r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10619
Expires: Sun, 04 Dec 2022 05:14:04 GMT
Date: Sun, 04 Dec 2022 02:17:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1508
Cache-Control: max-age=117555
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:17:05 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 10:56:20 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2987
Expires: Sun, 04 Dec 2022 03:06:52 GMT
Date: Sun, 04 Dec 2022 02:17:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 01:18:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3524
alt-svc: clear
X-Firefox-Spdy: h2
jiangnanfm021.com/
142.252.100.137301 Moved Permanently 0 B IP 142.252.100.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 04 Dec 2022 02:16:57 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.jiangnanfm021.com/index.php
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: y6E3I80qmHaA8S+I6FRocxnz7Xf+pdsBhu4o/aUDyZ8wn/qYZtWzt6DmRVpc6rdq8Tz8c4UGtgc=
x-amz-request-id: W2E89GBAPFDJW488
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 01:47:21 GMT
age: 1784
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:17:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 02:08:58 GMT
cache-control: public,max-age=3600
age: 487
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1498
Cache-Control: max-age=112484
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:17:05 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 09:31:49 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
www.jiangnanfm021.com/index.php
142.252.100.137200 OK 9.0 kB URL HTTP/1.1 www.jiangnanfm021.com/index.php
IP 142.252.100.137:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2714), with CRLF, CR, LF line terminators
Hash ff663cc3ad94642310633d8224b851c9
8c18ba66d78c07f69fabf1f82b2ff1adb6e39f2e
3c8757da632187999c1ec17bfa0aab43594f1a1105005f865124dc44bed934ec
GET /index.php HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.jiangnanfm021.com/templets/wei/cssjs/indexcss.css
142.252.100.137200 OK 684 B URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/cssjs/indexcss.css
IP 142.252.100.137:0
File type ASCII text, with CRLF line terminators
Hash 8950e088202efff8927c46d566aec861
a7bcbdc93100a44f5099dd386404cdf35526be85
1051e10e0bb3c7fbac4df1a5141c6f2fef4327f98d1cb4744c7a40a517167754
GET /templets/wei/cssjs/indexcss.css HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:58 GMT
Content-Type: text/css
Last-Modified: Wed, 24 Aug 2022 18:17:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63066b26-98c"
Expires: Fri, 09 Dec 2022 02:16:58 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
www.jiangnanfm021.com/tj.js
142.252.100.137200 OK 731 B URL HTTP/1.1 www.jiangnanfm021.com/tj.js
IP 142.252.100.137:0
File type HTML document, ASCII text, with CRLF line terminators
Hash ea4bee0708537ff18bf7a467dbb60023
76ca2abae8358ab11c567c6e7a79eb6315ab3216
2ae3bc257ae80e2008490f392e5ae3fffdcd8422c3420720988399c1dbe184e3
GET /tj.js HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:58 GMT
Content-Type: application/x-javascript
Content-Length: 731
Connection: keep-alive
push.services.mozilla.com/
35.165.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jt57vqvq/9yABGp4nLa5Sg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X+CTdX9RNBgftPZ8cB+HBOu7SZE=
www.jiangnanfm021.com/common.js
142.252.100.137200 OK 7.9 kB URL HTTP/1.1 www.jiangnanfm021.com/common.js
IP 142.252.100.137:0
File type ASCII text, with very long lines (13918), with no line terminators
Hash 6e85a67dd6ee6c951a5e5dfdab5c5236
b0c6ceae3d8825ec1a123e08c57c9841b9998f44
b005f934f8449a90dc74b5e7bbd5774e0ab0fdc99d21bb289f6fd276b533d751
GET /common.js HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:58 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
142.252.100.137200 OK 4.6 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
IP 142.252.100.137:0
File type ASCII text, with CRLF line terminators
Hash bed5ee5eeefb5e57435eca8bb2659e6b
c3b243775bde5a2661070f1ba95869cf35788937
a8c7bc323d55892eeebd3f0b165a5d557f0f34053d6281efb644a14e842a00fe
GET /templets/wei/cssjs/allbag.css HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:58 GMT
Content-Type: text/css
Last-Modified: Wed, 24 Aug 2022 18:17:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63066b26-61a2"
Expires: Fri, 09 Dec 2022 02:16:58 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330091435_423621830.gif
142.252.100.137200 OK 3.1 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330091435_423621830.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 86 x 86\012- data
Hash c5f4dffa14a3532d69c9d0e4f8a659ca
b366f867bf34b9b38bccf7a33717e0564a5ea2bf
95a0063e70f7f78febfdd70edabe0897aae05f7222c819834e77885b3308e646
GET /templets/wei/uploadfile/image/20170330/20170330091435_423621830.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 3114
Last-Modified: Wed, 24 Aug 2022 18:17:11 GMT
Connection: keep-alive
ETag: "63066b27-c2a"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329174955_979567647.gif
142.252.100.137200 OK 3.1 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329174955_979567647.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 86 x 86\012- data
Hash 3d985006671572d8faed75ceac5acd13
a18f1001a7eb492187abefe39c85f616914f456c
3103133852a6fba3c760ae63f25f1590959973f7f1ee3d9851caed5e0c074dc9
GET /templets/wei/uploadfile/image/20170329/20170329174955_979567647.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 3094
Last-Modified: Wed, 24 Aug 2022 18:17:17 GMT
Connection: keep-alive
ETag: "63066b2d-c16"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329165140_98935765.png
142.252.100.137200 OK 3.8 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329165140_98935765.png
IP 142.252.100.137:0
File type PNG image data, 30 x 118, 8-bit/color RGBA, non-interlaced\012- data
Hash 137bff4c80b37db24b655df48d9b5d3f
6563d851dc0b1d2dd981ae2b2ae37dc17ce1f0b2
a430225905f3c17402003bdd2fef24b7547ea18dbed8a2c6c88bda02bcb2d27e
GET /templets/wei/uploadfile/image/20170329/20170329165140_98935765.png HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/png
Content-Length: 3838
Last-Modified: Wed, 24 Aug 2022 18:17:10 GMT
Connection: keep-alive
ETag: "63066b26-efe"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329165151_511059738.png
142.252.100.137200 OK 3.9 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329165151_511059738.png
IP 142.252.100.137:0
File type PNG image data, 30 x 118, 8-bit/color RGBA, non-interlaced\012- data
Hash 030b5e8ebecca5dd0733bfa710b01551
ae019ad6656e8f04b24a182346af29ac104eceab
4030016eb100bdd9d16ea71213ea87302db9153abadcb8c99ab34962eb95ca92
GET /templets/wei/uploadfile/image/20170329/20170329165151_511059738.png HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/png
Content-Length: 3856
Last-Modified: Wed, 24 Aug 2022 18:17:17 GMT
Connection: keep-alive
ETag: "63066b2d-f10"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20171230/logo.png
142.252.100.137200 OK 15 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20171230/logo.png
IP 142.252.100.137:0
File type PNG image data, 812 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2989cc2f9fe5ca17f903aa62122e0609
386ad9c6824108a7bdf7c00907a5ac23d49018ed
956707eed92086ab0e17b1d360a9a518929b99d3c4c4f56fe9cf293162e4ca33
GET /templets/wei/uploadfile/image/20171230/logo.png HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/png
Content-Length: 14901
Last-Modified: Wed, 24 Aug 2022 18:17:10 GMT
Connection: keep-alive
ETag: "63066b26-3a35"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330092859_1557317622.gif
142.252.100.137200 OK 3.1 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330092859_1557317622.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 86 x 86\012- data
Hash 0e89bab808d92853d509c68941f150a5
304a39427e1ae4bace9a6377e54ed31123d29da8
c0f1a1d469290fa387c378d2d16cd4113dded1ba487efc81f78a6c05a2e500c0
GET /templets/wei/uploadfile/image/20170330/20170330092859_1557317622.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 3137
Last-Modified: Wed, 24 Aug 2022 18:17:11 GMT
Connection: keep-alive
ETag: "63066b27-c41"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 88ad5d3b7d60152de95d4c689649ba26
94f568d4dc1e614bc9abd8c58f2a5bd4550ff192
1235626e15ba9c08013781a29f23d94e032f20e54f31cf01c56c2f5ec9064a7c
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:06 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 20:35:38 GMT
Expires: Wed, 07 Dec 2022 20:35:37 GMT
Etag: "94f568d4dc1e614bc9abd8c58f2a5bd4550ff192"
Cache-Control: max-age=324510,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77410b38e972b509-OSL
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330093030_747578402.gif
142.252.100.137200 OK 3.8 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330093030_747578402.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 86 x 86\012- data
Hash 6c0429fd687754149b9b53dc63a12361
2eaa24786fa8bbed46a46687edaea53d55eebdc2
7c2f326aac4547886f434a79d24e24f260c0a534075c4b447181e3c8d804dbe1
GET /templets/wei/uploadfile/image/20170330/20170330093030_747578402.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 3819
Last-Modified: Wed, 24 Aug 2022 18:17:11 GMT
Connection: keep-alive
ETag: "63066b27-eeb"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329152835_1984079758.jpg
142.252.100.137200 OK 7.2 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329152835_1984079758.jpg
IP 142.252.100.137:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x185, components 3\012- data
Hash 119eb082df0df2cb92c993c8ee2852c8
916b9feea5685f517536cb1a4bf2556756ff2bc8
96a91ae3e6ce9f03ef4e18e8430aec8bfafacdf73d1d04eb3f5772ec7695dbbb
GET /templets/wei/uploadfile/image/20170329/20170329152835_1984079758.jpg HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/jpeg
Content-Length: 7218
Last-Modified: Wed, 24 Aug 2022 18:17:12 GMT
Connection: keep-alive
ETag: "63066b28-1c32"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20180104/20180104145159_1898248385.png
142.252.100.137200 OK 9.8 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20180104/20180104145159_1898248385.png
IP 142.252.100.137:0
File type PNG image data, 207 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash c671290cfed73d0565da603463dde5f4
02f557a1149e8f8d829e693ea64d8c7f4c690277
15e5a5657dc9a02e59faae3cd1f9ee7ec09684b17911e860368f033f93d48451
GET /templets/wei/uploadfile/image/20180104/20180104145159_1898248385.png HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/png
Content-Length: 9756
Last-Modified: Wed, 24 Aug 2022 18:17:10 GMT
Connection: keep-alive
ETag: "63066b26-261c"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329163106_168361609.gif
142.252.100.137200 OK 460 B URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329163106_168361609.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 215 x 27\012- data
Hash d0cffcfbd8d57a71670071a998965b13
260307edd5ca0d17d550e88bab0db0b9ac8fea4d
15dd4a6a7ea9e6c19cdedd99ee2f4e60152606de276e92d6d64e857cb7a17c30
GET /templets/wei/uploadfile/image/20170329/20170329163106_168361609.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 460
Last-Modified: Wed, 24 Aug 2022 18:17:17 GMT
Connection: keep-alive
ETag: "63066b2d-1cc"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329173825_491661605.gif
142.252.100.137200 OK 1.9 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329173825_491661605.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 228 x 280\012- data
Hash 3eb8ec18075f0c254cf6afd2613769d1
77986f8f5ce4b7ad057a799b609a2dfc32434312
5c852356b2d51cf7dc96d504aef4b99155640d6f500a54820a47a895e96010f1
GET /templets/wei/uploadfile/image/20170329/20170329173825_491661605.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 1906
Last-Modified: Wed, 24 Aug 2022 18:17:12 GMT
Connection: keep-alive
ETag: "63066b28-772"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170418/20170418172104_255704546.gif
142.252.100.137200 OK 1.8 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170418/20170418172104_255704546.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 220 x 95\012- data
Hash 787747fd60862a7192ac31f02cde2229
ebdcfb307810350f0116791ac7f4bfb26875ba1a
be665c2db0029122e25bf38b3dad2bfea2b9b9a2be1543dafbcb3adc427c0622
GET /templets/wei/uploadfile/image/20170418/20170418172104_255704546.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 1799
Last-Modified: Wed, 24 Aug 2022 18:17:12 GMT
Connection: keep-alive
ETag: "63066b28-707"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330144454_1064069886.gif
142.252.100.137200 OK 195 B URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170330/20170330144454_1064069886.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 220 x 46\012- data
Hash f564f76efa072e846b90ec91c15b7f89
00c4460a4e07f1fb3a9ab57ed61525551fa70ab8
e6cd8eed413e763d0838cb4b50a208b3a4ba581c263863a0e106c9c834898092
GET /templets/wei/uploadfile/image/20170330/20170330144454_1064069886.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 195
Last-Modified: Wed, 24 Aug 2022 18:17:12 GMT
Connection: keep-alive
ETag: "63066b28-c3"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.jiangnanfm021.com/uploads/allimg/191212/1-1912122054030-L.jpg
142.252.100.137200 OK 53 kB URL HTTP/1.1 www.jiangnanfm021.com/uploads/allimg/191212/1-1912122054030-L.jpg
IP 142.252.100.137:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 650x650, components 3\012- data
Hash 030566e6819aca7374ec06fd81168d1e
2c16dabfe66bd6cbc9adf584153d2b9125829edf
4777ab9cd6dbcca32f5e3dc7ce25526d706d8b17b0b29cea06f3f5b2ffc82a53
GET /uploads/allimg/191212/1-1912122054030-L.jpg HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/jpeg
Content-Length: 52972
Last-Modified: Wed, 24 Aug 2022 18:17:11 GMT
Connection: keep-alive
ETag: "63066b27-ceec"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 15b16fd5b260ff81bf0b0d123c47ec95
3f12e0fffcde86a1b25b82485aee5f94353e5696
777fb3ee040d60ad2b027421c413a80b1c485a5a0ce7e90340dc7b2417b66c81
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Dec 2022 23:26:50 GMT
ETag: "3f12e0fffcde86a1b25b82485aee5f94353e5696"
Last-Modified: Sat, 03 Dec 2022 23:26:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 32
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77410b3ab9670b02-OSL
www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329163647_1604559851.gif
142.252.100.137200 OK 1.0 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20170329/20170329163647_1604559851.gif
IP 142.252.100.137:0
File type GIF image data, version 89a, 51 x 27\012- data
Hash 08ce8710a3eaffa313989d780279801f
f4817e503b17bcf4e828c728807658155cce0cc3
dd580a157edabe4fbca30f9f96f39187cd5e09d6fdaa7afcce614053c231fea2
GET /templets/wei/uploadfile/image/20170329/20170329163647_1604559851.gif HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/gif
Content-Length: 1016
Last-Modified: Wed, 24 Aug 2022 18:17:12 GMT
Connection: keep-alive
ETag: "63066b28-3f8"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3950
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 02:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3950
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 02:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3950
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 02:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3950
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 02:17:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3950
Expires: Sun, 04 Dec 2022 03:22:57 GMT
Date: Sun, 04 Dec 2022 02:17:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kRs3oBWnSs5asyPdvz6kkooy7pqm2Yr8R_2x8EXCVn3dBz_aEJurRQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 07:26:43 GMT
age: 67824
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1521243a6fc065bb631bfbde22886fa2
527220e4e8cd1065ce05fcd0694d0d703d817e2e
b83ebf768bbfb34f49d5467f3dfb43ceb3ca3d30d3454e6f37db9aef72d7689a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11482
x-amzn-requestid: d1db05ab-bd5d-4ad4-96b4-8f439152e435
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clssNEeAoAMFh_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc181-0221c53842a2f5ef071e8071;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t1vmY4fBoLpFjqHbLyMewgUrpvRjqG4QTAuA4BeB4Gl2jqbxI0gYQA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:50:08 GMT
age: 16019
etag: "527220e4e8cd1065ce05fcd0694d0d703d817e2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:38 GMT
age: 15869
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F757562c1-a4bf-4a51-bf99-64f3a0d51840.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F757562c1-a4bf-4a51-bf99-64f3a0d51840.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c37ed587ee5e3fbdc8cab86ef1345f9
364a32a224b2cacc26b138d57a8945c191e537b1
3c66654da4670e0d5ec87afb6c62f0a420d90875c57b280710f2592269a9303e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F757562c1-a4bf-4a51-bf99-64f3a0d51840.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8285
x-amzn-requestid: 882c673f-4e3f-4f84-a51d-bbac56f716eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAAEWUoAMFWuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-3a2c571d6272b3493ec2a1c5;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wAFD-w3-gBFoOjjOYdnZRDPDkkeCf89uS38upjXPknfUZxtSxRpxvg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:52:50 GMT
age: 15857
etag: "364a32a224b2cacc26b138d57a8945c191e537b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1a6f4805f59db44f9d3520d88701a58
6a0258e8c97ce09f1723382c8a16d9682b7dc50c
ae120df5e96352c6998c24c69c709dfd2b01a7ff8a7b935d496757fd7661f2f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7503
x-amzn-requestid: a4120308-c51e-4cff-99c2-90e86018b05d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgZjCGkVIAMFpsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389a2e0-6fdf362a6d32449239476155;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 07:01:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dy619jlSTwCjwDhGuLmwTMcmuYj1Kg2oLA7xORyAYX8IHWimhNo6pw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 07:16:04 GMT
age: 68463
etag: "6a0258e8c97ce09f1723382c8a16d9682b7dc50c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 16386
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49402f9e6bec6877601353384e4e483d
97eb9a8d73fc5808595f5f2ed2da4ba0b8fc791c
c1be9e134eafe164f488b7be56a4d1717ba8810f09633dd7d7aa4b14d2b49cc6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C1BE9E134EAFE164F488B7BE56A4D1717BA8810F09633DD7D7AA4B14D2B49CC6"
Last-Modified: Fri, 02 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21585
Expires: Sun, 04 Dec 2022 08:16:53 GMT
Date: Sun, 04 Dec 2022 02:17:08 GMT
Connection: keep-alive
ykqorvnj74msqj6s0btv.writers-life.com/static/images/00.png
23.224.227.170200 OK 14 kB URL HTTP/2 ykqorvnj74msqj6s0btv.writers-life.com/static/images/00.png
IP 23.224.227.170:0
File type PNG image data, 328 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash 662f1d5fa000fc77d3cfb93b2b726a7c
a10e6e0cfb781b08a5cc2b99b05ddbf5f8204d9a
ca9d2ee8feaa8c98afe4f52ebbcf4d6065a80a60703f059391a957ea0489612f
GET /static/images/00.png HTTP/1.1
Host: ykqorvnj74msqj6s0btv.writers-life.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:16:58 GMT
content-type: image/png
content-length: 14516
last-modified: Sun, 11 Sep 2022 12:06:19 GMT
etag: "631dcf3b-38b4"
expires: Tue, 03 Jan 2023 02:16:58 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ykqorvnj74msqj6s0btv.writers-life.com/static/images/loading.svg
23.224.227.170200 OK 506 B URL HTTP/2 ykqorvnj74msqj6s0btv.writers-life.com/static/images/loading.svg
IP 23.224.227.170:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash bb36cf278bc5f407c3a64054c13dbbdf
ecd02eea9d41f6282fcaaffc84dbefc1fedb58a2
fa5ecaba8e7048ec0475ac862bec89853e8c87e84475e199f8657d6e89065dff
GET /static/images/loading.svg HTTP/1.1
Host: ykqorvnj74msqj6s0btv.writers-life.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:16:59 GMT
content-type: image/svg+xml
content-length: 506
last-modified: Thu, 15 Sep 2022 04:46:13 GMT
etag: "6322ae15-1fa"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ykqorvnj74msqj6s0btv.writers-life.com/
23.224.227.170200 OK 35 kB URL HTTP/2 ykqorvnj74msqj6s0btv.writers-life.com/
IP 23.224.227.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4911), with CRLF, CR, LF line terminators
Hash 5a91c3ae8ab404801e6d562ae5cb9d9c
800cc242b0966b1222d97e3909fd021420629078
fa9e522d621f140c9649ecbd29e51f847068f01b9833e41a6da02cb21428afc6
GET / HTTP/1.1
Host: ykqorvnj74msqj6s0btv.writers-life.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:16:58 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1786980772&si=ef05ac5b9a1245269b39a1177302d53d&su=http%3A%2F%2Fwww.jiangnanfm021.com%2F&v=1.3.0&lv=1&sn=26287&r=0&ww=1280&u=https%3A%2F%2Fykqorvnj74msqj6s0btv.writers-life.com%2F&tt=%E7%BD%91%E7%AB%99%E9%A6%96%E9%A1%B5
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1786980772&si=ef05ac5b9a1245269b39a1177302d53d&su=http%3A%2F%2Fwww.jiangnanfm021.com%2F&v=1.3.0&lv=1&sn=26287&r=0&ww=1280&u=https%3A%2F%2Fykqorvnj74msqj6s0btv.writers-life.com%2F&tt=%E7%BD%91%E7%AB%99%E9%A6%96%E9%A1%B5
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1786980772&si=ef05ac5b9a1245269b39a1177302d53d&su=http%3A%2F%2Fwww.jiangnanfm021.com%2F&v=1.3.0&lv=1&sn=26287&r=0&ww=1280&u=https%3A%2F%2Fykqorvnj74msqj6s0btv.writers-life.com%2F&tt=%E7%BD%91%E7%AB%99%E9%A6%96%E9%A1%B5 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 04 Dec 2022 02:17:09 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6672A0AC659121A8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f8b76b242fd2e8879cdfc7fbd1415faf
1871f8392aa2d3c3e8578d55db36191afc9327ec
361971753f91e7cad9e1bddef1c21a30753abbfb3b7f1cec82c8031700224ec1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 23:53:08 GMT
Expires: Sat, 10 Dec 2022 23:53:07 GMT
Etag: "1871f8392aa2d3c3e8578d55db36191afc9327ec"
Cache-Control: max-age=595557,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77410b4acb1f0afa-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3259c62a1b01f69aca91a2ea232ccacd
cb7f4d895387f1cd5d0504ce8f536e7a0456662a
9f8174f57d29aa19db4f351722635642e8783971247f9c6aacf22994721b3ae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 00:08:07 GMT
Expires: Thu, 08 Dec 2022 00:08:06 GMT
Etag: "cb7f4d895387f1cd5d0504ce8f536e7a0456662a"
Cache-Control: max-age=337255,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77410b4e7c95b524-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3259c62a1b01f69aca91a2ea232ccacd
cb7f4d895387f1cd5d0504ce8f536e7a0456662a
9f8174f57d29aa19db4f351722635642e8783971247f9c6aacf22994721b3ae4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 00:08:07 GMT
Expires: Thu, 08 Dec 2022 00:08:06 GMT
Etag: "cb7f4d895387f1cd5d0504ce8f536e7a0456662a"
Cache-Control: max-age=337255,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77410b4e7d9ab4f4-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a9377a53c31e72f1727c5b4936e4a488
130dff66fb8e34cb5a1319a5ebc7d99ef055f049
cf763c5f36924bf397a0857efdda0302bc2a44f6db110db9298c61fd57620f52
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 15:22:05 GMT
Expires: Fri, 09 Dec 2022 15:22:04 GMT
Etag: "130dff66fb8e34cb5a1319a5ebc7d99ef055f049"
Cache-Control: max-age=478493,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77410b4e5c660afa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 042b4ecafa2b580cf67d951e17605d82
082615eb672acf119252b489efda6ee8349b6ce5
bae20e21a7f6ce3e74ad927d0d71736e47fc2cca1aa29265d9f4b0e655941cfa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:17:10 GMT
Etag: "638bc5b8-2d7"
Server: ECS (amb/6BB3)
Content-Length: 727
p3.douyinpic.com/obj/tos-cn-i-dy/3c11ed9009f04dadb5669e6345aeb956
47.246.44.230200 OK 730 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/3c11ed9009f04dadb5669e6345aeb956
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 120\012- data
Size 730 kB (729792 bytes)
Hash ffd53b6a9d6349a54b488227d86eb693
ee62f72326bd40f7c6e593d021afb95c04f433c2
8c3cb63b6ce0712aa0e63ee239ac15f199ffa96728931953a2c654bcdb412a80
GET /obj/tos-cn-i-dy/3c11ed9009f04dadb5669e6345aeb956 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 729792
date: Wed, 30 Nov 2022 22:04:17 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 30 Nov 2022 14:52:13 GMT
nw-session-id: 2022113022521301020909506644ACD68Bq9fgw03dy
nw-session-trace: 2022-11-30T22:52:13.299472002+08:00 32
x-bdcdn-cache-status: TCP_HIT
x-length: 729792
x-powered-by: ImageX
x-response-date: Wed, 30 Nov 2022 22:52:13 GMT
x-tt-logid: 2022113022521301020909506644ACD68B
via: n131-120-203, cache20.l2de2[0,0,206-0,H], cache23.l2de2[0,0], cache23.l2de2[0,0], cache5.se1[0,0,200-0,H], cache3.se1[1,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010ecc0e8ff994e51f4caefb2f3f866f275b688afd0aa302efacb0b7bf7c2321259f60db947086947dd62ff9bfd623c8a390adf7c722758bba698c008b7b9f26869e9b2b5fc26c75237776e07d81b144573e3725f63fd5792080b29189bbaeec9d
x-response-lb: image
ali-swift-global-savetime: 1669845857
age: 274373
x-cache: HIT TCP_MEM_HIT dirn:1:164831633 mlen:0
x-swift-savetime: Thu, 01 Dec 2022 11:33:29 GMT
x-swift-cachetime: 31487448
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716701202305081596e
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d739c75ba3754e79b846a9cb45a7b5be
2bcc1cc460340c534d0da92cdf5c68044a972e98
8de7b6f4931486c12e1880bccc9193d9b67ebedc58d7646870e5eec7201e2209
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 12:53:49 GMT
Expires: Fri, 09 Dec 2022 12:53:48 GMT
Etag: "2bcc1cc460340c534d0da92cdf5c68044a972e98"
Cache-Control: max-age=469597,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77410b51ce23b524-OSL
www.jiangnanfm021.com/templets/wei/uploadfile/image/20180117/20180117113510_287547679.jpg
142.252.100.137200 OK 52 kB URL HTTP/1.1 www.jiangnanfm021.com/templets/wei/uploadfile/image/20180117/20180117113510_287547679.jpg
IP 142.252.100.137:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1670x806, components 3\012- data
Hash 66ddbc95faee722c33fe111a73bb15be
b5139a3bb504661ed7159a075c6ae63e28b3d9ed
11bb4e91425c2cc49448139124e5e9c5919d5b62472df4c27da4ccf7f6df2140
GET /templets/wei/uploadfile/image/20180117/20180117113510_287547679.jpg HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/templets/wei/cssjs/allbag.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/jpeg
Content-Length: 164663
Last-Modified: Wed, 24 Aug 2022 18:17:13 GMT
Connection: keep-alive
ETag: "63066b29-28337"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
n0600.com/fcd3a34cc4b84ec48ed86c22866928c5.gif
40.115.211.191200 OK 92 kB URL HTTP/1.1 n0600.com/fcd3a34cc4b84ec48ed86c22866928c5.gif
IP 40.115.211.191:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 300 x 174\012- data
Hash 381bf6d3fa3792374812dce0eb296635
da1b41cd4f78f14f0530085b0404cda44cfc6126
425091a6a40137d42068b8f1f6f0c060a027abff23135df9fa21d768e283d9a5
GET /fcd3a34cc4b84ec48ed86c22866928c5.gif HTTP/1.1
Host: n0600.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:17:09 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 19 Nov 2022 16:15:46 GMT
ETag: W/"63790132-1ca84"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
ykqorvnj74msqj6s0btv.writers-life.com/static/js/foundation.min.js
23.224.227.170200 OK 403 kB URL HTTP/2 ykqorvnj74msqj6s0btv.writers-life.com/static/js/foundation.min.js
IP 23.224.227.170:0
Size 403 kB (403269 bytes)
Hash 7439f2cb536e21d2b69614aeba752de1
19b27d06218b651e0c7163887650fdd1ff74a2cb
f3215a71d3f3e3a90e18477813096b89db91d4fcc09f9e0506b1d8e91499eb45
GET /static/js/foundation.min.js HTTP/1.1
Host: ykqorvnj74msqj6s0btv.writers-life.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:16:58 GMT
content-type: application/javascript
last-modified: Sun, 11 Sep 2022 09:32:38 GMT
vary: Accept-Encoding
etag: W/"631dab36-2f593"
expires: Sun, 04 Dec 2022 14:16:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 457f332f7d466b9f829d3bf41262b72e
c75809bd3d77551bf7a4286ac555a84eca441c18
e38d4a04f7b2021790389e535acce1db0f8e056cac0cde438b7da0ad985a6364
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E38D4A04F7B2021790389E535ACCE1DB0F8E056CAC0CDE438B7DA0AD985A6364"
Last-Modified: Fri, 02 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 04 Dec 2022 08:17:11 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 457f332f7d466b9f829d3bf41262b72e
c75809bd3d77551bf7a4286ac555a84eca441c18
e38d4a04f7b2021790389e535acce1db0f8e056cac0cde438b7da0ad985a6364
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E38D4A04F7B2021790389E535ACCE1DB0F8E056CAC0CDE438B7DA0AD985A6364"
Last-Modified: Fri, 02 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21502
Expires: Sun, 04 Dec 2022 08:15:33 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dea823ac7d7e5b4cf34ad7a557a5bd25
c0db33025fa7b6c26e261fcf73882b5f6ef88503
6ddd993ee3132f5500e067b7ea3e3183a65c6b891e68671559109e0f99f34422
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DDD993EE3132F5500E067B7EA3E3183A65C6B891E68671559109E0F99F34422"
Last-Modified: Fri, 02 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Sun, 04 Dec 2022 08:16:57 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dea823ac7d7e5b4cf34ad7a557a5bd25
c0db33025fa7b6c26e261fcf73882b5f6ef88503
6ddd993ee3132f5500e067b7ea3e3183a65c6b891e68671559109e0f99f34422
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DDD993EE3132F5500E067B7EA3E3183A65C6B891E68671559109E0F99F34422"
Last-Modified: Fri, 02 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 04 Dec 2022 08:17:11 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dea823ac7d7e5b4cf34ad7a557a5bd25
c0db33025fa7b6c26e261fcf73882b5f6ef88503
6ddd993ee3132f5500e067b7ea3e3183a65c6b891e68671559109e0f99f34422
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6DDD993EE3132F5500E067B7EA3E3183A65C6B891E68671559109E0F99F34422"
Last-Modified: Fri, 02 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 04 Dec 2022 08:17:11 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
ykqorvnj74msqj6s0btv.writers-life.com/static/js/jquery.lazyload.js
23.224.227.170200 OK 608 kB URL HTTP/2 ykqorvnj74msqj6s0btv.writers-life.com/static/js/jquery.lazyload.js
IP 23.224.227.170:0
Size 608 kB (608029 bytes)
Hash 652494cd925ee7056881947b88cfc840
1a4d55b165541e941d74ee0d7d73395ba3a66ee6
e879b6cbc30f49fde2d446bdadf39d51d69e4e3e22c29d9c90afd7c79f3a7599
GET /static/js/jquery.lazyload.js HTTP/1.1
Host: ykqorvnj74msqj6s0btv.writers-life.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:16:58 GMT
content-type: application/javascript
last-modified: Wed, 14 Sep 2022 13:31:31 GMT
vary: Accept-Encoding
etag: W/"6321d7b3-2360"
expires: Sun, 04 Dec 2022 14:16:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b248e3f71ae6556ea58baf7a152d89b7
84e616b6c0e603b3369415176e7724092432c971
930cf97d5573c94a3c5fcf9b857657c4232c4b76c79bebaf28e9c40ba612be54
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "930CF97D5573C94A3C5FCF9B857657C4232C4B76C79BEBAF28E9C40BA612BE54"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 04 Dec 2022 08:17:11 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b248e3f71ae6556ea58baf7a152d89b7
84e616b6c0e603b3369415176e7724092432c971
930cf97d5573c94a3c5fcf9b857657c4232c4b76c79bebaf28e9c40ba612be54
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "930CF97D5573C94A3C5FCF9B857657C4232C4B76C79BEBAF28E9C40BA612BE54"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 04 Dec 2022 08:17:11 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b248e3f71ae6556ea58baf7a152d89b7
84e616b6c0e603b3369415176e7724092432c971
930cf97d5573c94a3c5fcf9b857657c4232c4b76c79bebaf28e9c40ba612be54
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "930CF97D5573C94A3C5FCF9B857657C4232C4B76C79BEBAF28E9C40BA612BE54"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21533
Expires: Sun, 04 Dec 2022 08:16:04 GMT
Date: Sun, 04 Dec 2022 02:17:11 GMT
Connection: keep-alive
api.sailing21.com/api/tool/getDomains?t=0.6804396966051254
23.224.227.170200 OK 223 kB URL HTTP/2 api.sailing21.com/api/tool/getDomains?t=0.6804396966051254
IP 23.224.227.170:0
Size 223 kB (223157 bytes)
Hash 509f8c314c0925f97998f49e95ed48bd
724a9281943a2789b9d5bb55a60560cf1ba114ac
f09a565ad07fcad2bf9079adbc7f66e7d633d1f9b1ddb4da952a40e9de62ff4a
POST /api/tool/getDomains?t=0.6804396966051254 HTTP/1.1
Host: api.sailing21.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 18
Origin: http://www.jiangnanfm021.com
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/json
cache-control: no-cache, private
date: Sun, 04 Dec 2022 02:16:57 GMT
x-ratelimit-limit: 1000
x-ratelimit-remaining: 999
access-control-allow-origin: *
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
htzxc.top/202282/960x120-1.gif
198.16.41.2200 OK 294 kB URL HTTP/2 htzxc.top/202282/960x120-1.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 294 kB (293988 bytes)
Hash 70badf93767785dc30de8e56ea6e28eb
0383e2e8aa9f02ad720c10a21e010057da02e4a6
5f9e638c1d0ae21b667a9c9db9467c2182ab38eefb04cc2c9528f7b661fdca10
Analyzer Verdict Alert quad9 Sinkholed
GET /202282/960x120-1.gif HTTP/1.1
Host: htzxc.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:11 GMT
content-type: image/gif
content-length: 293988
last-modified: Wed, 09 Nov 2022 15:33:24 GMT
etag: "636bc844-47c64"
expires: Mon, 02 Jan 2023 15:37:45 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
htzxc.top/202282/300x174-2.gif
198.16.41.2200 OK 154 kB URL HTTP/2 htzxc.top/202282/300x174-2.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 300 x 174\012- data
Size 154 kB (153721 bytes)
Hash cf28d12ab4deb75ad31f233a1a014b74
93854875840cc7e3af0e55cfc0bc725a50237c6a
39ef2210e95a00c51023e90ac523cd8dd0cbe710cbdc849e49cec08db16f6add
Analyzer Verdict Alert quad9 Sinkholed
GET /202282/300x174-2.gif HTTP/1.1
Host: htzxc.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:11 GMT
content-type: image/gif
content-length: 153721
last-modified: Wed, 09 Nov 2022 15:33:22 GMT
etag: "636bc842-25879"
expires: Mon, 02 Jan 2023 15:42:31 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
htzxc.top/202282/300x174-1.gif
198.16.41.2200 OK 171 kB URL HTTP/2 htzxc.top/202282/300x174-1.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 300 x 174\012- data
Size 171 kB (170566 bytes)
Hash 2373fb18cd85bed9980dcabb164c8aec
9a28baa5be81c8eea9c178669df27093690c0383
d9a9493fb2033c12089d5350ea114cbd71c9e234eeb6a1c68c764e06077dc767
Analyzer Verdict Alert quad9 Sinkholed
GET /202282/300x174-1.gif HTTP/1.1
Host: htzxc.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:11 GMT
content-type: image/gif
content-length: 170566
last-modified: Wed, 09 Nov 2022 15:33:21 GMT
etag: "636bc841-29a46"
expires: Mon, 02 Jan 2023 15:42:25 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
htzxc.top/202282/750x120.gif
198.16.41.2200 OK 129 kB URL HTTP/2 htzxc.top/202282/750x120.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 750 x 120\012- data
Size 129 kB (129217 bytes)
Hash 12b81ac7c3c05c3ea0c90e0c12ddb738
6eb4ccc2de02162df8f6a2f3242f7ead6b42ad3e
dd88539151a6d81022311fcf5ac29e279a879e08a121b0f839acc8dcce8b8fc4
Analyzer Verdict Alert quad9 Sinkholed
GET /202282/750x120.gif HTTP/1.1
Host: htzxc.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:11 GMT
content-type: image/gif
content-length: 129217
last-modified: Wed, 09 Nov 2022 15:33:23 GMT
etag: "636bc843-1f8c1"
expires: Mon, 02 Jan 2023 12:36:12 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
tpdhs.top/20221101/120x360/120x360--1.gif
198.16.41.2200 OK 29 kB URL HTTP/2 tpdhs.top/20221101/120x360/120x360--1.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 120 x 360\012- data
Hash 8fd63b6226a02d8af355d4b104bd4290
d38cb44b709e88c32b1810ec5ec01479d43651be
f067e433449fc005cc4f4bf0ead9cf13ad91bb569251d98191a01f13f0e1a833
Analyzer Verdict Alert quad9 Sinkholed
GET /20221101/120x360/120x360--1.gif HTTP/1.1
Host: tpdhs.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:11 GMT
content-type: image/gif
content-length: 29400
last-modified: Tue, 01 Nov 2022 07:38:12 GMT
etag: "6360cce4-72d8"
expires: Thu, 01 Dec 2022 07:50:41 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
htzxc.top/202282/960x120-2.gif
198.16.41.2200 OK 279 kB URL HTTP/2 htzxc.top/202282/960x120-2.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 279 kB (279394 bytes)
Hash 80d57d021694b7bc53931b74480201f3
973a87c33abf64128cefa46be0cfea251c8e8928
085207cd44639950654c077237b7483873edca1be2d606fdcc0e2a0eb1e2175b
Analyzer Verdict Alert quad9 Sinkholed
GET /202282/960x120-2.gif HTTP/1.1
Host: htzxc.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:11 GMT
content-type: image/gif
content-length: 279394
last-modified: Wed, 09 Nov 2022 15:33:25 GMT
etag: "636bc845-44362"
expires: Mon, 02 Jan 2023 15:37:09 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
tpdhs.top/20221101/image/300x174-2.gif
198.16.41.2200 OK 211 kB URL HTTP/2 tpdhs.top/20221101/image/300x174-2.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 300 x 174\012- data
Size 211 kB (210616 bytes)
Hash 6be07a4b7825e3af398f24c529b086ec
63de029348b0a167a71ab2669754127ef132f848
5ecc3a7363c4a60819a2422a9c7b7164814f756bcedbc3628f00e62367856ac5
Analyzer Verdict Alert quad9 Sinkholed
GET /20221101/image/300x174-2.gif HTTP/1.1
Host: tpdhs.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:11 GMT
content-type: image/gif
content-length: 210616
last-modified: Tue, 01 Nov 2022 06:26:12 GMT
etag: "6360bc04-336b8"
expires: Thu, 01 Dec 2022 06:57:33 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jiangnanfm021.com/uploads/191203/1-19120314502aR.jpg
142.252.100.137200 OK 247 kB URL HTTP/1.1 www.jiangnanfm021.com/uploads/191203/1-19120314502aR.jpg
IP 142.252.100.137:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x500, components 3\012- data
Size 247 kB (246963 bytes)
Hash 1ce594dea3e73fbb281218211c1f364b
d34719c613b296fbf86d8a17537d665be18f3b10
1483548681fb5fbc5c62eb77c3a9ab1149492d90c1a70a22e3f0477ec59d4c13
GET /uploads/191203/1-19120314502aR.jpg HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/jpeg
Content-Length: 143039
Last-Modified: Wed, 24 Aug 2022 18:17:18 GMT
Connection: keep-alive
ETag: "63066b2e-22ebf"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b248e3f71ae6556ea58baf7a152d89b7
84e616b6c0e603b3369415176e7724092432c971
930cf97d5573c94a3c5fcf9b857657c4232c4b76c79bebaf28e9c40ba612be54
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "930CF97D5573C94A3C5FCF9B857657C4232C4B76C79BEBAF28E9C40BA612BE54"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21591
Expires: Sun, 04 Dec 2022 08:17:03 GMT
Date: Sun, 04 Dec 2022 02:17:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b248e3f71ae6556ea58baf7a152d89b7
84e616b6c0e603b3369415176e7724092432c971
930cf97d5573c94a3c5fcf9b857657c4232c4b76c79bebaf28e9c40ba612be54
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "930CF97D5573C94A3C5FCF9B857657C4232C4B76C79BEBAF28E9C40BA612BE54"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21588
Expires: Sun, 04 Dec 2022 08:17:00 GMT
Date: Sun, 04 Dec 2022 02:17:12 GMT
Connection: keep-alive
tpdhs.top/20221101/image/960x120-2.gif
198.16.41.2200 OK 286 kB URL HTTP/2 tpdhs.top/20221101/image/960x120-2.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 930 x 120\012- data
Size 286 kB (285869 bytes)
Hash 74c1493a837838012e52328c2124c0b4
bb9b7049a1274a70186749482d4317b82fbb2fc9
6f5f4ad41346b2fe90692a5b219f1578410c3ecf4cdb54587a348cf243ae150f
Analyzer Verdict Alert quad9 Sinkholed
GET /20221101/image/960x120-2.gif HTTP/1.1
Host: tpdhs.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:12 GMT
content-type: image/gif
content-length: 285869
last-modified: Tue, 01 Nov 2022 06:38:22 GMT
etag: "6360bede-45cad"
expires: Thu, 01 Dec 2022 06:57:08 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
tpdhs.top/20221101/120x360/120x360--2.gif
198.16.41.2200 OK 29 kB URL HTTP/2 tpdhs.top/20221101/120x360/120x360--2.gif
IP 198.16.41.2:0
File type GIF image data, version 89a, 120 x 360\012- data
Hash b162fd3905eb789a20fe8f242b6624a9
9fe4b34d4cec7a3730de132e915e1ee28e9b78fb
0e9d5802e88ccfd8020a2f19c67766afbc905ad3a20419242c1aa8ce3d9cbf02
Analyzer Verdict Alert quad9 Sinkholed
GET /20221101/120x360/120x360--2.gif HTTP/1.1
Host: tpdhs.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:17:12 GMT
content-type: image/gif
content-length: 28817
last-modified: Tue, 01 Nov 2022 07:45:28 GMT
etag: "6360ce98-7091"
expires: Thu, 01 Dec 2022 07:50:52 GMT
cache-control: max-age=2592000
server: dns1
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u1102.com/d24a10e85f1b49f2be57edade8a2c4e2.gif
103.188.121.27200 OK 358 kB URL HTTP/2 u1102.com/d24a10e85f1b49f2be57edade8a2c4e2.gif
IP 103.188.121.27:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 358 kB (358522 bytes)
Hash 677dab97fd11d2343aed327e66c5a29e
72835b9544fb5562003588064f415bb9362b7cb6
feb70e6f842abc981c0d7bac60bb6fac4e602065bfecf386adcafa5d2e303d48
GET /d24a10e85f1b49f2be57edade8a2c4e2.gif HTTP/1.1
Host: u1102.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63790148-5787a"
server: nginx
date: Sat, 03 Dec 2022 04:58:05 GMT
content-type: image/gif
last-modified: Sat, 19 Nov 2022 16:16:08 GMT
accept-ranges: bytes
x-cache: HIT from megai-cdn121-017
content-length: 358522
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32949ec5-eb15-4096-b713-fd83ae7aa650.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32949ec5-eb15-4096-b713-fd83ae7aa650.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7717ff9fcf6cf3268d10312dc3fdaaf
c4f05fdb231c7870b2a918198fa0809d8e8f9c89
bf3b6304a45f172653f45e1e8b4afa7da90096ca36c82b981ca6ec01ccf122a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32949ec5-eb15-4096-b713-fd83ae7aa650.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8286
x-amzn-requestid: 6880d30e-3624-402e-819d-610e35ae27d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAAG1HIAMF6Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-43f8e7d312f96110713a7092;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XcnZ2pTQoGkuHEPsazEI09yhI6WWbmZD6g7QYW7rDf5HsegvjdgkXg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:00 GMT
age: 16394
etag: "c4f05fdb231c7870b2a918198fa0809d8e8f9c89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.jiangnanfm021.com/uploads/191203/1-191203150035E7.jpg
142.252.100.137200 OK 0 B URL HTTP/1.1 www.jiangnanfm021.com/uploads/191203/1-191203150035E7.jpg
IP 142.252.100.137:0
GET /uploads/191203/1-191203150035E7.jpg HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/jpeg
Content-Length: 209230
Last-Modified: Wed, 24 Aug 2022 18:17:18 GMT
Connection: keep-alive
ETag: "63066b2e-3314e"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ykqorvnj74msqj6s0btv.writers-life.com/static/css/style.css?v=1.0.15
23.224.227.170200 OK 0 B URL HTTP/2 ykqorvnj74msqj6s0btv.writers-life.com/static/css/style.css?v=1.0.15
IP 23.224.227.170:0
GET /static/css/style.css?v=1.0.15 HTTP/1.1
Host: ykqorvnj74msqj6s0btv.writers-life.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:16:58 GMT
content-type: text/css
last-modified: Sat, 19 Nov 2022 06:25:01 GMT
vary: Accept-Encoding
etag: W/"637876bd-54f1"
expires: Sun, 04 Dec 2022 14:16:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ykqorvnj74msqj6s0btv.writers-life.com/static/js/jquery.min.js
23.224.227.170200 OK 0 B URL HTTP/2 ykqorvnj74msqj6s0btv.writers-life.com/static/js/jquery.min.js
IP 23.224.227.170:0
GET /static/js/jquery.min.js HTTP/1.1
Host: ykqorvnj74msqj6s0btv.writers-life.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ykqorvnj74msqj6s0btv.writers-life.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:16:58 GMT
content-type: application/javascript
last-modified: Sun, 11 Sep 2022 09:31:42 GMT
vary: Accept-Encoding
etag: W/"631daafe-15285"
expires: Sun, 04 Dec 2022 14:16:58 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jiangnanfm021.com/uploads/210526/1-2105261Z34NW.jpg
142.252.100.137200 OK 0 B URL HTTP/1.1 www.jiangnanfm021.com/uploads/210526/1-2105261Z34NW.jpg
IP 142.252.100.137:0
GET /uploads/210526/1-2105261Z34NW.jpg HTTP/1.1
Host: www.jiangnanfm021.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jiangnanfm021.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 02:16:59 GMT
Content-Type: image/jpeg
Content-Length: 697422
Last-Modified: Wed, 24 Aug 2022 18:17:44 GMT
Connection: keep-alive
ETag: "63066b48-aa44e"
Expires: Fri, 09 Dec 2022 02:16:59 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes