firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 00:12:31 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MMh8d9xnTljP55b4-k08t10AhXlHbTRQzdKwRW9EabFGs10Z43slCw==
Age: 2041
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2333
Expires: Mon, 19 Sep 2022 01:25:25 GMT
Date: Mon, 19 Sep 2022 00:46:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4KU2Uwo4kf4LDqE3g6ExoBZm4NwirPsyzPpHyeAbzzxUGadpSDRKiA==
age: 72679
X-Firefox-Spdy: h2
www.020ga.com/index.php
156.252.158.50200 OK 598 B IP 156.252.158.50:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (895), with CRLF line terminators
Hash 9e830235316431b2eba08a95485ef00d
d85f86227e17e3b4c7e11190f893ca6600c65c6d
1bb7df212a326c4efe3e1865ba7076ddcf5c9c877ece6beb73127423d7403b8c
GET /index.php HTTP/1.1
Host: www.020ga.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 00:46:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 00:46:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.020ga.com/tj.js
156.252.158.50200 OK 102 B IP 156.252.158.50:0
File type HTML document, ASCII text, with no line terminators
Hash 8c45c27edb65e9f9ed1747194dc79dc8
87813036abf883c7e9630dafe282798e4d5d7a35
fccde6d04940d918d1d5d702392cc302417f7f85050bbc0a7808c4a94353168d
GET /tj.js HTTP/1.1
Host: www.020ga.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.020ga.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 00:46:31 GMT
Content-Type: application/x-javascript
Content-Length: 102
Connection: keep-alive
www.020ga.com/common.js
156.252.158.50200 OK 1.8 kB IP 156.252.158.50:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 394d42df70e09c1264d39c5875130a29
f5a229f05c034a6a187dcf91cd22272521af8585
ee40092cf716773e5f6e14f04d36d50537232450100e199cc5189e4df7ac0546
GET /common.js HTTP/1.1
Host: www.020ga.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.020ga.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 00:46:31 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 00:03:22 GMT
Cache-Control: max-age=3600
Expires: Mon, 19 Sep 2022 00:53:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 75IVc7hYi3ATffqgVWHgKvGEEdYsmLHRjUkYnutYgb7v-XMIvIAURA==
Age: 2591
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6551
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 00:46:33 GMT
Last-Modified: Sun, 18 Sep 2022 22:57:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.8546778073872019?v=000817791594272288
156.244.142.129200 OK 51 B URL HTTP/1.1 meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.8546778073872019?v=000817791594272288
IP 156.244.142.129:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4b130d6073acd127d52c6cc99bf074c6
346743fb9f4a5bb4df4c31596cf391fb071dbf2c
36807300721e4dc9f7622f23b252d2ff2b7fc55ea2a27d0a5aa602a4f59fb0d8
GET /meicao_v01.php?val=bbgg1&t=0.8546778073872019?v=000817791594272288 HTTP/1.1
Host: meimeicaomeimeicao01.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.020ga.com
Connection: keep-alive
Referer: http://www.020ga.com/
HTTP/1.1 200 OK
Content-Type: application/json
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: *
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Mon, 19 Sep 2022 00:46:43 GMT
Content-Length: 51
push.services.mozilla.com/
34.217.237.91101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.217.237.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SbkJz1fat9vxlVwEW5gIig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uQg814/Ngd790pFnyR/zoy0zKwA=
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash feaff7cf5a95c7b1ef00da532c821230
4f698f9b936080b67db43d56778338a8596ebb18
9aba86953e8da3624202bbb7d1923798ff9767cad4f7d97718c0ff4525061031
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4032
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 00:46:34 GMT
Last-Modified: Sun, 18 Sep 2022 23:39:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
156.244.142.190/
156.244.142.190200 OK 5.9 kB IP 156.244.142.190:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash b19d882732101a50215ed4359044b459
58e835ef7256eeb96048e5435d6d2802a4c4649e
9844b78cac4f42297eb7ae47323613579a4601bb9351cab66654c0120015c5fa
GET / HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.020ga.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Mon, 19 Sep 2022 00:46:43 GMT
Content-Length: 5856
fmlb.netlbtu.com/upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg
104.21.235.174200 OK 8.7 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f106414f2147b15cd1ad6f14d32eca5b
a31e44fc094210f6277754ca2ba6029a8acd579d
6d0206c36087c19c6218b5138e93129a868e7ca07440b7459e2b208e1879fdaf
GET /upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 8720
cf-bgj: h2pri
etag: "6ab94db577c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:20 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y9Nv4Kmj3Qiigge8w%2F7RYeA0NZphDS2zrd8UelTwskRZ%2FB5hrf%2Fs3FtHGTrvpB1beUZLAV2kjdqbd0OgxCshDdkQCJkJ1aWPtCphh46X%2BtWcK53LzRIvhW0QeHpxvaMukR%2B0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18594edd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg
104.21.235.174200 OK 9.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ad97440bf656f930e7ae1b57b0d2d3f8
a6a2995e15d795d167d6bc795ea6bcf0aaad02c5
8ac9b2a7b2ab3c46b1ecfe9fbeb5449a797c13e5b3ea6b4349363fcf46b19088
GET /upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 9902
cf-bgj: h2pri
etag: "2f753fa76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:24 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cFWFeGWj4x5qYCde2Cyd6%2B852OK%2B%2FAQgG9fHHdaABaGKSZK9%2FCLb%2F5a%2BxYiGogas9ZUyUL8IP7SJ%2BwcWaJc9Tap%2BYYQVOKtx%2BePE4j2if6rKK25cXyrfFNTXBuf5F%2FFQk0Rm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e185955dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg
104.21.235.174200 OK 9.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5600b1dc0b13febccccad5ae5e8a2578
71badf0ab64bc26d7b50c8d82b35fe49da44986a
b8ac9990802b4fc1818c6c999c89337884a8f5c9cda42f47810047d2a723eaa3
GET /upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 8961
cf-bgj: h2pri
etag: "6bec1b477c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:19 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cWFuih2CdBFCzLAfdwCwpzsBkGnIXU35cevZAE20Mcgf4eLYW2SYoPgXD7jt%2B%2FwxYya%2Bp3mecT8h%2FKhBpqwG%2BM%2BnWRYQO0IjeB%2FJX4P9LnwFASKVC0Jb04g46vItyykskOoi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18594fdd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg
104.21.235.174200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b39a8eb121c5f3928dc2f521a782c02d
bcff2caa6eff59086a15f4f1ed423151ed4bb342
cec74cf5c0f7f5ad60cb8cc7632a66fb422d35374c14ecab36d13c337a208228
GET /upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 10650
cf-bgj: h2pri
etag: "b4a6b5b377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:17 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2JaB0U1oy0Z6MxNZft7z8Za%2BKl0pYHqYJ%2FAiCFy9on%2Bv3kXTlZx1w47HHpWWr%2FIoMblN5OM3q44bynN%2F9ULyMGQggc2dN7u6f65lMNDMArZ6Y9FOiaaCg7B5LXGNQpJhySoK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e185952dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg
104.21.235.174200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a5a7e5a878944a89c074143f96a1c47f
7e552cf2c502b95a7608f65b23c3c020384a0b25
ad499e5c551c6e26e17c0cc06c9022dcd19cf5f592618bd2cbe5aa938260a626
GET /upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 11821
cf-bgj: h2pri
etag: "dc2639b477c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:18 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WPX6vS7H6RGvj4eKUlpCJjyiNS%2BgsZblp6Y8dVMLtjrOHiYfX42xK%2BDCIV39yPXDWMYmvOoaOvxyRHCYHSXe%2BjBWR%2FYPZCLvbTdL3UX1prY2fbu8%2B3WLXz3FL24xv2Sb%2Bl5V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e185951dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg
104.21.235.174200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash be5459c67f79d490bb930363863288d8
0e47ee21289b8a1ad7d1cf54f0531f8a15e9bd92
4288f99e1361c0ef9085132f7050848483b0c67855888206b511acefc6bce6b3
GET /upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 9258
cf-bgj: h2pri
etag: "35899f07bc2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:55 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uRGZj0Af3e%2BnAeu3V4v95w8x5OxF7PkZ6p3UPiBTHQbGQ4Dd9c7rkcF26BPdNMPsHSDGM82fhmzzNDn2PGwFjFi%2Btno1gbuYprw6j%2ByMwtR9GH31ZVWcAP89%2B7fHiwuX44A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186971dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg
104.21.235.174200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 454ee1ac19092981fd8e96bab533fcfb
302ab66716bbe85532d35def00830a73e9810bb4
51af109a76c71f36a522bc5eaf966d9984b0d166621d8cf61510329ab84ee919
GET /upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 12352
cf-bgj: h2pri
etag: "3d6318fc75c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:00 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=91lIxChzMxz1p1%2FWClIGOqwq4q1iwF2WssUJEnZAfTW7zUvpGOleSPgwZQg%2B%2BFkI7j2FimUU3RXkNalZDc%2F258PsNTEnWphcRhePP48ps%2BOzbggQZlGAZP82jXvjsj7fA2KQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18696bdd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg
104.21.235.174200 OK 7.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 61f2c7fdba6ca013e309ee65934bff40
46447f0fcfeac5c363cec337a5739eb1a72c8f92
b318a31ca0beb5a574c92103dcec62e8b037d9228e1e4af86e67bedaa9e7a52b
GET /upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 7318
cf-bgj: h2pri
etag: "639147d177c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:07 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vtfd9T8SmzktQpRdaP3bXY50evvmvGkHMN1XhW2BLe9zfuIEIl38A6t5NLUv0Vfq59wYO9o9Zm1wXaJs24BOU0bAWbZZxO8mPvQmn7RNPEv1fdOcMB8IzDZb7Ye2amKnuMar"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18697bdd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/q1o4bihtjx41307q1o4bihtjx4211535.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/q1o4bihtjx41307q1o4bihtjx4211535.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7dd079cd1252b97a7c419ff368a7c8f5
7445171e1612dcaaad3717edd9197c554a3e33d0
1dbd8f7e33f7f920efd32f4a87b443eb6cc0e56c7fb9425015ee573a87fa5182
GET /upload/vod/2022/09-07/13/q1o4bihtjx41307q1o4bihtjx4211535.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 10488
cf-bgj: h2pri
etag: "1f3ed3b577c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:21 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UGuiAuNQyT7SZmQgu26mqjCxGizFS1t1A7HjudzPxQF99%2Br0wM%2FtR5qH3T0X52ByUIx7%2FOtBqSKZh1ADGEVLP%2F46acyJA0NSTvlStOSJupnIiNG1RRgmnOEN9QIQKOmg9XcK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18696cdd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg
104.21.235.174200 OK 9.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash abe3a22559f3a446376ffdfc5910b301
1eaca4d6bd46f8aaff5a5119f98b2010ef1f1937
2951bf4233224514476d183387fb21f8360e54b850feb10b4a2c7f1a9453d13e
GET /upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 9756
cf-bgj: h2pri
etag: "b013ddd277c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:10 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dfyM3dLgLkC%2FKYYmDLCeaVGLuRnJDzPhPuouNF9KYi7mtQY%2BgkbWZ6kg9NUS%2FoxbYp%2F3J4ox7HWbBC9akZaL4QrB0BxRA25OUvrrF2yZ1zYejeItnDma7W9rehsHeP2yHo5J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186977dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg
104.21.235.174200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ca4b3f2903ef4433c7ab885a04726847
cbfa6636abc2a692f285a6504209023edcf080e3
8e60248e74afcb1a19ed134b7766cc2c86bde88843cdbbc4233952f90268c3af
GET /upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 9611
cf-bgj: h2pri
etag: "d51eefd7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:50 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gzvDmd8%2FmRd7BXGWwFG0u1R%2FP1jWRToTryslCYQsmlNxWwPvHmFq8i1BMP4hDVsJNYBYvhJ2tPeCL8NNwXdu0rGJjGNF%2FhS94A9L3JsxSs15iIEeGkUR9Y%2FxpUrYs1CAGra5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18696edd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg
104.21.235.174200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6f94e30c727d278d3575f3246ec329a2
31928d51a7892f354c9d03f6e767e06d2c4db77e
a56018bf4adc882e32ec42008ac59cd049b50f6e2517f7edd84a7fac45e9695f
GET /upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 11216
cf-bgj: h2pri
etag: "90e5d0a76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O1TUYkROouJgnCqfEuHSru6eZ1z9DZ3JDMTa4sC%2BuaIfbiQRGxXvOyN6Budzw1KjAAhURQARxEL4VXRc71rPgm4MWNrCnj7nnjEAhWsO5FkEv53Ql7%2FtFk4EogKV1SYbZPd3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186970dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg
104.21.235.174200 OK 7.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 38c1547789f05c6ce1cd2efe38c3ac08
d087ec9bcc278189e607f426b23c30f89bc85d27
4a466ad4cd847a119cc5bb58576663e22a56b06788546aab8e6208d2dfacf927
GET /upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 7366
cf-bgj: h2pri
etag: "33938fff7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:53 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U407ZE3qhVlLz9royFGE3kOEV0JtDbQ3P0uEJqKp7ue%2FJypxnQLh71czJ5X7mACHOaA0OkfHdIfQGwjMNoid2T1g5LZCKmXAvKLcX%2FprsC8LMG00SUk2ywRYxIRkuDRwEbEH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186973dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash feaff7cf5a95c7b1ef00da532c821230
4f698f9b936080b67db43d56778338a8596ebb18
9aba86953e8da3624202bbb7d1923798ff9767cad4f7d97718c0ff4525061031
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4032
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 00:46:34 GMT
Last-Modified: Sun, 18 Sep 2022 23:39:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
fmlb.netlbtu.com/upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg
104.21.235.174200 OK 7.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 39a994d69d9156945e1f6b663cc44d50
b86ce9643daf36d6cb67ab5eac55f1b8d2f7736c
5373a333c07412b600c2003d0f2129021d10251558ea1cb4691dafc24c9e7bcc
GET /upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 6980
cf-bgj: h2pri
etag: "37a77ff7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:52 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gAe77Ykv59WJ1TrpF8EEptumpUCtlMyA8n35Z5ZNKj5bTlDSUA9O7MfhZuEX8faHrbarBKaKylXJ5VUtQucauWtIBSoqVMVM7s3ekcSGpCqt4ZPA1pI%2B2DJmGxWQhpyfwt%2BF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186975dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg
104.21.235.174200 OK 6.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1ad4b31ad1c424879d84e4ba999dba82
0c138ab9d68acf1511984816121aba4dbc660c0d
784849bcf5901415811ece90aefc69277e787963b58923bbd041f86213c9d93d
GET /upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 6154
cf-bgj: h2pri
etag: "ba1b76fe7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:51 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ndsBu8hbWfG8PUdmF464u0L%2Fw7%2FwODQL91CmN6JbXm5ToY9Gggo%2FqQaafifsfQk1gF%2FdeF8AAKczPo5X2Gfmkg5GFpHT2EKUo9LYIC%2BjPIF2kt3J%2BaoQd%2BKX0HNQdipG%2BuU7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18696ddd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/css/ate.css
156.244.142.190200 OK 4.5 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/css/ate.css
IP 156.244.142.190:0
File type ASCII text, with CRLF line terminators
Hash 1164a38c5186eff1838f351d96dbd192
1f5c06f7969ca9602774591594b1d4170137cdc3
fec2bebf191e9c67f3ce3234909acb71fa272057962f230dce334cdfd514b3e2
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 24 Jan 2021 07:28:36 GMT
Accept-Ranges: bytes
ETag: "06ae58622f2d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 4498
156.244.142.190/template/m1938pc/ads/xx1.js
156.244.142.190200 OK 996 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx1.js
IP 156.244.142.190:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 0f146ee270d1283647db0646c35ddd82
d4e2bcdafec688cb5240e174468f83456c96ab00
5faa5035b3c6c7127ce772cc1e64af8455caaf49a7cf4727affa416f17e908e8
GET /template/m1938pc/ads/xx1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 08:21:11 GMT
Accept-Ranges: bytes
ETag: "80f5af716ecad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 996
156.244.142.190/template/m1938pc/ads/dh1.js
156.244.142.190200 OK 702 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dh1.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash e5f397c03ba1d4aa4f24b2635cb6a6b9
9d97e51f24af73b2b539b2da996103d143448bf5
2586e8041343ef44424fd4c73969361fe2109a13765c14f07a8be2f92406d1f6
GET /template/m1938pc/ads/dh1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 05:18:47 GMT
Accept-Ranges: bytes
ETag: "fb9ad3f654cad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 702
156.244.142.190/template/m1938pc/ads/xx2.js
156.244.142.190200 OK 655 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx2.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2c315b758e897bde5fab815de9a27e30
6cacb6d609a7e024779101eb5324868eb9906099
dfd9598680bd32f76c04df53addb22f0618924caef46fdccedf0040aef94e8f9
GET /template/m1938pc/ads/xx2.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 08:21:11 GMT
Accept-Ranges: bytes
ETag: "c24519726ecad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 655
156.244.142.190/template/m1938pc/ads/dh.js
156.244.142.190200 OK 558 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dh.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2eb0eb2dea379022d1393108ae11a497
4c678e34f273d7f946c173cac103aa6572be622f
23db644711719711a80603f86ac6ee7ba1aca934826093f0cc77ef46e98798b0
GET /template/m1938pc/ads/dh.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Sep 2022 11:49:59 GMT
Accept-Ranges: bytes
ETag: "808d2148f9c8d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 558
fmlb.netlbtu.com/upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d06c328e22376fae7f42a6354059e1ee
0ea733d3c13ae0894449a8b8c5b5076adad4252a
e2559cc8bfd2591633f94bca82080a744dd3d9a1f423207c316242666e8f83af
GET /upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 10535
cf-bgj: h2pri
etag: "878432b377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:17 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XshA809A87CDa6ecjt%2BL2g12sVN6GuaQV5ixViJO2G%2F%2Bd%2Fahm2xrLaZ56AnBi2BjRkKkJLsGLgltp9nETESBBoX7jqa5cXgJJlQ8XpsJMs%2FFreVyJ1qMVV%2FUmhsFrdFxMu6Z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e185954dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg
104.21.235.174200 OK 8.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash aa693b608481b6940793e5d374671ea4
fcf1ad1a12546bf5cf576763efa860c051c52bd1
625c8eaf4f9c75f8010a2c4931fc959abcfad3bb4f8a8dcb91eb709b67cb5dc6
GET /upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 8316
cf-bgj: h2pri
etag: "6fc369d377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:11 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zfqtfpO9mF5BYBSOf2aOt%2F1vl1q%2Fcn%2FIuZ9EnSXLHqJ0KZvYt%2FznAGqSHjfwTPFlVsdUd511Cw9OkWxUnxdyiUEQaGiUpbMWNemp2Ppkhz54WwVf3kOhWvmIwWT7zW1z7syu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18594bdd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg
104.21.235.174200 OK 6.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a1029a786b088a2f378abfc33fe517f0
2c7cb1ba204c2b2b1b7fc630da4ca5652efee2d4
e1400dc677ff49a03091050f3ecf2636c7d4f0c3fae3e515786a528a510e9c03
GET /upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 6418
cf-bgj: h2pri
etag: "89a5f1d377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:12 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EC0cz2s0IyGd9PP9cEXj46U2WL%2Fhb%2BBjQ42bzb2eql2ApKZycgPW3fEZ2H59BRF6K2U20219Jakjb%2ByQQ%2BUH39b4ft92MqXqPdEoxYPQgrhSi4Xa5JsO5lar4NnZJg8e3nqR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18594ddd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg
104.21.235.174200 OK 8.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6b92d38c61f41a5a2dd70d7f314e9cf0
2d49d318d294c145af2eda5bb95cc8befaf9edaa
136e4be0a41b43ac9eca7106ed2c81f6aca8913751cdd6a049bb92f740bf45c7
GET /upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 8896
cf-bgj: h2pri
etag: "a361507bc2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:54 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyzF60uJT0dL%2FaNor1QhGaGCqBmgz%2FQ%2BgLUePRQX3%2B%2BdOpp3kCgOjqbikV4rXilIZs2ODIP%2FRaofpAyOwie0aybs1mRg6l%2F4ndS5jbQr3O7II7Ij188nXRQ%2B177RiY78qr1p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186972dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg
104.21.235.174200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 46746c8fb900de924ae65192f01f617a
02621393d1df5f12960002bf962889579dbf2217
fc0c9c98cca0009b63a00eb26c31e075eca511bfc9761ccf00922437a2ab48c8
GET /upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 9269
cf-bgj: h2pri
etag: "ec747fb76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:26 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xAYJxJkXS9w4EQDksb9I2WHrJvszvRmWKul440lqTPhY1oCiZLyALn23sppCbauJldhR5P3q8MrjKXSuhXnwLJvJ4QK4VIqTGhYFWYdrIYwh50IkM8QhMryYuv0FseH26%2Fsk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18696fdd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg
104.21.235.174200 OK 8.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9204e98c69d4684810e606d7b813d0d5
6d9a9d3708250c1e51922af80368702f329fe0cd
7a67d268ecd53295205c3b8cc512a881a1fe742d99860d80b9606403570db6f6
GET /upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 8190
cf-bgj: h2pri
etag: "24e32a976c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:22 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m23JEf%2F%2FpJYqeDC0MRB5wZ6ud4cWCLa2acDKQczcC3hVmN9XgBHm14tKcYj%2FZbIa%2FJSs3G8qIvZXucbzNz53sE4CvxiKYKx0dqCpa3wu4DIgvPdSUzXKquk0pecJckde%2FVI0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18696add7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e9674310eadd5542ec475c0364c05dd5
3fe64e38b1075b73bfd5f6f1d84f981f4335ce42
39c25b2b230e63682443f00d4f2443323650b635b898f6e66afc53a3df5d8cfd
GET /upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 10429
cf-bgj: h2pri
etag: "22e8d1d177c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:08 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DZXVVwm4w6UXrU%2Fjfaa%2Bz6TnApUqezQNn4BKDPSPLwG%2BLgIefptsY%2B9ZOPcM0aAgl2z46zUvRufI36NRGBDnjO%2BT%2FJw2fIepZjaDWUNHkEZZrDllXVcsXPBV3WQG0sA54Uw7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e18697add7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9e6469b8504db4fb8a3517a0e8c51e4c
8ac09fd14dd49537951bfcbe846dbe6357e8971a
3e83a49d39868c14f56815ea4b8b206e204ae19ee3dfcd14adb0533beb4600d3
GET /upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 10208
cf-bgj: h2pri
etag: "9c6c57d277c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:09 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Rw7W1h2pn%2BODqXeUYJwn7s8cY56fD4TkxTdE%2B40I1woorQeRiOdAOhrQKoeDBk5S5asKjS3eJTc0TJ5EvepfiOveeBRqWJk6zlhCaqVzSuj58JxHweAmVbs6C%2FfDTDLq8gd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186979dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg
104.21.235.174200 OK 9.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4d472cda79c89dbd226dbfd0d0a633b4
f94512b27d68388ceee44bd2e3aa2cddb4601f01
2bb6b16b4d754b8bf1f659d4fef02f551ccb4045a754d4d92c1ab415001eb7d7
GET /upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/jpeg
content-length: 9932
cf-bgj: h2pri
etag: "b7f1b9976c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:23 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8fSjq3SxSUzaFYx8Dy0bHTctsh865gcCayHjHZIveHpuSxCIOn0Ap%2FA1qJz%2FY%2B2eDzuUZN3grNL6xdjxMGvVERdsqwk9UbdkUKn3qq4oRSnMcjTPrdfWqAdErZrWOe7KzCuY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e186969dd7d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/ads/1.js
156.244.142.190200 OK 477 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/1.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 4165a9ea79da47e086c5104e0ad7076d
9fda2d145afbaa4560d6cb9069a9462537672d97
7fd5b52d2b6d6aae4a10f502d192aa0d4818d87ccec19d95fd609c1e7f826950
GET /template/m1938pc/ads/1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Sep 2022 19:09:57 GMT
Accept-Ranges: bytes
ETag: "dc467bf36c9d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 477
156.244.142.190/template/m1938pc/css/zui.css
156.244.142.190200 OK 15 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/css/zui.css
IP 156.244.142.190:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 48c376278eb9da985b90bb1612dbeee1
4d755742285a8bc38f9c73b3a5976c6b381e3c32
af7cb37270a26d66dd3bb89f42d9c122bb2a1bfe9f6fe076138d9864c7193bee
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 27 Jan 2021 05:34:18 GMT
Accept-Ranges: bytes
ETag: "0e972e6ef4d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 15351
156.244.142.190/template/m1938pc/ads/xx3.js
156.244.142.190200 OK 0 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx3.js
IP 156.244.142.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/m1938pc/ads/xx3.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Thu, 30 Jun 2022 14:22:56 GMT
Accept-Ranges: bytes
ETag: "de5c6e48c8cd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 0
156.244.142.190/template/m1938pc/ads/dl.js
156.244.142.190200 OK 505 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dl.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 772113e53cc89ddbf3ae23dfe28f65d4
6440b765ef2dbc485bf7e433554b0b923da727ba
5f5b37a6179c09b01198a144a5478ce3ef9dcff5db8bce21f1b5ffd53c0dffc0
GET /template/m1938pc/ads/dl.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 05:17:46 GMT
Accept-Ranges: bytes
ETag: "4583bad254cad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 505
156.244.142.190/template/m1938pc/ads/tj.js
156.244.142.190200 OK 207 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/tj.js
IP 156.244.142.190:0
File type HTML document, ASCII text, with no line terminators
Hash 04bb81185666d1c9d8a2493a4e5c2b71
5232eec6e742db8be8556571e72ab7dbaed474c3
29d87524da7c400e3a59d61db87572bab9f7e1d8ddd145aabedc996b150053e7
GET /template/m1938pc/ads/tj.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sun, 24 Jul 2022 08:56:23 GMT
Accept-Ranges: bytes
ETag: "7dfedb3f3b9fd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 207
156.244.142.190/template/m1938pc/images/1.gif
156.244.142.190200 OK 254 B URL HTTP/1.1 156.244.142.190/template/m1938pc/images/1.gif
IP 156.244.142.190:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/images/1.gif HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 13 Oct 2021 12:55:54 GMT
Accept-Ranges: bytes
ETag: "7f8d6aa831c0d71:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 254
156.244.142.190/template/m1938pc/images/video-mask.png
156.244.142.190200 OK 107 B URL HTTP/1.1 156.244.142.190/template/m1938pc/images/video-mask.png
IP 156.244.142.190:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 24 Jan 2021 07:28:42 GMT
Accept-Ranges: bytes
ETag: "b0b58b8a22f2d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 107
156.244.142.190/template/m1938pc/images/video-play.png
156.244.142.190200 OK 1.6 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/images/video-play.png
IP 156.244.142.190:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 24 Jan 2021 07:28:46 GMT
Accept-Ranges: bytes
ETag: "4081698d22f2d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 19 Sep 2022 00:46:44 GMT
Content-Length: 1567
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 271323de7ad2da1761eff40e0dde2b1f
6b7f372835bbfa58b3eff530ed233c60eb1744f5
7fb2b25c0a7c62039e82d4be9e3a5c2e8c1ddc4585e9194ea018c73ca127ca55
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "7FB2B25C0A7C62039E82D4BE9E3A5C2E8C1DDC4585E9194EA018C73CA127CA55"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21584
Expires: Mon, 19 Sep 2022 06:46:18 GMT
Date: Mon, 19 Sep 2022 00:46:34 GMT
Connection: keep-alive
666999123.com/tu/267x160.gif
172.67.134.131200 OK 40 kB URL HTTP/2 666999123.com/tu/267x160.gif
IP 172.67.134.131:0
File type GIF image data, version 89a, 267 x 160\012- data
Hash a0871ff9ae597a9568512e38903b1c2e
5d2906013451d67aa270268e8780dd8756bd0473
5dd718fd89e147d5ea3ae5044656b7dc8881a889b49583756ab46c6448480236
GET /tu/267x160.gif HTTP/1.1
Host: 666999123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:34 GMT
content-type: image/gif
content-length: 39782
last-modified: Thu, 25 Aug 2022 14:56:23 GMT
etag: "63078d97-9b66"
expires: Thu, 06 Oct 2022 07:17:19 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1099830
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4n4NjStXA4FHdZygy6jtPsKhvPSprBKkdMuwqG5Y3P1ObhyhaFCj0%2FehjqORVu4LM7wGWTeEALOnNGGEY947rKMUiINE3qwiadnUi8MJcW5AnINgqtroWG08HV1V7Jeb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e1c79deb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 271323de7ad2da1761eff40e0dde2b1f
6b7f372835bbfa58b3eff530ed233c60eb1744f5
7fb2b25c0a7c62039e82d4be9e3a5c2e8c1ddc4585e9194ea018c73ca127ca55
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "7FB2B25C0A7C62039E82D4BE9E3A5C2E8C1DDC4585E9194EA018C73CA127CA55"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21584
Expires: Mon, 19 Sep 2022 06:46:18 GMT
Date: Mon, 19 Sep 2022 00:46:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aed2792ccded7dc027600d86680c2a5c
2ace3221b7b30d9840514b2bfeb7ab062afaafe1
e6b63cc200ae008f0b56cab1d8c1dee6f77060e20a060499c7403b5343f649b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6B63CC200AE008F0B56CAB1D8C1DEE6F77060E20A060499C7403B5343F649B3"
Last-Modified: Fri, 16 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3459
Expires: Mon, 19 Sep 2022 01:44:14 GMT
Date: Mon, 19 Sep 2022 00:46:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5799
Expires: Mon, 19 Sep 2022 02:23:14 GMT
Date: Mon, 19 Sep 2022 00:46:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5799
Expires: Mon, 19 Sep 2022 02:23:14 GMT
Date: Mon, 19 Sep 2022 00:46:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5799
Expires: Mon, 19 Sep 2022 02:23:14 GMT
Date: Mon, 19 Sep 2022 00:46:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a5d9ce-7d6b-4006-832c-dda7f7999129.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a5d9ce-7d6b-4006-832c-dda7f7999129.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f99c08fdd1a74ec569e02207b9919df8
3f24ca8e9c96f3c9ca2e95946f1f67d242c7e5df
7b5f48166db186dcf19987f5f91cb03cbd069ec74de8ea42059626019b00fc14
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a5d9ce-7d6b-4006-832c-dda7f7999129.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9371
x-amzn-requestid: dd94b1a0-f6a1-4e41-8b97-9c9904b6f6b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRFF6rIAMFY2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf39-289c5acb4e5bcb715b689f55;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ru8zmqf8FBNIJatpnkFCgjq49arUFR2o8pqE50dzLOXsgsyaf5oMKg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 14:26:40 GMT
age: 37195
etag: "3f24ca8e9c96f3c9ca2e95946f1f67d242c7e5df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87bddc1f919e51c976d5377040861ea6
f5bf6c28f20414c7dd3ac1098defc46d3d68fd99
28541ca828b6358c8e6081e9f2022e7ad18a8adcb3df09a3fa079f32c08fcda6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10721
x-amzn-requestid: fadb4327-7392-42be-9167-16dd28876400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIqeEg2IAMF-XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254a9-45261b545b58382717b63418;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:24:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WPR4iIPTDBsXF2F8yHkM2G-M9w6V0ykDHY017kKgEjsBNciMxYqo5A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 04:31:06 GMT
age: 72929
etag: "f5bf6c28f20414c7dd3ac1098defc46d3d68fd99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d0e81a-9a24-4b9d-8b77-02caa029aba6.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d0e81a-9a24-4b9d-8b77-02caa029aba6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87e0d8be3547c9a4e09c496a8e43bfeb
86e5b19c0c395b8cdac33f0e07d1689d00940fac
268a7135b2d273730a258d6af8317436f87e79b652207432a33fce98a9a9121b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d0e81a-9a24-4b9d-8b77-02caa029aba6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7637
x-amzn-requestid: d3f7a8f4-c5e8-474e-8b62-0677931aae37
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCrNFO5IAMFygA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e47-7cc884381e0ae1144d212b7c;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lwuuov3xBZDoHGBumvYqgDtQbV0J8lpCyKzmkw_XiNhFeA7DsdPYQw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:56:06 GMT
age: 10229
etag: "86e5b19c0c395b8cdac33f0e07d1689d00940fac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff700a356-a9e1-4d17-b82b-cc825cbb09af.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff700a356-a9e1-4d17-b82b-cc825cbb09af.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcd68f4f4d0188a96a06b1793abf38e1
df40b195d24c1b58123c40f8b01294035c9076a5
6c8d53d76269c3f945cc28f3005bcdbbaf1a748a65a166db6c7161f382a47609
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff700a356-a9e1-4d17-b82b-cc825cbb09af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3375
x-amzn-requestid: 4827cdf6-5641-44cd-a076-d8b29bb34ffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOSyFO0IAMF-Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790de-45acc6fe6064eb3f23e4ea77;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cScYxWAyH0k8XDOCgN_1sTVufxBo0K5Dbp6_rYiIx3MBWZf_uUkyPQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:50:11 GMT
age: 10584
etag: "df40b195d24c1b58123c40f8b01294035c9076a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F438ffa79-f423-4d90-8f37-4026c4546d1b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F438ffa79-f423-4d90-8f37-4026c4546d1b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 04257e82bf07e6a862ce2d4bbdfc068f
7a462e8d05cd56531957436470a1814d982e282b
bbc0f0dd6244934098a0e8bfa34b8e07e8a424e309030c2f07d9e441b6f481ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F438ffa79-f423-4d90-8f37-4026c4546d1b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 710bed7d-62c4-4b48-b16c-c94f1a15c1ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpLIkHlZoAMF2Ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326bf03-375d74b4344cb7db4036e2b2;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 06:47:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: AD7jWfvJngdXmqOJlo6HiLCUEZG_mgVFVaos0hwSPYpLVsGFBik37Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 11:10:34 GMT
age: 48961
etag: "7a462e8d05cd56531957436470a1814d982e282b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da8b8819fc21dcfb224ce0e7ecdc6772
e460ad4376cd118a6fe8b6b050af9398117d9531
9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: e1792a3b-1893-48a6-8d01-463050259dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiGMYE3IoAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323ea4f-42ab13411e65943538101b11;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:15:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XmcyJv7bahHB4wMjFmgvh2fEkJJYLPhRrISZ_DczSErdEQjXIxWUvg==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:28:12 GMT
age: 62303
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 956a9ee8415f5f1a8093aae130c735fe
69df7342d7ea610e77767586b125ffd5c5b9e6a0
2c2b722ff1bf12ed564327512e5deb8db25e6789987450b117cdc4947ab81763
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C2B722FF1BF12ED564327512E5DEB8DB25E6789987450B117CDC4947AB81763"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17525
Expires: Mon, 19 Sep 2022 05:38:40 GMT
Date: Mon, 19 Sep 2022 00:46:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a17ba320a63135c67f8c466e2a5e75dd
0d44fcde357467d606336f7869484eae052af80f
f33b8a55443c8953a98959758f99ca0ab6d0baf4269c4604397b981ba6a2d349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F33B8A55443C8953A98959758F99CA0AB6D0BAF4269C4604397B981BA6A2D349"
Last-Modified: Sat, 17 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19893
Expires: Mon, 19 Sep 2022 06:18:08 GMT
Date: Mon, 19 Sep 2022 00:46:35 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 5632174c9ffc4ab6f4794a81f0357ba8
d7efdba9cbc1f1fd3434fee08cd2a4a586d5f21e
7a49651fb54def02d8d6be4924f6ab40e874dd9043b2e25030e4832fc692a3f4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 22:29:19 GMT
ETag: "d7efdba9cbc1f1fd3434fee08cd2a4a586d5f21e"
Last-Modified: Sun, 18 Sep 2022 22:29:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ce4e1e89a8b515-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 7ac58baf0ee5db80356728268b220597
1483c375bb7e457170523ab4f1e595fafdc4c2b7
46492fb6b652daaf0a658d075062e6f11a2e19b4fb2e8b5466b2dbeb61607e64
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 23:05:56 GMT
ETag: "1483c375bb7e457170523ab4f1e595fafdc4c2b7"
Last-Modified: Sun, 18 Sep 2022 23:05:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 21
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ce4e1ee9d1b515-OSL
kveii.com/dc0247b33019ed0ca09c321bb6fb4656.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kveii.com/dc0247b33019ed0ca09c321bb6fb4656.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /dc0247b33019ed0ca09c321bb6fb4656.gif HTTP/1.1
Host: kveii.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 19 Sep 2022 00:46:35 GMT
content-type: text/html
content-length: 162
location: https://acoozza.top/dc0247b33019ed0ca09c321bb6fb4656.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
acoozza.top/dc0247b33019ed0ca09c321bb6fb4656.gif
172.67.200.215200 OK 796 kB URL HTTP/2 acoozza.top/dc0247b33019ed0ca09c321bb6fb4656.gif
IP 172.67.200.215:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 796 kB (795791 bytes)
Hash a0fc10963ea2b912c10e39e46df5cd72
fa9e7953732f63170e38ed2dec8e945ba6f083e4
7ba4e934ee23a0c156e0b14b61757398bfff3e6c41b4b1ab72d803e39169b469
Analyzer Verdict Alert quad9 Sinkholed
GET /dc0247b33019ed0ca09c321bb6fb4656.gif HTTP/1.1
Host: acoozza.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://156.244.142.190/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:35 GMT
content-type: image/gif
content-length: 795791
last-modified: Wed, 23 Mar 2022 06:52:01 GMT
etag: "623ac391-c248f"
expires: Mon, 17 Oct 2022 23:00:42 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 92753
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K1TXEygqMmTpv1%2BINUslmES3NoD55%2FWsAD3Bb8va2NhszeHIJzBX6xxEq5kzQD1p6JcChJlOMTxXi9XcuGEdQssVWyHoJ5yITUyCdAJddDIOncd1QrdDSNpWuPkHLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ce4e1fcbc7b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 93ec4180af6856353fa772e9c49bd2a5
ac1a6bffc22a46174977642bf6b3a78fb1411fcd
391b1bd14b60bca7a68c34d8d853cf7ec3cc25616f24a52abb8e0c13a0ccc63f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 02:35:21 GMT
Expires: Fri, 23 Sep 2022 02:35:20 GMT
Etag: "ac1a6bffc22a46174977642bf6b3a78fb1411fcd"
Cache-Control: max-age=351524,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ce4e1f2ec5b50f-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b5d26506ede419fb3d3990c68658f290
785c9daf931aff1bf2bccf7a2a9402fb44ec1c01
837591176cdd036c7cb8d635da0dcb235d635ced3feb01c8f02a4e621e3b8ebb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 03:06:37 GMT
Expires: Fri, 23 Sep 2022 03:06:36 GMT
Etag: "785c9daf931aff1bf2bccf7a2a9402fb44ec1c01"
Cache-Control: max-age=353400,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ce4e1f2f6b0b49-OSL
tvpbhvr.com/96x120.gif
154.83.27.179200 OK 88 kB IP 154.83.27.179:0
File type GIF image data, version 89a, 960 x 120\012- data
Hash 9f47403a1048e94ca7a402b4f16383a1
facb5012af395501b990de13f256cf7f412f9444
3fcd8afece27d73f3afad475bd9e7bea853fb690cafe11e754a0fc14f7e0e0e7
Analyzer Verdict Alert quad9 Sinkholed
GET /96x120.gif HTTP/1.1
Host: tvpbhvr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: image/gif
Content-Length: 87796
Connection: keep-alive
Last-Modified: Thu, 07 Apr 2022 11:25:26 GMT
ETag: "624eca26-156f4"
Expires: Tue, 18 Oct 2022 09:26:49 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Via: 154.83.27.178
CDN-Cache: HIT
Accept-Ranges: bytes
s2.loli.net/2022/04/13/UVtxe3bBIg2Efn7.gif
104.26.0.190200 OK 121 kB URL HTTP/2 s2.loli.net/2022/04/13/UVtxe3bBIg2Efn7.gif
IP 104.26.0.190:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 121 kB (120952 bytes)
Hash 8b1ce22d19b73e71ec05f04491df7cae
101ed504920b13424231d6fb3540fb7dfdba69e3
5a7a72fa04186d44d08de8b590fcf1644ad8370bc65007e51ba9300af2541dce
GET /2022/04/13/UVtxe3bBIg2Efn7.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 00:46:35 GMT
content-type: image/gif
content-length: 120952
last-modified: Wed, 13 Apr 2022 10:25:19 GMT
etag: "6256a50f-1d878"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5gpvTT45ezEV9dPXmx6jkSwSjHmmVwR9Sb2AvK%2BrHfi5AvGJba4GJkjCzWQszv%2BTJdwGk5Z40bPpYXVFV6qQdfV%2F1%2B%2FuymL5t%2FTVG2ttsYNOCGmZJH5tu5OdaWyR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ce4e1afdbbfac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pic.picnewsss.com/tu-2022290039/960-120.gif
23.225.139.251200 OK 369 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/960-120.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 369 kB (369108 bytes)
Hash d3f9f17ed067ebb6ee0792014656333e
1f5593ee409f13d7734fd538a9a779dbe469a7c1
69da833d60a8ae1c0d5f64a25dfb6b42579ac7d20046a2db7c2be4256b601b68
GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Sun, 18 Sep 2022 06:56:14 GMT
etag: "1663484174"
expires: Tue, 18 Oct 2022 06:56:14 GMT
last-modified: Sun, 18 Sep 2022 06:56:14 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 369108
X-Firefox-Spdy: h2
rrtwda9.com/946eee7be49243a49664096dddb44412.gif
45.61.212.56200 OK 221 kB URL HTTP/1.1 rrtwda9.com/946eee7be49243a49664096dddb44412.gif
IP 45.61.212.56:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 221 kB (221037 bytes)
Hash 76d11f9f0142237f14743e2281f89cbb
7b79920e1fa187351ac3822530b786e61dd29e93
fb4831054a446e499446c681e3cfdc687e707414605e037616598c3ab51141e7
GET /946eee7be49243a49664096dddb44412.gif HTTP/1.1
Host: rrtwda9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62554ada-35f6d"
Date: Sat, 17 Sep 2022 07:15:05 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 12 Apr 2022 09:48:10 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-26
Content-Length: 221037
jcyunk2.com/dc0bcb706fb440cdaade3c0b609ead2b.gif
45.61.212.125200 OK 128 kB URL HTTP/1.1 jcyunk2.com/dc0bcb706fb440cdaade3c0b609ead2b.gif
IP 45.61.212.125:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 128 kB (128460 bytes)
Hash a27db76daea20381e7603b29173315ad
de92fdc3f51b1ddd7c047d77f73b262aeb37a642
ddf43ab0e61b6cd25843e3ddf116b65e50e0eb4df11f4cddd813502d64a91844
GET /dc0bcb706fb440cdaade3c0b609ead2b.gif HTTP/1.1
Host: jcyunk2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62554ac8-1f5cc"
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 12 Apr 2022 09:47:52 GMT
Accept-Ranges: bytes
X-Cache: MISS from cloud-us2-cdnb-25
Content-Length: 128460
p.qlogo.cn/qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif
43.154.254.32200 OK 47 kB URL HTTP/2 p.qlogo.cn/qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Hash 2b9c30b086d03d90a45a9174aef7b408
e87dbe76669e2f402826dd598bb047d793b1e20c
f1eb3044b464fb4b4b8f3e081295bc19cc4cddc9361adb34ad7fb73b93b25de6
GET /qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 19 Sep 2022 00:46:35 GMT
content-type: image/gif
content-length: 46855
vary: Accept,Origin
last-modified: Wed, 13 Apr 2022 16:09:33 GMT
cache-control: max-age=2592000
x-delay: 13705 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 46855
chid: 0
fid: 0
x-nws-log-uuid: b112f0ab-09da-48d5-bf21-716d55f16896
X-Firefox-Spdy: h2
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X120.gif
47.75.19.91200 OK 212 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X120.gif
IP 47.75.19.91:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 212 kB (212323 bytes)
Hash 1e7356e466a72b7c5d137501da414a9e
0ed2f34eabe2609bc15e05bf3e4a9d598519404e
f93680cd55fe1803408a139984dbe3e18ea2e9c6b184ab8ce353a68dc17878a7
GET /gg/960X120.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: image/gif
Content-Length: 212323
Connection: keep-alive
x-oss-request-id: 6327BBEBFC567C303640A204
Accept-Ranges: bytes
ETag: "1E7356E466A72B7C5D137501DA414A9E"
Last-Modified: Sat, 17 Sep 2022 09:20:48 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14666006998441618956
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: HnNW5GanK3xdE3UB2kFKng==
x-oss-server-time: 1
pic.newtupic.com/image/dongfang.gif
103.186.84.28200 OK 260 kB URL HTTP/1.1 pic.newtupic.com/image/dongfang.gif
IP 103.186.84.28:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 260 kB (259681 bytes)
Hash dea56e9bf21a9d966dc144f5ec9e1db6
40d6d3f4be8ee4f8d4f2fe3c3264ffcf0c3a4546
27d0b3ff31e08d30f85fe19faf10a061a7e884d769702cee66e49fc30e1c8b38
GET /image/dongfang.gif HTTP/1.1
Host: pic.newtupic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 00:46:35 GMT
Content-Type: image/gif
Content-Length: 259681
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 09:05:14 GMT
ETag: "632047ca-3f661"
Expires: Wed, 19 Oct 2022 00:22:45 GMT
Cache-Control: max-age=1800
Strict-Transport-Security: max-age=31536000
server: ****
X-Cache: HIT
X-Cache-Hit: edge
X-Request-Id: 3ba6d612483a2e237e9d6c082fcb57ae
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 257f4d8e6f4fdbd6f542fe8d2c357417
917f3c69a2c2e659b978781324bf3e648d4136cd
062e470f2540f2bd614713537f02e7291e62446155fb5391d1465cbb8af3f82f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "062E470F2540F2BD614713537F02E7291E62446155FB5391D1465CBB8AF3F82F"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2630
Expires: Mon, 19 Sep 2022 01:30:27 GMT
Date: Mon, 19 Sep 2022 00:46:37 GMT
Connection: keep-alive
u0062.com/62dcd681ac4f493889984a49140653d1.gif
20.24.204.232200 OK 238 kB URL HTTP/1.1 u0062.com/62dcd681ac4f493889984a49140653d1.gif
IP 20.24.204.232:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 120\012- data
Size 238 kB (238079 bytes)
Hash 0e654b6218f5cc6cdcb1910830206233
6e14b10f038e258c753558fdd139913139e642aa
2237d1b3cfcceda996092a426648bd8b9672ec10b57334a64e77262edb529a4b
GET /62dcd681ac4f493889984a49140653d1.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 00:46:38 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 21 Jul 2022 09:30:15 GMT
ETag: W/"62d91ca7-7d081"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip