSZ68feFBqy6Mhm6iSpg%2F3Hp1L7pQKvVrID0rHoWOop52C3g%2F2eGSRj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79c402360beab4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
u22088.com/9d8f5cd78adaf809fcd1b4acef4c047e.gif
13.227.254.65200 OK 181 kB URL HTTP/2 u22088.com/9d8f5cd78adaf809fcd1b4acef4c047e.gif
IP 13.227.254.65:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 181 kB (181030 bytes)
Hash 1875bfad7cb40219049354aa7938ac9d
430a926066ed424ed5871c0435ac40ccd1546566
b1e2af30e73c61529587d6aff62c941888c9c685d4d127edb5bac1d84d0178b7
GET /9d8f5cd78adaf809fcd1b4acef4c047e.gif HTTP/1.1
Host: u22088.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 181030
date: Mon, 16 Jan 2023 05:14:11 GMT
last-modified: Tue, 20 Dec 2022 05:32:57 GMT
etag: "1875bfad7cb40219049354aa7938ac9d"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aba148aded8f2a574ac37012d8a4aeee.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CBSF93mrRllng43gNN64ezypdAQHrsvKP8ctYaMjhtROazIus1IlJg==
age: 3016151
X-Firefox-Spdy: h2
www.automatic-valve.com/atic/images/favicon.ico
23.225.19.155200 OK 4.3 kB URL HTTP/1.1 www.automatic-valve.com/atic/images/favicon.ico
IP 23.225.19.155:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 11bf57dec75674ec9af4351125a77667
a95e2eb332bcf60a29bf2ff9ad27a9e7acb9dcbd
d5edeeecd4f0ce96dd5ea591726b17a090b843e9a4dbc83cf98f216a73e835b1
GET /atic/images/favicon.ico HTTP/1.1
Host: www.automatic-valve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Feb 2023 03:03:23 GMT
Content-Type: image/x-icon
Content-Length: 4286
Last-Modified: Sat, 27 Aug 2022 07:44:58 GMT
Connection: keep-alive
ETag: "6309cb7a-10be"
Accept-Ranges: bytes
u22055.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
13.227.254.46200 OK 288 kB URL HTTP/2 u22055.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
IP 13.227.254.46:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 288 kB (288397 bytes)
Hash e17bb688cfdae836ea866c47e92a022a
d748bb7b13696141ba768280a21d3dac482e3a0c
cb9affdc029bd6deb908ab9786fad62113c4ba28d2e9a8926cbed0c5e2c2aa6a
GET /fee6dc0783e7085f6b3452a1155d4b4a.gif HTTP/1.1
Host: u22055.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 288397
date: Tue, 10 Jan 2023 07:52:07 GMT
last-modified: Sat, 24 Dec 2022 08:23:21 GMT
etag: "e17bb688cfdae836ea866c47e92a022a"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c57dcf725f15a754ea7be2a7d262cec2.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: GsPVzNY8c1FPKwXPpHaDKntA3RANVE_VUnuzrMCOKW6bZ1081hycIg==
age: 3525076
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?3d093e1702d610f015b10354eb5b322d
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3d093e1702d610f015b10354eb5b322d
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash 79dc6b618b5a858bd8471796aa1b01d8
40714373d486bd997cc670d9d67eb9d1e8272ad7
1f4b7d104c353935d1b5f1cfd428d208e9d400600eced52a48feca60ce02f12d
GET /hm.js?3d093e1702d610f015b10354eb5b322d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Mon, 20 Feb 2023 03:03:22 GMT
Etag: b543ed9cf447220ce3c2eb0d9c9b46d2
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E3AA0DF00409B98A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=63456424&si=3d093e1702d610f015b10354eb5b322d&v=1.3.0&lv=1&sn=18159&r=0&ww=1280&u=http%3A%2F%2Fwww.automatic-valve.com%2F&tt=%E7%A6%8F%E5%88%A9%E4%B8%80%E4%B8%80%E5%8C%BA%E4%B8%89%E5%8C%BA_%E5%9B%BD%E4%BA%A7%E4%BA%9A%E6%B4%B2%E4%B8%80%E5%8C%BA%E4%BA%8C%E5%8C%BA_2020%E4%BA%9A%E6%B4%B2%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E6%92%AD%E6%94%BE%E5%9C%A8%E7%BA%BF_%E5%85%8D%E8%B4%B9%E5%9B%BD%E4%BA%A7%E6%AC%A7%E7%BE%8E%E5%9B%BD%E6%97%A5%E4%BA%A7
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=63456424&si=3d093e1702d610f015b10354eb5b322d&v=1.3.0&lv=1&sn=18159&r=0&ww=1280&u=http%3A%2F%2Fwww.automatic-valve.com%2F&tt=%E7%A6%8F%E5%88%A9%E4%B8%80%E4%B8%80%E5%8C%BA%E4%B8%89%E5%8C%BA_%E5%9B%BD%E4%BA%A7%E4%BA%9A%E6%B4%B2%E4%B8%80%E5%8C%BA%E4%BA%8C%E5%8C%BA_2020%E4%BA%9A%E6%B4%B2%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E6%92%AD%E6%94%BE%E5%9C%A8%E7%BA%BF_%E5%85%8D%E8%B4%B9%E5%9B%BD%E4%BA%A7%E6%AC%A7%E7%BE%8E%E5%9B%BD%E6%97%A5%E4%BA%A7
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=63456424&si=3d093e1702d610f015b10354eb5b322d&v=1.3.0&lv=1&sn=18159&r=0&ww=1280&u=http%3A%2F%2Fwww.automatic-valve.com%2F&tt=%E7%A6%8F%E5%88%A9%E4%B8%80%E4%B8%80%E5%8C%BA%E4%B8%89%E5%8C%BA_%E5%9B%BD%E4%BA%A7%E4%BA%9A%E6%B4%B2%E4%B8%80%E5%8C%BA%E4%BA%8C%E5%8C%BA_2020%E4%BA%9A%E6%B4%B2%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E6%92%AD%E6%94%BE%E5%9C%A8%E7%BA%BF_%E5%85%8D%E8%B4%B9%E5%9B%BD%E4%BA%A7%E6%AC%A7%E7%BE%8E%E5%9B%BD%E6%97%A5%E4%BA%A7 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 20 Feb 2023 03:03:23 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E6B6B807BF792F50; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
de88deggtp.com/100tp/1200-60.gif
23.224.145.236200 OK 231 kB URL HTTP/1.1 de88deggtp.com/100tp/1200-60.gif
IP 23.224.145.236:0
File type GIF image data, version 89a, 1200 x 60\012- data
Size 231 kB (230614 bytes)
Hash def1553ac93248c7de12ff2d7c545780
35c8c3f528cc7a936a84b7624c3344c495646f9b
c817febe8ceeda51ebf39ef74c177bc11bd3c057cd903988b6e1205be626ace8
GET /100tp/1200-60.gif HTTP/1.1
Host: de88deggtp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:23 GMT
Content-Type: image/gif
Content-Length: 230614
Connection: keep-alive
Last-Modified: Wed, 28 Dec 2022 13:30:10 GMT
ETag: "63ac44e2-384d6"
Expires: Tue, 21 Mar 2023 13:36:26 GMT
Cache-Control: max-age=2592000
Server: qq.com
X-Cache-Status: HIT
Accept-Ranges: bytes
de88deggtp.com/100tp/960x60.gif
23.224.145.236200 OK 456 kB URL HTTP/1.1 de88deggtp.com/100tp/960x60.gif
IP 23.224.145.236:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 456 kB (456396 bytes)
Hash 202f7e8882789aecd824a5d11a3d2550
0434fa09acb7451eaaf06fffe622e8f793a3d18e
a26f264cadabddc2fd0714f8c963ffe2b0ec2674dafe8cc7f759045eee907a71
GET /100tp/960x60.gif HTTP/1.1
Host: de88deggtp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:23 GMT
Content-Type: image/gif
Content-Length: 456396
Connection: keep-alive
Last-Modified: Tue, 21 Jun 2022 09:29:40 GMT
ETag: "62b18f84-6f6cc"
Expires: Tue, 21 Mar 2023 03:26:29 GMT
Cache-Control: max-age=2592000
Server: qq.com
X-Cache-Status: HIT
Accept-Ranges: bytes
kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
13.227.254.55200 OK 396 kB URL HTTP/2 kzehh.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP 13.227.254.55:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: kzehh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Thu, 05 Jan 2023 09:03:28 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 5157dedfe33ef5a309f236599901abe2.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: R91cA5rd4lwhYkXQsl7tC1dfMiiNC8UQ48k-1kPU00BPRPkTaPncAw==
age: 3952797
X-Firefox-Spdy: h2
u1102.com/c3eff56a3a9d46bcad82e0324b761f11.gif
45.61.212.173200 OK 275 kB URL HTTP/2 u1102.com/c3eff56a3a9d46bcad82e0324b761f11.gif
IP 45.61.212.173:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 275 kB (275446 bytes)
Hash 70c0e3b780542b0ba8634822528674c1
18ff79341d6854d6c841618bc108233fb064b9c2
de2918f8ea0639a91d608b506207f16cc973559eb143eb711601ba50e14ef2bc
GET /c3eff56a3a9d46bcad82e0324b761f11.gif HTTP/1.1
Host: u1102.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63bac791-433f6"
server: nginx
date: Sun, 19 Feb 2023 04:31:28 GMT
content-type: image/gif
last-modified: Sun, 08 Jan 2023 13:39:29 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us5-cdnb-13
content-length: 275446
X-Firefox-Spdy: h2
n0544.com/2aaa45651a8a4dbaa1a883cd38ad7461.gif
20.247.119.239200 OK 216 kB URL HTTP/1.1 n0544.com/2aaa45651a8a4dbaa1a883cd38ad7461.gif
IP 20.247.119.239:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 216 kB (215902 bytes)
Hash 153a7dac1d2bfce1349134956b3f408f
9e91fdc5f2052de208a86e18c10eca1a251e3906
907675e7b39a2cc587985b82e12f9b7da60d395aa62b23214fe9d265c62df0bb
GET /2aaa45651a8a4dbaa1a883cd38ad7461.gif HTTP/1.1
Host: n0544.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:24 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 Jan 2023 10:06:38 GMT
ETag: W/"63b54fae-54d22"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
2366317ccc.com/3be4171f45964b3795b8b02e1da84c25.gif
45.61.212.221200 OK 584 kB URL HTTP/1.1 2366317ccc.com/3be4171f45964b3795b8b02e1da84c25.gif
IP 45.61.212.221:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 584 kB (584025 bytes)
Hash ebf4ee75bbd43b703e1b1b861ba166e2
c241029604f77ad6b4f56894bc51decfededfde7
d6655adbfa7089435d168e9b1432e524f0bf11be8b80ddc499bef69bd5a376ea
Analyzer Verdict Alert quad9 Sinkholed
GET /3be4171f45964b3795b8b02e1da84c25.gif HTTP/1.1
Host: 2366317ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "631ee6a4-8e959"
Date: Mon, 13 Feb 2023 09:00:37 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 12 Sep 2022 07:58:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-21
Content-Length: 584025
8499683.com/8499/mi/960x60.gif
162.209.128.163200 OK 291 kB URL HTTP/2 8499683.com/8499/mi/960x60.gif
IP 162.209.128.163:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/mi/960x60.gif HTTP/1.1
Host: 8499683.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:24 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 07 Jan 2023 12:00:21 GMT
etag: "46f0c-5f1ab474e52ba"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
6793351ccc.com/16314cf051e4429abd6db3342a208687.gif
103.170.15.72200 OK 94 kB URL HTTP/1.1 6793351ccc.com/16314cf051e4429abd6db3342a208687.gif
IP 103.170.15.72:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 140\012- data
Hash a90a86cf23ea80c8b717e3874d47fd78
4f3549168d8486f35ac0c64bb3434db9b0b2f60b
024d773d53082debbbc3508e7fc8f09adb87449882b8bef914c487bd22ecb307
Analyzer Verdict Alert quad9 Sinkholed
GET /16314cf051e4429abd6db3342a208687.gif HTTP/1.1
Host: 6793351ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c7aa8f-1714b"
Date: Sat, 18 Feb 2023 09:48:19 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 18 Jan 2023 08:15:11 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-02
Content-Length: 94539
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33899d44981fa51d7f544a10afd79583
dc03786889eb589ecbb04b94f0f7958e187f39c6
9fdacdc2837f30607821eb14198decc55be904b122b9f586c98fda80e9fb2641
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9FDACDC2837F30607821EB14198DECC55BE904B122B9F586C98FDA80E9FB2641"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Mon, 20 Feb 2023 09:02:43 GMT
Date: Mon, 20 Feb 2023 03:03:25 GMT
Connection: keep-alive
8881img.com/xxxcsj/960x80.gif
104.26.10.105200 OK 494 kB URL HTTP/2 8881img.com/xxxcsj/960x80.gif
IP 104.26.10.105:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 494 kB (493610 bytes)
Hash 7bc6b2e78610cd63675bca15d5279b6f
8dea90c8ec5c75cebc1b68e8e33aeeb6287b43de
8db103b77338b51b309508e352cbf190a299f6b8b3abe29e88ef073f730bcd24
GET /xxxcsj/960x80.gif HTTP/1.1
Host: 8881img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: image/gif
content-length: 493610
cache-control: max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=507653
etag: "63e75b8f-7bf05"
expires: Sun, 19 Mar 2023 08:07:00 GMT
last-modified: Sat, 11 Feb 2023 09:10:39 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 238423
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vZdIWdt1TOCnqt1%2FKrJcj%2BfGSEB92Mdeicg8nCB4KmgedvFdfsUD1kdkUIIc7cXhl0Vayzk2LL%2Fh6PnWNTp4l4VcKdSKMtC0xGVJAYDHMP9%2FDcVIw6goAnz2eSRg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79c402513a9eb500-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5dbdc1755803fd24a0d39dcf43426ed3
94c66d4772d4ac4b8fc99106c86e15bb07be926f
280ff4354ca13db66b12df3c49fdce1162027c1b7e91e1a4b7c8ba473ce6d2a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "280FF4354CA13DB66B12DF3C49FDCE1162027C1B7E91E1A4B7C8BA473CE6D2A9"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3049
Expires: Mon, 20 Feb 2023 03:54:14 GMT
Date: Mon, 20 Feb 2023 03:03:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b1b208e34b3a74a70b40d44a54d67ba0
bff12bb276a07b4c7c14b2a91b340eec53e910d6
5df9530f2fb17ecd8e2e25ff86358ce6b38d73c470c9bffd3fc50ddd9d92e2a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DF9530F2FB17ECD8E2E25FF86358CE6B38D73C470C9BFFD3FC50DDD9D92E2A7"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9152
Expires: Mon, 20 Feb 2023 05:35:57 GMT
Date: Mon, 20 Feb 2023 03:03:25 GMT
Connection: keep-alive
zmhmaz8.com/f7c7ff277fc946dab898f4ae7c2c4be0.gif
103.170.15.81200 OK 1.0 MB URL HTTP/1.1 zmhmaz8.com/f7c7ff277fc946dab898f4ae7c2c4be0.gif
IP 103.170.15.81:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 1.0 MB (1020091 bytes)
Hash b3aedc862671b2fa2e2922fadaa38add
8134113e40aa47b7b0508e81c447ccea8c10e7c0
d60a38f60cbd8cc782d6ecaf7c076dea16bf5eddfdc064d0aa4c03a440d236aa
GET /f7c7ff277fc946dab898f4ae7c2c4be0.gif HTTP/1.1
Host: zmhmaz8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62ee2dc7-f90bb"
Date: Mon, 20 Feb 2023 00:56:36 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 06 Aug 2022 09:00:55 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-11
Content-Length: 1020091
kvexx.com/d2527f7b8c975443eead165505e089df.gif
45.150.164.88301 Moved Permanently 162 B URL HTTP/2 kvexx.com/d2527f7b8c975443eead165505e089df.gif
IP 45.150.164.88:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /d2527f7b8c975443eead165505e089df.gif HTTP/1.1
Host: kvexx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: text/html
content-length: 162
location: https://kvtjjj.top/d2527f7b8c975443eead165505e089df.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
66885aaa.com/ef14f3bd538144b6965923639ff2f8f6.gif
45.61.212.221200 OK 378 kB URL HTTP/1.1 66885aaa.com/ef14f3bd538144b6965923639ff2f8f6.gif
IP 45.61.212.221:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 378 kB (378244 bytes)
Hash dcee74862649d4f1b27bf2bad4d7b505
ab5a968d4276ee57121e47a816bbb760f6ea352b
0932de00bb38b492d7d3ea9626be48617dee34b86b650c6bde61e30d09063d2e
Analyzer Verdict Alert quad9 Sinkholed
GET /ef14f3bd538144b6965923639ff2f8f6.gif HTTP/1.1
Host: 66885aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c4e027-5c584"
Date: Tue, 14 Feb 2023 16:52:49 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 16 Jan 2023 05:27:03 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-21
Content-Length: 378244
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0c33b5c67fadd5215ea73ae156d5bd36
cad7b5d5df6e83a3958fdaa1e9c0ba8fb484ed4f
753b3ef0c509ae90b63e8c3b6d3a941ae3f5c73957b0bff635326bf1922d3e5c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "753B3EF0C509AE90B63E8C3B6D3A941AE3F5C73957B0BFF635326BF1922D3E5C"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=224
Expires: Mon, 20 Feb 2023 03:07:10 GMT
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash cd352cbc3f6c41da740ebbbac0d5847b
cfa26c4f93b7ef1c63eaa7b2a45039e7ea33f94d
12a8d2f03e9e43523c7550ed3b1128caf3cc0941f96f0328ead67b32968f71c9
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 23 Feb 2023 23:33:34 GMT
ETag: "cfa26c4f93b7ef1c63eaa7b2a45039e7ea33f94d"
Last-Modified: Sun, 19 Feb 2023 23:33:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2958
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402542a88b4ff-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash cd352cbc3f6c41da740ebbbac0d5847b
cfa26c4f93b7ef1c63eaa7b2a45039e7ea33f94d
12a8d2f03e9e43523c7550ed3b1128caf3cc0941f96f0328ead67b32968f71c9
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 23 Feb 2023 23:33:34 GMT
ETag: "cfa26c4f93b7ef1c63eaa7b2a45039e7ea33f94d"
Last-Modified: Sun, 19 Feb 2023 23:33:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2958
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402542a89b4ff-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a25afa289c3c962755b6ce349fc51ad0
e4cbb387a7d16b576b13a43577994a063657c7ba
e5fb1ddfea48d393b2b22d593228979091f33b75450d99215a324cd49a9fc9e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5FB1DDFEA48D393B2B22D593228979091F33B75450D99215A324CD49A9FC9E0"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3432
Expires: Mon, 20 Feb 2023 04:00:38 GMT
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash e473ce56485ac58969335758a8086e22
c5be185c3aeafdfdc30ed3c6433b755b42e2cd10
0edfe96391a1c928da6fcba2b75627d390e9962baddc77a479add9db1b7d9e10
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 24 Feb 2023 01:58:10 GMT
ETag: "c5be185c3aeafdfdc30ed3c6433b755b42e2cd10"
Last-Modified: Mon, 20 Feb 2023 01:58:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2790
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402548922b51e-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash e473ce56485ac58969335758a8086e22
c5be185c3aeafdfdc30ed3c6433b755b42e2cd10
0edfe96391a1c928da6fcba2b75627d390e9962baddc77a479add9db1b7d9e10
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 24 Feb 2023 01:58:10 GMT
ETag: "c5be185c3aeafdfdc30ed3c6433b755b42e2cd10"
Last-Modified: Mon, 20 Feb 2023 01:58:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2790
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402548df3b4f7-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash e473ce56485ac58969335758a8086e22
c5be185c3aeafdfdc30ed3c6433b755b42e2cd10
0edfe96391a1c928da6fcba2b75627d390e9962baddc77a479add9db1b7d9e10
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 24 Feb 2023 01:58:10 GMT
ETag: "c5be185c3aeafdfdc30ed3c6433b755b42e2cd10"
Last-Modified: Mon, 20 Feb 2023 01:58:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2790
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402548b4eb4fa-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.21.226:0
Hash 97d1b827b9b79ed23fa2060e8f45c85b
5f2eb369c6065c6bbe3709d42129ff348fd277da
67c4273ae857e1d036f97a74dee35e31df0fc1523e5358e3695a675d69b06d76
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 24 Feb 2023 00:13:23 GMT
ETag: "5f2eb369c6065c6bbe3709d42129ff348fd277da"
Last-Modified: Mon, 20 Feb 2023 00:13:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402548ecbb503-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.21.226:0
Hash 97d1b827b9b79ed23fa2060e8f45c85b
5f2eb369c6065c6bbe3709d42129ff348fd277da
67c4273ae857e1d036f97a74dee35e31df0fc1523e5358e3695a675d69b06d76
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 24 Feb 2023 00:13:23 GMT
ETag: "5f2eb369c6065c6bbe3709d42129ff348fd277da"
Last-Modified: Mon, 20 Feb 2023 00:13:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402548866b517-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.21.226:0
Hash 97d1b827b9b79ed23fa2060e8f45c85b
5f2eb369c6065c6bbe3709d42129ff348fd277da
67c4273ae857e1d036f97a74dee35e31df0fc1523e5358e3695a675d69b06d76
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 24 Feb 2023 00:13:23 GMT
ETag: "5f2eb369c6065c6bbe3709d42129ff348fd277da"
Last-Modified: Mon, 20 Feb 2023 00:13:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c402548e2ab4f1-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9917
Expires: Mon, 20 Feb 2023 05:48:43 GMT
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b1775b8f4f9ebbac7a1572afa4e4f92
7c7c748730a9422b0f5f9bcdde36a91c9639c595
a1685273829a7672a3fa089525b959f1f95f11c0a5c0d09fbbf1f4667b3f7946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1685273829A7672A3FA089525B959F1F95F11C0A5C0D09FBBF1F4667B3F7946"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9917
Expires: Mon, 20 Feb 2023 05:48:43 GMT
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fd253c3d03ed93e7928145a46d4f9046
dcfa33749cc241dd490b63e88bb0f9166d180695
002b7befe09d3463c8d1c0a618c444a5fe8d73b6f241ebdb0af9dbbd02a73294
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 20 Feb 2023 03:03:26 GMT
Etag: "63f18f80-117"
Server: ECS (amb/6B88)
Content-Length: 279
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F788f92c7-ad1f-4cb2-982e-4d14264aa6f5.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F788f92c7-ad1f-4cb2-982e-4d14264aa6f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee1f5b324c091a2a828f1ceafc980531
1d8490d3651d048e4f5af34c8de0c964f6af8e5b
6f7ac19dfd364754ff3025297eff8c7e30f6a7d91893eaf94ed7b18e3b2cf594
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F788f92c7-ad1f-4cb2-982e-4d14264aa6f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5464
x-amzn-requestid: d07879bd-e629-4334-9548-e85108731dbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Amx-3HoLoAMF0zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f296c5-7bfc1eba37db6a99259a97b4;Sampled=0
x-amzn-remapped-date: Sun, 19 Feb 2023 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2LTEfEu4aUh9p3XS_tosbHrQajeFSsL2yye1EeAj0sfG44jD5iCdPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 21:44:00 GMT
age: 19166
etag: "1d8490d3651d048e4f5af34c8de0c964f6af8e5b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d94fbe224ab50fcac1b518c79fd06772
80b2f6a3642b59defa7b5679f1dfa9ea1d69fad6
24187a2094c35e614f44b15686c6bfd49b932563bd3899e9a46056024a98cc53
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 18 Feb 2023 07:41:45 GMT
Expires: Sat, 25 Feb 2023 07:41:44 GMT
Etag: "80b2f6a3642b59defa7b5679f1dfa9ea1d69fad6"
Cache-Control: max-age=448097,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c402548907b4e8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 659263e5a08f1c91db14e768fea731dc
5fbf0d343bf3a9eddcd2b05386642b76c5042404
33cea53b2fd6d928b9ead2c8f7df9267f8ce2ac51e3edefa8a7c31ad02e664d6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 17 Feb 2023 12:07:16 GMT
Expires: Fri, 24 Feb 2023 12:07:15 GMT
Etag: "5fbf0d343bf3a9eddcd2b05386642b76c5042404"
Cache-Control: max-age=377628,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c402548a4cb518-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ef7aa160e00f2c5559ef6d13e6d726e3
b2f7f543c89d4daad93311b72732e044fcc455f7
74ba2e42cd31095f35b13210155aa6d4a023980e0f76cfef40734d4ba2e5f95b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 17 Feb 2023 12:53:48 GMT
Expires: Fri, 24 Feb 2023 12:53:47 GMT
Etag: "b2f7f543c89d4daad93311b72732e044fcc455f7"
Cache-Control: max-age=380420,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c402548aaab4ff-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F281f72a4-d131-4cfa-9879-5c633718946e.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F281f72a4-d131-4cfa-9879-5c633718946e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 90690775d6d052b92a783fd123b9751e
f330787567c092887acb1ee9cdab1de0fdbec228
73069b0c7bfbded0f2d5435d11e458a3c7df43df45e45fc4f99e7c22de4efbfa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F281f72a4-d131-4cfa-9879-5c633718946e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9448
x-amzn-requestid: ba281ab3-5bfb-42d1-ae15-f990472cffdb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AmyNjGwNoAMF5hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f29723-109d347078fe868b601d103f;Sampled=0
x-amzn-remapped-date: Sun, 19 Feb 2023 21:39:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CNqEnA-9oerExJj_grZu6ZWxVNCQgbe6AR4s3AcoFnx9QxEwR8szBQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 22:18:30 GMT
age: 17096
etag: "f330787567c092887acb1ee9cdab1de0fdbec228"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb02e00ed-8b65-4e64-ae13-5e9680255939.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb02e00ed-8b65-4e64-ae13-5e9680255939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0339a3229fb01cf8dbaf91de6b7e6f8
33f779cf037dbb8739630f9fb3ffc825678633bf
e9aa58bd52abfc440d1817a86176887835cb920261fda1e9d5205645e30e2f4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb02e00ed-8b65-4e64-ae13-5e9680255939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5985
x-amzn-requestid: 972f1e7b-eeec-41ab-aa97-7e23b2456746
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AmypVFybIAMFsnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f297d5-1a9dbd562ec347113f4d6527;Sampled=0
x-amzn-remapped-date: Sun, 19 Feb 2023 21:42:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: adi-QiiQQ7LnWyycpiA7UayOMyH4F4W_q1qAzt_XIaDIEZDDvjh_XQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 21:56:47 GMT
age: 18399
etag: "33f779cf037dbb8739630f9fb3ffc825678633bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.21.226:0
Hash a27b5ec5d9455fe07ff5b66690dd8ed8
09501cad9c49c5430d192e6c49002db0e99c7e5e
b402e06c7b0401e214532e4c6b0648dd1a437ef2ab1198ac013d501bcc8559e0
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 24 Feb 2023 00:58:30 GMT
ETag: "09501cad9c49c5430d192e6c49002db0e99c7e5e"
Last-Modified: Mon, 20 Feb 2023 00:58:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2589
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79c40254eee4b503-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2f0890-ccdf-44c6-b302-f7a1a34fbb92.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2f0890-ccdf-44c6-b302-f7a1a34fbb92.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1eab9b7d9c6b1538a3ecd942f6a4d69f
6114c2dbe583443c8473d2c37a71ee80b6a63d52
fadbbbc246f17c3241b530a69599860dd63a84e1598059b48a59bfb2d420e1ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a2f0890-ccdf-44c6-b302-f7a1a34fbb92.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8454
x-amzn-requestid: d7568d4c-1ae0-4d33-8de9-cd6bdefdef31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AmxdhGU6oAMFhhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f295ef-63f59d6453443e6261645ff1;Sampled=0
x-amzn-remapped-date: Sun, 19 Feb 2023 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E0kHHLfiMEkwemy88aSc8Nbi0KMKNrirnmgRgl7wG9u3CLwvG-MxVA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 22:04:03 GMT
etag: "6114c2dbe583443c8473d2c37a71ee80b6a63d52"
content-type: image/jpeg
age: 17963
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c5a0bab7d34e51ee6476be179b356ba
87917d3cf520d73b7b1029f44505e7700413d51d
136e727a99409218318247b645558fad485ed84bcd90bd43a5895492cb317d89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6879
x-amzn-requestid: 18c46562-f8d9-4f7f-8ea0-1bb46e206f80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANnahEWgIAMFwYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e885dc-50a7cfe4693b4efb038ce1a7;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 06:23:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwK1XWOYMXy8qna9sVCV7q__QKMko9KXa8towbYhIj1EolPbqEuIHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 15:50:17 GMT
age: 40389
etag: "87917d3cf520d73b7b1029f44505e7700413d51d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eb4682b-b3dc-430a-9c7d-e04516178fbf.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eb4682b-b3dc-430a-9c7d-e04516178fbf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9f5aa164fcdcdbc2478dd04dacd471fd
304a4b85f8c346de50b6a432023260c8a99b0442
cd28be6604209d2721a508c8cc980a1b2df3ad6454d3db3335eac9c269e24c38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eb4682b-b3dc-430a-9c7d-e04516178fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4596
x-amzn-requestid: 34638787-c31d-4887-9137-08001614d60d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AmxcdE6RoAMFYwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f295e9-2f4a0b2a2dc3ff5b5e138229;Sampled=0
x-amzn-remapped-date: Sun, 19 Feb 2023 21:34:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PISqY9KJLXllpS4oQDPU4Y31XvBJzX9d0NwcR4qfV4KA7fnpgdkpkQ==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Feb 2023 21:59:51 GMT
age: 18215
etag: "304a4b85f8c346de50b6a432023260c8a99b0442"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdec9073ac1adf41e55dcc8519270e9b
114a236fc026b7994e01ffb97ae34980cea91d1f
06a87c2c7dffe29bd702aefaeeb8ff1cb8d7fc8407cec328d7ef0dc1aaace911
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "06A87C2C7DFFE29BD702AEFAEEB8FF1CB8D7FC8407CEC328D7EF0DC1AAACE911"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=884
Expires: Mon, 20 Feb 2023 03:18:10 GMT
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
kvtjjj.top/d2527f7b8c975443eead165505e089df.gif
104.21.45.172200 OK 207 kB URL HTTP/2 kvtjjj.top/d2527f7b8c975443eead165505e089df.gif
IP 104.21.45.172:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 207 kB (207365 bytes)
Hash 99687664402295ba9d43d5c8491a3207
0b245333582e86c722c8fa4d8cbb612eacd55a33
f200d581b9b22e49334ca69de7f012206b1dc07848885cdba0466caa48337325
GET /d2527f7b8c975443eead165505e089df.gif HTTP/1.1
Host: kvtjjj.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.automatic-valve.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:26 GMT
content-type: image/gif
content-length: 207365
last-modified: Thu, 02 Feb 2023 13:43:00 GMT
etag: "63dbbde4-32a05"
expires: Sat, 18 Mar 2023 20:31:28 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 282718
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B8c06Mlwr64NDP%2BFNSdWt8HDtIhPdsYC9I4lx%2BJRCvuN40yX5gM%2FJFmTC4wT8E7Uhah2X73yNuMjOBUcrBJpBe2fLFyUVx7MWQscBpbVav%2FYk7%2BJLuPVNsSNihfn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79c402553c09b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fd253c3d03ed93e7928145a46d4f9046
dcfa33749cc241dd490b63e88bb0f9166d180695
002b7befe09d3463c8d1c0a618c444a5fe8d73b6f241ebdb0af9dbbd02a73294
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 20 Feb 2023 03:03:26 GMT
Etag: "63f18f80-117"
Last-Modified: Mon, 20 Feb 2023 03:03:26 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
z4a.net/images/2022/12/17/960x60.gif
104.21.234.234200 OK 320 kB URL HTTP/2 z4a.net/images/2022/12/17/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 320 kB (319606 bytes)
Hash 443ba779af0bf3944718aa7e4e2038a5
7054a327b7d5a805a510fab7bb2b35d5cd2ec9ca
1461a63340b84e5c64f250e3ca4d3153df4cf60a1226eb2107bf37c5cfcdd8ee
GET /images/2022/12/17/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:26 GMT
content-type: image/gif
content-length: 319606
expires: Sun, 17 Dec 2023 08:04:14 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 5597952
last-modified: Sat, 17 Dec 2022 08:04:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=csLNH6rgVooCR5YCMzcLN3x6Rv2M%2ByDdD7hTsk3jhYLNl4gs%2BchHGRAA%2BmA3afL8k6UfXNDBnUnA5V5Ds48uViviep3dwMm2t%2BaU1Vx%2B%2Bc0pqR9%2Bzu0mxpTg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79c40254f896caa9-HAM
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdec9073ac1adf41e55dcc8519270e9b
114a236fc026b7994e01ffb97ae34980cea91d1f
06a87c2c7dffe29bd702aefaeeb8ff1cb8d7fc8407cec328d7ef0dc1aaace911
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "06A87C2C7DFFE29BD702AEFAEEB8FF1CB8D7FC8407CEC328D7EF0DC1AAACE911"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=884
Expires: Mon, 20 Feb 2023 03:18:10 GMT
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash bef5226ed6822432906454ec7c03e02d
6f0fc0065731c3b7d97838e372153d54e7482565
e4ddc2d033d474fc2fe452a7b3a257189720150b1eaa4bbb8e7b9effa4ff5b9e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 01:55:29 GMT
Expires: Mon, 27 Feb 2023 01:55:28 GMT
Etag: "6f0fc0065731c3b7d97838e372153d54e7482565"
Cache-Control: max-age=600121,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c40254fa89b518-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b6765090033e440cf2810e9e6754c7e2
de5ef8e1c1b3593dcd7f979d010cc126adc717ee
e4e8af05b86abb0221062018d558f539d5cc824a14b3bde47d0c299a9864cad7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 01:54:30 GMT
Expires: Mon, 27 Feb 2023 01:54:29 GMT
Etag: "de5ef8e1c1b3593dcd7f979d010cc126adc717ee"
Cache-Control: max-age=600062,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c402548b7eb509-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash af4f1f63be0d5021b43641beb370fb4e
e2c73817dea99d4a92c6a53adc013dfe844dfd61
899aec83aac128c6de69a1c08f6acc22f2f2c82ae2925c8c190ce87c14d90e95
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 18 Feb 2023 06:22:15 GMT
Expires: Sat, 25 Feb 2023 06:22:14 GMT
Etag: "e2c73817dea99d4a92c6a53adc013dfe844dfd61"
Cache-Control: max-age=443327,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c402548a5ab51d-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d8ecfee3b461b5c8317478f8b28582ff
ccddd2cd39b93f078e882dff4c2498bf6452fff9
ec47837b5fc1396ff47b349af4d0f2e1f5e2ae76da53f5ca915688df292da7bc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 19 Feb 2023 10:22:04 GMT
Expires: Sun, 26 Feb 2023 10:22:03 GMT
Etag: "ccddd2cd39b93f078e882dff4c2498bf6452fff9"
Cache-Control: max-age=544116,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c402548855b523-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash de10801f9349bc7d56cbb4df363b1854
d25cbb0e38843dd60f36d009885f5e06a2b946eb
8f314f059fea9335391af81adad7548d15b61a490acbdcc4fd32749523b54a67
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 19 Feb 2023 03:23:13 GMT
Expires: Sun, 26 Feb 2023 03:23:12 GMT
Etag: "d25cbb0e38843dd60f36d009885f5e06a2b946eb"
Cache-Control: max-age=518985,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c402548a5db4f4-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3c7a5aee497cf1761fac4bd070e3255a
31eaeaa9d13e316c2c3f5e852a91fa8a88cbe851
df7593eef42e030abd2d0e80cd01509afc6e921842c008d49aedffd9de159e46
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7593EEF42E030ABD2D0E80CD01509AFC6E921842C008D49AEDFFD9DE159E46"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5180
Expires: Mon, 20 Feb 2023 04:29:46 GMT
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 48914e20e94ace6f94b4d60d09c43a33
7e3048b5e4cba02c03a95f9f092e80bdaa7d7b2e
bd2efd431bf82144c9794809fdb7a517c9b0e6a07d963c4475da0915213aadb2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 19 Feb 2023 02:22:50 GMT
Expires: Sun, 26 Feb 2023 02:22:49 GMT
Etag: "7e3048b5e4cba02c03a95f9f092e80bdaa7d7b2e"
Cache-Control: max-age=515362,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c40254e919b4e8-OSL
228tuchuang.com/960x80.gif
183.255.106.34200 OK 163 kB URL HTTP/1.1 228tuchuang.com/960x80.gif
IP 183.255.106.34:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 163 kB (163076 bytes)
Hash 63e341c35511275f8dcfd5471e2f3def
e4b36d34434d12292a514660f33d3170d78a6f90
e3b6ff2dadde0785ac96e58b3c894e33491d7206e7d17801344fd574ed8d1c7c
GET /960x80.gif HTTP/1.1
Host: 228tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:25 GMT
Content-Type: image/gif
Content-Length: 163076
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 10:41:04 GMT
ETag: "63df87c0-27d04"
Expires: Mon, 13 Mar 2023 01:59:37 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
u23055.com/d166c51104b5da4212fe6891a3d07afe.gif
13.227.254.104200 OK 234 kB URL HTTP/2 u23055.com/d166c51104b5da4212fe6891a3d07afe.gif
IP 13.227.254.104:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 234 kB (233522 bytes)
Hash 4479a11968da9b06a91e777c3c17e74a
22eb0fd3d5239f1571bf7520837700af5908b116
155f01c68f263ee44ea2ae1ef75b2debebcb64afa3bcbac9348bf45dda87257a
GET /d166c51104b5da4212fe6891a3d07afe.gif HTTP/1.1
Host: u23055.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 233522
last-modified: Mon, 19 Dec 2022 08:26:23 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 19 Feb 2023 05:10:29 GMT
etag: "4479a11968da9b06a91e777c3c17e74a"
x-cache: Hit from cloudfront
via: 1.1 2ba2ffa46f6a4bf7dd5bd07c9a0879ce.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: YvdSMM0DHj8JKcjmM9tmMx9PWBwYaFkyuAtZw31HjnU1DmEz2-Beew==
age: 78777
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash b3e884ab2359075c7ec741e1ea532c15
e8316c8d9edeb6c958097f2f55d8eff9f6f5e973
e2ba0626484f4214c8f7c32744544b29ef1b124dc64cb9650772203de6af1931
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6592
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 20 Feb 2023 03:03:26 GMT
Last-Modified: Mon, 20 Feb 2023 01:13:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash b3e884ab2359075c7ec741e1ea532c15
e8316c8d9edeb6c958097f2f55d8eff9f6f5e973
e2ba0626484f4214c8f7c32744544b29ef1b124dc64cb9650772203de6af1931
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5387
Cache-Control: max-age=159690
Content-Type: application/ocsp-response
Date: Mon, 20 Feb 2023 03:03:26 GMT
Etag: "63f29abd-2d7"
Expires: Tue, 21 Feb 2023 23:24:56 GMT
Last-Modified: Sun, 19 Feb 2023 21:55:09 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 727
tpcdnde88de.com/235tp/%E6%A8%AA%E5%B9%85960x60.gif
23.224.145.236200 OK 236 kB URL HTTP/2 tpcdnde88de.com/235tp/%E6%A8%AA%E5%B9%85960x60.gif
IP 23.224.145.236:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 236 kB (236012 bytes)
Hash e2d11dbe059b016da954581135f3e666
b3612271b5cbd338fb5ae86156b89aa96d7923ac
a59e3d5056fe48461653f2c92dff57faef5a7b9e5352839e35128cbf3c91934a
GET /235tp/%E6%A8%AA%E5%B9%85960x60.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: image/gif
content-length: 236012
last-modified: Fri, 13 Jan 2023 03:07:36 GMT
etag: "63c0caf8-399ec"
expires: Tue, 14 Mar 2023 03:10:04 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
3p8801.co/gg-960x60.gif
107.148.202.17301 Moved Permanently 162 B IP 107.148.202.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /gg-960x60.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://3p8801.co/gg-960x60.gif
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash b3e884ab2359075c7ec741e1ea532c15
e8316c8d9edeb6c958097f2f55d8eff9f6f5e973
e2ba0626484f4214c8f7c32744544b29ef1b124dc64cb9650772203de6af1931
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4760
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 20 Feb 2023 03:03:26 GMT
Etag: "63f29abd-2d7"
Last-Modified: Mon, 20 Feb 2023 01:44:06 GMT
Server: ECS (amb/6BC8)
X-Cache: HIT
Content-Length: 727
tpcdnde88de.com/79tp/960x60-2.gif
23.224.145.236200 OK 322 kB URL HTTP/2 tpcdnde88de.com/79tp/960x60-2.gif
IP 23.224.145.236:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 322 kB (322376 bytes)
Hash c41a909fa1e62a4ebc583626a93c05c1
10adfd5b6d78d04cc93c76b14a29fc93ce4f2708
b60310fa346cdc56ed271a244d9c4f1e137e0fd46571802f25c0c8e09131aa4e
GET /79tp/960x60-2.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: image/gif
content-length: 322376
last-modified: Sat, 25 Jun 2022 12:15:37 GMT
etag: "62b6fc69-4eb48"
expires: Tue, 07 Mar 2023 03:48:37 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/23257b6cbe384ef98d5050a4871fc301
47.246.44.230200 OK 484 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/23257b6cbe384ef98d5050a4871fc301
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 750 x 80\012- data
Size 484 kB (483553 bytes)
Hash af9f9e40c9da901ec207c87b9ca5fe30
d7b9d850de4862a7f77bf6cde3016197d505dfca
15fff1c39af65695fb30c6bf983ffbc4430028cce2839b0923aa6badd7c27d2f
GET /obj/tos-cn-i-dy/23257b6cbe384ef98d5050a4871fc301 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 483553
date: Mon, 30 Jan 2023 13:24:39 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 30 Jan 2023 11:43:37 GMT
nw-session-id: 202301301943379639BDA89434D11FE16F46zq801dy
nw-session-trace: 2023-01-30T19:43:37.590679873+08:00 44
x-bdcdn-cache-status: TCP_HIT
x-length: 483553
x-powered-by: ImageX
x-response-date: Mon, 30 Jan 2023 19:43:37 GMT
x-tt-logid: 202301301943379639BDA89434D11FE16F
via: n132-085-052, cache19.l2de2[0,0,206-0,H], cache2.l2de2[2,0], cache2.l2de2[3,0], cache1.se1[0,0,200-0,H], cache2.se1[2,0]
x-request-ip: fdbd:dc03:15:292::203
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01a23f5c2fe501709964f36c8540842ef5704ded511fd2965d573be90a6d47c8f5c0e17ecb26aded5b452928b0847a01cde65929727ee5d3dcd7cb73a4be4fea664c07570e208eef5896bb63190f48a5fa0a8a0fb437e0b2c42e08af1b435fb9dd
x-response-lb: image
ali-swift-global-savetime: 1675085079
age: 1777127
x-cache: HIT TCP_MEM_HIT dirn:11:188581273
x-swift-savetime: Mon, 30 Jan 2023 15:31:00 GMT
x-swift-cachetime: 31528419
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9616768622065916961e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
47.246.44.230200 OK 343 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 343 kB (343002 bytes)
Hash ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b
GET /obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 343002
date: Sat, 17 Dec 2022 10:28:23 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 17 Dec 2022 10:00:43 GMT
nw-session-id: 2022121718004301013113605215982497p5k6801dy
nw-session-trace: 2022-12-17T18:00:43.827293149+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 343002
x-powered-by: ImageX
x-response-date: Sat, 17 Dec 2022 18:00:43 GMT
x-tt-logid: 2022121718004301013113605215982497
via: n128-134-083, cache14.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010ec35d8338a3c1341674e3d2464ee09a429c9c5af2fc930930b9ec60625c05f3b71a3d79f906afd2479681df4ec15d8b01af344e24d3e5df5584a5196f7e0400dfccab4c7d44dab881b7b096fd4eb23fa223bfc14da29e326a459a9a6aa15d8b
x-response-lb: image
ali-swift-global-savetime: 1671272903
age: 5589303
x-cache: HIT TCP_MEM_HIT dirn:9:164853675
x-swift-savetime: Sat, 17 Dec 2022 11:36:55 GMT
x-swift-cachetime: 31531888
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9616768622066026967e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
47.246.44.230200 OK 498 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 70\012- data
Size 498 kB (497844 bytes)
Hash 9d43f768f1897d7d3fd5ba803e1a770a
ff8fb3f427df7b6cfef65fcae162e0abab9474a4
00fe4f1ccfc623639abadf4e745aca22b946365e932a7a794d6c108fee0d85af
GET /obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 497844
date: Fri, 21 Oct 2022 06:45:44 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Fri, 21 Oct 2022 06:39:38 GMT
nw-session-id: 202210211439380101311360293842A52Fgx4cc03dy
nw-session-trace: 2022-10-21T14:39:38.59145035+08:00 28
x-bdcdn-cache-status: TCP_HIT
x-length: 497844
x-powered-by: ImageX
x-response-date: Fri, 21 Oct 2022 14:39:38 GMT
x-tt-logid: 202210211439380101311360293842A52F
via: n132-067-168, cache19.l2de2[0,0,206-0,H], cache11.l2de2[2,0], cache11.l2de2[2,0], cache1.se1[0,0,200-0,H], cache2.se1[1,0]
x-request-ip: fdbd:dc03:14:130::18
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010bb5ec5b1b5f1e47ca91c2b81197a74f8048ba6c9105f29b60a5a5654edfd2e74a44ae94b6f429eb61763780aa091400b761df5690404fbe40d4d865710f70cd7a52fd33d8906f8ae44a9cba323b06e589132522b5dde5de19e056fb46c2d0ef
x-response-lb: image
ali-swift-global-savetime: 1666334744
age: 10527462
x-cache: HIT TCP_MEM_HIT dirn:4:318227058
x-swift-savetime: Fri, 21 Oct 2022 07:27:56 GMT
x-swift-cachetime: 31533468
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9616768622066116971e
X-Firefox-Spdy: h2
tpcdnde88de.com/235tp/960x60.gif
23.224.145.236200 OK 590 kB URL HTTP/2 tpcdnde88de.com/235tp/960x60.gif
IP 23.224.145.236:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 590 kB (590255 bytes)
Hash d9d8d54236add0a03997175e250e51ef
b65ebc88346d3a308dbf4791ade0637330df8895
81954cd3768276219bbf7aca8ce82881fbda51a1721ef78d559cdd7772800571
GET /235tp/960x60.gif HTTP/1.1
Host: tpcdnde88de.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: image/gif
content-length: 590255
last-modified: Wed, 15 Jun 2022 13:02:58 GMT
etag: "62a9d882-901af"
expires: Tue, 07 Mar 2023 03:59:48 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 05eccf5d3e5b7d3fb4ae866691dc29c6
9fbe9ae7e4078d6ccd2326a491e35b128534acbb
4b0cd3f794f66640d0150b58874ea311f285ac984b4d923e509b3689af23269d
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=96
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 05eccf5d3e5b7d3fb4ae866691dc29c6
9fbe9ae7e4078d6ccd2326a491e35b128534acbb
4b0cd3f794f66640d0150b58874ea311f285ac984b4d923e509b3689af23269d
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=96
Date: Mon, 20 Feb 2023 03:03:26 GMT
Connection: keep-alive
img.1338999.com/images/63ec6878b09d5b1274ebeb22.gif
38.54.37.233302 Found 262 kB URL HTTP/2 img.1338999.com/images/63ec6878b09d5b1274ebeb22.gif
IP 38.54.37.233:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 262 kB (261503 bytes)
Hash 9490591477b224b3a7005a4db2d1aff5
1fbc95d37a9cb9b66ceee42f2a7ec5325fed8371
0fdd79fa1d8c3a5e4e549b083573e9f858c1c3ea4aa70cad7fd614ee6a1cbd61
GET /images/63ec6878b09d5b1274ebeb22.gif HTTP/1.1
Host: img.1338999.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/150f3116d8294e5dbbfbb2f46adf00f7
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7nSk6CELMCC5bSAYPcyIkpiaGCJCDgI2YaAgxczEceEPg/0
43.129.255.47200 OK 169 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7nSk6CELMCC5bSAYPcyIkpiaGCJCDgI2YaAgxczEceEPg/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 169 kB (168964 bytes)
Hash 79a35324921d9ccf4d5291affbe8ff95
4cc204ed457eae527b21e4b55a101a66c271e943
1da3a7bd89326009fc485f35c53ad920d2a9d4b752b5e711772102d7fb67b482
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7nSk6CELMCC5bSAYPcyIkpiaGCJCDgI2YaAgxczEceEPg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: image/gif
content-length: 168964
vary: Accept,Origin
last-modified: Thu, 16 Feb 2023 10:36:14 GMT
cache-control: max-age=2592000
x-delay: 108 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 168964
chid: 0
fid: 0
x-nws-log-uuid: fc781f62-ca86-45a2-8400-88c829a96e5e
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/fOdCibkKwBuNlRu8bGo5cr21ibRZgb1vbRcfgfE8xicuRLmN5e9yib2Ix6OUvK5GcDG8/0
43.129.255.47200 OK 187 kB URL HTTP/2 p.qlogo.cn/qqmail_head/fOdCibkKwBuNlRu8bGo5cr21ibRZgb1vbRcfgfE8xicuRLmN5e9yib2Ix6OUvK5GcDG8/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 187 kB (186717 bytes)
Hash d5c7abafee220d36ad4c23f76d8d428c
31825dedcd230ec6c31b3654c89e3cd35124d327
c25d50eea7fe6b832b3b5a1b3735f5cd9cdd3feb917ca24e9ac82c83bc7ad8b2
GET /qqmail_head/fOdCibkKwBuNlRu8bGo5cr21ibRZgb1vbRcfgfE8xicuRLmN5e9yib2Ix6OUvK5GcDG8/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: image/gif
content-length: 186717
vary: Accept,Origin
last-modified: Thu, 16 Feb 2023 07:00:56 GMT
cache-control: max-age=2592000
x-delay: 43237 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 186717
chid: 0
fid: 0
x-nws-log-uuid: 01c6169c-7dcf-451d-83b1-a6e4e90f0089
X-Firefox-Spdy: h2
n18081.com/68a7807de3933bf7079116fa9df99e6f.gif
172.83.155.45200 OK 366 kB URL HTTP/2 n18081.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: n18081.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Feb 2023 03:03:26 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Mon, 20 Feb 2023 15:03:26 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 2335045
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rNmKUpoQ83VUdphfP6uSdl7iGmtMfN5Gr%2Bg528dGKOZZlPYud23KqGrxVPKy8L9eFJqPHPB4RTZZuhhVjFVWCSHOvpIWyDoJ5%2BL8AWUW%2FutjNHEZ0Gxh8B0XUWjG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794106fe9bdc2844-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7a3096e19fd39b0164b376e498019d32
e92d29ef5c1c627e6ef498626ba8254059afcfae
87b4d59e64a43710543f4d19d05d77c6ae8c96680b0fcfa128aa3a319347502e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=107852
Content-Type: application/ocsp-response
Date: Mon, 20 Feb 2023 03:03:27 GMT
Etag: "63f1e54b-1d7"
Expires: Tue, 21 Feb 2023 09:00:59 GMT
Last-Modified: Sun, 19 Feb 2023 09:00:59 GMT
Server: nginx
Content-Length: 471
n28082.com/3eceef096c490428a4fbb856427f3ef8.gif
172.83.155.45200 OK 268 kB URL HTTP/2 n28082.com/3eceef096c490428a4fbb856427f3ef8.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 120\012- data
Size 268 kB (268002 bytes)
Hash 8aa4805e5d7ef9835bcda52cb2fdf160
84f216fd826d94a308631c3d98b3dd57d60187e8
7992c264273cc5ebf5d0022f536169dc5d4fb899249497c8f80e3c736644f933
GET /3eceef096c490428a4fbb856427f3ef8.gif HTTP/1.1
Host: n28082.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Feb 2023 03:03:26 GMT
content-type: image/gif
content-length: 268002
last-modified: Sun, 05 Feb 2023 04:53:45 GMT
etag: "63df3659-416e2"
expires: Mon, 20 Feb 2023 15:03:26 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 17953
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2FHjgXXpx2%2BuvYx8XEp6orvn9Wz16nUykhq9MG6wZDEbykAKMDf5sLIgbSTQdwjKeVEZw5Ha1NMOstz9q9ESBIoC7oKGsb7OYlrkUKoUCmS6HMslXd5NxpTpLvPf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 79628ebdfac330a6-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
552aaa.us/bcbc05f69abb402c8744db48a5e4350a.gif
45.61.212.226200 OK 890 kB URL HTTP/1.1 552aaa.us/bcbc05f69abb402c8744db48a5e4350a.gif
IP 45.61.212.226:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 890 kB (889529 bytes)
Hash 227d2bb5b71882e80bbf65f7df201dda
47a3602f97cf179b22f1de923dde01f0c4551971
0d0cab3ef9b65b7d953e3b23cc49abc10597f31a98abc5036c8679baee2e8f42
GET /bcbc05f69abb402c8744db48a5e4350a.gif HTTP/1.1
Host: 552aaa.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63eb2a2b-d92b9"
Date: Thu, 16 Feb 2023 12:03:47 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 14 Feb 2023 06:28:59 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-26
Content-Length: 889529
xx.9820668.com/9820/960-80A.gif
103.142.8.251200 OK 56 kB URL HTTP/1.1 xx.9820668.com/9820/960-80A.gif
IP 103.142.8.251:0
ASN #136933 Gigabitbank Global
File type GIF image data, version 89a, 980 x 60\012- data
Hash 361aed34798f98db26e7c50462c4b8c5
5ef04619670d41dbbe05e4fa0df9ddd54445d2cd
3a462d3a0fa3dc9d6e8ad5a69e6ec75418b618e0ff6a6abc4bef899a96874e57
GET /9820/960-80A.gif HTTP/1.1
Host: xx.9820668.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.automatic-valve.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 09 Nov 2022 12:29:16 GMT
Accept-Ranges: bytes
ETag: "2ac34ee236f4d81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 20 Feb 2023 03:03:07 GMT
Content-Length: 55633
portal65.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.64200 OK 200 kB URL HTTP/1.1 portal65.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.64:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 200 kB (199891 bytes)
Hash a7f6b24f7aea8dc62db18957e6d7ba0c
255241a1ba455ac22fca0101da46f76e0f04c854
6e0fffe88772edb6de0c9d711a059b61c88afe16c6f52f073d1cce79e88c9690
GET /960x60.gif HTTP/1.1
Host: portal65.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: image/gif
Content-Length: 199891
Connection: keep-alive
x-oss-request-id: 63F2E2FE54280A353575CBA2
Accept-Ranges: bytes
ETag: "A7F6B24F7AEA8DC62DB18957E6D7BA0C"
Last-Modified: Fri, 10 Feb 2023 14:03:30 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13378115069125544448
x-oss-storage-class: Standard
x-oss-ec: 0048-00000103
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: p/ayT3rqjcYtsYlX5te6DA==
x-oss-server-time: 3
6617398ccc.com/95128b772cae4720abf92e497051ddab.gif
103.170.15.76200 OK 604 kB URL HTTP/1.1 6617398ccc.com/95128b772cae4720abf92e497051ddab.gif
IP 103.170.15.76:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 604 kB (603987 bytes)
Hash 23949104e338cb795b2e13fa2f5a2247
466467d793d47e13999b5a3b0d8f3ff5fd980d93
871b665b13f515dec19211e8f88f5b03d1bca8ae5fd317d67c72630a748605a3
Analyzer Verdict Alert quad9 Sinkholed
GET /95128b772cae4720abf92e497051ddab.gif HTTP/1.1
Host: 6617398ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63aad950-93753"
Date: Tue, 14 Feb 2023 05:41:44 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 27 Dec 2022 11:38:56 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-06
Content-Length: 603987
p.qlogo.cn/qqmail_head/Q3auHgzwzM7lfibDibZw1dnZN1RFUI5icVRDSA0IJthupylOYeA2vzdibOnjD7rBtj7X/0
43.129.255.47200 OK 256 kB URL HTTP/2 p.qlogo.cn/qqmail_head/Q3auHgzwzM7lfibDibZw1dnZN1RFUI5icVRDSA0IJthupylOYeA2vzdibOnjD7rBtj7X/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 80\012- data
Size 256 kB (255782 bytes)
Hash 807d1b2f77c3bbd49f310ba3ea3081b0
82c3bf0c79cc9e70f27469a2f6925f12f09198c8
6ccb8fe64c0112d44a422296e34af3e4c72c77b587b0fb1a6bf9c6e3c4d53f11
GET /qqmail_head/Q3auHgzwzM7lfibDibZw1dnZN1RFUI5icVRDSA0IJthupylOYeA2vzdibOnjD7rBtj7X/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 20 Feb 2023 03:03:25 GMT
content-type: image/gif
content-length: 255782
vary: Accept,Origin
last-modified: Fri, 20 Jan 2023 12:25:58 GMT
cache-control: max-age=2592000
x-delay: 46061 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 255782
chid: 0
fid: 0
x-nws-log-uuid: 2d92d64a-efce-48c7-bc2b-056294ef6291
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash c01cfb90842f2edf3c9b553296b16e37
b93e67a9244689771869c6cecde465286abb9347
89f43e42031ea637d3f6eb380f6ffad8dc5e08db7f0eb84ff9d21c3beb4dd0eb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 18 Feb 2023 08:20:09 GMT
Expires: Sat, 25 Feb 2023 08:20:08 GMT
Etag: "b93e67a9244689771869c6cecde465286abb9347"
Cache-Control: max-age=450400,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c40259bc5bb4ff-OSL
mughsmi.cn/960x80.gif
218.66.171.250200 OK 610 kB IP 218.66.171.250:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 610 kB (610044 bytes)
Hash b27497b12ab8408c575804f5bae22bc2
210a46c5811435945b2ef6227c9eb22a13cd6f78
3f1563e29b1a848d447a38d9890301b760076756cbc5ae594273a3aa59d7664b
GET /960x80.gif HTTP/1.1
Host: mughsmi.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NgxFence
date: Mon, 20 Feb 2023 03:03:26 GMT
content-type: image/gif
content-length: 610044
last-modified: Wed, 01 Feb 2023 09:58:05 GMT
x-rgw-object-type: Normal
etag: "b27497b12ab8408c575804f5bae22bc2"
x-amz-request-id: tx0000000000000001ef58a-0063e5b6f5-1dfa-default
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b05f1ba905358517e310e666dea5cef1
0182b3be708d7df7a99f16409f896e49f64437ed
6c5ce020155502ce56a48ef3d2248085c87e248397e16266ad103075ef495d7b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 01:23:38 GMT
Expires: Mon, 27 Feb 2023 01:23:37 GMT
Etag: "0182b3be708d7df7a99f16409f896e49f64437ed"
Cache-Control: max-age=598209,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79c4025c7d88b51d-OSL
383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.4200 OK 299 kB URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.4:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /960x60.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 63F2E2FE49317130373157E5
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
x-oss-ec: 0048-00000103
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 3
p3.douyinpic.com/obj/tos-cn-i-dy/9758275ccbb9404887d9537125b38ea9
47.246.44.230200 OK 489 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/9758275ccbb9404887d9537125b38ea9
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /obj/tos-cn-i-dy/9758275ccbb9404887d9537125b38ea9 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 488987
date: Sun, 08 Jan 2023 17:06:37 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sun, 08 Jan 2023 17:06:30 GMT
nw-session-id: 20230109010630237CE87A1B921E9239855b2gs03dy
nw-session-trace: 2023-01-09T01:06:30.090734007+08:00 32
x-bdcdn-cache-status: TCP_HIT
x-length: 488987
x-powered-by: ImageX
x-response-date: Mon, 09 Jan 2023 01:06:30 GMT
x-tt-logid: 20230109010630237CE87A1B921E923985
via: n150-050-052, cache4.l2de2[0,0,206-0,H], cache17.l2de2[0,0], cache17.l2de2[1,0], cache4.se1[0,0,200-0,H], cache2.se1[2,0]
x-request-ip: fdbd:dc02:20:277::30
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 016ce8fa9a4734806856c36302115b4d3b62e2f46a5e22340a9e0afd68f42535f61b40eb4c87b4eb4d08a76657d3a06f06c194c2fa0f2a8796bc9ed45e4b03583aa8472a5bf216acbaf65500914d0b34d0a0dc701fd8b2ff6e1948ab36c3d97f4f
x-response-lb: image
ali-swift-global-savetime: 1673197598
age: 3664610
x-cache: HIT TCP_MEM_HIT dirn:4:51830946
x-swift-savetime: Sun, 08 Jan 2023 17:16:00 GMT
x-swift-cachetime: 31535438
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9616768622080397486e
X-Firefox-Spdy: h2
kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
47.75.19.20200 OK 254 kB URL HTTP/1.1 kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
IP 47.75.19.20:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 254 kB (253519 bytes)
Hash f744e995971941b6a95fcd2636f5a545
ac9c1230e04eab9e31512d2afe440fe5f0367dc5
59b1a138fa72df587e61916179965cbd819f91aec53ce6ab606949a7e06b3063
GET /960X60.gif HTTP/1.1
Host: kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 20 Feb 2023 03:03:26 GMT
Content-Type: image/gif
Content-Length: 253519
Connection: keep-alive
x-oss-request-id: 63F2E2FE051F6831368F9381
Accept-Ranges: bytes
ETag: "F744E995971941B6A95FCD2636F5A545"
Last-Modified: Tue, 29 Nov 2022 08:27:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17987192695826819902
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: 90TplZcZQbapX80mNvWlRQ==
x-oss-server-time: 2
587tuchuang.com/960x120.gif
183.255.106.33200 OK 54 kB URL HTTP/1.1 587tuchuang.com/960x120.gif
IP 183.255.106.33:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Hash 1b0debb707f7274e95ae467969832663
7787ea12e377677eccfcbba7f7fc14b18602ddad
688c201ad0040278d8431382eeeb71ea318699cc7d4ccf167132e5818473d55f
GET /960x120.gif HTTP/1.1
Host: 587tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:27 GMT
Content-Type: image/gif
Content-Length: 53701
Connection: keep-alive
Last-Modified: Thu, 15 Dec 2022 13:32:00 GMT
ETag: "639b21d0-d1c5"
Expires: Thu, 02 Mar 2023 07:12:48 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
3p8801.co/gg-960x60.gif
107.148.202.17200 OK 285 kB IP 107.148.202.17:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 285 kB (285260 bytes)
Hash 6d192e74819be9561f98df2a4979d2e9
e15551150d66a4c15d67d754608019af6412a639
0b4d46c5d177386ab60a4903a6d11329e64a172f68726bb15953d1ccee26ff2a
GET /gg-960x60.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.automatic-valve.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Feb 2023 03:03:27 GMT
content-type: image/gif
content-length: 285260
last-modified: Fri, 10 Feb 2023 05:55:38 GMT
etag: "63e5dc5a-45a4c"
expires: Wed, 22 Mar 2023 03:03:27 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
66888aaa.com/0c443e4928c246a7a0f9fe194e9fbe8c.gif
45.61.212.216200 OK 0 B URL HTTP/1.1 66888aaa.com/0c443e4928c246a7a0f9fe194e9fbe8c.gif
IP 45.61.212.216:0
Analyzer Verdict Alert quad9 Sinkholed
GET /0c443e4928c246a7a0f9fe194e9fbe8c.gif HTTP/1.1
Host: 66888aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a3fa07-767a7"
Date: Tue, 14 Feb 2023 02:55:10 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 22 Dec 2022 06:32:39 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-16
Content-Length: 485287
cdn.u1.huluxia.com/g4/M02/24/56/rBAAdmO9U_uACHDlAAjbld5zaiY343.png
104.250.44.5200 OK 0 B URL HTTP/1.1 cdn.u1.huluxia.com/g4/M02/24/56/rBAAdmO9U_uACHDlAAjbld5zaiY343.png
IP 104.250.44.5:0
ASN #137280 Kingsoft cloud corporation limited
GET /g4/M02/24/56/rBAAdmO9U_uACHDlAAjbld5zaiY343.png HTTP/1.1
Host: cdn.u1.huluxia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 580501
Connection: keep-alive
Server: KS3
ETag: "62ed8a3729a0ef26d8c9222b9b8ab2f4"
Date: Mon, 20 Feb 2023 03:03:27 GMT
Last-Modified: Tue, 10 Jan 2023 12:03:07 GMT
Cache-Control: no-cache
Accept-Ranges: bytes
X-Application-Context: application
x-kss-request-id: fg3jat80gq38bs6oe5ib1nsilldb3kf7
X-Info-StorageClass: -
Content-MD5: Yu2KNymg7ybYySIrm4qy9A==
x-kss-meta-huluxia_upload: huluxia_upload
x-link-via: lsj11:443;lsj12:80;
x-b2f-cs-cache: no-cache
X-Cache-Status: MISS from KS-CLOUD-LSJ-12-03, MISS from KS-CLOUD-LSJ-11-02
X-Cdn-Request-ID: 3e552e158cdba517740eaa1414be36ee
img.solomon89.xyz/images/63ba73b1a92cd2097e833f9d.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.solomon89.xyz/images/63ba73b1a92cd2097e833f9d.gif
IP 38.54.37.233:0
GET /images/63ba73b1a92cd2097e833f9d.gif HTTP/1.1
Host: img.solomon89.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/9758275ccbb9404887d9537125b38ea9
X-Firefox-Spdy: h2
img.1201555.com/images/63d2101183b5991e572600e7.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.1201555.com/images/63d2101183b5991e572600e7.gif
IP 38.54.37.233:0
GET /images/63d2101183b5991e572600e7.gif HTTP/1.1
Host: img.1201555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2
img.3852a.com/images/63d8c26e276cfc6a72c0ef11.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.3852a.com/images/63d8c26e276cfc6a72c0ef11.gif
IP 38.54.37.233:0
GET /images/63d8c26e276cfc6a72c0ef11.gif HTTP/1.1
Host: img.3852a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/23257b6cbe384ef98d5050a4871fc301
X-Firefox-Spdy: h2
595tuchuang.com/960x120.gif
183.255.106.33200 OK 0 B URL HTTP/1.1 595tuchuang.com/960x120.gif
IP 183.255.106.33:0
ASN #9808 China Mobile Communications Group Co., Ltd.
GET /960x120.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 20 Feb 2023 03:03:27 GMT
Content-Type: image/gif
Content-Length: 184991
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 15:25:24 GMT
ETag: "63d68fe4-2d29f"
Expires: Fri, 10 Mar 2023 15:14:37 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
img.u1669.com/images/63523ea35fe50f0585d3ef84.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.u1669.com/images/63523ea35fe50f0585d3ef84.gif
IP 38.54.37.233:0
GET /images/63523ea35fe50f0585d3ef84.gif HTTP/1.1
Host: img.u1669.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/3809564fecbe4e9c8845a85d95c7a81d
X-Firefox-Spdy: h2
tu.jnctupian.com/jnc/jnc60av.gif
206.2.168.107200 OK 0 B URL HTTP/1.1 tu.jnctupian.com/jnc/jnc60av.gif
IP 206.2.168.107:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
GET /jnc/jnc60av.gif HTTP/1.1
Host: tu.jnctupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/onex
Date: Mon, 20 Feb 2023 03:03:25 GMT
Content-Type: image/gif
Content-Length: 529649
Connection: keep-alive
Last-Modified: Sun, 19 Feb 2023 10:35:20 GMT
ETag: "63f1fb68-814f1"
Expires: Tue, 21 Mar 2023 10:37:14 GMT
X-One-Cache: HIT
Accept-Ranges: bytes
sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
120.77.166.72200 OK 0 B URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/js960x80%20.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /js960x80%20.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.automatic-valve.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 20 Feb 2023 03:03:27 GMT
Content-Type: image/gif
Content-Length: 394237
Connection: keep-alive
x-oss-request-id: 63F2E2FFB4DCFB333216E496
Accept-Ranges: bytes
ETag: "03123A07739F511B3306D13415CD72B1"
Last-Modified: Tue, 20 Dec 2022 14:44:22 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 13376170837400656090
x-oss-storage-class: Standard
x-oss-ec: 0048-00000103
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: AxI6B3OfURszBtE0Fc1ysQ==
x-oss-server-time: 1