muxiv.twoproxy.org/
172.67.138.60200 OK 88 kB IP 172.67.138.60:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (40793)
Hash 89076a47414c3e8b2fdc695c35cef468
9a6624d33b23a166aec8419ce67af80b8c90abba
ece555092ad2963036b947646c7e2d010141dc8cbd169048b9e5adae5501b0ee
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LeAmDdOMk7kTj5XC4xjy9ZI8fvoFfjcb4EP9nkjjy8rDDnkS8%2Fh88LtcK2wfVhoJN3CKUhlcyFG3HK0NXQvu96E%2FN5t5TLWH6HtrGdz4DeiUOl92auyRak3B%2FKssZhlXC4xI%2BCo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 745bd17a0c38b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 02:44:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: V8lLxua6LrfWM6mH52d9__6ZVGiqtIvwD_q65XiFyNg-J7B0VWsAeg==
Age: 2032
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -27Roi2EdRPRs1J_cMzZOu8O4mDGHPA38aVWDLMxEh1YDIKsOjmV_g==
age: 7396
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15268
Expires: Mon, 05 Sep 2022 07:33:01 GMT
Date: Mon, 05 Sep 2022 03:18:33 GMT
Connection: keep-alive
muxiv.twoproxy.org/_nuxt/147e24f9d31f2b93d27a.js
172.67.138.60200 OK 1.8 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/147e24f9d31f2b93d27a.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (3320), with no line terminators
Hash 608a85046593dfd8d60aefbc02989f87
fd5aaad6e55e621035a9e4e1bbc10fecde14e40b
424e337b67c35869e66fa99403b7eaf32a3046320d308631aae4cbb8ec86d8ab
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/147e24f9d31f2b93d27a.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kx6hA1oTrqL10Aue1QWKIQiTQjVGPAkIfrjQrgaGap%2BI39sV7iUlALGaFBIR%2Ba%2FaoO8fISJ2kXfmBq5TMg1MKpCLEs0h7k8cZmtkui9ouHc7ab%2Frc5Gx1C0Hd%2FX8Kju2Desm5xc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17bfd6db4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/_nuxt/87226e8cad698f52350c.js
172.67.138.60200 OK 3.4 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/87226e8cad698f52350c.js
IP 172.67.138.60:0
File type Unicode text, UTF-8 text, with very long lines (6027), with NEL line terminators
Hash fae17e00ee8006d9ddea631335abe94f
21d20d1ba12d22052b588fdebbf38774f0f3f75e
29df3825df1355b9eaaf50c26e3876e7e0070f8eba42d4aab23203cbf1c22ad4
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/87226e8cad698f52350c.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8aBoA%2BeDy%2BxKED3Kuvo2HPVjSkA3zx68DqnKrUxHkfq9H2sEWL%2FwR%2FTv2sHEGPRnY0VYU3JX54vboTX%2BGGiJjm3AowDdio9C90sYg5bPI1vJiaX6S7gURtEyx%2Fgo6pT3lXbb%2F2g%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17c0d77b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
i.imgur.com/TH5z5DM.png
151.101.84.193200 OK 1.5 kB IP 151.101.84.193:0
File type PNG image data, 94 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 063ed504acc2ee96cec413d248379761
c2ba3db79e0b25c801ff431539a63d17014533ca
5718709bc4408d9d06689ad12333e3e79299dd44abcf447ca6a5718aedc8a517
GET /TH5z5DM.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 25 Jul 2021 13:23:59 GMT
etag: "063ed504acc2ee96cec413d248379761"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 05 Sep 2022 03:18:33 GMT
age: 3170477
x-served-by: cache-iad-kcgs7200039-IAD, cache-bma1670-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662347914.681712,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 1476
X-Firefox-Spdy: h2
muxiv.twoproxy.org/_nuxt/b5577383a3ee48e566e1.js
172.67.138.60200 OK 3.5 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/b5577383a3ee48e566e1.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (10290), with no line terminators
Hash e843a89e9112baef11d9624d70b406fc
3acd876820264693bf3864ae42350512aa77bea0
2db0ab03b11e43d3d06497bd031cdbc970ecf827fae979b11aa5b2e39ba43a4c
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/b5577383a3ee48e566e1.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sKL%2BkOGEnjFR%2FMpE9tVPwfce0YZKueJWfk1cQfj86eu3UlQ%2FZhQyX8jZI808i1vxhh3%2BTYOCRBMhitlOgVa8v7NKtvEo6IuE%2F3AOQMSPOmzO79mK%2FgXdD72hWaeuwcPFXPdPST0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17c0eceb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/_nuxt/fc4239348a2bb89749af.js
172.67.138.60200 OK 60 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/fc4239348a2bb89749af.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (65485)
Hash 807863e861289c39a7ca5a9d6ebbf9ef
d8ac57cfdfcde322a429497af68cde4063e3b8d5
5a90b972aa1b9f9184f2e7a46226c03287b6159703c1f6f9e4b1eadb4642ebe3
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/fc4239348a2bb89749af.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QKPVhVgJBtaooNdiu2aGulQQthKMFzkE%2FUYamdnnPWFqcIvbTuCGpg6Bv0wXIxBPbcETalo9%2B8NdQe44JZ%2BvXOUDVXRzLqst5v%2BlwlIB9gTNcm1c5PmTJZOpxlbxXauImnazzwI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17bfd70b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
muxiv.twoproxy.org/app/apx19.js
172.67.138.60200 OK 2.6 kB URL HTTP/1.1 muxiv.twoproxy.org/app/apx19.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (9183), with no line terminators
Hash 9ea8acd8d74e4f328d558b64219e02c5
156ce99860c738bee0a97dbe9c543a83f4fd5457
cc0dc5bf2c19d0830dd3962179d22ed40f200ecf8dc905a4e64bba0c1ccf9dff
Analyzer Verdict Alert fortinet Phishing
GET /app/apx19.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Sep 2020 18:46:59 GMT
ETag: W/"5f610c23-23df"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KN8Hq9uhfDw6wrlR0Qv278V%2BqDg%2FPqx%2FwiDAn9QYcstZO1PzkwZmR4FgSau4RyNxue8gc%2BG7BsuBYsqbRnwWlMfAKuCmThAwcgFk8G4jnuZacTewrvei7AUfJZurBxpb%2FbFAdW0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17caf1eb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
glimtors.net/ntfc.php?p=2651991
139.45.197.251200 OK 6.0 kB URL HTTP/1.1 glimtors.net/ntfc.php?p=2651991
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (14626), with no line terminators
Hash 6a6b64674c4ea7b05443644c439ea9da
19aaf11886e1dabdbc1a19dd810cb7cc8b319211
d27b5db2fe1d71cd60c3663bb13d4eb6479f3d0107f3900f758091b968f0ea6f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /ntfc.php?p=2651991 HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript
Last-Modified: Mon, 22 Aug 2022 12:18:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63037403-3922"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
muxiv.twoproxy.org/_nuxt/2ad1ed3765d820ff21a3.js
172.67.138.60200 OK 6.1 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/2ad1ed3765d820ff21a3.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (30494), with no line terminators
Hash ca9707fae4489c898ebcfcd7154b44bc
a5691f54144a7e625190e7f02103050b4541f722
787011ebccf3057d4ad5581afd457b6841fb9c759deba9458b33d9ecfa649c18
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/2ad1ed3765d820ff21a3.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9qbtmSZC%2FqpxDv2pOYs1Kipol8JgIRUjw8IceZkrnpT8%2B%2Fww3I7oHkM9e76b28NE35zWe5E8ChHbSF%2FioepOvJmZ1iZm%2BEgRpDGrW%2FBXx%2B5NrvLeYbruO8YbvCMn71vrh%2BPbP%2FM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17c5db6b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/_nuxt/89fff66943eb31d29908.js
172.67.138.60200 OK 102 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/89fff66943eb31d29908.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (65485)
Size 102 kB (102295 bytes)
Hash f1d258aad854e7ffc3d789aa2d063f1f
a84ab1b7a79e5848919950755518b26d7593aaab
752628e7deef973cf661402fcf4d6b2a81260178cc90fbf9e07e0dc781ec342c
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/89fff66943eb31d29908.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hx%2FuGj0XhlzZwPEvNNUb9Qw%2BrvrfOxSM6RxpzFB0vGYG5QeWA4pevFjiNDjz0xiOqKSX5x653xKu59O01UeqUs%2FJane3HdKGb86EODN%2FdXTKnSGbkjyysYTNoAZTM5zgLutJtBo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17bfec8b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
inpagepush.com/400/3064505
139.45.197.237200 OK 32 kB URL HTTP/1.1 inpagepush.com/400/3064505
IP 139.45.197.237:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3937a37fc174a6a53d36563a9b5a4d75
ca52485219fa8b8780a593df62079a412daf8f52
e6f623fc7b841c7260e2bb412bd87baab9583d877a7b009f5e0af453cd261ef0
Analyzer Verdict Alert fortinet Malware
GET /400/3064505 HTTP/1.1
Host: inpagepush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 3a7e9e2d2594ff65d30771e352227203
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=938b5b5dafe14da39c3876277efef91d; expires=Tue, 05 Sep 2023 03:18:33 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
muxiv.twoproxy.org/hy.js?q22q2q2
172.67.138.60200 OK 18 kB URL HTTP/1.1 muxiv.twoproxy.org/hy.js?q22q2q2
IP 172.67.138.60:0
File type ASCII text, with very long lines (56131), with no line terminators
Hash f12634066d38736854588dc61b5ba109
623e90c430f1609e59e16407553e2d2ff8882d8e
7ca898a6218b8e61a9a999ffb0c76a9c60f86dfd4353b2496225e6473c72c0de
Analyzer Verdict Alert fortinet Phishing
GET /hy.js?q22q2q2 HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 Mar 2021 05:54:49 GMT
ETag: W/"603dd329-db43"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QGxinIraI7mc0PxNXQQ8r1it6EK91QHXQlAL3aPJ0xiGDgqcnWgQAQ6UYfhjekcSdXsEGs7FE5BUbn1U8ebbfvpHDEiHaeQ9ofz7cFmeHTuKGK8ANDpxU41ByfZBjYNsfo3ruyQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17cbdebb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/app/apx14.js
172.67.138.60200 OK 2.2 kB URL HTTP/1.1 muxiv.twoproxy.org/app/apx14.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (7663), with no line terminators
Hash 5fd0d992c153321728eef72725f9e2f1
11af100c190b0c91d3126ca0c792aa6cd3954897
f39352e9834fda1868dab410b72a2850f516686f140843e9f0eef835be503330
Analyzer Verdict Alert fortinet Phishing
GET /app/apx14.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Sep 2020 18:26:19 GMT
ETag: W/"5f61074b-1def"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M1kRlI%2B5d3dRR2Wz38K2yXjB13z7udaw4PtwKavJUxTqey1g8XbitbW49J7vdnIMWGXjshxiVnRETuXHqO3kZT2dlF%2FgyBtZxpczwyDOCcKo6svZySP1doUPDMcYwG967R85yak%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17d1f68b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 86e843169a91480ba2ea3d4c1db9806f
3198f800fa3ad635d3f8f725177040ddcb9048fe
4c09e3edecd5bf94ac0165f53c9ef828b386f22cfb7496762c67c9ce483f70b2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "4C09E3EDECD5BF94AC0165F53C9EF828B386F22CFB7496762C67C9CE483F70B2"
Last-Modified: Sat, 03 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8904
Expires: Mon, 05 Sep 2022 05:46:57 GMT
Date: Mon, 05 Sep 2022 03:18:33 GMT
Connection: keep-alive
muxiv.twoproxy.org/app/x12.js
172.67.138.60200 OK 3.0 kB URL HTTP/1.1 muxiv.twoproxy.org/app/x12.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (11180), with no line terminators
Hash 7f0c811d15a31a93662cfa30df4ef5ea
3f5b8f499bc7f50d2315eadc7cf043d317b60b95
af3050874dc2886642989014b75a7b4734239520ee7d36ea06d4527e41d92beb
Analyzer Verdict Alert fortinet Phishing
GET /app/x12.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Sep 2020 18:26:18 GMT
ETag: W/"5f61074a-2bac"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rKxdlNPbiLsrTQQBtX1W2WEB%2FLaCt5jTU5lgRewiwKaqtuT%2BWxlU654I8sM4wVY%2FMz6oKlpVvNooDVCMuBVT0qpBD5hhYMwgeMQe2NoU0k5KSF8P%2BRApa4geQwX8Nw1vZmiz8b8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17d3e30b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/zpp/zpp4.js?q22q2q2
172.67.138.60200 OK 14 kB URL HTTP/1.1 muxiv.twoproxy.org/zpp/zpp4.js?q22q2q2
IP 172.67.138.60:0
File type ASCII text, with very long lines (38995), with no line terminators
Hash 3c741ddc90399bc2910b2cdc0a826716
163182c6b04f146fbf6de424ead05c91e59e3c51
e6753c7588e28e17f44aa00cbe8c314de3f2bbcb8e892a439eed11dd989b1d84
Analyzer Verdict Alert fortinet Phishing
GET /zpp/zpp4.js?q22q2q2 HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 Mar 2021 05:54:51 GMT
ETag: W/"603dd32b-9853"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UZ38jJm05jy%2FJL97zJ%2BmDOYw8L%2FM7di0TrBZkdkpKl4%2FlQBU2f%2FKCIbPU7A%2FvYmdkVGuNV600hmzK3%2FH0xdmqYr7EPO12nv%2BubdcyTQNUOTZWK20PrGvxB3p7YQWNbIl4aAmLxM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17cfe0db4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
algothitaon.com/5/2632704
139.45.197.237200 OK 23 kB URL HTTP/1.1 algothitaon.com/5/2632704
IP 139.45.197.237:0
File type ASCII text, with very long lines (62338), with no line terminators
Hash b7e4f048eb722d1fc5b4c489b651535e
e9d0732e01ba10a9fe18d0a0d04e28f814d7fc64
b7eb0990cd5db51b506c7510a7029538a6f507c9bf0f72a640c50e3f0dff84d3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /5/2632704 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 4247e8cc64b43c0d3b6455c66e2bd600
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=20c03a08024c413e8e4e4c5f8064fa34; expires=Tue, 05 Sep 2023 03:18:33 GMT; path=/
oaidts=1662347913; expires=Tue, 05 Sep 2023 03:18:33 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
muxiv.twoproxy.org/_nuxt/img/7abce56.png
172.67.138.60200 OK 1.3 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/img/7abce56.png
IP 172.67.138.60:0
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash 7abce56161cb74be77dea78d639a1770
8ab1bbaab83ee698f4b36b9871543e52e3aef640
90253be927564f92d72201c3a6692a7167789d50d4794e3386a0dca84a81b2b4
GET /_nuxt/img/7abce56.png HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TFiat%2BVBx1pOpN5kF1edG82PkzKhvY8aw%2FUgj4xOcQmmsEncK4JAK0V4ozyoxklEEUvKMUcIJzz2H4h%2FDstjncvaBJzFtJmA1dr0qSWejog7m75m%2BICx0wdfSY6IcFy2OsQZezs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17d8e5db4f4-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ea5b12149117ef7d14ee80ffc62cdbc2
2961d14ab1211a918ea660683d10b54349f120c3
5ede5af524d1907c35f97a312879efae696938954d31e5e6031efe13164c0d1e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EDE5AF524D1907C35F97A312879EFAE696938954D31E5E6031EFE13164C0D1E"
Last-Modified: Sun, 04 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5067
Expires: Mon, 05 Sep 2022 04:43:00 GMT
Date: Mon, 05 Sep 2022 03:18:33 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 86e843169a91480ba2ea3d4c1db9806f
3198f800fa3ad635d3f8f725177040ddcb9048fe
4c09e3edecd5bf94ac0165f53c9ef828b386f22cfb7496762c67c9ce483f70b2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "4C09E3EDECD5BF94AC0165F53C9EF828B386F22CFB7496762C67C9CE483F70B2"
Last-Modified: Sat, 03 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8904
Expires: Mon, 05 Sep 2022 05:46:57 GMT
Date: Mon, 05 Sep 2022 03:18:33 GMT
Connection: keep-alive
muxiv.twoproxy.org/_nuxt/cb69286183d1c92fafee.js
172.67.138.60200 OK 45 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/cb69286183d1c92fafee.js
IP 172.67.138.60:0
File type Unicode text, UTF-8 text, with very long lines (65472), with no line terminators
Hash 41bce0d947a8cdf0ac45f2d9e8d2ad12
e82dc9b49f01a87b5fada9970805cc9d6c5c5e72
8b6d7389e76acc43f75b6210ade58d31e5fa8bc8cd64d1d7708a2761c85a783d
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/cb69286183d1c92fafee.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YWuPbOoEiJbA4xNKuMwaWko%2B9KGoNMnCK04KTixVj25HkifKc0bfYetY3r76bFQq5kaqY%2BRHnsIidxUtwja2an77H5VCB66kWA7e9LA2lrXyvN8vxpLbGnPDpmPNjSj4QOerbT8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17bfa8b0b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 373466
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
muxiv.twoproxy.org/_nuxt/img/cd2c505.png
172.67.138.60200 OK 51 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/img/cd2c505.png
IP 172.67.138.60:0
File type PNG image data, 982 x 982, 8-bit/color RGBA, non-interlaced\012- data
Hash cd2c505db1b637551b5868210e88f499
8f6337718c6efd1a787e3bd5b7155de749da603a
5b64225bb19f7646cce683457f83566da3600c3ac571d1f412a852c872d0711e
GET /_nuxt/img/cd2c505.png HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:33 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JrEDcMCxXPEdufZSxVRfRlsOTxfbVjbMcAO3iMYFnB6BDyeaY%2F1VLAPWKsfGw51hGnKDD7MGP9IFFffANt1QhVpnHihA%2BYZhLPKr60jqfCEUjWhzuwVRWu6wFARZ2ELA5BZam9E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17d8879b500-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
matomo.hellohi.me/matomo.js
104.21.94.42301 Moved Permanently 169 B URL HTTP/1.1 matomo.hellohi.me/matomo.js
IP 104.21.94.42:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f3099a531821c476589c3d2d00d53772
8e539d05a8355d6835a56f94b75f405c6e55f6f3
a5287e1cf9fe9dc106bd2172a5b175c7833427866b7819872b1b6fa34b66daef
GET /matomo.js HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://matomo.hellohi.me/matomo.js
Referrer-Policy: origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HHotmmB61AEZ1U9koUEXyvjXKH7WH3mw6HtpwCDrEhGrvSYk0JXgULGYG2r9uRiYj%2BJqbaZo4CiMbK0Mp%2FlKDTr7sssm32QdxbsD3SnHw3wGuqFZUzDxABwNI6wV1k5mtHMcmw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd17e883eb4ee-OSL
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/helper-js/
172.67.138.60200 OK 1.0 kB URL HTTP/1.1 muxiv.twoproxy.org/helper-js/
IP 172.67.138.60:0
File type ASCII text, with very long lines (2612), with CRLF line terminators
Hash d00b1dd587363340de186caadd541607
97f51c3928148b1b7ac4601eef3f6ffbbaf084d1
ea177eec833967126333efa944f21bf640cf9ce042b6b5195d2571bcbc2822f9
Analyzer Verdict Alert fortinet Phishing
GET /helper-js/ HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: s-maxage=0, max-age=0 no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ssTlI1HhPO8RjlH9JUaN1vwpZHxsL7hNEz%2BiYgSyzDDFAkh2mv9mIoRsRj0%2FaB7xOohcUmwe%2B0j26XXzCW8JodX8BLTGFZNsK6qVrU9FJzrYNuhScdHy6mYerFPBENMyNDCaJfY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 745bd17f69d8b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
animatedbothervogue.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js
192.243.61.225200 OK 13 kB URL HTTP/1.1 animatedbothervogue.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37113), with no line terminators
Hash 5bc89a4b8d9bfc6cc7fb39cd2ee22b2c
533017797fa32496724716e4986576b318063803
1dcd1930e09db7250ecc682d9306b2f05eba531b31d194875d11a14ed444ff43
GET /a2/86/90/a286902791a7f4c98bcb1e812322cd78.js HTTP/1.1
Host: animatedbothervogue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4daa5ac6a7e9b9bb69071a5133794044
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
algothitaon.com/42/38?z=3372123
139.45.197.237200 OK 0 B URL HTTP/2 algothitaon.com/42/38?z=3372123
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /42/38?z=3372123 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: scm=1; OAID=d51a07be77d54c83aacef6c9f2441967; oaidts=1662347913
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:34 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 8939d454813754e9ec6fb8da1a1760f4
access-control-expose-headers: X-Sc
set-cookie: OAID=d51a07be77d54c83aacef6c9f2441967; expires=Tue, 05 Sep 2023 03:18:34 GMT; secure; SameSite=None
oaidts=1662347913; expires=Tue, 05 Sep 2023 03:18:34 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
at.alicdn.com/t/font_563553_wagp8cdsjta.js
47.246.44.252200 OK 3.7 kB URL HTTP/1.1 at.alicdn.com/t/font_563553_wagp8cdsjta.js
IP 47.246.44.252:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type ASCII text, with very long lines (9455), with no line terminators
Hash c9e38284bb449c11ce7f27e451a40a77
00c59ca4e4781bb34c507394e8afe3e1b8ee2cc4
511ca409a1509f513e8ea46ee65ebb625320c4861d87a8edc518516fa3ef08dc
GET /t/font_563553_wagp8cdsjta.js HTTP/1.1
Host: at.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 26 Aug 2022 22:51:37 GMT
Vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Origin
x-oss-request-id: 63094E799DDDB03535060002
ETag: W/"6A03A48A65B158888A99F70F85CE74C8"
Last-Modified: Sat, 25 Dec 2021 02:27:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10643471748738264208
x-oss-storage-class: Standard
Cache-Control: max-age=63072000
Content-MD5: agOkimWxWIiKmfcPhc50yA==
x-oss-server-time: 86
Ali-Swift-Global-Savetime: 1661554297
Via: cache39.l2us1[0,0,200-0,H], cache2.l2us1[1,0], cache4.se1[196,195,200-0,M], cache3.se1[197,0]
Age: 0
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 05 Sep 2022 03:18:34 GMT
X-Swift-CacheTime: 62278383
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9716623479141355284e
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 05 Sep 2022 02:38:16 GMT
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 03:07:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RMZqBKOQDvTrQDCWbHfOkr8F5FbwzoeCOJU9RwPOAsPwnLPRi0IYtA==
Age: 2418
algothitaon.com/1?z=3372123
139.45.197.237200 OK 4.0 kB URL HTTP/2 algothitaon.com/1?z=3372123
IP 139.45.197.237:0
Hash 11fda6a0be54baa5b367f372a7fef3f4
4dbacaa26bc63d7aeefc6baf28f5759e12aece35
f943537ae003854677f39cae4a9895f7dbe72200daeb1fe0f5c257b2b0f2de79
Analyzer Verdict Alert quad9 Sinkholed
GET /1?z=3372123 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:33 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 026fa7c521606091982ed5cbccce34bb
access-control-expose-headers: X-Sc
x-sc: _uQw-v3vBTgSoVe7z9SafKZgc2NmPgrPmYAGpt3eKmiuLZKBIbtbvCgOTkCKsHAA2RZsl_eDIvEyjpLctWJoy6PCj4o=
set-cookie: scm=1; expires=Tue, 05 Sep 2023 03:18:33 GMT; secure; SameSite=None
OAID=d51a07be77d54c83aacef6c9f2441967; expires=Tue, 05 Sep 2023 03:18:33 GMT; secure; SameSite=None
oaidts=1662347913; expires=Tue, 05 Sep 2023 03:18:33 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0ff76b56a977edaa184f860fad3a8ede
43716c36502250a9ae0d961669d37367b3712a2f
826b59860b043d8561287b1fda0e363d1fd47b5a3c5568604dbd5edab5f1438f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "826B59860B043D8561287B1FDA0E363D1FD47B5A3C5568604DBD5EDAB5F1438F"
Last-Modified: Sun, 04 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3190
Expires: Mon, 05 Sep 2022 04:11:44 GMT
Date: Mon, 05 Sep 2022 03:18:34 GMT
Connection: keep-alive
dozubatan.com/400/4495524
139.45.197.237200 OK 32 kB URL HTTP/1.1 dozubatan.com/400/4495524
IP 139.45.197.237:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 89daed34a36b8c4a78c4830d0d7d78ab
124c1ffa344384114138dfe2f6db37d046d98349
804421e84317a37a2a875c24f5251bec7fdf98259dee72797c6d97e710e91fa1
GET /400/4495524 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 9063e274faa0393d1d7655ace84c2fb1
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=7b2cdb25f71945fda734035c569358de; expires=Tue, 05 Sep 2023 03:18:34 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
algothitaon.com/27/8ccc88619026835a3c9fe26852e41eb0
139.45.197.237200 OK 132 kB URL HTTP/2 algothitaon.com/27/8ccc88619026835a3c9fe26852e41eb0
IP 139.45.197.237:0
Size 132 kB (131924 bytes)
Hash 6437e19c18d54ec8e91de8fefe3f9673
85868b06466222a9b290776af6d8ddb6f3ba7427
db669350e1085b5f07df9c93eac3e27655c530be1410c960d8f5005cccd805d9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /27/8ccc88619026835a3c9fe26852e41eb0 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: scm=1; OAID=d51a07be77d54c83aacef6c9f2441967; oaidts=1662347913
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:34 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 01 Sep 2022 07:56:33 GMT
expires: Thu, 01 Oct 2082 07:56:33 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
algothitaon.com/5/2632704
139.45.197.237200 OK 23 kB URL HTTP/1.1 algothitaon.com/5/2632704
IP 139.45.197.237:0
File type ASCII text, with very long lines (62337), with no line terminators
Hash 846556106541d45e390458634d3d20f6
864a37f50654e7b791a7bce3ea1e6db0591ca2e1
33ace81a38d271f6d2de1b80e931699681affc26488ecbe79ddd1062f152dc1d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /5/2632704 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 2541b014b063e10e5a053e6efbf1cb04
Link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://e2ertt.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=144411aae9644d388c486957035e1967; expires=Tue, 05 Sep 2023 03:18:34 GMT; path=/
oaidts=1662347914; expires=Tue, 05 Sep 2023 03:18:34 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77d035f38a45e8a1ec30d5fe9611880b
01cf34de95257da64dac90edf5a86203f1160271
7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1359
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:34 GMT
Last-Modified: Mon, 05 Sep 2022 02:55:55 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 7dad27bc3c085ccd2f7b51d4350d9fd7
c0f84b565f68bec24ad547383a485fe69e44c277
af5c500a7fff645e0b9dfa22e5bdc967e6adb55173f13e5f536c3a5e8202fa2c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 03:02:16 GMT
Expires: Fri, 09 Sep 2022 03:02:15 GMT
Etag: "c0f84b565f68bec24ad547383a485fe69e44c277"
Cache-Control: max-age=344020,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 745bd1820863b518-OSL
rndskittytor.com/400/4837723
139.45.197.238200 OK 32 kB URL HTTP/1.1 rndskittytor.com/400/4837723
IP 139.45.197.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 960b95eb742332275eb496a2fb068c3a
34b1375a957fcb72919b0e4f0a6e5c4e71da7a7e
82cd3c612b2d965628c79b590ab863169c3a8e77552461724ca4c972f0d35f2a
Analyzer Verdict Alert quad9 Sinkholed
GET /400/4837723 HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: f7b400ef9e15fc3cc7fd9776f77b4757
Pragma: no-cache
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=34d2af4ca4a84571b60b49cd368efb9b; expires=Tue, 05 Sep 2023 03:18:34 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
creepingbrings.com/sfp.js
104.21.234.232200 OK 23 kB URL HTTP/1.1 creepingbrings.com/sfp.js
IP 104.21.234.232:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 487ad2b48cd98e36abf708a3b60f4a36
ccf7b110523d50bb619becd48c3f013cc5fdce87
768eff747f795e1232d182eb859170e32d4f06ed29da872c09af5363c459668f
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: b03de984a2fb232544a5f7b4cd00336a
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Mon, 05 Sep 2022 03:18:34 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mTqhx59wKqn%2FFjhySsJAzsFxH6yEfQNXBboc4JlouE7vR%2BPcGCvzpLIPFmlNzRtdU9huPWWzN4adgZn1p4otiAGS7rXJ8mad6q5PKP98cYBhi%2Fff1IsfNSDAILdEj4gKGxC9azU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd181f96b74e5-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/_nuxt/708483e558d071b43903.js
172.67.138.60200 OK 1.7 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/708483e558d071b43903.js
IP 172.67.138.60:0
File type ASCII text, with very long lines (4373), with no line terminators
Hash d18504526a070ce502bb29ca29b36015
228af3dfb55efc1aea97a77e7818d25a5246b810
ccc5c5161f5995b4611b063f62a1afd98acac51e54f02b17d3bfb02606f5441b
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/708483e558d071b43903.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:34 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mCX3VMI1MGayLo2dmKbI3rb9OM%2FJZwJ7arbn8eFdvht7t5S1LX4Kz7WWktnxMv1aAktIqRR6cKW%2FrdddWohOC6rbpOoklEUANTfaD71um%2FSe6I2cPZ6BHniWF3PfFU9pX%2BQ62nY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd1822ca0b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 41ea586f0e66dcd46f50ab3938543b12
d7a3d6a40066652fc85cdaab9e613246b6af4aab
60b133ec87e89ec28689b760f6ce265eee0e935dca93f42543885a05f8b19a79
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 18:25:21 GMT
Expires: Thu, 08 Sep 2022 18:25:20 GMT
Etag: "d7a3d6a40066652fc85cdaab9e613246b6af4aab"
Cache-Control: max-age=313005,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 745bd1818c23b500-OSL
muxiv.twoproxy.org/_nuxt/d7520263eb6fa01cd23d.js
172.67.138.60200 OK 1.8 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/d7520263eb6fa01cd23d.js
IP 172.67.138.60:0
File type Unicode text, UTF-8 text, with very long lines (4395), with no line terminators
Hash a019cd0f9594ad5fabc345c4f1c5ee61
124ccdbd5d757d703df3f588966d46ad01629ef3
369b3eaacc3465b039d7a06c3dd90c61ed9e3e4e42dde07f23a1f987d7661f71
Analyzer Verdict Alert fortinet Phishing
GET /_nuxt/d7520263eb6fa01cd23d.js HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:34 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:34 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bchsVGsKjN11NqiZoNRDGqizMbtQNUE9YVNJEhwzwkK14qkj%2FlxMbQHb38%2FzxPrk2hdtbHGFHxkUGjw1WAw1NrY2DDcOp175id%2BURGJyLA9lfLSkm7CXQOCzMWzZAoBJdjzibEo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd182bcfbb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
my.rtmark.net/gid.js?userId=20c03a08024c413e8e4e4c5f8064fa34
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=20c03a08024c413e8e4e4c5f8064fa34
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 45b39756701315f2d55cff9d56b10ace
edf122a8a5148b808400b2011c80a6c3fbeabe93
52a27bb96eb56e938a2bcd404c1d7a4829c0096d145b7bc06a4937fbf66d6d82
GET /gid.js?userId=20c03a08024c413e8e4e4c5f8064fa34 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:34 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=20c03a08024c413e8e4e4c5f8064fa34; expires=Tue, 05 Sep 2023 03:18:34 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
matomo.hellohi.me/matomo.js
104.21.94.42200 OK 22 kB URL HTTP/2 matomo.hellohi.me/matomo.js
IP 104.21.94.42:0
File type ASCII text, with very long lines (1601)
Hash 0e9625bc08cfc8c17204356028599e2a
fec74172a89e216495e75157d27e8ad1849a1c67
4bbd99a00a8f828465a695219958637c8e30625b228202f3eae160fb8da7c448
GET /matomo.js HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://muxiv.twoproxy.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:34 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 19 Aug 2022 17:37:06 GMT
etag: W/"62ffca42-fbde"
expires: Mon, 05 Sep 2022 04:01:59 GMT
cache-control: public, max-age=14400
pragma: public
cf-cache-status: HIT
age: 995
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2FB5ziCNf6EIU%2FOB1l7nfbl5QmLCRSB7wcIIY7edBPyhclkZJb8Lb7rjd5LoVcWUxTy%2FEXWwYjebCzJG%2BgyWLxeJ396JSKGlpVBDNh5r77%2Fj6kmWrqFaS3VKNGWPwoIvxSYBlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd181fea7b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.192.162.188200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.192.162.188:0
File type ASCII text, with no line terminators
Hash 3a0c3baf71ab063586b799c83ff930aa
74f62fe49963501c1a4b5694ea46fed0d77a01b7
5621918129210f6a615f5d85d7a16036a7e2b1d5dcf3492646f524caafc283ba
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:34 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-credentials: true
set-cookie: uid_id2=da65bc9a-f31d-466d-8211-af247f6281ce:3:1; expires=Thu, 02 Sep 2032 03:18:34 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yzzQ1BBLDPYV1LMPOfSb1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 54pjkIUmeLjdWL4yEvKWcN/SP+g=
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 30536626aec14c910cd30b5583f7ac65
e121ab5b767b6fc038cc9ea495406ae1d7e8b0f0
ba728415dbcc145810b1b0d785da5181ba9ab2fe323864b65599481795096eff
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Mon, 05 Sep 2022 03:18:35 GMT
Last-Modified: Sun, 04 Sep 2022 14:30:43 GMT
ETag: "6314b693-1d7"
Expires: Tue, 06 Sep 2022 14:30:43 GMT
Cache-Control: max-age=126728
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1662347915
Via: cache16.l2de2[5,4,200-0,M], cache16.l2de2[6,0], cache4.se1[28,28,200-0,M], cache4.se1[29,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 05 Sep 2022 03:18:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816623479150516425e
p1.music.126.net/3hmJhssO32ex_NBb3XhUtw==/1384285150120466.jpg?param=200y200
47.246.44.229200 OK 5.3 kB URL HTTP/2 p1.music.126.net/3hmJhssO32ex_NBb3XhUtw==/1384285150120466.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 0a9f6de70d3682ff34c6e061f21a5b3c
b4c82c9d8aafd760e628fa51dfbe66255d698bf7
ecf2d1d3925cc8e7cb47264ffaab217aa288d3f9d49ee4cd3b109c56de4a44aa
GET /3hmJhssO32ex_NBb3XhUtw==/1384285150120466.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 5316
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 0a9f6de70d3682ff34c6e061f21a5b3c
last-modified: Wed, 18 May 2016 14:17:52 Asia/Shanghai
x-nos-request-id: 3daa36d80a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache18.l2st3-1[272,271,200-0,M], cache11.l2st3-1[272,0], cache11.l2st3-1[274,0], cache5.l2hk2[0,0,200-0,H], cache2.l2hk2[0,0], cache2.l2hk2[1,0], cache12.l2de2[0,0,200-0,H], cache25.l2de2[1,0], cache25.l2de2[1,0], cache7.se1[23,23,200-0,M], cache8.se1[28,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150948530e
X-Firefox-Spdy: h2
p1.music.126.net/VFd5cboNTbnYsWZ5DBn9bg==/18953381440004340.jpg?param=200y200
47.246.44.229200 OK 8.6 kB URL HTTP/2 p1.music.126.net/VFd5cboNTbnYsWZ5DBn9bg==/18953381440004340.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 36a73b4a30e1af2300b3b2b83b014c01
72c9f9fb3a6efebcde09c4e924bc8db9d6c8da0d
2e6e0b03b82be3a69aaba3b066b5b8afa80d072c60e6bca72a0487893ab4bc2d
GET /VFd5cboNTbnYsWZ5DBn9bg==/18953381440004340.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 8644
date: Sat, 26 Feb 2022 09:35:08 GMT
content-md5: 36a73b4a30e1af2300b3b2b83b014c01
last-modified: Wed, 15 Nov 2017 09:06:01 Asia/Shanghai
x-nos-request-id: 1c336f5f0a82000000006219f44c6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645868108
via: cache26.l2st3-1[0,0,200-0,H], cache13.l2st3-1[1,0], cache13.l2st3-1[1,0], cache31.l2hk2[4,4,200-0,M], cache20.l2hk2[5,0], cache20.l2hk2[6,0], cache11.l2de2[0,0,200-0,H], cache10.l2de2[0,0], cache10.l2de2[1,0], cache4.se1[24,24,200-0,M], cache8.se1[28,0]
age: 16479807
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15056193
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150958533e
X-Firefox-Spdy: h2
p1.music.126.net/bAegIAaaqX--VIj6LMa_ow==/109951164156005837.jpg?param=200y200
47.246.44.229200 OK 6.2 kB URL HTTP/2 p1.music.126.net/bAegIAaaqX--VIj6LMa_ow==/109951164156005837.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 2bec2facb22675d81c843734e81788c0
d2f78c5be0949a22f14519cf25ae0a774444675e
1c1accc6c73b5bbba3e1eb373fcf164c68937b5b94a499b911ca5e043a698de9
GET /bAegIAaaqX--VIj6LMa_ow==/109951164156005837.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6189
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: 2bec2facb22675d81c843734e81788c0
last-modified: Tue, 18 Jun 2019 11:47:57 Asia/Shanghai
x-nos-request-id: 6ff3fa8a0a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache40.l2st3-1[1228,1228,200-0,M], cache25.l2st3-1[1229,0], cache25.l2st3-1[1230,0], cache19.l2hk2[0,0,200-0,H], cache38.l2hk2[2,0], cache38.l2hk2[2,0], cache26.l2de2[0,0,200-0,H], cache25.l2de2[0,0], cache25.l2de2[1,0], cache8.se1[24,23,200-0,M], cache8.se1[28,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150958535e
X-Firefox-Spdy: h2
p1.music.126.net/fwhxQ6GF34VcpzomQ768XA==/109951164142972608.jpg?param=200y200
47.246.44.229200 OK 6.1 kB URL HTTP/2 p1.music.126.net/fwhxQ6GF34VcpzomQ768XA==/109951164142972608.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 6652d0e472264ec4b17c436d913f87a3
0e0662224aae8f1d0862b7efc517e09cd08d2c17
6d331c5703074f95db24d682791dc33226e95849b24ca674d59a8676ea6eea6b
GET /fwhxQ6GF34VcpzomQ768XA==/109951164142972608.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6082
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 6652d0e472264ec4b17c436d913f87a3
last-modified: Wed, 12 Jun 2019 23:18:33 Asia/Shanghai
x-nos-request-id: a1bc7baa0a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache11.l2st3-1[323,323,200-0,M], cache42.l2st3-1[325,0], cache42.l2st3-1[325,0], cache13.l2hk2[0,0,200-0,H], cache30.l2hk2[0,0], cache30.l2hk2[2,0], cache19.l2de2[0,0,200-0,H], cache4.l2de2[1,0], cache4.l2de2[1,0], cache7.se1[22,21,200-0,M], cache8.se1[29,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150958539e
X-Firefox-Spdy: h2
p2.music.126.net/ibXSsyVeMggh99R31ZML1Q==/109951164105938094.jpg?param=200y200
47.246.44.224200 OK 9.6 kB URL HTTP/2 p2.music.126.net/ibXSsyVeMggh99R31ZML1Q==/109951164105938094.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash e9964ca770fe4948de5c31b5fced6e82
ab79b48afe7c8fdab2c31c2c0ac3b0534e4b6b1c
072cf3285d41c064821eec82c03136902e2b4cdac458a01411162e4d39cedf9f
GET /ibXSsyVeMggh99R31ZML1Q==/109951164105938094.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 9607
date: Wed, 09 Feb 2022 17:59:35 GMT
content-md5: e9964ca770fe4948de5c31b5fced6e82
last-modified: Tue, 28 May 2019 19:15:55 Asia/Shanghai
x-nos-request-id: 0f75da290a8200000000620401076334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429575
via: cache21.l2de2[0,0,200-0,H], cache19.l2de2[1,0], cache19.l2de2[1,0], cache7.se1[23,23,200-0,M], cache1.se1[26,0]
age: 17918340
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617660
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479150852401e
X-Firefox-Spdy: h2
p2.music.126.net/BUcfkFxl93Cn53O3UfdeSg==/109951164170962092.jpg?param=320y180
47.246.44.224200 OK 4.4 kB URL HTTP/2 p2.music.126.net/BUcfkFxl93Cn53O3UfdeSg==/109951164170962092.jpg?param=320y180
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash ea04c930d9ad2393e2b1d7dc40c6ccda
1317a2a3c6405b6f49d2965cc03ef9b840f7022f
12b21ba1e40f970f4810c96fc8fad0b00e5d03988410ab7506a9539a422c2cf8
GET /BUcfkFxl93Cn53O3UfdeSg==/109951164170962092.jpg?param=320y180 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 4409
date: Wed, 09 Feb 2022 17:59:37 GMT
content-md5: ea04c930d9ad2393e2b1d7dc40c6ccda
last-modified: Mon, 24 Jun 2019 17:29:13 Asia/Shanghai
x-nos-request-id: 3d73c3520a8200000000620401096333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429577
via: cache26.l2de2[0,0,200-0,H], cache26.l2de2[0,0], cache26.l2de2[1,0], cache5.se1[22,22,200-0,M], cache1.se1[27,0]
age: 17918338
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617662
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479150852406e
X-Firefox-Spdy: h2
p2.music.126.net/nD3D-XDHKsCcbTVVFpjAGw==/109951164085483585.jpg?param=200y200
47.246.44.224200 OK 2.7 kB URL HTTP/2 p2.music.126.net/nD3D-XDHKsCcbTVVFpjAGw==/109951164085483585.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash a5d9b9a521c528188a99186776b0837a
668af9f3937a97c4e524fa6e0a77a9435148061a
f4d7a4edbf106bddb8ba814f577c6671ac605e7d477e0e66e2072210f645257c
GET /nD3D-XDHKsCcbTVVFpjAGw==/109951164085483585.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 2745
date: Wed, 09 Feb 2022 17:59:36 GMT
content-md5: a5d9b9a521c528188a99186776b0837a
last-modified: Sun, 19 May 2019 15:00:03 Asia/Shanghai
x-nos-request-id: 1934e1670a8200000000620401086333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429576
via: cache9.l2de2[0,0,200-0,H], cache16.l2de2[0,0], cache16.l2de2[1,0], cache2.se1[22,22,200-0,M], cache1.se1[29,0]
age: 17918339
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617661
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479150852400e
X-Firefox-Spdy: h2
p2.music.126.net/we68Vw-ahTIYWzCY5QB6OQ==/109951164170937779.jpg?param=320y180
47.246.44.224200 OK 7.9 kB URL HTTP/2 p2.music.126.net/we68Vw-ahTIYWzCY5QB6OQ==/109951164170937779.jpg?param=320y180
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 6749e7bd8228463180c8b610f536f85f
4b7909991d4ecb3bfbb021572f801e478dfc7b17
7eb81f2acf4dd0813ba04fc6fdcec65f4064e9bbe38ca4b9c9a7d8f886264818
GET /we68Vw-ahTIYWzCY5QB6OQ==/109951164170937779.jpg?param=320y180 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 7868
date: Wed, 09 Feb 2022 17:59:37 GMT
content-md5: 6749e7bd8228463180c8b610f536f85f
last-modified: Mon, 24 Jun 2019 17:18:25 Asia/Shanghai
x-nos-request-id: c3b688eb0a8200000000620401096333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429577
via: cache14.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache1.l2de2[1,0], cache3.se1[25,25,200-0,M], cache1.se1[26,0]
age: 17918338
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617662
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479150902407e
X-Firefox-Spdy: h2
p1.music.126.net/vAqL9Htguij5C-J6zbytLg==/109951164136257372.jpg?param=200y200
47.246.44.229200 OK 9.7 kB URL HTTP/2 p1.music.126.net/vAqL9Htguij5C-J6zbytLg==/109951164136257372.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash c25db18cbf8c924f1c50f31ecb696bf6
1f9ad00280f2aa5bf78c4ef489844168fef480d7
ef4ce958c32439b8ba4bef8164663fd7acecb952966440e30e3740c243a3dc93
GET /vAqL9Htguij5C-J6zbytLg==/109951164136257372.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 9664
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: c25db18cbf8c924f1c50f31ecb696bf6
last-modified: Sun, 09 Jun 2019 20:56:33 Asia/Shanghai
x-nos-request-id: eb15af6d0a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache28.l2st3-1[185,184,200-0,M], cache25.l2st3-1[186,0], cache25.l2st3-1[187,0], cache21.l2hk2[0,0,200-0,H], cache24.l2hk2[1,0], cache24.l2hk2[2,0], cache6.l2de2[0,0,200-0,H], cache20.l2de2[1,0], cache20.l2de2[1,0], cache5.se1[23,23,200-0,M], cache8.se1[29,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150958538e
X-Firefox-Spdy: h2
p1.music.126.net/cbv7xqjAz0_KChRbPVRjzA==/109951164146140719.jpg?param=200y200
47.246.44.229200 OK 7.0 kB URL HTTP/2 p1.music.126.net/cbv7xqjAz0_KChRbPVRjzA==/109951164146140719.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 49189c3fa81cff73206a072964b62d2d
619320f1cf0e5dea1827a622cd2f48dec31d8652
005318ecfab1f09f226c69157215223f652b441ea88cd578cac58062c9d7fc93
GET /cbv7xqjAz0_KChRbPVRjzA==/109951164146140719.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 7019
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 49189c3fa81cff73206a072964b62d2d
last-modified: Fri, 14 Jun 2019 14:18:18 Asia/Shanghai
x-nos-request-id: 8982e7500a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache3.l2st3-1[197,197,200-0,M], cache31.l2st3-1[198,0], cache31.l2st3-1[200,0], cache21.l2hk2[0,0,200-0,H], cache22.l2hk2[1,0], cache22.l2hk2[1,0], cache9.l2de2[0,0,200-0,H], cache21.l2de2[1,0], cache21.l2de2[1,0], cache2.se1[25,24,200-0,M], cache8.se1[29,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150958536e
X-Firefox-Spdy: h2
p1.music.126.net/eMdXM-99XEYXzhtAuiI84Q==/109951164071529169.jpg?param=200y200
47.246.44.229200 OK 8.8 kB URL HTTP/2 p1.music.126.net/eMdXM-99XEYXzhtAuiI84Q==/109951164071529169.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash ea4be9286bce2d545aa78c8b345c7979
6e96d07cd95e07a4723eda02004e452aafff54bd
9451bf663eab00df721576a8cebd22b94957f6d60590f84639c7d250abc88c0c
GET /eMdXM-99XEYXzhtAuiI84Q==/109951164071529169.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 8824
date: Sat, 26 Feb 2022 13:01:32 GMT
content-md5: ea4be9286bce2d545aa78c8b345c7979
last-modified: Mon, 13 May 2019 14:58:56 Asia/Shanghai
x-nos-request-id: 8d42b9850a8200000000621a24aa6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645880492
via: cache20.l2st3-1[1928,1928,200-0,M], cache34.l2st3-1[1929,0], cache34.l2st3-1[1935,0], cache10.l2hk2[1940,1939,200-0,M], cache15.l2hk2[1941,0], cache15.l2hk2[1941,0], cache12.l2de2[0,0,200-0,H], cache11.l2de2[1,0], cache11.l2de2[1,0], cache4.se1[23,22,200-0,M], cache8.se1[25,0]
age: 16467423
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15068577
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018542e
X-Firefox-Spdy: h2
p1.music.126.net/2MsstS-M9w5-li0aRy3sUQ==/1380986606815861.jpg?param=200y200
47.246.44.229200 OK 7.0 kB URL HTTP/2 p1.music.126.net/2MsstS-M9w5-li0aRy3sUQ==/1380986606815861.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 01649e95214e7a3dd10957111bbb998c
601a6025e2bc2dd3ae855ecb11bd39a1dd3f3677
4d21b2b433880e357456d97b4f0432d962fc75f872a4211cbec8f0062d4bbaaa
GET /2MsstS-M9w5-li0aRy3sUQ==/1380986606815861.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6953
date: Thu, 24 Feb 2022 09:58:53 GMT
content-md5: 01649e95214e7a3dd10957111bbb998c
last-modified: Sat, 05 Mar 2016 19:08:35 Asia/Shanghai
x-nos-request-id: d74b01970a8200000000621756dd6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645696733
via: cache20.l2st3-1[31,31,200-0,M], cache19.l2st3-1[32,0], cache19.l2st3-1[33,0], cache22.l2hk2[0,0,200-0,H], cache38.l2hk2[1,0], cache38.l2hk2[1,0], cache25.l2de2[0,0,200-0,H], cache2.l2de2[1,0], cache2.l2de2[3,0], cache3.se1[24,23,200-0,M], cache8.se1[26,0]
age: 16651182
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 14884818
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018541e
X-Firefox-Spdy: h2
p1.music.126.net/Sq1JGnybGvpORee1vUxESg==/109951164156051715.jpg?param=200y200
47.246.44.229200 OK 12 kB URL HTTP/2 p1.music.126.net/Sq1JGnybGvpORee1vUxESg==/109951164156051715.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash cbde91d03c7548b0a5238dc6678c0c74
a3821d3f0a3d80e8673c9c38550716a9bd8bb6ac
9f01a67573b8e3323fdbfd77f1e70a36ce71da95e1829a4b1c3c0d58fc5d5bf0
GET /Sq1JGnybGvpORee1vUxESg==/109951164156051715.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 11809
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: cbde91d03c7548b0a5238dc6678c0c74
last-modified: Tue, 18 Jun 2019 12:16:51 Asia/Shanghai
x-nos-request-id: 4d9c3e140a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache38.l2st3-1[40,39,200-0,M], cache7.l2st3-1[41,0], cache7.l2st3-1[42,0], cache26.l2hk2[0,0,200-0,H], cache36.l2hk2[1,0], cache36.l2hk2[3,0], cache2.l2de2[0,0,200-0,H], cache3.l2de2[0,0], cache3.l2de2[1,0], cache3.se1[23,23,200-0,M], cache8.se1[27,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018546e
X-Firefox-Spdy: h2
p2.music.126.net/V7FE67-8lMzLodHlVBgcoQ==/109951164166952642.jpg?param=200y200
47.246.44.224200 OK 65 kB URL HTTP/2 p2.music.126.net/V7FE67-8lMzLodHlVBgcoQ==/109951164166952642.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 862867cff0d50457397c30c4e3bfd28b
f272438c89814eabf965a5eeac41b772afb53b7d
e1a66dd7fb292f366db5c24f0297f9d5320e4e9aab6d6f20c96301a4c38f748c
GET /V7FE67-8lMzLodHlVBgcoQ==/109951164166952642.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 65366
date: Wed, 09 Feb 2022 17:59:38 GMT
content-md5: 862867cff0d50457397c30c4e3bfd28b
last-modified: Sat, 22 Jun 2019 23:05:52 Asia/Shanghai
x-nos-request-id: 167c2e440a82000000006204010a6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429578
via: cache23.l2de2[0,0,200-0,H], cache6.l2de2[1,0], cache6.l2de2[2,0], cache8.se1[24,23,200-0,M], cache1.se1[27,0]
age: 17918337
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617663
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479150832399e
X-Firefox-Spdy: h2
p1.music.126.net/1gNcBmzdIaQtU00Dvp_TvQ==/109951163912081772.jpg?param=200y200
47.246.44.229200 OK 13 kB URL HTTP/2 p1.music.126.net/1gNcBmzdIaQtU00Dvp_TvQ==/109951163912081772.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 9f71f6644cbe0f04de66a999f11dc68d
b3440d6d6cbbbd68f8faca12c43edfedecff7a28
3e369e14a6e6241770b1cc1a3f028e78ce6dc46447a191172f889900b490be72
GET /1gNcBmzdIaQtU00Dvp_TvQ==/109951163912081772.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 12973
date: Sat, 12 Feb 2022 07:21:21 GMT
content-md5: 9f71f6644cbe0f04de66a999f11dc68d
last-modified: Fri, 08 Mar 2019 22:03:12 Asia/Shanghai
x-nos-request-id: 4449b51c0a820000000062075ff16335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644650481
via: cache14.l2de2[0,0,200-0,H], cache26.l2de2[1,0], cache26.l2de2[1,0], cache4.se1[23,23,200-0,M], cache8.se1[29,0]
age: 17697434
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13838566
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018549e
X-Firefox-Spdy: h2
p1.music.126.net/1AzqNV58StMax27Ntgu0sw==/2909307767267846.jpg?param=200y200
47.246.44.229200 OK 4.4 kB URL HTTP/2 p1.music.126.net/1AzqNV58StMax27Ntgu0sw==/2909307767267846.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 3d5806523ecd427b5b98c2bc44187ae7
c3aacb2b454f7e600c3af8d311bf58cd39181fc5
1e9c6d108c65df8fcb99f754090021849c72df4dab95cedf9580b1703158abf4
GET /1AzqNV58StMax27Ntgu0sw==/2909307767267846.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 4362
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 3d5806523ecd427b5b98c2bc44187ae7
last-modified: Thu, 05 Nov 2015 16:06:29 Asia/Shanghai
x-nos-request-id: 0bfe01a50a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache5.l2st3-1[194,194,200-0,M], cache5.l2st3-1[196,0], cache5.l2st3-1[196,0], cache4.l2hk2[0,0,200-0,H], cache16.l2hk2[1,0], cache16.l2hk2[2,0], cache6.l2de2[0,0,200-0,H], cache12.l2de2[0,0], cache12.l2de2[2,0], cache8.se1[22,21,200-0,M], cache8.se1[23,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088555e
X-Firefox-Spdy: h2
p1.music.126.net/C7N5qBbn9TSV4se8-eVzyw==/109951163792676170.jpg?param=200y200
47.246.44.229200 OK 9.7 kB URL HTTP/2 p1.music.126.net/C7N5qBbn9TSV4se8-eVzyw==/109951163792676170.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 5578be597741b2ddb13261f198783f9c
99ce5b2149f1081bba169e029c5307adacccfc21
fbdda6bd22bc972796e4ef73345301cf38d4b5cbb1530be65a30cdb8ad7c7d72
GET /C7N5qBbn9TSV4se8-eVzyw==/109951163792676170.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 9682
date: Sun, 20 Feb 2022 07:15:16 GMT
content-md5: 5578be597741b2ddb13261f198783f9c
last-modified: Sun, 13 Jan 2019 15:29:12 Asia/Shanghai
x-nos-request-id: 50459da80a82000000006211ea846334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645341316
via: cache19.l2st3-1[60,59,200-0,M], cache28.l2st3-1[61,0], cache28.l2st3-1[61,0], cache38.l2hk2[0,0,200-0,H], cache12.l2hk2[0,0], cache12.l2hk2[2,0], cache9.l2de2[0,0,200-0,H], cache12.l2de2[1,0], cache12.l2de2[1,0], cache7.se1[21,21,200-0,M], cache8.se1[40,0]
age: 17006599
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 14529401
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018545e
X-Firefox-Spdy: h2
p1.music.126.net/rxniujJFoCOD1AAQVF_eAQ==/109951163902784557.jpg?param=200y200
47.246.44.229200 OK 5.3 kB URL HTTP/2 p1.music.126.net/rxniujJFoCOD1AAQVF_eAQ==/109951163902784557.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash c2fcc21e3b77932a4039c8526a9642e0
f4fa83c78266dfa75f105711c4a7c088083a99bc
44942b66df38e2bfc2ee373a79ee6d70382e60e8616502c17c8d81b3a3fe7037
GET /rxniujJFoCOD1AAQVF_eAQ==/109951163902784557.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 5323
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: c2fcc21e3b77932a4039c8526a9642e0
last-modified: Mon, 04 Mar 2019 00:09:39 Asia/Shanghai
x-nos-request-id: e936bb0e0a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache38.l2st3-1[31,29,200-0,M], cache6.l2st3-1[31,0], cache6.l2st3-1[31,0], cache9.l2hk2[0,0,200-0,H], cache36.l2hk2[3,0], cache36.l2hk2[3,0], cache2.l2de2[0,0,200-0,H], cache9.l2de2[0,0], cache9.l2de2[1,0], cache5.se1[22,21,200-0,M], cache8.se1[41,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018547e
X-Firefox-Spdy: h2
p1.music.126.net/SQm8LjY1M3CmeZJcuHmvKQ==/109951164121655994.jpg?param=200y200
47.246.44.229200 OK 12 kB URL HTTP/2 p1.music.126.net/SQm8LjY1M3CmeZJcuHmvKQ==/109951164121655994.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash ffe03c6fd259ade7e9e15b89faaa2d66
f4d3861bda8046742892f7958b8041155c64d127
8a484850db88fa7d5a597a76c59a0f1355cf7a6501b20bc99164acd478184fec
GET /SQm8LjY1M3CmeZJcuHmvKQ==/109951164121655994.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 12230
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: ffe03c6fd259ade7e9e15b89faaa2d66
last-modified: Tue, 04 Jun 2019 10:32:54 Asia/Shanghai
x-nos-request-id: fd862ceb0a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache42.l2st3-1[550,550,200-0,M], cache45.l2st3-1[551,0], cache45.l2st3-1[551,0], cache30.l2hk2[0,0,200-0,H], cache28.l2hk2[24,0], cache28.l2hk2[24,0], cache5.l2de2[0,0,200-0,H], cache6.l2de2[1,0], cache6.l2de2[1,0], cache2.se1[22,21,200-0,M], cache8.se1[41,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018552e
X-Firefox-Spdy: h2
p1.music.126.net/RJqWhlMB0Pq3A34vDICwLg==/109951164099871057.jpg?param=200y200
47.246.44.229200 OK 15 kB URL HTTP/2 p1.music.126.net/RJqWhlMB0Pq3A34vDICwLg==/109951164099871057.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash a50a7a41e9557f4007ef4ae01d26eae6
402a235261fbca2b6e011b2d2878a9d7a4dbf52a
d754e211fea3abefd23fb1701a0bf8ad133dfef7576fbfd6c653823a592b6016
GET /RJqWhlMB0Pq3A34vDICwLg==/109951164099871057.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 15096
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: a50a7a41e9557f4007ef4ae01d26eae6
last-modified: Sat, 25 May 2019 23:26:39 Asia/Shanghai
x-nos-request-id: 8b3dd0aa0a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache33.l2st3-1[423,423,200-0,M], cache4.l2st3-1[425,0], cache4.l2st3-1[425,0], cache13.l2hk2[0,0,200-0,H], cache25.l2hk2[1,0], cache25.l2hk2[1,0], cache23.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache1.l2de2[1,0], cache4.se1[23,22,200-0,M], cache8.se1[42,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018551e
X-Firefox-Spdy: h2
p2.music.126.net/qXoj3GTwWWtDDETq72oovQ==/109951164107576105.jpg?param=200y200
47.246.44.224200 OK 57 kB URL HTTP/2 p2.music.126.net/qXoj3GTwWWtDDETq72oovQ==/109951164107576105.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e24a1f3dfe9233140963167aa8f0f58
66d2cbafcaab42b3da6ee889be6cc9657b84668c
0cbf3067bead1a42f82876fca689a16cd42ed9afa7bdb0d6af5876635c254745
GET /qXoj3GTwWWtDDETq72oovQ==/109951164107576105.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 57446
date: Wed, 09 Feb 2022 17:59:34 GMT
content-md5: 3e24a1f3dfe9233140963167aa8f0f58
last-modified: Wed, 29 May 2019 15:09:42 Asia/Shanghai
x-nos-request-id: b98771f50a8200000000620401066336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429574
via: cache25.l2de2[0,7,200-0,H], cache11.l2de2[9,0], cache11.l2de2[9,0], cache1.se1[30,29,200-0,M], cache1.se1[34,0]
age: 17918341
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617659
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479150852404e
X-Firefox-Spdy: h2
p1.music.126.net/XBLMG77rrn1VQJA5x-Hw-Q==/109951163318296849.jpg?param=200y200
47.246.44.229200 OK 16 kB URL HTTP/2 p1.music.126.net/XBLMG77rrn1VQJA5x-Hw-Q==/109951163318296849.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 06d2d40fcc95c31c52db472a49470a35
f9ccfab26a836cc3133774dc2616342daf06d886
fb969b291eda5c9a2860999b74a8413067d64087cd017073ad7470617e5a31ea
GET /XBLMG77rrn1VQJA5x-Hw-Q==/109951163318296849.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 16374
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: 06d2d40fcc95c31c52db472a49470a35
last-modified: Sat, 26 May 2018 23:09:01 Asia/Shanghai
x-nos-request-id: 4b9ebacf0a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache37.l2st3-1[421,420,200-0,M], cache45.l2st3-1[422,0], cache45.l2st3-1[422,0], cache35.l2hk2[0,0,200-0,H], cache7.l2hk2[1,0], cache7.l2hk2[2,0], cache1.l2de2[0,0,200-0,H], cache4.l2de2[0,0], cache4.l2de2[1,0], cache1.se1[23,23,200-0,M], cache8.se1[42,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018544e
X-Firefox-Spdy: h2
p1.music.126.net/cTfHbDHrOJltRVfQtalwxA==/109951164163595362.jpg?param=200y200
47.246.44.229200 OK 6.4 kB URL HTTP/2 p1.music.126.net/cTfHbDHrOJltRVfQtalwxA==/109951164163595362.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash b0ffb5ad7fe234dc711dbfe6f3c5ffef
1b82e263c74f63a76683936ba6649c8fb67b2857
7d25957c7620bfd3cff0bc740dccf80eda32e83617352da2b0756e8bbf9499d9
GET /cTfHbDHrOJltRVfQtalwxA==/109951164163595362.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6432
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: b0ffb5ad7fe234dc711dbfe6f3c5ffef
last-modified: Fri, 21 Jun 2019 17:45:09 Asia/Shanghai
x-nos-request-id: 3d33d6b90a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache37.l2st3-1[139,138,200-0,M], cache19.l2st3-1[141,0], cache19.l2st3-1[141,0], cache16.l2hk2[0,0,200-0,H], cache34.l2hk2[0,0], cache34.l2hk2[2,0], cache21.l2de2[0,0,200-0,H], cache11.l2de2[11,0], cache11.l2de2[11,0], cache2.se1[44,43,200-0,M], cache8.se1[49,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150958537e
X-Firefox-Spdy: h2
p1.music.126.net/wpahk9cQCDtdzJPE52EzJQ==/109951163271025942.jpg?param=200y200
47.246.44.229200 OK 8.3 kB URL HTTP/2 p1.music.126.net/wpahk9cQCDtdzJPE52EzJQ==/109951163271025942.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash b57860b71bf472b9e67c88ac2148974b
d952f3ede5b87e50ca539527e1475e16730b0fdd
6f21c6a8234dc7f4aa7ea7a218da0e67f5c44d35cb7eb48e9b191828d6b056f3
GET /wpahk9cQCDtdzJPE52EzJQ==/109951163271025942.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 8305
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: b57860b71bf472b9e67c88ac2148974b
last-modified: Fri, 27 Apr 2018 23:53:59 Asia/Shanghai
x-nos-request-id: 7a6c03130a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache4.l2st3-1[643,643,200-0,M], cache37.l2st3-1[644,0], cache37.l2st3-1[645,0], cache18.l2hk2[0,0,200-0,H], cache26.l2hk2[0,0], cache26.l2hk2[2,0], cache25.l2de2[0,0,200-0,H], cache6.l2de2[1,0], cache6.l2de2[1,0], cache2.se1[23,23,200-0,M], cache8.se1[43,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018554e
X-Firefox-Spdy: h2
p1.music.126.net/q8CVsmVyQfNYno9ngyRGEg==/109951164050875253.jpg?param=200y200
47.246.44.229200 OK 6.5 kB URL HTTP/2 p1.music.126.net/q8CVsmVyQfNYno9ngyRGEg==/109951164050875253.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash b84fa32886ef2ee3e1b4a252e58a6f64
614dc3d7d695d399e29b343c751e7f7eacf86c60
5139ea680d1f572049c3549e85398ff7bb84a5d732f88d2c1e6c9d9421138487
GET /q8CVsmVyQfNYno9ngyRGEg==/109951164050875253.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6528
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: b84fa32886ef2ee3e1b4a252e58a6f64
last-modified: Sun, 05 May 2019 11:14:49 Asia/Shanghai
x-nos-request-id: c6759c330a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache7.l2st3-1[418,417,200-0,M], cache40.l2st3-1[419,0], cache40.l2st3-1[419,0], cache11.l2hk2[0,0,200-0,H], cache22.l2hk2[1,0], cache22.l2hk2[1,0], cache8.l2de2[0,0,200-0,H], cache9.l2de2[1,0], cache9.l2de2[1,0], cache7.se1[23,23,200-0,M], cache8.se1[43,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018553e
X-Firefox-Spdy: h2
p1.music.126.net/l06pq2DsaJQzFNlVlxVm7g==/109951164159381787.jpg?param=200y200
47.246.44.229200 OK 6.3 kB URL HTTP/2 p1.music.126.net/l06pq2DsaJQzFNlVlxVm7g==/109951164159381787.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 7c2fc691931032c6c37760e8a86494ae
89348ae3e49b5cd767b80e54f981e6992a65a18a
5bc19c4f41da0165625e3ce8502f159c62d3569ea086568d3817854458eff2e0
GET /l06pq2DsaJQzFNlVlxVm7g==/109951164159381787.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6317
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 7c2fc691931032c6c37760e8a86494ae
last-modified: Wed, 19 Jun 2019 22:24:49 Asia/Shanghai
x-nos-request-id: 3ad895ed0a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache34.l2st3-1[355,355,200-0,M], cache21.l2st3-1[356,0], cache21.l2st3-1[356,0], cache13.l2hk2[0,0,200-0,H], cache20.l2hk2[1,0], cache20.l2hk2[2,0], cache6.l2de2[0,0,200-0,H], cache10.l2de2[1,0], cache10.l2de2[1,0], cache2.se1[24,24,200-0,M], cache8.se1[43,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018543e
X-Firefox-Spdy: h2
p1.music.126.net/Y3rXiAWKw75VUjvMBQsxUA==/1424967077460786.jpg?param=200y200
47.246.44.229200 OK 7.7 kB URL HTTP/2 p1.music.126.net/Y3rXiAWKw75VUjvMBQsxUA==/1424967077460786.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 4d246c44e2b7cf84bb9f9f67817b2b5a
fbcca9835ff8349dc7b569ccabf101a2c8ff5b6f
bbf41d00cdb9dacfb984a1add416a1b8740c36c4a8e5fa878d858cbee42f0c23
GET /Y3rXiAWKw75VUjvMBQsxUA==/1424967077460786.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 7710
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 4d246c44e2b7cf84bb9f9f67817b2b5a
last-modified: Mon, 25 Apr 2016 22:29:42 Asia/Shanghai
x-nos-request-id: 81a0acdc0a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache24.l2st3-1[254,254,200-0,M], cache24.l2st3-1[255,0], cache24.l2st3-1[255,0], cache10.l2hk2[0,0,200-0,H], cache17.l2hk2[1,0], cache17.l2hk2[1,0], cache23.l2de2[0,0,200-0,H], cache19.l2de2[1,0], cache19.l2de2[1,0], cache1.se1[24,24,200-0,M], cache8.se1[44,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151018550e
X-Firefox-Spdy: h2
p1.music.126.net/gzsxh-u0mN_OtdrjpbfI8w==/7842816441775262.jpg?param=200y200
47.246.44.229200 OK 7.3 kB URL HTTP/2 p1.music.126.net/gzsxh-u0mN_OtdrjpbfI8w==/7842816441775262.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 316374ef687e059718cc8bfb2d6596c0
cb00fcb6a3ea835a0a267756d986963963ef1b8c
6046990aa27974d12b0bbff2497d865b3b2ed57416051999b0f5df165db1e5a9
GET /gzsxh-u0mN_OtdrjpbfI8w==/7842816441775262.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 7275
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 316374ef687e059718cc8bfb2d6596c0
last-modified: Thu, 05 Nov 2015 17:45:44 Asia/Shanghai
x-nos-request-id: 9f9937330a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache34.l2st3-1[45,44,200-0,M], cache28.l2st3-1[46,0], cache28.l2st3-1[47,0], cache20.l2hk2[0,0,200-0,H], cache32.l2hk2[1,0], cache32.l2hk2[1,0], cache5.l2de2[0,0,200-0,H], cache20.l2de2[0,0], cache20.l2de2[1,0], cache2.se1[22,21,200-0,M], cache8.se1[37,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088557e
X-Firefox-Spdy: h2
p1.music.126.net/yqVxyPlc7NFDg4zbExkxTw==/109951164159013264.jpg?param=320y180
47.246.44.229200 OK 11 kB URL HTTP/2 p1.music.126.net/yqVxyPlc7NFDg4zbExkxTw==/109951164159013264.jpg?param=320y180
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 19fe6ad543e34a636d11cfade565f974
db853da36ce8b55b90425e6e41db05b3d38b1363
36a9fcf0787eb7522bb44c0ff3872982da48f0f1cf848dd17c6eb0943873a311
GET /yqVxyPlc7NFDg4zbExkxTw==/109951164159013264.jpg?param=320y180 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 10877
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 19fe6ad543e34a636d11cfade565f974
last-modified: Wed, 19 Jun 2019 20:00:03 Asia/Shanghai
x-nos-request-id: d838c05b0a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache19.l2st3-1[431,430,200-0,M], cache28.l2st3-1[432,0], cache28.l2st3-1[432,0], cache34.l2hk2[0,0,200-0,H], cache14.l2hk2[1,0], cache14.l2hk2[3,0], cache4.l2de2[0,0,200-0,H], cache6.l2de2[1,0], cache6.l2de2[1,0], cache4.se1[22,21,200-0,M], cache8.se1[38,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088565e
X-Firefox-Spdy: h2
p1.music.126.net/Aly2M3CccoKM1t04m3V25Q==/109951164022930723.jpg?param=200y200
47.246.44.229200 OK 11 kB URL HTTP/2 p1.music.126.net/Aly2M3CccoKM1t04m3V25Q==/109951164022930723.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash ba1cb4b2a15b0373d2644909a8be9103
0791eefdccc145de816fbc284f6c861f9c557436
aae8bc51fbf0fd842a8b5df15640b9d466619efd33e7f60a90927ce27ff9d1d4
GET /Aly2M3CccoKM1t04m3V25Q==/109951164022930723.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 11231
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: ba1cb4b2a15b0373d2644909a8be9103
last-modified: Thu, 25 Apr 2019 00:37:50 Asia/Shanghai
x-nos-request-id: 907231140a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache37.l2st3-1[513,512,200-0,M], cache36.l2st3-1[515,0], cache36.l2st3-1[516,0], cache12.l2hk2[0,0,200-0,H], cache29.l2hk2[1,0], cache29.l2hk2[2,0], cache4.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache1.l2de2[1,0], cache5.se1[22,21,200-0,M], cache8.se1[28,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151198578e
X-Firefox-Spdy: h2
p1.music.126.net/5jcT5dQKfy_FSvMHWtRzbw==/109951164142021095.jpg?param=200y200
47.246.44.229200 OK 60 kB URL HTTP/2 p1.music.126.net/5jcT5dQKfy_FSvMHWtRzbw==/109951164142021095.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a395cbbedcbbd2e8358e4144bdf3dc20
bf65ec149059993c3d2c0cf62df024b441f225bd
49f7c0734c8821929815c0b464cf1f63efc7a0a27643ecf79af321c157cdb127
GET /5jcT5dQKfy_FSvMHWtRzbw==/109951164142021095.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 59666
date: Wed, 23 Feb 2022 16:24:39 GMT
content-md5: a395cbbedcbbd2e8358e4144bdf3dc20
last-modified: Wed, 12 Jun 2019 16:03:05 Asia/Shanghai
x-nos-request-id: ba4c48370a820000000062165fc76336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645633479
via: cache18.l2st3-1[123,122,200-0,M], cache19.l2st3-1[124,0], cache19.l2st3-1[124,0], cache30.l2hk2[170,170,200-0,M], cache3.l2hk2[172,0], cache3.l2hk2[172,0], cache26.l2de2[0,0,200-0,H], cache3.l2de2[1,0], cache3.l2de2[1,0], cache7.se1[22,21,200-0,M], cache8.se1[37,0]
age: 16714436
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 14821564
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088563e
X-Firefox-Spdy: h2
p1.music.126.net/QHD2Uy2y9ktndbK1UKgdgg==/18611433325258133.jpg?param=200y200
47.246.44.229200 OK 8.5 kB URL HTTP/2 p1.music.126.net/QHD2Uy2y9ktndbK1UKgdgg==/18611433325258133.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 264920917e5167b6c7fd31c4c2c4e231
dd70b3f210f9c9f11f80b641ffdef891718148e6
192ae6b219dc297e954ffb253e06faac9e835a3115a183ade78ff52bd5ae6829
GET /QHD2Uy2y9ktndbK1UKgdgg==/18611433325258133.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 8469
date: Sat, 19 Feb 2022 23:34:53 GMT
content-md5: 264920917e5167b6c7fd31c4c2c4e231
last-modified: Sun, 14 May 2017 11:01:28 Asia/Shanghai
x-nos-request-id: a2f510d00a820000000062117e9d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645313693
via: cache19.l2st3-1[28,28,200-0,M], cache4.l2st3-1[29,0], cache4.l2st3-1[29,0], cache32.l2hk2[0,0,200-0,H], cache11.l2hk2[1,0], cache11.l2hk2[1,0], cache19.l2de2[0,0,200-0,H], cache26.l2de2[1,0], cache26.l2de2[1,0], cache2.se1[23,23,200-0,M], cache8.se1[39,0]
age: 17034222
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 14501778
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088556e
X-Firefox-Spdy: h2
p1.music.126.net/lmh4JuDspz4ba5p_5hdDVQ==/109951164151063896.jpg?param=200y200
47.246.44.229200 OK 6.5 kB URL HTTP/2 p1.music.126.net/lmh4JuDspz4ba5p_5hdDVQ==/109951164151063896.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash a01f2aca48d00670f73bf05d76160632
a7c993afc080e2ecd47e1a26a58b53d3f2c52c26
3a70532cd8945a799d040378b5ac826ae415747ad52238f70e20aff1d0e1a5a3
GET /lmh4JuDspz4ba5p_5hdDVQ==/109951164151063896.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6519
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: a01f2aca48d00670f73bf05d76160632
last-modified: Sun, 16 Jun 2019 10:25:15 Asia/Shanghai
x-nos-request-id: 48d5f7560a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache45.l2st3-1[215,215,200-0,M], cache46.l2st3-1[217,0], cache46.l2st3-1[217,0], cache33.l2hk2[0,0,200-0,H], cache19.l2hk2[1,0], cache19.l2hk2[1,0], cache12.l2de2[0,0,200-0,H], cache26.l2de2[1,0], cache26.l2de2[1,0], cache7.se1[23,23,200-0,M], cache8.se1[39,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088558e
X-Firefox-Spdy: h2
p1.music.126.net/PrWHpxvSBoJkKY2YRpWncg==/109951164171814500.jpg
47.246.44.229200 OK 41 kB URL HTTP/2 p1.music.126.net/PrWHpxvSBoJkKY2YRpWncg==/109951164171814500.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash 1847102a96b957f6dbd4c3033ae8987a
3475a2e97ad3c89b7b11ab49f380b21b8a9a57ef
69638077ca32b821aad085de5115838e7d82e026d2bd136ea4f031d5b055c782
GET /PrWHpxvSBoJkKY2YRpWncg==/109951164171814500.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 40835
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: 1847102a96b957f6dbd4c3033ae8987a
last-modified: Mon, 24 Jun 2019 23:43:39 Asia/Shanghai
x-nos-request-id: c75a95620a8200000000621a1c8e6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache33.l2st3-1[484,484,200-0,M], cache27.l2st3-1[505,0], cache27.l2st3-1[958,0], cache6.l2hk2[0,0,200-0,H], cache19.l2hk2[1,0], cache19.l2hk2[1,0], cache23.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache1.l2de2[1,0], cache2.se1[23,23,200-0,M], cache8.se1[40,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088569e
X-Firefox-Spdy: h2
p1.music.126.net/3Z7Fo18mr2jXBkBbvU-aKA==/109951164170438077.jpg?param=320y180
47.246.44.229200 OK 9.6 kB URL HTTP/2 p1.music.126.net/3Z7Fo18mr2jXBkBbvU-aKA==/109951164170438077.jpg?param=320y180
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 5ead4356a516a226e5486bcd0dd2c6a8
7c1836896bcba110011515e74b690127a060ddd2
39fed23b8db45ff40e99e6cc1bd22b72ee226efe3a5dbad5c83c0f814e1d7a21
GET /3Z7Fo18mr2jXBkBbvU-aKA==/109951164170438077.jpg?param=320y180 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 9632
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: 5ead4356a516a226e5486bcd0dd2c6a8
last-modified: Mon, 24 Jun 2019 12:14:05 Asia/Shanghai
x-nos-request-id: a39f675d0a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache40.l2st3-1[868,867,200-0,M], cache29.l2st3-1[869,0], cache29.l2st3-1[870,0], cache17.l2hk2[0,0,200-0,H], cache10.l2hk2[1,0], cache10.l2hk2[1,0], cache12.l2de2[0,0,200-0,H], cache4.l2de2[1,0], cache4.l2de2[1,0], cache3.se1[23,23,200-0,M], cache8.se1[40,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088566e
X-Firefox-Spdy: h2
p1.music.126.net/fhmefjUfMD-8qtj3JKeHbA==/18999560928537533.jpg?param=200y200
47.246.44.229200 OK 4.5 kB URL HTTP/2 p1.music.126.net/fhmefjUfMD-8qtj3JKeHbA==/18999560928537533.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 068dad3ba8acc7097d9d4e36a195b90c
01209f945b1eaf2bda2ada85862ec4d6b3f4933d
25224571ab9dc9ebdae8aff6e616ccd447239d4b812b5f453afaf01bf264ff87
GET /fhmefjUfMD-8qtj3JKeHbA==/18999560928537533.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 4520
date: Sat, 26 Feb 2022 13:01:30 GMT
content-md5: 068dad3ba8acc7097d9d4e36a195b90c
last-modified: Sun, 18 Feb 2018 00:55:30 Asia/Shanghai
x-nos-request-id: bfce62500a8200000000621a24aa6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645880490
via: cache20.l2st3-1[553,552,200-0,M], cache11.l2st3-1[554,0], cache11.l2st3-1[554,0], cache37.l2hk2[560,559,200-0,M], cache14.l2hk2[560,0], cache14.l2hk2[562,0], cache19.l2de2[0,0,200-0,H], cache9.l2de2[1,0], cache9.l2de2[1,0], cache3.se1[22,22,200-0,M], cache8.se1[30,0]
age: 16467425
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15068575
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151198581e
X-Firefox-Spdy: h2
p1.music.126.net/Kqc6NLGm8uCyvo1b0cfFNQ==/109951164171001799.jpg?param=200y200
47.246.44.229200 OK 5.5 kB URL HTTP/2 p1.music.126.net/Kqc6NLGm8uCyvo1b0cfFNQ==/109951164171001799.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash f5876acb3115d6c3b9edc880524c7c90
94d38ba1a69e6434e989a7e8f767d1a1abdc4acd
ec4ac81d946aa5451a180ebe05f441c297d424d2b135a1845e9c1f154501db2a
GET /Kqc6NLGm8uCyvo1b0cfFNQ==/109951164171001799.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 5541
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: f5876acb3115d6c3b9edc880524c7c90
last-modified: Mon, 24 Jun 2019 17:56:32 Asia/Shanghai
x-nos-request-id: 58b48b500a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache11.l2st3-1[340,340,200-0,M], cache33.l2st3-1[341,0], cache33.l2st3-1[341,0], cache21.l2hk2[0,0,200-0,H], cache13.l2hk2[1,0], cache13.l2hk2[2,0], cache12.l2de2[0,0,200-0,H], cache2.l2de2[0,0], cache2.l2de2[1,0], cache4.se1[23,23,200-0,M], cache8.se1[30,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151198577e
X-Firefox-Spdy: h2
p1.music.126.net/0jS11D3OFnYBUpako_cLWA==/18547661650919676.jpg?param=200y200
47.246.44.229200 OK 7.4 kB URL HTTP/2 p1.music.126.net/0jS11D3OFnYBUpako_cLWA==/18547661650919676.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash ab6be29b97406ea3405633ff9c9cf6b6
4a32abb467485ba7724fbc0ae14bbbc917bbc1bb
adeb4cb4643410d7a5eaa00616d29a63a38f3164b28e913d336c186a3af109e8
GET /0jS11D3OFnYBUpako_cLWA==/18547661650919676.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 7392
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: ab6be29b97406ea3405633ff9c9cf6b6
last-modified: Fri, 30 Jun 2017 16:49:05 Asia/Shanghai
x-nos-request-id: 04bae90b0a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache26.l2st3-1[109,108,200-0,M], cache13.l2st3-1[111,0], cache13.l2st3-1[111,0], cache24.l2hk2[0,0,200-0,H], cache13.l2hk2[1,0], cache13.l2hk2[1,0], cache25.l2de2[0,0,200-0,H], cache11.l2de2[1,0], cache11.l2de2[1,0], cache8.se1[23,23,200-0,M], cache8.se1[31,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151198579e
X-Firefox-Spdy: h2
p1.music.126.net/NM1vrpLbVnG18bRcjMverg==/109951164100992192.jpg?param=200y200
47.246.44.229200 OK 6.1 kB URL HTTP/2 p1.music.126.net/NM1vrpLbVnG18bRcjMverg==/109951164100992192.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash cd3a9b895a58e484333d4f3676e69b81
18994220537b79c1f534643a5be86ac2b3baa5b8
4bcae752ec70b9bc02210f348db16d3369b90646e9cbc20553f8d88c65dd28d2
GET /NM1vrpLbVnG18bRcjMverg==/109951164100992192.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 6083
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: cd3a9b895a58e484333d4f3676e69b81
last-modified: Sun, 26 May 2019 12:45:17 Asia/Shanghai
x-nos-request-id: 70ab385a0a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache6.l2st3-1[33,32,200-0,M], cache26.l2st3-1[39,0], cache26.l2st3-1[39,0], cache35.l2hk2[0,0,200-0,H], cache19.l2hk2[2,0], cache19.l2hk2[2,0], cache2.l2de2[0,0,200-0,H], cache26.l2de2[1,0], cache26.l2de2[2,0], cache7.se1[24,24,200-0,M], cache8.se1[31,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151198580e
X-Firefox-Spdy: h2
p1.music.126.net/WPfpGYVgwbVjV6PiujShig==/109951164171825807.jpg
47.246.44.229200 OK 58 kB URL HTTP/2 p1.music.126.net/WPfpGYVgwbVjV6PiujShig==/109951164171825807.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash c16c13d7de10a31b484612ce0758bed3
2ba99a26e0d44e689644cf83db7d62ac28e546aa
7eca0a7a01d786d9afd0b4c80d3767f3b911acabab9fe968aebf9236be649b8d
GET /WPfpGYVgwbVjV6PiujShig==/109951164171825807.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 58183
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: c16c13d7de10a31b484612ce0758bed3
last-modified: Mon, 24 Jun 2019 23:50:32 Asia/Shanghai
x-nos-request-id: 481dabb00a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache5.l2st3-1[483,483,200-0,M], cache2.l2st3-1[485,0], cache2.l2st3-1[486,0], cache26.l2hk2[0,0,200-0,H], cache33.l2hk2[1,0], cache33.l2hk2[2,0], cache1.l2de2[0,0,200-0,H], cache4.l2de2[1,0], cache4.l2de2[1,0], cache3.se1[24,23,200-0,M], cache8.se1[42,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088576e
X-Firefox-Spdy: h2
p1.music.126.net/oeVnxGOO6Y5YvxZMlyHqeQ==/109951164170124198.jpg
47.246.44.229200 OK 41 kB URL HTTP/2 p1.music.126.net/oeVnxGOO6Y5YvxZMlyHqeQ==/109951164170124198.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash b87559e252197eed68bb78a41c796dd9
542abf16a8207b28aadc989144cb3f79f9185520
c9dbeb34599c8c9eac4d5248ae3279918eedb8670f0ca991bb786f1298d4b599
GET /oeVnxGOO6Y5YvxZMlyHqeQ==/109951164170124198.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 41333
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: b87559e252197eed68bb78a41c796dd9
last-modified: Mon, 24 Jun 2019 08:41:13 Asia/Shanghai
x-nos-request-id: b1e215f30a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache26.l2st3-1[442,441,200-0,M], cache38.l2st3-1[443,0], cache38.l2st3-1[444,0], cache31.l2hk2[0,0,200-0,H], cache5.l2hk2[0,0], cache5.l2hk2[2,0], cache8.l2de2[0,0,200-0,H], cache10.l2de2[1,0], cache10.l2de2[1,0], cache1.se1[30,29,200-0,M], cache8.se1[45,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088573e
X-Firefox-Spdy: h2
p1.music.126.net/TDjj8R7runNiWPEOeMrRcA==/109951164172205619.jpg
47.246.44.229200 OK 43 kB URL HTTP/2 p1.music.126.net/TDjj8R7runNiWPEOeMrRcA==/109951164172205619.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash a1451ba97c4cfa60f712fee0de50a86b
1f65bbbb8cd802db2b2600ac55a3900e9789a5b3
2bc3268ae58af05350ca14caa9a57d2d73b87c1dca312796ced7f83d1f336f9a
GET /TDjj8R7runNiWPEOeMrRcA==/109951164172205619.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 43267
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: a1451ba97c4cfa60f712fee0de50a86b
last-modified: Tue, 25 Jun 2019 07:23:39 Asia/Shanghai
x-nos-request-id: e11c2f200a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache29.l2st3-1[116,115,200-0,M], cache25.l2st3-1[117,0], cache25.l2st3-1[117,0], cache17.l2hk2[0,0,200-0,H], cache21.l2hk2[2,0], cache21.l2hk2[2,0], cache4.l2de2[0,0,200-0,H], cache1.l2de2[0,0], cache1.l2de2[2,0], cache3.se1[22,21,200-0,M], cache8.se1[38,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088571e
X-Firefox-Spdy: h2
p1.music.126.net/32OB8Ijv9SfdbqeWG8rzRg==/109951164172207067.jpg
47.246.44.229200 OK 61 kB URL HTTP/2 p1.music.126.net/32OB8Ijv9SfdbqeWG8rzRg==/109951164172207067.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash e6a1af8ef5b3f5875d514f22e983ffde
624db0490b6d3264338aa51a3e6f479151431d14
002ebb4050f20455dc797a83169ecf0f157847b0d273c05860ecebb7287e280e
GET /32OB8Ijv9SfdbqeWG8rzRg==/109951164172207067.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 60789
date: Sat, 26 Feb 2022 12:26:55 GMT
content-md5: e6a1af8ef5b3f5875d514f22e983ffde
last-modified: Tue, 25 Jun 2019 07:22:38 Asia/Shanghai
x-nos-request-id: 40fa87ed0a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878415
via: cache42.l2st3-1[2015,2014,200-0,M], cache7.l2st3-1[2016,0], cache7.l2st3-1[2017,0], cache18.l2hk2[0,0,200-0,H], cache3.l2hk2[1,0], cache3.l2hk2[1,0], cache6.l2de2[0,0,200-0,H], cache21.l2de2[1,0], cache21.l2de2[2,0], cache2.se1[22,22,200-0,M], cache8.se1[38,0]
age: 16469500
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066500
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088570e
X-Firefox-Spdy: h2
p1.music.126.net/Bsc9TADoSOYaUOs_tWxS7A==/109951164169407741.jpg
47.246.44.229200 OK 95 kB URL HTTP/2 p1.music.126.net/Bsc9TADoSOYaUOs_tWxS7A==/109951164169407741.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash 1e06d73cbd2b77d5e7fbf07862e8e75e
e15c622e6fc99a0a57ae1dc2931d667ee1c62744
8070f55053c457cb988c0fcb4dabd4691701542396e016f364d11c9513d4730f
GET /Bsc9TADoSOYaUOs_tWxS7A==/109951164169407741.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 94869
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 1e06d73cbd2b77d5e7fbf07862e8e75e
last-modified: Sun, 23 Jun 2019 22:28:21 Asia/Shanghai
x-nos-request-id: ce6af59c0a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache29.l2st3-1[177,177,200-0,M], cache9.l2st3-1[178,0], cache9.l2st3-1[180,0], cache2.l2hk2[0,0,200-0,H], cache9.l2hk2[0,0], cache9.l2hk2[2,0], cache16.l2de2[0,0,200-0,H], cache15.l2de2[1,0], cache15.l2de2[1,0], cache3.se1[22,21,200-0,M], cache8.se1[38,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088574e
X-Firefox-Spdy: h2
p1.music.126.net/ae3c2-_Dv7AaOmhELuMn_A==/109951164163755213.jpg?param=200y200
47.246.44.229200 OK 56 kB URL HTTP/2 p1.music.126.net/ae3c2-_Dv7AaOmhELuMn_A==/109951164163755213.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash fbe73a4f5cf5b7ea27de8962fa84e22c
977faa4691237550d87486df3341a99d78baadaa
2df8385e187c2890369e7d2e08441f301a211d2719b8b0dfcca91b6ec8c6797e
GET /ae3c2-_Dv7AaOmhELuMn_A==/109951164163755213.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 56045
date: Sat, 26 Feb 2022 12:26:54 GMT
content-md5: fbe73a4f5cf5b7ea27de8962fa84e22c
last-modified: Fri, 21 Jun 2019 18:59:22 Asia/Shanghai
x-nos-request-id: e958487c0a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878414
via: cache46.l2st3-1[563,563,200-0,M], cache33.l2st3-1[565,0], cache33.l2st3-1[565,0], cache16.l2hk2[0,0,200-0,H], cache33.l2hk2[1,0], cache33.l2hk2[1,0], cache20.l2de2[0,0,200-0,H], cache16.l2de2[1,0], cache16.l2de2[2,0], cache1.se1[23,23,200-0,M], cache8.se1[40,0]
age: 16469501
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066499
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088560e
X-Firefox-Spdy: h2
p1.music.126.net/fSC3dcJU2YaL1XogI6PWoA==/109951164163538572.jpg?param=200y200
47.246.44.229200 OK 45 kB URL HTTP/2 p1.music.126.net/fSC3dcJU2YaL1XogI6PWoA==/109951164163538572.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 29ffd9497adb2157e246d3cee6bf4992
fff796e194acb3d105f477077f56f9184b7436ea
69f4fd5b1408653121c363c6ee59edb0b3420869e75940b3690708b1c1b20104
GET /fSC3dcJU2YaL1XogI6PWoA==/109951164163538572.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 45088
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 29ffd9497adb2157e246d3cee6bf4992
last-modified: Fri, 21 Jun 2019 17:14:42 Asia/Shanghai
x-nos-request-id: 9cec4e3c0a8200000000621a1c8d6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache21.l2st3-1[446,445,200-0,M], cache38.l2st3-1[447,0], cache38.l2st3-1[447,0], cache37.l2hk2[0,0,200-0,H], cache35.l2hk2[1,0], cache35.l2hk2[2,0], cache23.l2de2[0,0,200-0,H], cache16.l2de2[0,0], cache16.l2de2[2,0], cache4.se1[24,23,200-0,M], cache8.se1[41,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088567e
X-Firefox-Spdy: h2
p1.music.126.net/mXqmc1nD5mu2S4pEvBVHzw==/109951164141857357.jpg?param=200y200
47.246.44.229200 OK 80 kB URL HTTP/2 p1.music.126.net/mXqmc1nD5mu2S4pEvBVHzw==/109951164141857357.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 784a713645839cebff44d74bb7202af8
f968872f0c1806cb855af6d1b66a106c1c910e24
fd679e3df29f83e6dc52847bc59175e173a939e4193ba47637ad247fe73b4037
GET /mXqmc1nD5mu2S4pEvBVHzw==/109951164141857357.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 80278
date: Thu, 10 Feb 2022 09:07:35 GMT
content-md5: 784a713645839cebff44d74bb7202af8
last-modified: Wed, 12 Jun 2019 14:16:37 Asia/Shanghai
x-nos-request-id: fbbcc8450a82000000006204d5d76333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644484055
via: cache20.l2de2[0,0,200-0,H], cache23.l2de2[1,0], cache23.l2de2[1,0], cache1.se1[23,23,200-0,M], cache8.se1[39,0]
age: 17863860
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13672140
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088559e
X-Firefox-Spdy: h2
p1.music.126.net/jTby01AVeQlUzSmHCV08vw==/109951164160737498.jpg?param=200y200
47.246.44.229200 OK 88 kB URL HTTP/2 p1.music.126.net/jTby01AVeQlUzSmHCV08vw==/109951164160737498.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 79a8f859ac0690154e56dfeb60f56923
a4724bd3b26dce2aea5c523bc9bf993ab420da73
625e36b6c071f3d5124679fc130b9d60437ba33f3640d3cf826ecc58ff006923
GET /jTby01AVeQlUzSmHCV08vw==/109951164160737498.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 88315
date: Sat, 26 Feb 2022 12:27:01 GMT
content-md5: 79a8f859ac0690154e56dfeb60f56923
last-modified: Thu, 20 Jun 2019 14:47:43 Asia/Shanghai
x-nos-request-id: d201f0520a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878421
via: cache42.l2st3-1[8274,8274,200-0,M], cache41.l2st3-1[8276,0], cache41.l2st3-1[8276,0], cache31.l2hk2[0,5,200-0,H], cache16.l2hk2[6,0], cache16.l2hk2[7,0], cache16.l2de2[0,0,200-0,H], cache1.l2de2[0,0], cache1.l2de2[1,0], cache2.se1[23,23,200-0,M], cache8.se1[41,0]
age: 16469494
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066506
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088564e
X-Firefox-Spdy: h2
p1.music.126.net/f1I6luYQ9j1oN_d88we7ng==/109951164142645142.jpg?param=200y200
47.246.44.229200 OK 52 kB URL HTTP/2 p1.music.126.net/f1I6luYQ9j1oN_d88we7ng==/109951164142645142.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 0192c47d162b2bc498aedb067644e218
5bd787edadf3fbadfeb357c372a896d4be53d911
9388644bb902ff24bd87f80ea2f7c8b0f36efbb7281d3ec844438d1bc6907b60
GET /f1I6luYQ9j1oN_d88we7ng==/109951164142645142.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 51816
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 0192c47d162b2bc498aedb067644e218
last-modified: Wed, 12 Jun 2019 21:27:45 Asia/Shanghai
x-nos-request-id: ce9561f20a8200000000621a1c8d6333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache2.l2st3-1[421,421,200-0,M], cache23.l2st3-1[422,0], cache23.l2st3-1[422,0], cache22.l2hk2[0,0,200-0,H], cache29.l2hk2[1,0], cache29.l2hk2[1,0], cache15.l2de2[0,0,200-0,H], cache1.l2de2[1,0], cache1.l2de2[2,0], cache7.se1[24,24,200-0,M], cache8.se1[42,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088568e
X-Firefox-Spdy: h2
dozubatan.com/400/4495524
139.45.197.237200 OK 32 kB URL HTTP/1.1 dozubatan.com/400/4495524
IP 139.45.197.237:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bc7bb63710d94bc7179b4749d72a279e
020b5b67a4171c9bad817ce1f3c848fa00a722b7
29ae279a88a121ca9184385528cc56e736ffa1c19ddf744419c90a186aeb367d
GET /400/4495524 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 615317202a1a67158b1f354593b040b6
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=222222c0c5e441f1b05d613f57f9ac46; expires=Tue, 05 Sep 2023 03:18:35 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
p1.music.126.net/wc_4zG3XMFlku4AdeUHg1g==/109951163561148208.jpg?param=200y200
47.246.44.229200 OK 3.4 kB URL HTTP/2 p1.music.126.net/wc_4zG3XMFlku4AdeUHg1g==/109951163561148208.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash fdc37d83b90911ce3784035c3240e34f
314115b0fc2abf09faccebef67600b5f21456a6d
9460ce0098c0cfd049b202f49e92e4f1fd85e32fd6d6e4fc6f0fa26476858e39
GET /wc_4zG3XMFlku4AdeUHg1g==/109951163561148208.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 3364
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: fdc37d83b90911ce3784035c3240e34f
last-modified: Fri, 21 Sep 2018 18:51:26 Asia/Shanghai
x-nos-request-id: 5ac87d270a8200000000621a1c8d6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache23.l2st3-1[179,179,200-0,M], cache34.l2st3-1[180,0], cache34.l2st3-1[180,0], cache6.l2hk2[0,0,200-0,H], cache14.l2hk2[1,0], cache14.l2hk2[7,0], cache10.l2de2[0,9,200-0,H], cache15.l2de2[11,0], cache15.l2de2[11,0], cache1.se1[138,138,200-0,M], cache8.se1[140,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479150958532e
X-Firefox-Spdy: h2
p1.music.126.net/FUPDFVpUDiattFrRdULIbw==/109951164111319845.jpg?param=200y200
47.246.44.229200 OK 8.5 kB URL HTTP/2 p1.music.126.net/FUPDFVpUDiattFrRdULIbw==/109951164111319845.jpg?param=200y200
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 61cb64316229694b4bf7960e66e95d0a
bce9b18622055d7e59079fb2c0b6ed505d449068
d14794f0db510600bc9f21296eaefcfeff65d2367d55f653319d30ba3964e782
GET /FUPDFVpUDiattFrRdULIbw==/109951164111319845.jpg?param=200y200 HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 8468
date: Sat, 19 Feb 2022 10:34:09 GMT
content-md5: 61cb64316229694b4bf7960e66e95d0a
last-modified: Fri, 31 May 2019 12:03:10 Asia/Shanghai
x-nos-request-id: 03a219700a82000000006210c7a16333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645266849
via: cache45.l2st3-1[111,111,200-0,M], cache11.l2st3-1[112,0], cache11.l2st3-1[113,0], cache29.l2hk2[0,0,200-0,H], cache17.l2hk2[1,0], cache17.l2hk2[1,0], cache16.l2de2[0,0,200-0,H], cache11.l2de2[1,0], cache11.l2de2[1,0], cache7.se1[120,120,200-0,M], cache8.se1[135,0]
age: 17081066
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 14454934
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088561e
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.207.194200 OK 57 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (2897)
Hash 9f67f93ecaa41d2b9d5409369bb0e21f
46e280736c37f2e20791b1965d521ccb8984b58e
a9948eaaf59915db76c6a966dfc3a181143aa72aee3d0cf7eca4446b5a6d5369
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 05 Sep 2022 03:18:35 GMT
Expires: Mon, 05 Sep 2022 03:18:35 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 2865970081670833113
Vary: Accept-Encoding, Origin
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 57359
X-XSS-Protection: 0
p1.music.126.net/XS29ZYm9O2WrrdinHbSt9A==/109951164172205157.jpg
47.246.44.229200 OK 64 kB URL HTTP/2 p1.music.126.net/XS29ZYm9O2WrrdinHbSt9A==/109951164172205157.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash 21f89937761132f7c893572a30067a59
54f342b2b06913278d9e3e9850380931f9b03ddf
7a99c3c62df91261a29ee10314abf160f4f51d25dff6cead5f2e2e6c494afdd9
GET /XS29ZYm9O2WrrdinHbSt9A==/109951164172205157.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 64023
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 21f89937761132f7c893572a30067a59
last-modified: Tue, 25 Jun 2019 07:24:24 Asia/Shanghai
x-nos-request-id: 195c4a440a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache3.l2st3-1[34,34,200-0,M], cache21.l2st3-1[35,0], cache21.l2st3-1[38,0], cache33.l2hk2[0,0,200-0,H], cache24.l2hk2[1,0], cache24.l2hk2[2,0], cache10.l2de2[0,0,200-0,H], cache5.l2de2[1,0], cache5.l2de2[2,0], cache5.se1[122,121,200-0,M], cache8.se1[137,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088572e
X-Firefox-Spdy: h2
p1.music.126.net/mWEKJDi2Ke7YgbtpBFQGDQ==/109951164172205085.jpg
47.246.44.229200 OK 75 kB URL HTTP/2 p1.music.126.net/mWEKJDi2Ke7YgbtpBFQGDQ==/109951164172205085.jpg
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1080x400, components 3\012- data
Hash 6b4442892ce84a9aff45f952abfc7562
2184728ab71f6f83ffbd1f3d20ff72c450b5bd07
007534de58d66320fddbe3081d4dc2f4d5790bfb880e760ff8ea18c22cc1255e
GET /mWEKJDi2Ke7YgbtpBFQGDQ==/109951164172205085.jpg HTTP/1.1
Host: p1.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 74802
date: Sat, 26 Feb 2022 12:26:53 GMT
content-md5: 6b4442892ce84a9aff45f952abfc7562
last-modified: Tue, 25 Jun 2019 07:20:21 Asia/Shanghai
x-nos-request-id: ff4f7f580a8200000000621a1c8d6334
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645878413
via: cache1.l2st3-1[39,39,200-0,M], cache21.l2st3-1[42,0], cache21.l2st3-1[42,0], cache28.l2hk2[0,18,200-0,H], cache9.l2hk2[19,0], cache9.l2hk2[21,0], cache16.l2de2[0,0,200-0,H], cache23.l2de2[2,0], cache23.l2de2[2,0], cache7.se1[123,123,200-0,M], cache8.se1[138,0]
age: 16469502
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 15066498
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.229
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9c16623479151088575e
X-Firefox-Spdy: h2
matomo.hellohi.me/matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=979712&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=y0wGx7&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040
104.21.94.42301 Moved Permanently 169 B URL HTTP/1.1 matomo.hellohi.me/matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=979712&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=y0wGx7&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040
IP 104.21.94.42:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f3099a531821c476589c3d2d00d53772
8e539d05a8355d6835a56f94b75f405c6e55f6f3
a5287e1cf9fe9dc106bd2172a5b175c7833427866b7819872b1b6fa34b66daef
POST /matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=979712&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=y0wGx7&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040 HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Sep 2022 03:18:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://matomo.hellohi.me/matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=979712&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=y0wGx7&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040
Referrer-Policy: origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uO7R4tAjRSNA8sSvh%2Bw19GOR1wPq2joglN4awUKdisKrBqSiSuLOx1odWJAsLK8FSJsI6xe6UjKhticI1M8%2BQFL74bsQElPZyDo2YPr3LFfViJiiyE1IKhZx7MrxNlruj2LzKw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 745bd186feedb4ee-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1931a32d83e4feb5268887bcb07fcc1e
6fb75c21ced29544dd6d7c3b0ef79adf65718a39
d794fae0b82097a2e97af2f21b6c243832081f88036a2a56bbeeabb08790d88d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20220831/r20190131/zrt_lookup.html
216.58.211.2200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220831/r20190131/zrt_lookup.html
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde
GET /pagead/html/r20220831/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Sun, 04 Sep 2022 20:15:31 GMT
expires: Sun, 18 Sep 2022 20:15:31 GMT
cache-control: public, max-age=1209600
age: 25384
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 30536626aec14c910cd30b5583f7ac65
e121ab5b767b6fc038cc9ea495406ae1d7e8b0f0
ba728415dbcc145810b1b0d785da5181ba9ab2fe323864b65599481795096eff
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 03:18:35 GMT
Ali-Swift-Global-Savetime: 1662347915
Via: cache19.l2de2[469,469,200-0,M], cache19.l2de2[470,0], cache4.se1[490,490,200-0,M], cache4.se1[492,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 05 Sep 2022 03:18:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816623479150506424e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 30536626aec14c910cd30b5583f7ac65
e121ab5b767b6fc038cc9ea495406ae1d7e8b0f0
ba728415dbcc145810b1b0d785da5181ba9ab2fe323864b65599481795096eff
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 03:18:35 GMT
Ali-Swift-Global-Savetime: 1662347915
Via: cache14.l2de2[471,471,200-0,M], cache14.l2de2[472,0], cache5.se1[493,492,200-0,M], cache5.se1[494,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 05 Sep 2022 03:18:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916623479150493959e
algothitaon.com/9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=d5in563856df112408647s8i5uzqe955
139.45.197.237204 No Content 0 B URL HTTP/2 algothitaon.com/9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=d5in563856df112408647s8i5uzqe955
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=d5in563856df112408647s8i5uzqe955 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 30536626aec14c910cd30b5583f7ac65
e121ab5b767b6fc038cc9ea495406ae1d7e8b0f0
ba728415dbcc145810b1b0d785da5181ba9ab2fe323864b65599481795096eff
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 03:18:35 GMT
Ali-Swift-Global-Savetime: 1662347915
Via: cache17.l2de2[490,489,200-0,M], cache17.l2de2[491,0], cache5.se1[513,513,200-0,M], cache5.se1[514,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 05 Sep 2022 03:18:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916623479150493958e
my.rtmark.net/gid.js?userId=d5in563856df112408647s8i5uzqe955
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=d5in563856df112408647s8i5uzqe955
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 45b39756701315f2d55cff9d56b10ace
edf122a8a5148b808400b2011c80a6c3fbeabe93
52a27bb96eb56e938a2bcd404c1d7a4829c0096d145b7bc06a4937fbf66d6d82
GET /gid.js?userId=d5in563856df112408647s8i5uzqe955 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: ID=20c03a08024c413e8e4e4c5f8064fa34
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=20c03a08024c413e8e4e4c5f8064fa34; expires=Tue, 05 Sep 2023 03:18:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 3dbf1f65eda3421459f6a54c6d822c6f
745194189ff0f5967c5101b5d3fc8d5a5770e05c
9e929289ce3272109772e5e6c6ac79cd841818f461f555442c338300ba129509
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5557
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:35 GMT
Last-Modified: Mon, 05 Sep 2022 01:45:58 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 314
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1931a32d83e4feb5268887bcb07fcc1e
6fb75c21ced29544dd6d7c3b0ef79adf65718a39
d794fae0b82097a2e97af2f21b6c243832081f88036a2a56bbeeabb08790d88d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p2.music.126.net/cNbMx9IDtBIhXgSYUfiXrw==/18732379604653510.jpg?param=200y200
47.246.44.224200 OK 5.9 kB URL HTTP/2 p2.music.126.net/cNbMx9IDtBIhXgSYUfiXrw==/18732379604653510.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 7f553fecab963a1440a5f46c1bff04f4
d58ec0210bb30f767d90b91b8a0e2769adf2bc95
50fa9982a60dc1ee2941ae555e266fbdac90d7c454b9e0416422fd032dd2d1e2
GET /cNbMx9IDtBIhXgSYUfiXrw==/18732379604653510.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 5911
date: Wed, 16 Feb 2022 12:25:03 GMT
content-md5: 7f553fecab963a1440a5f46c1bff04f4
last-modified: Sun, 16 Jun 2019 11:44:45 Asia/Shanghai
x-nos-request-id: c4d011c70a8200000000620ced1e6335
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1645014303
via: cache23.l2hk2[0,0,200-0,H], cache15.l2hk2[1,0], cache15.l2hk2[3,0], cache19.l2de2[0,3,200-0,H], cache9.l2de2[5,0], cache9.l2de2[5,0], cache3.se1[26,26,200-0,M], cache1.se1[28,0]
age: 17333612
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 14202388
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479155462574e
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 30536626aec14c910cd30b5583f7ac65
e121ab5b767b6fc038cc9ea495406ae1d7e8b0f0
ba728415dbcc145810b1b0d785da5181ba9ab2fe323864b65599481795096eff
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 03:18:35 GMT
Ali-Swift-Global-Savetime: 1662347915
Via: cache12.l2de2[517,517,200-0,M], cache12.l2de2[518,0], cache4.se1[540,540,200-0,M], cache4.se1[541,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 05 Sep 2022 03:18:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816623479150516426e
cdn.itskiddoan.club/?rb=M1ifEDgcPugNqK775VPs2QXEzJD0QiKXD-N8iNOn5zU0QCxBy-pYkMK1NonZ0LH59jcJ17fklEQs5nYJ3JEWL7dLfmz1sbV9_8Lv3VE5E5CPWoLIKa7GTeCNT8Ndhi-HLObfX29wdcNAvoNd5_UCs2pJTlPNbNmcIB9MEEyeZ21OPcombMXKWRT6tCVNwLj597auIBmumwiDWrxsEdljTKXjEa1uI3uJ&request_ab2=0&zoneid=3388548&js_build=iclick-v1.418.0-rc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.418.0-rc&bs=84adf73e-4c75-4c63-8ac6-6046ed43a87b&userId=d5in563856df112408647s8i5uzqe955&m=link
139.45.197.236200 OK 1.7 kB URL HTTP/1.1 cdn.itskiddoan.club/?rb=M1ifEDgcPugNqK775VPs2QXEzJD0QiKXD-N8iNOn5zU0QCxBy-pYkMK1NonZ0LH59jcJ17fklEQs5nYJ3JEWL7dLfmz1sbV9_8Lv3VE5E5CPWoLIKa7GTeCNT8Ndhi-HLObfX29wdcNAvoNd5_UCs2pJTlPNbNmcIB9MEEyeZ21OPcombMXKWRT6tCVNwLj597auIBmumwiDWrxsEdljTKXjEa1uI3uJ&request_ab2=0&zoneid=3388548&js_build=iclick-v1.418.0-rc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.418.0-rc&bs=84adf73e-4c75-4c63-8ac6-6046ed43a87b&userId=d5in563856df112408647s8i5uzqe955&m=link
IP 139.45.197.236:0
File type JSON data\012- , ASCII text, with very long lines (2167), with no line terminators
Hash 28e2e1bc437aa0ac7c51e87abe92671f
46a95d7c4aef029815295bf6eb0fa3a186d7bc62
0c49773c026875764cd6fd1a0d79843fa7fc35ff50c02bcb7a347f32d6610465
GET /?rb=M1ifEDgcPugNqK775VPs2QXEzJD0QiKXD-N8iNOn5zU0QCxBy-pYkMK1NonZ0LH59jcJ17fklEQs5nYJ3JEWL7dLfmz1sbV9_8Lv3VE5E5CPWoLIKa7GTeCNT8Ndhi-HLObfX29wdcNAvoNd5_UCs2pJTlPNbNmcIB9MEEyeZ21OPcombMXKWRT6tCVNwLj597auIBmumwiDWrxsEdljTKXjEa1uI3uJ&request_ab2=0&zoneid=3388548&js_build=iclick-v1.418.0-rc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.418.0-rc&bs=84adf73e-4c75-4c63-8ac6-6046ed43a87b&userId=d5in563856df112408647s8i5uzqe955&m=link HTTP/1.1
Host: cdn.itskiddoan.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:35 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 3ec257cba02bce8fb6b2e52f3b28b3cd
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=d5in563856df112408647s8i5uzqe955; expires=Tue, 05 Sep 2023 03:18:35 GMT; path=/
oaidts=1662347915; expires=Tue, 05 Sep 2023 03:18:35 GMT; path=/
syncedCookie=true; expires=Mon, 12 Sep 2022 03:18:35 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
p2.music.126.net/_SPItojIVnmpsNsgz8LlMw==/109951164096961308.jpg?param=200y200
47.246.44.224200 OK 90 kB URL HTTP/2 p2.music.126.net/_SPItojIVnmpsNsgz8LlMw==/109951164096961308.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash b0173ec8a9e414bd4c9bb361332a6e1d
f6d0cb828551af9cd9c1f9f4e395be0b82c67f95
7a643dc91293e3e98b84c2edcc5845af765a9ff3754c6bdf09688a6883af685d
GET /_SPItojIVnmpsNsgz8LlMw==/109951164096961308.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 89860
date: Wed, 09 Feb 2022 17:59:34 GMT
content-md5: b0173ec8a9e414bd4c9bb361332a6e1d
last-modified: Fri, 24 May 2019 21:49:27 Asia/Shanghai
x-nos-request-id: 2e8a66450a8200000000620401066336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429574
via: cache20.l2de2[0,0,200-0,H], cache12.l2de2[1,0], cache12.l2de2[1,0], cache7.se1[22,21,200-0,M], cache1.se1[23,0]
age: 17918341
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617659
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479155542578e
X-Firefox-Spdy: h2
p2.music.126.net/ToOepouoqXaZcPUZuDEaCw==/109951164021309622.jpg?param=200y200
47.246.44.224200 OK 66 kB URL HTTP/2 p2.music.126.net/ToOepouoqXaZcPUZuDEaCw==/109951164021309622.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c0507f9dfc4fafd53bb89a4d108a68a
cb487d86023660aebce3f9d452319b0c3c7f00f3
704f4505c973bd8377a0fc581a2f0688ec3490c6fa62dc6461c794302a60210f
GET /ToOepouoqXaZcPUZuDEaCw==/109951164021309622.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 65910
date: Wed, 09 Feb 2022 17:59:38 GMT
content-md5: 2c0507f9dfc4fafd53bb89a4d108a68a
last-modified: Wed, 24 Apr 2019 11:44:50 Asia/Shanghai
x-nos-request-id: 986edeae0a8200000000620401096333
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429578
via: cache15.l2de2[0,0,200-0,H], cache12.l2de2[0,0], cache12.l2de2[1,0], cache8.se1[22,21,200-0,M], cache1.se1[23,0]
age: 17918337
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617663
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479155672584e
X-Firefox-Spdy: h2
p2.music.126.net/GuiPu5Rlk1-5hmBEpu1Prw==/109951164160748977.jpg?param=200y200
47.246.44.224200 OK 74 kB URL HTTP/2 p2.music.126.net/GuiPu5Rlk1-5hmBEpu1Prw==/109951164160748977.jpg?param=200y200
IP 47.246.44.224:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash c01a96725a0b19cec86d968b2db7cebc
fe7aeedb9cbea9615e82320113d568e66d8ece08
69f7de8d088fbe21e508bc975fd68ba8cb87cbbfec129443443baf1571fd0d08
GET /GuiPu5Rlk1-5hmBEpu1Prw==/109951164160748977.jpg?param=200y200 HTTP/1.1
Host: p2.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpg
content-length: 73962
date: Wed, 09 Feb 2022 17:59:39 GMT
content-md5: c01a96725a0b19cec86d968b2db7cebc
last-modified: Thu, 20 Jun 2019 14:54:48 Asia/Shanghai
x-nos-request-id: c936ceae0a82000000006204010b6336
x-nos-requesttype: imageView
x-nos-storage-class: STANDARD
cache-control: max-age=31536000
ali-swift-global-savetime: 1644429579
via: cache11.l2de2[0,0,200-0,H], cache2.l2de2[1,0], cache2.l2de2[2,0], cache3.se1[24,23,200-0,M], cache1.se1[26,0]
age: 17918336
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Mon, 05 Sep 2022 03:18:35 GMT
x-swift-cachetime: 13617664
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.224
cdn-source: Ali
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9516623479155952595e
X-Firefox-Spdy: h2
algothitaon.com/9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=d5in563856df112408647s8i5uzqe955
139.45.197.237200 OK 2.8 kB URL HTTP/2 algothitaon.com/9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=d5in563856df112408647s8i5uzqe955
IP 139.45.197.237:0
Hash 0b234682b2e66051180429a28279fb49
51003ecc1091f5c71dafd010b2a1265647ea0afa
ceac2d898cc45d0cad55f0a89e12bd3c5e6580b4adfe259e12a6d51eb3ad4e76
Analyzer Verdict Alert quad9 Sinkholed
POST /9?z=3372123&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&oaid=d5in563856df112408647s8i5uzqe955 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 140
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: scm=1; OAID=d51a07be77d54c83aacef6c9f2441967; oaidts=1662347913
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 197b628aff7baf14f65244bf698b4516
access-control-expose-headers: X-Sc
set-cookie: OAID=d5in563856df112408647s8i5uzqe955; expires=Tue, 05 Sep 2023 03:18:35 GMT; secure; SameSite=None
oaidts=1662347913; expires=Tue, 05 Sep 2023 03:18:35 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=d5in563856df112408647s8i5uzqe955
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=d5in563856df112408647s8i5uzqe955
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 45b39756701315f2d55cff9d56b10ace
edf122a8a5148b808400b2011c80a6c3fbeabe93
52a27bb96eb56e938a2bcd404c1d7a4829c0096d145b7bc06a4937fbf66d6d82
GET /gid.js?userId=d5in563856df112408647s8i5uzqe955 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: ID=20c03a08024c413e8e4e4c5f8064fa34
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=20c03a08024c413e8e4e4c5f8064fa34; expires=Tue, 05 Sep 2023 03:18:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
inpagepush.com/500/3064505?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/1.1 inpagepush.com/500/3064505?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/3064505?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: inpagepush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:35 GMT
Content-Length: 0
Connection: keep-alive
Allow: GET, OPTIONS
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 600
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
dozubatan.com/500/4495524?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/1.1 dozubatan.com/500/4495524?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/4495524?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:35 GMT
Content-Length: 0
Connection: keep-alive
Allow: GET, OPTIONS
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 600
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
algothitaon.com/11?rnd=1339728639&z=3372123&b=14589405&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z&ruid=9721df71-1be7-4998-8a27-c4a1d523e76b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=264
139.45.197.237200 OK 0 B URL HTTP/2 algothitaon.com/11?rnd=1339728639&z=3372123&b=14589405&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z&ruid=9721df71-1be7-4998-8a27-c4a1d523e76b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=264
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=1339728639&z=3372123&b=14589405&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z&ruid=9721df71-1be7-4998-8a27-c4a1d523e76b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=264 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: scm=1; OAID=d5in563856df112408647s8i5uzqe955; oaidts=1662347913
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 3631c355d933f8d6acb34893f359d6a9
access-control-expose-headers: X-Sc
set-cookie: OAID=d5in563856df112408647s8i5uzqe955; expires=Tue, 05 Sep 2023 03:18:35 GMT; secure; SameSite=None
oaidts=1662347913; expires=Tue, 05 Sep 2023 03:18:35 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
inpagepush.com/500/3064505?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 1.2 kB URL HTTP/1.1 inpagepush.com/500/3064505?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1470), with no line terminators
Hash c3b2110bce9f58f30b48aff5b3a75027
c18748812fbfbfd3b0fbb6f5b03bda677abb715e
0673a373e4cfa9afde4c6c415876ad96a3a4c419d99f375e3923a635cd677649
GET /500/3064505?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: inpagepush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: af11b976b0df861707750fd4be16dd81
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=d5in563856df112408647s8i5uzqe955; expires=Tue, 05 Sep 2023 03:18:35 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
dozubatan.com/500/4495524?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 1.2 kB URL HTTP/1.1 dozubatan.com/500/4495524?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1468), with no line terminators
Hash 5a59f8f23c00585bc6622c5315d9d6e8
2b4f080504d4152be7dd16417ab110ca6b1737e1
18690e28a6dde669ad599df748de8f4eded3bca11dc8cd517d5fde34eeb82926
GET /500/4495524?excludes=&oaid=d5in563856df112408647s8i5uzqe955&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 8733836dcbd85067a14a9a83cb39e4e4
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=d5in563856df112408647s8i5uzqe955; expires=Tue, 05 Sep 2023 03:18:35 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
glimtors.net/custom
139.45.197.251200 OK 0 B IP 139.45.197.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
OPTIONS /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=ad80f432e03341c1816887489b4e5d19&zoneId=2651991&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=ad80f432e03341c1816887489b4e5d19&zoneId=2651991&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 45b39756701315f2d55cff9d56b10ace
edf122a8a5148b808400b2011c80a6c3fbeabe93
52a27bb96eb56e938a2bcd404c1d7a4829c0096d145b7bc06a4937fbf66d6d82
GET /gid.js?pub=0&userId=ad80f432e03341c1816887489b4e5d19&zoneId=2651991&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Cookie: ID=20c03a08024c413e8e4e4c5f8064fa34
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=20c03a08024c413e8e4e4c5f8064fa34; expires=Tue, 05 Sep 2023 03:18:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
github.com/daxiv/2b/raw/master/data/%E6%9D%A8%E8%AF%91%20-%20Happy%20Birthday.mp3
140.82.121.4302 Found 0 B URL HTTP/2 github.com/daxiv/2b/raw/master/data/%E6%9D%A8%E8%AF%91%20-%20Happy%20Birthday.mp3
IP 140.82.121.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /daxiv/2b/raw/master/data/%E6%9D%A8%E8%AF%91%20-%20Happy%20Birthday.mp3 HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: GitHub.com
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
permissions-policy: interest-cohort=()
access-control-allow-origin: https://render.githubusercontent.com
location: https://raw.githubusercontent.com/daxiv/2b/master/data/%E6%9D%A8%E8%AF%91%20-%20Happy%20Birthday.mp3
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
expect-ct: max-age=2592000, report-uri="https://api.github.com/_private/browser/errors"
content-security-policy: default-src 'none'; base-uri 'self'; block-all-mixed-content; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com objects-origin.githubusercontent.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com cdn.optimizely.com logx.optimizely.com/v1/events *.actions.githubusercontent.com wss://*.actions.githubusercontent.com online.visualstudio.com/api/v1/locations github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src render.githubusercontent.com viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com identicons.github.com github-cloud.s3.amazonaws.com secured-user-images.githubusercontent.com/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: B4AA:3F65:90AB66:9AFCB6:63156A8B
X-Firefox-Spdy: h2
glimtors.net/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://muxiv.twoproxy.org/
Content-Type: application/json
Origin: http://muxiv.twoproxy.org
Content-Length: 372
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:35 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 8d2ea488c26167edc9ce33fd5829eb4c
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 802a5c09ca2e921bfdcd304944277006
90cac7f0e305f2bf520dd97df1c908bd8f5ecfc8
a5970de89cad194d8e37f1fcc88b92284b7374bc66779833c83ac85fafb4dc6e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5970DE89CAD194D8E37F1FCC88B92284B7374BC66779833C83AC85FAFB4DC6E"
Last-Modified: Sat, 03 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11330
Expires: Mon, 05 Sep 2022 06:27:25 GMT
Date: Mon, 05 Sep 2022 03:18:35 GMT
Connection: keep-alive
offerimage.com/www/images/e737027d1376f9277c99e68048d441cc.png
104.22.32.172200 OK 50 kB URL HTTP/2 offerimage.com/www/images/e737027d1376f9277c99e68048d441cc.png
IP 104.22.32.172:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e737027d1376f9277c99e68048d441cc
d102eda710502202134c74eaa576c6e8a76a23a3
a83162955bfc853f1d09d18a704fbe8400169a71e6f2e212b65c146d766bf6bc
GET /www/images/e737027d1376f9277c99e68048d441cc.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:36 GMT
content-type: image/png
content-length: 49738
last-modified: Mon, 12 Oct 2020 05:50:58 GMT
etag: "5f83eec2-c24a"
expires: Mon, 05 Sep 2022 08:21:24 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 68232
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd18b29e7abe1-CPH
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14844
Expires: Mon, 05 Sep 2022 07:26:00 GMT
Date: Mon, 05 Sep 2022 03:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14844
Expires: Mon, 05 Sep 2022 07:26:00 GMT
Date: Mon, 05 Sep 2022 03:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14844
Expires: Mon, 05 Sep 2022 07:26:00 GMT
Date: Mon, 05 Sep 2022 03:18:36 GMT
Connection: keep-alive
p4.music.126.net/K0aLgfmDd8WIS1ZYDC5tdA==/86861418611949.jpg?param=177y177
47.246.44.230200 OK 73 kB URL HTTP/1.1 p4.music.126.net/K0aLgfmDd8WIS1ZYDC5tdA==/86861418611949.jpg?param=177y177
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 177 x 177, 8-bit/color RGBA, non-interlaced\012- data
Hash db62d1a6d4d92f8a2ef00b2e42cb2c78
7f82db03b655f4e2c6d77990b1c47f5eca929887
5d8d221b7e2bddbf76df49a2d868d5fa146c3302033849cb5fe528dd0c33c748
GET /K0aLgfmDd8WIS1ZYDC5tdA==/86861418611949.jpg?param=177y177 HTTP/1.1
Host: p4.music.126.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/jpg
Content-Length: 72997
Connection: keep-alive
Date: Wed, 09 Feb 2022 15:00:38 GMT
Content-Md5: db62d1a6d4d92f8a2ef00b2e42cb2c78
Last-Modified: Thu, 05 Nov 2015 17:36:28 Asia/Shanghai
X-Nos-Request-Id: 39fa24510a82000000006203d7166336
X-Nos-Requesttype: imageView
X-Nos-Storage-Class: STANDARD
cache-control: max-age=31536000
Ali-Swift-Global-Savetime: 1644418838
Via: cache4.l2hk2[0,0,200-0,H], cache29.l2hk2[59,0], cache29.l2hk2[125,0], cache11.l2de2[0,19,200-0,H], cache9.l2de2[21,0], cache9.l2de2[21,0], cache4.se1[42,42,200-0,M], cache8.se1[43,0]
Age: 17929078
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 05 Sep 2022 03:18:36 GMT
X-Swift-CacheTime: 13606922
cdn-user-ip: 91.90.42.154
cdn-ip: 47.246.44.230
cdn-source: Ali
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
EagleId: 2ff62c9c16623479159948952e
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14844
Expires: Mon, 05 Sep 2022 07:26:00 GMT
Date: Mon, 05 Sep 2022 03:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14844
Expires: Mon, 05 Sep 2022 07:26:00 GMT
Date: Mon, 05 Sep 2022 03:18:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca4ce97d-6ffc-4b05-bad2-5c1a4358c1dc.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca4ce97d-6ffc-4b05-bad2-5c1a4358c1dc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f231416a9629ddd9d4bc86c2a8c21e1
05815550329d38fcd02ac12f197fc2ec0d271830
1703f0782b7d1724b2313c25ee084d872d3602f883f9a7260ab19568e726ffde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca4ce97d-6ffc-4b05-bad2-5c1a4358c1dc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6928
x-amzn-requestid: 7f219b47-6290-4c62-a46a-1e66908cb272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xs9XgF9gIAMFmXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ea8fc-137ace6402c294aa6992e859;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 00:19:08 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cRn_33wmRxZV4ge91QE2KZRVdNhqo0XqWtKLYHhMAvgCxZtwIo5sPg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 04:09:14 GMT
age: 83362
etag: "05815550329d38fcd02ac12f197fc2ec0d271830"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86e2429c-04f6-4791-b0ac-bfe10ee01611.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86e2429c-04f6-4791-b0ac-bfe10ee01611.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 567b5c4783f4affe56eab1cd640447d0
e02a994b68bca6eb31847ca69e574759629d1029
f3b8af815de503b88bba689b28a1d2b4b7616936ecc5d62d15fa00adaa5e340f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86e2429c-04f6-4791-b0ac-bfe10ee01611.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7021
x-amzn-requestid: e7c1552f-b027-4c5b-9065-4e2460306f30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTp2GeIIAMF4cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c663e-5c1787a91a1ff9845d7f14f7;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:09:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZqFAwLs4_aj1wCVzZSUFZlNPwGtKCwcDZnLoifHgC9xjH5dLg3MThw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 10:54:02 GMT
age: 59074
etag: "e02a994b68bca6eb31847ca69e574759629d1029"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690cb176-22f5-4418-9c43-7bd344d0ba70.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690cb176-22f5-4418-9c43-7bd344d0ba70.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3914e1793c148aabcf63ffd544737a71
c7d201bb9577d0780f9c0eb0d211601949e9aca2
0a15bf97714ea1dd2d18f3681690b8755604df64c11cce991e8e84fddcb3bfdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F690cb176-22f5-4418-9c43-7bd344d0ba70.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5584
x-amzn-requestid: 25dbb795-f619-47dd-a696-4db0b6a0d6d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XznAPFwgIAMFQzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63115201-7284934d7e5b39df5234e875;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 00:44:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fGx2PrL5ZVNDzyeJcjxuue29n3Tc6oVWyO7-DoApoZpJaILQYqKdCg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:01:24 GMT
age: 19032
etag: "c7d201bb9577d0780f9c0eb0d211601949e9aca2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30bf854fd3e27e2313a3d26fc43b9990
032acf1bfb0c8e2cbce8f2ff4d2964424b044951
7641be64dd25487edf4f845d1fbb0b07daa80fa8fb58863dd09081d9d169bd13
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: de0e8998-4a52-4651-bcd6-3068c50193b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey2Eq4oAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-15da44d87bf486cb1738fe18;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GuATNx2xnWnEl0cr_2ZWZo_jOWbHlSBYksIeHFDoHAK9o5Tf0PPliQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:03:29 GMT
etag: "032acf1bfb0c8e2cbce8f2ff4d2964424b044951"
content-type: image/jpeg
age: 18907
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f567821-8e06-4951-99ce-e4f161bb68b8.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f567821-8e06-4951-99ce-e4f161bb68b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af2dba4695867af2da0b689832f99393
b33bef0200ea8f8a64df0fdd28e648f36ed177d1
eecc3b2002b85f2f742f97b6fa4a2686c5e22fac3e73f4469357e0cfb554649e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f567821-8e06-4951-99ce-e4f161bb68b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11529
x-amzn-requestid: 5a708c64-a562-4082-bdb0-54a7e7ca4c96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqfLDEa3IAMFg7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630dabe0-50c8bda630d48d5866416a55;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 06:19:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wLCyRpkbM9GuCD0b68O8ttgaDNma8Dc18GetEWkNqo6bQJkuE44gKw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 03:40:15 GMT
age: 85101
etag: "b33bef0200ea8f8a64df0fdd28e648f36ed177d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfc2d378-c53c-424f-a82f-55ed32313f68.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfc2d378-c53c-424f-a82f-55ed32313f68.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f66d31b81d9fc88126f29d021a4e9274
27a8f7e44f69ad5feeec7ce6c64e9b2d552c2fe7
5769765bb634ce5e9f6c40bfb85e09b61ac6fe6d0e20c249e4f88e6fce6034f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfc2d378-c53c-424f-a82f-55ed32313f68.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: 309a861d-31c1-4782-be91-aa3956e72c5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey3HujIAMFybQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-0d21ac553e964f31183018e7;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CLDQW6hpGXAJlTk8AEBZyAwJ0msoRFnDszGTBqM-tyWnvqHwKrsCqQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:46:20 GMT
age: 19936
etag: "27a8f7e44f69ad5feeec7ce6c64e9b2d552c2fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f659b0b1cbfcaf5c8e35bbcde1721f2a
fc9d579de0c947fcd73323b1b41ea32f00ef4521
5ec1f3769fd50c8cddf6c13787cde90886ed01fa0be30f515bdb69053211ac73
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EC1F3769FD50C8CDDF6C13787CDE90886ED01FA0BE30F515BDB69053211AC73"
Last-Modified: Sun, 04 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=700
Expires: Mon, 05 Sep 2022 03:30:16 GMT
Date: Mon, 05 Sep 2022 03:18:36 GMT
Connection: keep-alive
interstitial-07.com/contents/s/20/a3/49/056e75241a0a361d586051548c/01633822966111.jpeg
139.45.197.153200 OK 16 kB URL HTTP/2 interstitial-07.com/contents/s/20/a3/49/056e75241a0a361d586051548c/01633822966111.jpeg
IP 139.45.197.153:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Hash 20a349056e75241a0a361d586051548c
96cbc41836d3cd96c7de43766157f37d815da307
deaab51a9a45c2d0792d92429795c2ea8f34c9517643d017430918c19bf6fa91
GET /contents/s/20/a3/49/056e75241a0a361d586051548c/01633822966111.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=AmD2mh9eDfl5AZC&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Falgothitaon.com%2F12%3Frnd%3D1723637085%26z%3D3372123%26b%3D14589405%26c%3D6014442%26var%3D%26d%3Dhttp%253A%252F%252Fshedating.me%252Fbase.php%253Fc%253D3068%2526key%253D695b5e8dd72a14bff4cbf821bf88e0df%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z%26bag%3DmtlVseJPZwq8MrL-yExcig%3D%3D%26ruid%3D9721df71-1be7-4998-8a27-c4a1d523e76b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fmuxiv.twoproxy.org%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:36 GMT
content-type: image/jpeg
content-length: 16519
last-modified: Fri, 24 Dec 2021 03:38:14 GMT
etag: "61c540a6-4087"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d3f119e90267b7b692ff0388e26f459
ba7b92dcaf9f8fa486696bfbdfe2aeec828280ce
2ffb52afe2c56c275517da446c80f869ad97b9edd32566e67022374cfaa6f0b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2FFB52AFE2C56C275517DA446C80F869AD97B9EDD32566E67022374CFAA6F0B4"
Last-Modified: Sat, 03 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3490
Expires: Mon, 05 Sep 2022 04:16:46 GMT
Date: Mon, 05 Sep 2022 03:18:36 GMT
Connection: keep-alive
interstitial-07.com/contents/s/29/99/4e/e81e9783df99a47966d6cf7dd3/0470197111866.jpeg
139.45.197.153200 OK 29 kB URL HTTP/2 interstitial-07.com/contents/s/29/99/4e/e81e9783df99a47966d6cf7dd3/0470197111866.jpeg
IP 139.45.197.153:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash 29994ee81e9783df99a47966d6cf7dd3
33077c6753c801c08631ca80dcc1f96197d30077
5dd5c81a434e6167dd9fa37d15a8464a2275a05fd58cc015c94cbf24849ff211
GET /contents/s/29/99/4e/e81e9783df99a47966d6cf7dd3/0470197111866.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=AmD2mh9eDfl5AZC&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Falgothitaon.com%2F12%3Frnd%3D1723637085%26z%3D3372123%26b%3D14589405%26c%3D6014442%26var%3D%26d%3Dhttp%253A%252F%252Fshedating.me%252Fbase.php%253Fc%253D3068%2526key%253D695b5e8dd72a14bff4cbf821bf88e0df%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z%26bag%3DmtlVseJPZwq8MrL-yExcig%3D%3D%26ruid%3D9721df71-1be7-4998-8a27-c4a1d523e76b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fmuxiv.twoproxy.org%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:36 GMT
content-type: image/jpeg
content-length: 29303
last-modified: Fri, 24 Dec 2021 03:38:14 GMT
etag: "61c540a6-7277"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
matomo.hellohi.me/matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=462406&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=RxPHeI&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040
104.21.94.42301 Moved Permanently 169 B URL HTTP/1.1 matomo.hellohi.me/matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=462406&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=RxPHeI&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040
IP 104.21.94.42:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f3099a531821c476589c3d2d00d53772
8e539d05a8355d6835a56f94b75f405c6e55f6f3
a5287e1cf9fe9dc106bd2172a5b175c7833427866b7819872b1b6fa34b66daef
POST /matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=462406&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=RxPHeI&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040 HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Sep 2022 03:18:36 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://matomo.hellohi.me/matomo.php?action_name=MuXiv%20Music&idsite=1&rec=1&r=462406&h=3&m=18&s=31&url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&_id=95f7b829598d9645&_idn=0&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=RxPHeI&pf_net=24&pf_srv=118&pf_tfr=60&pf_dm1=1040
Referrer-Policy: origin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4rz611%2FMVBTaEBkUbU25Z2wb%2FVSF0OUNppf10aO3VMgIvEvRp5DBj3Bo%2FWoGNWkZm1MoFXwSn%2Fu8znyFNSlWQ8HYlf%2B%2F5dcRXXebPlzl9fhDS9Re0BQJ4ph918DSXzurG9GAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 745bd18bfc28b4ee-OSL
alt-svc: h2=":443"; ma=60
glimtors.net/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
POST /custom HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://muxiv.twoproxy.org/
Content-Type: application/json
Origin: http://muxiv.twoproxy.org
Content-Length: 369
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:36 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 34d2c08688af472fd7e2f6e0a028e60e
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=72747
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=72747
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 05 Sep 2022 03:18:36 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 6a44789ce19bfb76dc483091cfc81fd8
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
glimtors.net/pfe/current/defaultSkin.min.js
139.45.197.251200 OK 19 kB URL HTTP/2 glimtors.net/pfe/current/defaultSkin.min.js
IP 139.45.197.251:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (52034)
Hash 0618e49233567190d18bfe72d6be54a1
acceb61e398cef1b90f42871ba51c2d70ab97ec2
baefbd5580db4a5f29278d7e19570e6fd102b8ac72b5a491fd0c06a83a5f8d63
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: glimtors.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:36 GMT
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 12:18:11 GMT
etag: W/"63037403-df63"
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
interstitial-07.com/?l=AmD2mh9eDfl5AZC&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Falgothitaon.com%2F12%3Frnd%3D1723637085%26z%3D3372123%26b%3D14589405%26c%3D6014442%26var%3D%26d%3Dhttp%253A%252F%252Fshedating.me%252Fbase.php%253Fc%253D3068%2526key%253D695b5e8dd72a14bff4cbf821bf88e0df%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z%26bag%3DmtlVseJPZwq8MrL-yExcig%3D%3D%26ruid%3D9721df71-1be7-4998-8a27-c4a1d523e76b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fmuxiv.twoproxy.org%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.153200 OK 2.9 kB URL HTTP/2 interstitial-07.com/?l=AmD2mh9eDfl5AZC&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Falgothitaon.com%2F12%3Frnd%3D1723637085%26z%3D3372123%26b%3D14589405%26c%3D6014442%26var%3D%26d%3Dhttp%253A%252F%252Fshedating.me%252Fbase.php%253Fc%253D3068%2526key%253D695b5e8dd72a14bff4cbf821bf88e0df%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z%26bag%3DmtlVseJPZwq8MrL-yExcig%3D%3D%26ruid%3D9721df71-1be7-4998-8a27-c4a1d523e76b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fmuxiv.twoproxy.org%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.153:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1492)
Hash ce6ed5baa543bbf1f8de79205ef4b707
b255a2238c859333b4c2dfe67180181ea0605a73
be12f875749f5744938a2e34b9e569f939780927b6923d3a26451426fc2e1905
GET /?l=AmD2mh9eDfl5AZC&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Falgothitaon.com%2F12%3Frnd%3D1723637085%26z%3D3372123%26b%3D14589405%26c%3D6014442%26var%3D%26d%3Dhttp%253A%252F%252Fshedating.me%252Fbase.php%253Fc%253D3068%2526key%253D695b5e8dd72a14bff4cbf821bf88e0df%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3D6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z%26bag%3DmtlVseJPZwq8MrL-yExcig%3D%3D%26ruid%3D9721df71-1be7-4998-8a27-c4a1d523e76b%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttp%253A%252F%252Fmuxiv.twoproxy.org%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:36 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.26
set-cookie: reverse=2DdL5_6OUn02vJKPdQVkorALqfB-_XC4hb83YJLf41Y; expires=Mon, 05-Sep-2022 04:18:36 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
forgerylimit.com/sbar.json?key=a286902791a7f4c98bcb1e812322cd78
209.192.156.100200 OK 3.9 kB URL HTTP/1.1 forgerylimit.com/sbar.json?key=a286902791a7f4c98bcb1e812322cd78
IP 209.192.156.100:0
File type JSON data\012- , ASCII text, with very long lines (5561), with no line terminators
Hash ccf9bbc19f87f88ff8ba7a7ff36d86fe
0d62977afca47dd4101f8f82f4d21c22da1c01be
1a1e6f84e93e9b928cc355ad7d56ee17b70ededd168947e136647ca8bd47d8fc
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=a286902791a7f4c98bcb1e812322cd78 HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 05 Sep 2022 03:18:36 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://muxiv.twoproxy.org
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15816950; expires=Tue, 06 Sep 2022 03:18:36 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 06 Sep 2022 03:18:36 GMT; secure; SameSite=None
uncs=1; expires=Tue, 06 Sep 2022 03:18:36 GMT; secure; SameSite=None
pdhtkv29=true; expires=Tue, 06 Sep 2022 03:18:36 GMT; secure; SameSite=None
uncs29=1; expires=Tue, 06 Sep 2022 03:18:36 GMT; secure; SameSite=None
sleca286902791a7f4c98bcb1e812322cd78=[3364848]; expires=Mon, 05 Sep 2022 03:18:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e4a841ec78136b8f664fc973c388a74
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
muxiv.twoproxy.org/favicon.ico
172.67.138.60200 OK 521 B URL HTTP/1.1 muxiv.twoproxy.org/favicon.ico
IP 172.67.138.60:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash f5a0b66634f609da63e4187d94d4d45d
6a0fcee56cd5689ff82c92f36a5c810136acb7fb
b3b2981c6c67e8de3bf4d5bc25b484e52aa4c4f70cb9314af2e9d55537a68e95
GET /favicon.ico HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: _pk_id.1.dac6=95f7b829598d9645.1662347911.; _pk_ses.1.dac6=1; prefetchAd_3388548=true; sb_main_a286902791a7f4c98bcb1e812322cd78=1; sb_count_a286902791a7f4c98bcb1e812322cd78=1
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:36 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:36 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WehbSErS529O%2Fbfo%2FZWpMIJdjDqKfvS8HpOHUjsVKzZf%2FzGGI%2F6Q5YlZtwPXheHD8W8allTQ2f1ZMrNedsJCu98%2FuTAV4yFrlNG8tN9JlOLO0WdSZj%2FkC3WwExF49Cwa3GbwGm4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd18ebb45b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
muxiv.twoproxy.org/_nuxt/icons/icon_512.69e77c.png
172.67.138.60200 OK 77 kB URL HTTP/1.1 muxiv.twoproxy.org/_nuxt/icons/icon_512.69e77c.png
IP 172.67.138.60:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 1a0ee314e0b2368dfb0f58daf9bbb557
0bfd96becef55f627ece87a6d8405c11619f494d
d4aa6dd4337e5a899015770c4c9f584d6d781be682572eea0b145d3d47fe645f
GET /_nuxt/icons/icon_512.69e77c.png HTTP/1.1
Host: muxiv.twoproxy.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: _pk_id.1.dac6=95f7b829598d9645.1662347911.; _pk_ses.1.dac6=1; prefetchAd_3388548=true; sb_main_a286902791a7f4c98bcb1e812322cd78=1; sb_count_a286902791a7f4c98bcb1e812322cd78=1
HTTP/1.1 200 OK
Date: Mon, 05 Sep 2022 03:18:36 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Mon, 05 Sep 2022 03:18:36 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xOIv4TzW52f92OM5n7pnOawNyz9vrO6elUzdXs%2Fo7aSJy%2FD3kJQdw74cCp%2BMu3HP8WVI3ASBscTuB%2Fm2EnNZR0nGodHu%2B4GmSSchxuGTShSMYevI8A945kdwVNBjvpkVOen2wso%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745bd18ebd10b500-OSL
alt-svc: h2=":443"; ma=60
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209010201/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7078587340669761&plah=muxiv.twoproxy.org&bust=31069330
216.58.207.194200 OK 124 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209010201/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7078587340669761&plah=muxiv.twoproxy.org&bust=31069330
IP 216.58.207.194:0
File type ASCII text, with very long lines (4492)
Size 124 kB (124221 bytes)
Hash a93adbe68728255c7a0d062c301d1a98
2b36261a6e6118fb9aa3817ba4c9c3905bc86b1a
2e03f620659055959165848575d4dd442776d21058e2a43aeb5149fd19307c96
GET /pagead/managed/js/adsense/m202209010201/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7078587340669761&plah=muxiv.twoproxy.org&bust=31069330 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 05 Sep 2022 03:18:36 GMT
expires: Mon, 05 Sep 2022 03:18:36 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 12002976664544134441
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 124221
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eebb383a38a8f985b59a62820595689b
4d7bbcdeaa48e211743257c973ae2559b404d561
c8cf6bfc6865d4b25e7ef0df77478f47c4043b639aed462a2c6a0ba5439c3522
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 420a6ffc72857f7132a9065de7c844a9
dee617384561d0790b72f096336b73ade7950579
c98bdc53f1f22291c4b954e9bd5f6432cfe3d5b24e3680b4ada3fc3a696e79d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=muxiv.twoproxy.org
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=muxiv.twoproxy.org
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=muxiv.twoproxy.org HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 05 Sep 2022 03:18:36 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=muxiv.twoproxy.org
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=muxiv.twoproxy.org
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=muxiv.twoproxy.org HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 05 Sep 2022 03:18:36 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
77.88.21.119200 OK 72 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 77.88.21.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (681)
Hash 034d4604beaddff5783b9878fadfaee6
64d5e1e0dbbbd62d6a64349dd964763b7ab4cbea
f8a957ee3468693f465da61d899438a2b674369b80c9d5c9ffff1111a7091290
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 71985
date: Mon, 05 Sep 2022 03:18:36 GMT
access-control-allow-origin: *
etag: "6312122a-11931"
expires: Mon, 05 Sep 2022 04:18:36 GMT
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 420a6ffc72857f7132a9065de7c844a9
dee617384561d0790b72f096336b73ade7950579
c98bdc53f1f22291c4b954e9bd5f6432cfe3d5b24e3680b4ada3fc3a696e79d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=muxiv.twoproxy.org
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=muxiv.twoproxy.org
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=muxiv.twoproxy.org HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 05 Sep 2022 03:18:37 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=muxiv.twoproxy.org
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=muxiv.twoproxy.org
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=muxiv.twoproxy.org HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 05 Sep 2022 03:18:37 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 7e35600c4886ad47836a3a7333f1439e
61962d37ad03f0648bd502b0c226c4540bd966aa
97ed9791b88afbe7365aee1839bb6836c21d59198746c366e134c79a6ceff863
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3354
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:37 GMT
Last-Modified: Mon, 05 Sep 2022 02:22:43 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
forgerylimit.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq3dzEDwp60FBGTwpyKS7ZzI%2F3MNijJFgdrPuKrs3ra6qmdROdVVT1TU9yUGCi7IHwfE%2F6Hwn2bAaRMGri0wW9hAQdryYg%2FkbXIScPMjMBkcfNO%2B9%2Fr7D5%2FtefbnrT0kIT09WrpptqRRdXKqGlTduR9HlyrrUflAZtBqfNOqXK7b%2FdrtRDd%2BsvC9YzyzGYRSGURhVVqUVHTNYnIqQ2WE7qrbDaj2uRkt1DOz%2Fe%2BcDOBqA90%2FJi5B8svAouATJxtDpDyvC9XKTvfVe6hXNjUWfH3yse9oUGum87NgAHX1wPg3jnqw%2BhNH7M1yY%2Fr%2BDiZyQ4PFDJPrgHBJJf2%2FGmSgIjYQ%2Fj6I%2FhlBjSDoGM3ch%2BRMCMI5rG9Dp%2FWvGFnTrmUqn6oQsnP0FWUzIwh%2BXoNPvl5UcVG4a5XNptMOgU0IOxpDdMTJ%2FhHz7AmRxBJZ%2FDsl%2FJYtn69Dp3oZTBpKXM%2B9SjiE7YygxBHUB%2FPSTAXwngM8CpPykwqIoaoac0bDVZqzGmyJp8DCizU5Eo7DRgmdTvCHybAimhmB2B5ndQU8OYf0vcJslHA%2Fg8gkJPtxBn5coBEHhCApKUEiCIico%2BuU%2BVy525X2unE%2Bi8xyf51o5Mnl3l%2B6bvCs02c1OyQuzvTy9fYaeOKnQuNVoh3GzPYWrs3YrYUkkWlFci2PGmy04WUK6CzOr29MblafI5ISQr39HQo%2Fg1BGYfB3UvwpajJpxCLo5qrdCbOtDrxNlWE%2FwquTgpkSWLyDfCnbVKXl5xlG79ScEO77yaXJ18vTB32C2RGZL3JGPCLrq3uiGKcjeDVM48uNGlstUbtPp7W7mNBcXv%2F1AbBXG8rUVN3zwDpsK0%2FLwI%2BHydaq51F1HvluWnAu7aiwT5Oc1d0sk173bXPZW%2B2z9%2Brura2lmhXPS6DHo1NrjYzA5Ic%2F9tD97lq988RmkHcP6Eqk%2FJucBaY7Ash24bM7vzEVYNZ9JsgCFL0c2TuY%2FlSRQYt7TpIT7T5%2FM6113D137Gmh%2BFzot0bcl%2BqoEVUM4f3GUZ%2Fb4ym%2B1WSBRwShRNthLlFXfPFuukyeVZq0W0kZ7KWo2qWgm9bjVaUSc0rjeiBsNWkPuJuylO1%2F9AwAA%2F%2F8BAAD%2F%2F2zKxEZhBAAA
209.192.156.100200 OK 7 B URL HTTP/1.1 forgerylimit.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq3dzEDwp60FBGTwpyKS7ZzI%2F3MNijJFgdrPuKrs3ra6qmdROdVVT1TU9yUGCi7IHwfE%2F6Hwn2bAaRMGri0wW9hAQdryYg%2FkbXIScPMjMBkcfNO%2B9%2Fr7D5%2FtefbnrT0kIT09WrpptqRRdXKqGlTduR9HlyrrUflAZtBqfNOqXK7b%2FdrtRDd%2BsvC9YzyzGYRSGURhVVqUVHTNYnIqQ2WE7qrbDaj2uRkt1DOz%2Fe%2BcDOBqA90%2FJi5B8svAouATJxtDpDyvC9XKTvfVe6hXNjUWfH3yse9oUGum87NgAHX1wPg3jnqw%2BhNH7M1yY%2Fr%2BDiZyQ4PFDJPrgHBJJf2%2FGmSgIjYQ%2Fj6I%2FhlBjSDoGM3ch%2BRMCMI5rG9Dp%2FWvGFnTrmUqn6oQsnP0FWUzIwh%2BXoNPvl5UcVG4a5XNptMOgU0IOxpDdMTJ%2FhHz7AmRxBJZ%2FDsl%2FJYtn69Dp3oZTBpKXM%2B9SjiE7YygxBHUB%2FPSTAXwngM8CpPykwqIoaoac0bDVZqzGmyJp8DCizU5Eo7DRgmdTvCHybAimhmB2B5ndQU8OYf0vcJslHA%2Fg8gkJPtxBn5coBEHhCApKUEiCIico%2BuU%2BVy525X2unE%2Bi8xyf51o5Mnl3l%2B6bvCs02c1OyQuzvTy9fYaeOKnQuNVoh3GzPYWrs3YrYUkkWlFci2PGmy04WUK6CzOr29MblafI5ISQr39HQo%2Fg1BGYfB3UvwpajJpxCLo5qrdCbOtDrxNlWE%2FwquTgpkSWLyDfCnbVKXl5xlG79ScEO77yaXJ18vTB32C2RGZL3JGPCLrq3uiGKcjeDVM48uNGlstUbtPp7W7mNBcXv%2F1AbBXG8rUVN3zwDpsK0%2FLwI%2BHydaq51F1HvluWnAu7aiwT5Oc1d0sk173bXPZW%2B2z9%2Brura2lmhXPS6DHo1NrjYzA5Ic%2F9tD97lq988RmkHcP6Eqk%2FJucBaY7Ash24bM7vzEVYNZ9JsgCFL0c2TuY%2FlSRQYt7TpIT7T5%2FM6113D137Gmh%2BFzot0bcl%2BqoEVUM4f3GUZ%2Fb4ym%2B1WSBRwShRNthLlFXfPFuukyeVZq0W0kZ7KWo2qWgm9bjVaUSc0rjeiBsNWkPuJuylO1%2F9AwAA%2F%2F8BAAD%2F%2F2zKxEZhBAAA
IP 209.192.156.100:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq3dzEDwp60FBGTwpyKS7ZzI%2F3MNijJFgdrPuKrs3ra6qmdROdVVT1TU9yUGCi7IHwfE%2F6Hwn2bAaRMGri0wW9hAQdryYg%2FkbXIScPMjMBkcfNO%2B9%2Fr7D5%2FtefbnrT0kIT09WrpptqRRdXKqGlTduR9HlyrrUflAZtBqfNOqXK7b%2FdrtRDd%2BsvC9YzyzGYRSGURhVVqUVHTNYnIqQ2WE7qrbDaj2uRkt1DOz%2Fe%2BcDOBqA90%2FJi5B8svAouATJxtDpDyvC9XKTvfVe6hXNjUWfH3yse9oUGum87NgAHX1wPg3jnqw%2BhNH7M1yY%2Fr%2BDiZyQ4PFDJPrgHBJJf2%2FGmSgIjYQ%2Fj6I%2FhlBjSDoGM3ch%2BRMCMI5rG9Dp%2FWvGFnTrmUqn6oQsnP0FWUzIwh%2BXoNPvl5UcVG4a5XNptMOgU0IOxpDdMTJ%2FhHz7AmRxBJZ%2FDsl%2FJYtn69Dp3oZTBpKXM%2B9SjiE7YygxBHUB%2FPSTAXwngM8CpPykwqIoaoac0bDVZqzGmyJp8DCizU5Eo7DRgmdTvCHybAimhmB2B5ndQU8OYf0vcJslHA%2Fg8gkJPtxBn5coBEHhCApKUEiCIico%2BuU%2BVy525X2unE%2Bi8xyf51o5Mnl3l%2B6bvCs02c1OyQuzvTy9fYaeOKnQuNVoh3GzPYWrs3YrYUkkWlFci2PGmy04WUK6CzOr29MblafI5ISQr39HQo%2Fg1BGYfB3UvwpajJpxCLo5qrdCbOtDrxNlWE%2FwquTgpkSWLyDfCnbVKXl5xlG79ScEO77yaXJ18vTB32C2RGZL3JGPCLrq3uiGKcjeDVM48uNGlstUbtPp7W7mNBcXv%2F1AbBXG8rUVN3zwDpsK0%2FLwI%2BHydaq51F1HvluWnAu7aiwT5Oc1d0sk173bXPZW%2B2z9%2Brura2lmhXPS6DHo1NrjYzA5Ic%2F9tD97lq988RmkHcP6Eqk%2FJucBaY7Ash24bM7vzEVYNZ9JsgCFL0c2TuY%2FlSRQYt7TpIT7T5%2FM6113D137Gmh%2BFzot0bcl%2BqoEVUM4f3GUZ%2Fb4ym%2B1WSBRwShRNthLlFXfPFuukyeVZq0W0kZ7KWo2qWgm9bjVaUSc0rjeiBsNWkPuJuylO1%2F9AwAA%2F%2F8BAAD%2F%2F2zKxEZhBAAA HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: u_pl=15816950; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; sleca286902791a7f4c98bcb1e812322cd78=[3364848]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 05 Sep 2022 03:18:37 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 94aec947b71cb7121895f62a843767ab
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 13828538c60049714f8ede042aecf908
d6dc109093871ce5f17f8501cd178a6a3ecc7e9c
6f2717246f57395bfb1b60f2693ae8dcb9efe7461a2459195dbf4bc57db9a911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/advert.gif
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Sep 2022 03:18:37 GMT
access-control-allow-origin: *
etag: "6312122a-2b"
expires: Mon, 05 Sep 2022 04:18:37 GMT
accept-ranges: bytes
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=muxiv.twoproxy.org&callback=_gfp_s_&client=ca-pub-7078587340669761
142.250.74.98200 OK 202 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=muxiv.twoproxy.org&callback=_gfp_s_&client=ca-pub-7078587340669761
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash be49e21e483d8cee49c29bbff27c885b
fff0ae0c1975c9466aac791942ad37c9dc1ef580
baa46ff49dfba0b40b57bedd1b800b7d681df451293d1e40b48ac547dadf338f
GET /gampad/cookie.js?domain=muxiv.twoproxy.org&callback=_gfp_s_&client=ca-pub-7078587340669761 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 05 Sep 2022 03:18:37 GMT
server: cafe
cache-control: private
content-length: 202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 13828538c60049714f8ede042aecf908
d6dc109093871ce5f17f8501cd178a6a3ecc7e9c
6f2717246f57395bfb1b60f2693ae8dcb9efe7461a2459195dbf4bc57db9a911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 03:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/71953213/1?wmode=7&page-url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A689%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A825563807589%3Ahid%3A1049248103%3Az%3A0%3Ai%3A20220905031833%3Aet%3A1662347913%3Ac%3A1%3Arn%3A646224415%3Arqn%3A1%3Au%3A1662347913608881883%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662347909150%3Ads%3A24%2C0%2C118%2C0%2C-8%2C0%2C%2C1088%2C1%2C%2C%2C%2C1704%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662347913%3At%3AMuXiv%20Music&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
77.88.21.119200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/71953213/1?wmode=7&page-url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A689%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A825563807589%3Ahid%3A1049248103%3Az%3A0%3Ai%3A20220905031833%3Aet%3A1662347913%3Ac%3A1%3Arn%3A646224415%3Arqn%3A1%3Au%3A1662347913608881883%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662347909150%3Ads%3A24%2C0%2C118%2C0%2C-8%2C0%2C%2C1088%2C1%2C%2C%2C%2C1704%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662347913%3At%3AMuXiv%20Music&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 1226ce1214116e55889cc4beb5170b3a
7a5528ba84c7af6544dab669b149c51a47100005
60e0271e7cc0ba56b189f45ddb8357ecff2b98b6f9a74a1e9064388af6198ace
GET /watch/71953213/1?wmode=7&page-url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A689%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A825563807589%3Ahid%3A1049248103%3Az%3A0%3Ai%3A20220905031833%3Aet%3A1662347913%3Ac%3A1%3Arn%3A646224415%3Arqn%3A1%3Au%3A1662347913608881883%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662347909150%3Ads%3A24%2C0%2C118%2C0%2C-8%2C0%2C%2C1088%2C1%2C%2C%2C%2C1704%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662347913%3At%3AMuXiv%20Music&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Referer: http://muxiv.twoproxy.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Mon, 05 Sep 2022 03:18:37 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Sep-2022 03:18:37 GMT
last-modified: Mon, 05-Sep-2022 03:18:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb22075867a180a59587c55e0facccb8
9af4960264c36cebebd5601a9a5a4fcc1b630c64
5d4e2ee6f555b320ef3e62390c1f3d8934f690e4f4d859cd19c015967f69a018
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "5D4E2EE6F555B320EF3E62390C1F3D8934F690E4F4D859CD19C015967F69A018"
Last-Modified: Mon, 05 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11681
Expires: Mon, 05 Sep 2022 06:33:18 GMT
Date: Mon, 05 Sep 2022 03:18:37 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb22075867a180a59587c55e0facccb8
9af4960264c36cebebd5601a9a5a4fcc1b630c64
5d4e2ee6f555b320ef3e62390c1f3d8934f690e4f4d859cd19c015967f69a018
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "5D4E2EE6F555B320EF3E62390C1F3D8934F690E4F4D859CD19C015967F69A018"
Last-Modified: Mon, 05 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11681
Expires: Mon, 05 Sep 2022 06:33:18 GMT
Date: Mon, 05 Sep 2022 03:18:37 GMT
Connection: keep-alive
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/arrow.png
172.67.183.56200 OK 2.0 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/arrow.png
IP 172.67.183.56:0
File type PNG image data, 52 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash ef2bad0eceeff00bf615df0a433a5bff
a910af81d23d78c96283b46c241d3d9652562009
9c362044a93ac6919b7174a1620d4d82dbe1940a450aea1abca32a48fd160d40
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/arrow.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:37 GMT
content-type: image/png
content-length: 2008
last-modified: Fri, 21 May 2021 10:10:48 GMT
etag: "60a78728-7d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2826859
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=caV8hZO62EtLzyZH4yx7IwKC0I5sOedsLx9suL9JWA4eBAtGpRCh4wEOHm3e4ten4xcmGR5lABymHEo7hydHbC16dmzvRgOEw5iXnu1Ci1M1ocLqGLKe3IQ0AAUTJrKbi20%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd1967f7db518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/71953213?wmode=7&page-url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A689%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A825563807589%3Ahid%3A1049248103%3Az%3A0%3Ai%3A20220905031833%3Aet%3A1662347913%3Ac%3A1%3Arn%3A646224415%3Arqn%3A1%3Au%3A1662347913608881883%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662347909150%3Ads%3A24%2C0%2C118%2C0%2C-8%2C0%2C%2C1088%2C1%2C%2C%2C%2C1704%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662347913%3At%3AMuXiv%20Music&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
77.88.21.119302 Found 6.0 kB URL HTTP/2 mc.yandex.ru/watch/71953213?wmode=7&page-url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A689%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A825563807589%3Ahid%3A1049248103%3Az%3A0%3Ai%3A20220905031833%3Aet%3A1662347913%3Ac%3A1%3Arn%3A646224415%3Arqn%3A1%3Au%3A1662347913608881883%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662347909150%3Ads%3A24%2C0%2C118%2C0%2C-8%2C0%2C%2C1088%2C1%2C%2C%2C%2C1704%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662347913%3At%3AMuXiv%20Music&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 77.88.21.119:0
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /watch/71953213?wmode=7&page-url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A689%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A825563807589%3Ahid%3A1049248103%3Az%3A0%3Ai%3A20220905031833%3Aet%3A1662347913%3Ac%3A1%3Arn%3A646224415%3Arqn%3A1%3Au%3A1662347913608881883%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662347909150%3Ads%3A24%2C0%2C118%2C0%2C-8%2C0%2C%2C1088%2C1%2C%2C%2C%2C1704%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662347913%3At%3AMuXiv%20Music&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/71953213/1?wmode=7&page-url=http%3A%2F%2Fmuxiv.twoproxy.org%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afp%3A689%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A825563807589%3Ahid%3A1049248103%3Az%3A0%3Ai%3A20220905031833%3Aet%3A1662347913%3Ac%3A1%3Arn%3A646224415%3Arqn%3A1%3Au%3A1662347913608881883%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662347909150%3Ads%3A24%2C0%2C118%2C0%2C-8%2C0%2C%2C1088%2C1%2C%2C%2C%2C1704%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662347913%3At%3AMuXiv%20Music&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Mon, 05 Sep 2022 03:18:37 GMT
access-control-allow-origin: http://muxiv.twoproxy.org
set-cookie: yandexuid=5450186601662347917; Expires=Tue, 05-Sep-2023 03:18:37 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5450186601662347917; Expires=Tue, 05-Sep-2023 03:18:37 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=592621441662347917; Path=/; SameSite=None; Secure
i=bC2MRkFkSHHZy+l/QORSh4ZQyTI0sG96sUO85cW2tquc+OV7X9MQ/egHtW52BxwZAzBWpbmwZn6ZKxffSznSM8iLUuQ=; Expires=Thu, 02-Sep-2032 03:18:35 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693883917.yrts.1662347917#1693883917.yrtsi.1662347917; Expires=Tue, 05-Sep-2023 03:18:37 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Sep-2022 03:18:37 GMT
last-modified: Mon, 05-Sep-2022 03:18:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/number.png
172.67.183.56200 OK 1.1 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/number.png
IP 172.67.183.56:0
File type PNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e4414e85c588bf7db195e49c02ab2bb
09254e79b255f1b2dfe45adbbe44583a4b433782
0b977ec6e7cf5d35df03cd3a8041f5f523f5d4059ac67c152c0a7b613e20b762
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/number.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:37 GMT
content-type: image/png
content-length: 1138
last-modified: Fri, 21 May 2021 10:10:48 GMT
etag: "60a78728-472"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2826859
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B4iQ0zaHwQDPFagq3YfXHRBXrDrMxPdGuDcN4aMcnVwgA7S7iks05Y5kqDjAuAXfRuRjc7kvkl7MxTrwv2hlCZ0Wtqi9Iyxh6vZePYFIoORQ%2FqNFyFaVIg2uA03dPYDZhwY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd1967f7eb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/icon.png
172.67.183.56200 OK 157 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/icon.png
IP 172.67.183.56:0
File type PNG image data, 340 x 340, 8-bit/color RGB, non-interlaced\012- data
Size 157 kB (157252 bytes)
Hash 70ffdd6375de1144c67e71e385cedb80
6d5c9590fa9a156851435bcefc963949de13ceb1
18515abb1bfe26c5b54bbbdc24aac4e8a757f879eeaa9c0ad986dc0c8d5ca0af
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/img/icon.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:37 GMT
content-type: image/png
content-length: 157252
last-modified: Tue, 08 Feb 2022 14:14:59 GMT
etag: "62027ae3-26644"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2826859
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iZb4mH0fKahQgniYKtw81Jgyo8e8%2FuKYS3UqgrSAok52Xj7u1g4sRMShDVzjsBeUmx04hgdgE6kRbL8FGMEtYldlHh6T2mMz6MnyNa53S3UxfgC3Ubg4rIHcZ8TvcMOOwMM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd1967f7fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.10200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.10:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 05 Sep 2022 03:18:37 GMT
Date: Mon, 05 Sep 2022 03:18:37 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb22075867a180a59587c55e0facccb8
9af4960264c36cebebd5601a9a5a4fcc1b630c64
5d4e2ee6f555b320ef3e62390c1f3d8934f690e4f4d859cd19c015967f69a018
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "5D4E2EE6F555B320EF3E62390C1F3D8934F690E4F4D859CD19C015967F69A018"
Last-Modified: Mon, 05 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11681
Expires: Mon, 05 Sep 2022 06:33:18 GMT
Date: Mon, 05 Sep 2022 03:18:37 GMT
Connection: keep-alive
forgerylimit.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F15%2Findex.html&l=2230&fd=598
209.192.156.100200 OK 0 B URL HTTP/1.1 forgerylimit.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F15%2Findex.html&l=2230&fd=598
IP 209.192.156.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F15%2Findex.html&l=2230&fd=598 HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 05 Sep 2022 03:18:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 20:14:42 GMT
Expires: Thu, 31 Aug 2023 20:14:42 GMT
Cache-Control: public, max-age=31536000
Age: 371036
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/js/jquery.min.js
172.67.183.56200 OK 48 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/js/jquery.min.js
IP 172.67.183.56:0
File type ASCII text, with very long lines (65451)
Hash 1a3d199fe872335e3bc7f50e4a2abdf2
d1c5bc7be9292e92d8850b0352c999f2ed4d9b73
af122ec4293e0f3e7df234799737231da47b5f8a70b890a83c0ef885b81892ff
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/js/jquery.min.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:37 GMT
content-type: application/javascript
last-modified: Fri, 21 May 2021 10:10:50 GMT
etag: W/"60a7872a-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2826859
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VqDNWKicJOUNhCpmgnUxTDJDy9VjU6m8bOlnWuXlhp54%2FNXkJyW3cBGBcC6P3IWWQOXIsLHOfeyEFGEULo4cQCEtB8cf6QBz%2F%2FRwQTzlec4Y7L86xNFgS2KTDFivzLtLPgc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd1967f82b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/css/style.css
172.67.183.56200 OK 2.3 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/css/style.css
IP 172.67.183.56:0
Hash 9e6a3139b133de29072d71c14963a1ac
074519fd7d10afb7ddd5133fd66fd0c503618976
089d7f1a16fd6ebbd1b9cc479cb07fe452b6a28ce5696c94102aaf52736a7ce4
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:38 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 14:46:40 GMT
etag: W/"61f7f650-2516"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JNlIS3o%2BG%2FPladQhO%2FtfpePja6eKTOg6FlYfk7R5s765G9mQuVeRr82byLi7%2BQ7XExFZydTEJpXnlwiZDzaDEGpFGKDe2gBVPLhCRdRLEMQM6yv1KSz2PiQcRf5zWUiCkYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd1961f40b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
forgerylimit.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSz2tcVRTH72uzEFwpdaGgDK4UZPLem8n8sItijJFg2tRWaXd6f83kdu5793Hvu%2FMmWUiwKF0Ijv%2FBy3eShmoQBbcWmRS6CAgdN2Zh%2FgaLkJULmWlw9MDjnPO%2BZ%2FH5nnO%2F3PWnJISnJytXzbbSmi4uVcPKG7ej6HJlXaV%2BUBm0Gp806pcrtv92u1EN36y8L3nPLMZhFIZRGFVWlZUdM1icilDZYTuqtsNqPa5GS3UM7P975wM4GkD0T8mLUGKy8Ci4BMXHSJMfVqTr5SZ7673Ea5obi744%2BDjtpaZIkczLjg3QSQ%2FOp2Hck9WHMOn%2BDBem%2F%2B8gUxMSPH4Ilh6cQ4L192acTEOmYOJ5FP0xpB5D0TG4uQslnhCAC1zbQJrcv2ZsQbeeqXSqTsjC2V9QxYQs%2FHEJafL9slaDyk2jfa5M6jDolFCDMVR3jMwfId%2B%2BAFUcgeefQ4lfyeLZOtJkb8NpAyXKmXelxlCdMbQcgroAfvqpAL4TwGcBEnFS4VEUNUPBadhqc14TTckaIoxosxPRKGy04PkUb4g8G4LrIbjdQWZ30FNDWP8L3GYJJwK4fEKCD3fQFyUKSVA4goISFIqgyAmKfrkvtItdeV9o51l0nuPzXCtHJu%2Fu0n2Td2VKdrNT8sJsL09vn6EnTyo0bjXaYdxsT%2BHqvN1inEWyFcW1OOai2YJTJZS7MLO6Pb1ReYpMTQj5%2BncwegSnj8DV66D%2BVdBi1IxD0M1RvRViOz30KdOG96SoKgFhSmT5AvKtYFefkpdnHLVbf0Ly4yufsquTpw%2F%2BBrclMlvijnpE0NX3RjdMQfZumMKRHzeyXCVqm05vdzOnubz47QdyqzBWrK244YN3%2BFSYlocfSZev01SotOvId8tKCGlXjeWS%2FLzmbkl23bvNZW9Tn61ff3d1LcmsdE6ZdAw6tfb4GFxNyHM%2F7c%2Be5StffAZlx7C%2BROKPyXlAmSPwbAcum%2FM7cxFWz2dYFqDw5cjGbP5TKwIt5z1lJdx%2Fejavd909dO1roPldpEmJvi3R1yWoHsL5i6M8s8dXfqvNAkwHI6ZtsMe01d88W65TJ5VaKJpMdmSTyfpSvSO5YEtLLOQdzmqi1eLI3YS%2FdOerfwAAAP%2F%2FAQAA%2F%2F%2FsHhGuYQQAAA%3D%3D
209.192.156.100200 OK 7 B URL HTTP/1.1 forgerylimit.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSz2tcVRTH72uzEFwpdaGgDK4UZPLem8n8sItijJFg2tRWaXd6f83kdu5793Hvu%2FMmWUiwKF0Ijv%2FBy3eShmoQBbcWmRS6CAgdN2Zh%2FgaLkJULmWlw9MDjnPO%2BZ%2FH5nnO%2F3PWnJISnJytXzbbSmi4uVcPKG7ej6HJlXaV%2BUBm0Gp806pcrtv92u1EN36y8L3nPLMZhFIZRGFVWlZUdM1icilDZYTuqtsNqPa5GS3UM7P975wM4GkD0T8mLUGKy8Ci4BMXHSJMfVqTr5SZ7673Ea5obi744%2BDjtpaZIkczLjg3QSQ%2FOp2Hck9WHMOn%2BDBem%2F%2B8gUxMSPH4Ilh6cQ4L192acTEOmYOJ5FP0xpB5D0TG4uQslnhCAC1zbQJrcv2ZsQbeeqXSqTsjC2V9QxYQs%2FHEJafL9slaDyk2jfa5M6jDolFCDMVR3jMwfId%2B%2BAFUcgeefQ4lfyeLZOtJkb8NpAyXKmXelxlCdMbQcgroAfvqpAL4TwGcBEnFS4VEUNUPBadhqc14TTckaIoxosxPRKGy04PkUb4g8G4LrIbjdQWZ30FNDWP8L3GYJJwK4fEKCD3fQFyUKSVA4goISFIqgyAmKfrkvtItdeV9o51l0nuPzXCtHJu%2Fu0n2Td2VKdrNT8sJsL09vn6EnTyo0bjXaYdxsT%2BHqvN1inEWyFcW1OOai2YJTJZS7MLO6Pb1ReYpMTQj5%2BncwegSnj8DV66D%2BVdBi1IxD0M1RvRViOz30KdOG96SoKgFhSmT5AvKtYFefkpdnHLVbf0Ly4yufsquTpw%2F%2BBrclMlvijnpE0NX3RjdMQfZumMKRHzeyXCVqm05vdzOnubz47QdyqzBWrK244YN3%2BFSYlocfSZev01SotOvId8tKCGlXjeWS%2FLzmbkl23bvNZW9Tn61ff3d1LcmsdE6ZdAw6tfb4GFxNyHM%2F7c%2Be5StffAZlx7C%2BROKPyXlAmSPwbAcum%2FM7cxFWz2dYFqDw5cjGbP5TKwIt5z1lJdx%2Fejavd909dO1roPldpEmJvi3R1yWoHsL5i6M8s8dXfqvNAkwHI6ZtsMe01d88W65TJ5VaKJpMdmSTyfpSvSO5YEtLLOQdzmqi1eLI3YS%2FdOerfwAAAP%2F%2FAQAA%2F%2F%2FsHhGuYQQAAA%3D%3D
IP 209.192.156.100:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1SSz2tcVRTH72uzEFwpdaGgDK4UZPLem8n8sItijJFg2tRWaXd6f83kdu5793Hvu%2FMmWUiwKF0Ijv%2FBy3eShmoQBbcWmRS6CAgdN2Zh%2FgaLkJULmWlw9MDjnPO%2BZ%2FH5nnO%2F3PWnJISnJytXzbbSmi4uVcPKG7ej6HJlXaV%2BUBm0Gp806pcrtv92u1EN36y8L3nPLMZhFIZRGFVWlZUdM1icilDZYTuqtsNqPa5GS3UM7P975wM4GkD0T8mLUGKy8Ci4BMXHSJMfVqTr5SZ7673Ea5obi744%2BDjtpaZIkczLjg3QSQ%2FOp2Hck9WHMOn%2BDBem%2F%2B8gUxMSPH4Ilh6cQ4L192acTEOmYOJ5FP0xpB5D0TG4uQslnhCAC1zbQJrcv2ZsQbeeqXSqTsjC2V9QxYQs%2FHEJafL9slaDyk2jfa5M6jDolFCDMVR3jMwfId%2B%2BAFUcgeefQ4lfyeLZOtJkb8NpAyXKmXelxlCdMbQcgroAfvqpAL4TwGcBEnFS4VEUNUPBadhqc14TTckaIoxosxPRKGy04PkUb4g8G4LrIbjdQWZ30FNDWP8L3GYJJwK4fEKCD3fQFyUKSVA4goISFIqgyAmKfrkvtItdeV9o51l0nuPzXCtHJu%2Fu0n2Td2VKdrNT8sJsL09vn6EnTyo0bjXaYdxsT%2BHqvN1inEWyFcW1OOai2YJTJZS7MLO6Pb1ReYpMTQj5%2BncwegSnj8DV66D%2BVdBi1IxD0M1RvRViOz30KdOG96SoKgFhSmT5AvKtYFefkpdnHLVbf0Ly4yufsquTpw%2F%2BBrclMlvijnpE0NX3RjdMQfZumMKRHzeyXCVqm05vdzOnubz47QdyqzBWrK244YN3%2BFSYlocfSZev01SotOvId8tKCGlXjeWS%2FLzmbkl23bvNZW9Tn61ff3d1LcmsdE6ZdAw6tfb4GFxNyHM%2F7c%2Be5StffAZlx7C%2BROKPyXlAmSPwbAcum%2FM7cxFWz2dYFqDw5cjGbP5TKwIt5z1lJdx%2Fejavd909dO1roPldpEmJvi3R1yWoHsL5i6M8s8dXfqvNAkwHI6ZtsMe01d88W65TJ5VaKJpMdmSTyfpSvSO5YEtLLOQdzmqi1eLI3YS%2FdOerfwAAAP%2F%2FAQAA%2F%2F%2FsHhGuYQQAAA%3D%3D HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: u_pl=15816950; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; sleca286902791a7f4c98bcb1e812322cd78=[3364848]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 05 Sep 2022 03:18:38 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 35864d093b539797a019dee7bfe3dcc9
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/index.html
104.26.7.19200 OK 5.4 kB URL HTTP/2 cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/index.html
IP 104.26.7.19:0
File type HTML document, ASCII text
Hash 8c73736ce209fa035cafc54fab9a036c
70e6ff1dc883ad973223d8ba9ad540b621b6eabd
90bd27b9ea792f179770e5d60a6b2779b9df41d267c47612df608e272a5ebfe1
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:37 GMT
content-type: text/html
last-modified: Wed, 09 Feb 2022 14:12:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cyvRDK8HBvUO1sgrW7ioEDLcT7FNYCMnsWRZr9HU0GkoqVzcp4mJlQc%2FIEK0FkoPWtAxWq%2FerD9lQaYQWJKb57XwmzY8kIJkZv9Kc1SoCsOvq1oNgAAnmQg1OlgzguLo2J3vLvM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd191aa63b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
forgerylimit.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F15%2Fcss%2Fstyle.css&l=9494&fd=337
209.192.156.100200 OK 0 B URL HTTP/1.1 forgerylimit.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F15%2Fcss%2Fstyle.css&l=9494&fd=337
IP 209.192.156.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F15%2Fcss%2Fstyle.css&l=9494&fd=337 HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 05 Sep 2022 03:18:38 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
forgerylimit.com/pixel/sbs?c=1
209.192.156.100200 OK 0 B URL HTTP/1.1 forgerylimit.com/pixel/sbs?c=1
IP 209.192.156.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: forgerylimit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: u_pl=15816950; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; sleca286902791a7f4c98bcb1e812322cd78=[3364848]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 05 Sep 2022 03:18:38 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
rndskittytor.com/500/4837723?excludes=&oaid=20c03a08024c413e8e4e4c5f8064fa34&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=6&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/1.1 rndskittytor.com/500/4837723?excludes=&oaid=20c03a08024c413e8e4e4c5f8064fa34&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=6&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/4837723?excludes=&oaid=20c03a08024c413e8e4e4c5f8064fa34&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=6&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://muxiv.twoproxy.org/
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:39 GMT
Content-Length: 0
Connection: keep-alive
Allow: GET, OPTIONS
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 600
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
rndskittytor.com/500/4837723?excludes=&oaid=20c03a08024c413e8e4e4c5f8064fa34&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=6&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 1.2 kB URL HTTP/1.1 rndskittytor.com/500/4837723?excludes=&oaid=20c03a08024c413e8e4e4c5f8064fa34&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=6&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1474), with no line terminators
Hash 9ab7e8c2d7ff87f9801ce10e581bdcbe
09ebd7d70b75afdcc60c7a666515f60788d90b35
cb23e9dee3f560fe3155dd3ce199e4e50a97559ef64710e8559b3786a3521a4a
Analyzer Verdict Alert quad9 Sinkholed
GET /500/4837723?excludes=&oaid=20c03a08024c413e8e4e4c5f8064fa34&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=6&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Sep 2022 03:18:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: aa644cea4acbeb74f851dd61d0172abc
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: http://muxiv.twoproxy.org
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=20c03a08024c413e8e4e4c5f8064fa34; expires=Tue, 05 Sep 2023 03:18:39 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
algothitaon.com/11?rnd=1339728639&z=3372123&b=14589405&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z&ruid=9721df71-1be7-4998-8a27-c4a1d523e76b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.237200 OK 0 B URL HTTP/2 algothitaon.com/11?rnd=1339728639&z=3372123&b=14589405&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z&ruid=9721df71-1be7-4998-8a27-c4a1d523e76b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=1339728639&z=3372123&b=14589405&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=6oQoiufShIiTSuBg1reojrnnbK5RAZyqTzGL1OttLWdYmHLMxnecI5MOTIqxCf2GYAiMd5jpRCngPGIR99HhcDPEbqKO65hhl3TS8iFQHZ40k17GCDHl89VZyFqNf2mxWTXUU2MJbVXhZZzEM3QeKLy6lBx-Q0iuxfTRWc3hwCSy0My5NGdDEHlkfJklNL_CM5Cbu2fdjvAkvMP7knYMrrF71Gu8T_fh2QIUHA2CTIrkGKLJbPKU3ZkKutqgvm_JMMLpiFF55F1b3AsBudJLn2Z-f0A9o0UAJmk-ci97ZjtK1-LJO_NGVYoMOrOtQyHFMfWKOZ8ABK9N90wzfIj0MISJN3bB0N-6JoEgIOUcmP-ZPnpQ3x9IjqKMr0Zkd2RaCCe70iG58EnVGbGF7Pg8v-aY55bjamAi4KpiuVMAit5IW48d-8f1ySFdhGynoDm7JWq1ipGhGJheFdnMe2lVZUT6zjvGgLSFJZyVPAl9YJWZ28lFa6IroE7Vqi7xvoleHrodLOohVEMfR6XNNDBF3nI5XjwEOk9TdDVAiNImVqP_u853bSxj4r28QBmXJ36rNvKBTcsB_-ks6iBmZCZCMs6pfNeabKld0VWuCSm6vwBgjlX7APzOeHrKPki6c638Z1hJIma1JCfprC7x7BWfdIuj4KrnnrA5mOqjZ511HvGTthU23QvT2gMl7fwHGkqxD4U-_LxDJaObyT_z&ruid=9721df71-1be7-4998-8a27-c4a1d523e76b&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fmuxiv.twoproxy.org%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: algothitaon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Cookie: scm=1; OAID=d5in563856df112408647s8i5uzqe955; oaidts=1662347913
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:40 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: http://muxiv.twoproxy.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 1a6532594e5cd94ef911ea78846af3fd
access-control-expose-headers: X-Sc
set-cookie: OAID=d5in563856df112408647s8i5uzqe955; expires=Tue, 05 Sep 2023 03:18:40 GMT; secure; SameSite=None
oaidts=1662347913; expires=Tue, 05 Sep 2023 03:18:40 GMT; secure; SameSite=None
oaidvc=1; expires=Tue, 05 Sep 2023 03:18:40 GMT; secure; SameSite=None
CNT=1_v1_3Z3eAAEAAAAoSzAu; expires=Mon, 05 Sep 2022 04:18:40 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ecma.sidebyz.com/j/m/w2.js.php
104.21.16.97200 OK 0 B URL HTTP/2 ecma.sidebyz.com/j/m/w2.js.php
IP 104.21.16.97:0
GET /j/m/w2.js.php HTTP/1.1
Host: ecma.sidebyz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:34 GMT
content-type: application/javascript; charset=UTF-8
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NPA9X0ahJMOMRAfbyVmyhiq9L%2BvnOg86xagvQ8yWcLCdIoTI1PxB7C52k5GxojFe1dmTHtwmfh6eGtvIE8gNOdpzf6A6UroVgM5Ptyq%2FOr8w0tfcFTKDDPF0Ox5fMVwWHNqF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 745bd17f8e940b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unphionetor.com/fv.js?t=72747&cb=1582077090
139.45.197.236200 OK 0 B URL HTTP/2 unphionetor.com/fv.js?t=72747&cb=1582077090
IP 139.45.197.236:0
Analyzer Verdict Alert quad9 Sinkholed
GET /fv.js?t=72747&cb=1582077090 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:36 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: a10567ed6c6d7b102f1c85218c210ea7
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
raw.githubusercontent.com/daxiv/2b/master/data/%E6%9D%A8%E8%AF%91%20-%20Happy%20Birthday.mp3
185.199.110.133206 Partial Content 0 B URL HTTP/2 raw.githubusercontent.com/daxiv/2b/master/data/%E6%9D%A8%E8%AF%91%20-%20Happy%20Birthday.mp3
IP 185.199.110.133:0
GET /daxiv/2b/master/data/%E6%9D%A8%E8%AF%91%20-%20Happy%20Birthday.mp3 HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"c40e4bb1a903a109452c90367120027727675d1b8282c5690b9bb791da4bfc3c"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 5ECA:1095C:B6727D:CCD2C7:63156A8C
accept-ranges: bytes
content-range: bytes 0-10009192/10009193
date: Mon, 05 Sep 2022 03:18:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1656-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662347916.997114,VS0,VE581
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: f7b3db351159fd6cc3527d3fd27cf90593d919aa
expires: Mon, 05 Sep 2022 03:23:36 GMT
source-age: 0
content-length: 10009193
X-Firefox-Spdy: h2
cdn.itskiddoan.club/apu.php?zoneid=3388548
139.45.197.236200 OK 0 B URL HTTP/2 cdn.itskiddoan.club/apu.php?zoneid=3388548
IP 139.45.197.236:0
GET /apu.php?zoneid=3388548 HTTP/1.1
Host: cdn.itskiddoan.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 03:18:34 GMT
content-type: application/javascript
x-trace-id: 1e4a75974f7473386ffbdcb28fe4cce5
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=ea960c8e50f8441788ce1364d0e3068c; expires=Tue, 05 Sep 2023 03:18:34 GMT; path=/; secure; SameSite=None
oaidts=1662347914; expires=Tue, 05 Sep 2023 03:18:34 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
walkinglive.org/j/m/qqqq.js?!A!
172.67.151.175200 OK 0 B URL HTTP/2 walkinglive.org/j/m/qqqq.js?!A!
IP 172.67.151.175:0
GET /j/m/qqqq.js?!A! HTTP/1.1
Host: walkinglive.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:33 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 03:16:06 GMT
etag: W/"603dadf6-bcdf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 2387908
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4vcB%2Bgr6Xr8R1lyFouHrhTsoNLVdEMWA%2BJJcTjv8eDQsTE8lbf9IWU9GrcA3T%2F1gv9MIL4FTiIlFrGUc19g0m4pu6w0pG%2BtU4vicB4DBNUte90oRvJ8Bl0hQvtSUmxSr0DI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd17dae6eb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.polyfill.io/v2/polyfill.min.js?features=default,fetch,Object.entries
151.101.85.26200 OK 0 B URL HTTP/2 cdn.polyfill.io/v2/polyfill.min.js?features=default,fetch,Object.entries
IP 151.101.85.26:0
GET /v2/polyfill.min.js?features=default,fetch,Object.entries HTTP/1.1
Host: cdn.polyfill.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=utf-8
accept-ranges: bytes
last-modified: Sun, 04 Sep 2022 10:21:26 GMT
content-encoding: br
useragent_normaliser: firefox/96.0.0
age: 0
date: Mon, 05 Sep 2022 03:18:33 GMT
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1671, PASS, fastly;desc="Edge time";dur=187
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/js/script.js
172.67.183.56200 OK 0 B URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/js/script.js
IP 172.67.183.56:0
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/15/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://muxiv.twoproxy.org
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Sep 2022 03:18:38 GMT
content-type: application/javascript
last-modified: Fri, 21 May 2021 10:10:50 GMT
etag: W/"60a7872a-2c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AXmfWD6ORFrjQq3vipD0jfyQNyXK165DXARukDxFtRsgzv4ZlATs4Y%2FzMrhgDr4oHe8Z5D8odqdJu8pv9E2NrYmppEXoC6WFxHRDyN2Ld4FsMFUpjeNL%2FWvFboTyle32%2BZE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 745bd196dfbdb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap
IP 142.250.74.10:0
GET /css2?family=Roboto:wght@400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://muxiv.twoproxy.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 03:18:33 GMT
date: Mon, 05 Sep 2022 03:18:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2