Overview

URL www.japanwork.net/
IP38.40.136.50
ASNPEGTECHINC
Location United States
Report completed2022-09-07 01:30:40 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-07 2 js.users.51.la/21376231.js Malware
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-06 2 q5wefsf1.life Sinkholed
2022-09-06 2 q5wefsf1.life Sinkholed
2022-09-06 2 q5wefsf1.life Sinkholed
2022-09-06 2 q5wefsf1.life Sinkholed
2022-09-06 2 q5wefsf1.life Sinkholed
2022-09-07 2 7zhrrhpp.life Sinkholed
2022-09-06 2 q5wefsf1.life Sinkholed
2022-09-07 2 7zhrrhpp.life Sinkholed
2022-09-07 2 7zhrrhpp.life Sinkholed
2022-09-07 2 7zhrrhpp.life Sinkholed
2022-09-07 2 7zhrrhpp.life Sinkholed
2022-09-06 2 q5wefsf1.life Sinkholed
2022-09-07 2 7zhrrhpp.life Sinkholed


Files

No files detected



Passive DNS (21)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-06 04:40:31 UTC 34.117.237.239
mnemonic passive DNS fmtu.netfhtu.com (37) 244457 2021-12-27 14:39:45 UTC 2022-09-06 15:24:32 UTC 104.21.235.63
mnemonic passive DNS dxjbar.github.io (1) 0 2022-06-06 16:04:56 UTC 2022-09-06 15:46:32 UTC 185.199.110.153 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-06 22:23:33 UTC 93.184.220.29
mnemonic passive DNS zerossl.ocsp.sectigo.com (1) 4049 2020-05-09 19:05:29 UTC 2022-09-06 05:03:06 UTC 104.18.32.68
mnemonic passive DNS ii7.ii7-daxiangjiao.com (2) 0 2022-01-25 10:38:58 UTC 2022-09-06 15:20:38 UTC 156.243.30.203 Unknown ranking
mnemonic passive DNS api.5mqac1ry.world (4) 0 2022-08-11 08:20:40 UTC 2022-09-06 15:46:28 UTC 156.243.30.139 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (17) 344 2020-12-02 08:52:13 UTC 2022-09-06 04:41:22 UTC 23.36.77.32
mnemonic passive DNS pt1.putaozy.info (11) 0 2022-03-03 13:15:48 UTC 2022-09-06 13:15:05 UTC 162.218.113.202 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-06 04:43:30 UTC 34.218.164.174
mnemonic passive DNS ii6.ii6-daxiangjiao.com (2) 0 2022-01-25 10:38:58 UTC 2022-09-06 14:47:05 UTC 156.243.30.140 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-06 05:16:49 UTC 143.204.55.35
mnemonic passive DNS www.japanwork.net (4) 0 No data No data 38.40.136.50 Unknown ranking
mnemonic passive DNS ocsp.globalsign.com (2) 2075 2012-05-25 06:20:55 UTC 2022-09-06 04:47:03 UTC 104.18.20.226
mnemonic passive DNS js.users.51.la (1) 53024 2012-05-30 15:10:11 UTC 2022-09-06 07:37:12 UTC 103.143.19.103
mnemonic passive DNS ia.51.la (3) 59607 2017-10-31 08:01:51 UTC 2022-09-06 09:21:39 UTC 103.143.19.103
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-06 08:08:24 UTC 34.120.237.76
mnemonic passive DNS api.q5wefsf1.life (7) 0 2022-08-12 08:48:53 UTC 2022-09-06 15:05:51 UTC 156.243.30.220 Unknown ranking
mnemonic passive DNS api.7zhrrhpp.life (6) 0 2022-08-11 08:21:31 UTC 2022-09-06 15:46:32 UTC 156.243.30.172 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-06 23:22:01 UTC 143.204.55.36
mnemonic passive DNS ccapi.api-daxiangjiao.com (2) 0 2022-01-25 10:37:09 UTC 2022-09-06 15:46:26 UTC 156.243.30.140 Unknown ranking


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 38.40.136.50

Date UQ / IDS / BL URL IP
2022-09-07 01:30:40 +0000
0 - 0 - 14 www.japanwork.net/ 38.40.136.50

Last 5 reports on ASN: PEGTECHINC

Date UQ / IDS / BL URL IP
2022-12-03 19:15:49 +0000
0 - 0 - 2 9886611.com/ 108.186.218.165
2022-12-03 18:25:05 +0000
0 - 0 - 10 xotelsagency.online/ 107.149.163.54
2022-12-03 18:11:11 +0000
0 - 0 - 4 eg86w1.cn/ 198.2.234.208
2022-12-03 18:11:07 +0000
0 - 0 - 4 eg86w1.cn/ 198.2.234.208
2022-12-03 15:39:15 +0000
0 - 0 - 1 www.cgfcg.com/index.php/Eng/index.html 163.197.212.85

Last 1 reports on domain: japanwork.net

Date UQ / IDS / BL URL IP
2022-09-07 01:30:40 +0000
0 - 0 - 14 www.japanwork.net/ 38.40.136.50

Last 3 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-07 14:59:27 +0000
0 - 0 - 1 chorc-electric.com/ 172.120.235.202
2022-09-06 15:02:19 +0000
0 - 0 - 5 quanfucun.com/ 166.88.52.157
2022-09-01 14:08:10 +0000
0 - 0 - 6 job-details.com/ 172.120.41.51


JavaScript

Executed Scripts (11)


Executed Evals (3)

#1 JavaScript::Eval (size: 509, repeated: 1) - SHA256: 20d9b36c364565687bc81086acbc6a35622e42a4f1d4cb3218582ebff77765ae

                                        document.write('<title>'�
        Iq� - dxj.bar < /title><div id="showcloneshengxiaon" style="height: 100%; width: 100%; background-color: rgb(255, 255, 255); background-position: initial initial; background-repeat: initial initial;"><iframe scrolling="yes" marginheight=0 marginwidth=0  frameborder="0" width="100%" height="100%" src="https:/ / ii6.ii6 - daxiangjiao.com / 1662514406. html " allowfullscreen="
        true "></iframe></div><style type="
        text / css ">html{width:100%;height:100%;}body {width:100%;height:100%;}</style>');
                                    

#2 JavaScript::Eval (size: 509, repeated: 1) - SHA256: 22dff7c61f0b1bd71aa499ff1f132edd6392d9466c3b3b4eca1a5289e98963f8

                                        document.write('<title>'�
        Iq� - dxj.bar < /title><div id="showcloneshengxiaon" style="height: 100%; width: 100%; background-color: rgb(255, 255, 255); background-position: initial initial; background-repeat: initial initial;"><iframe scrolling="yes" marginheight=0 marginwidth=0  frameborder="0" width="100%" height="100%" src="https:/ / ii7.ii7 - daxiangjiao.com / 1662514406. html " allowfullscreen="
        true "></iframe></div><style type="
        text / css ">html{width:100%;height:100%;}body {width:100%;height:100%;}</style>');
                                    

#3 JavaScript::Eval (size: 258, repeated: 1) - SHA256: 264bc504c44acc89345a2a05be818c4db242271ea50f2e439d2fc899350cca9e

                                        var _hmt = _hmt || [];
(function() {
    var hm = document.createElement("script");
    hm.src = "https://hm.baidu.com/hm.js?7e5e3dfa6de61bfd4b1abb18528745ab";
    var s = document.getElementsByTagName("script")[0];
    s.parentNode.insertBefore(hm, s);
})();
                                    

Executed Writes (3)

#1 JavaScript::Write (size: 490, repeated: 1) - SHA256: e502ae444dd2e22c4b57e96feaddb8f4c16054317144f022e2a753585684c806

                                        < title > '�Iq� - dxj.bar</title><div id="showcloneshengxiaon" style="height: 100%; width: 100%; background-color: rgb(255, 255, 255); background-position: initial initial; background-repeat: initial initial;"><iframe scrolling="yes" marginheight=0 marginwidth=0  frameborder="0" width="100%" height="100%" src="https://ii6.ii6-daxiangjiao.com/1662514406.html" allowfullscreen="true"></iframe></div><style type="text/css">html{width:100%;height:100%;}body {width:100%;height:100%;}</style>
                                    

#2 JavaScript::Write (size: 490, repeated: 1) - SHA256: 4738ee8dbe8a199ec0ccb9463ec235b4df3960e17c03de4c3d62e1272e3e0032

                                        < title > '�Iq� - dxj.bar</title><div id="showcloneshengxiaon" style="height: 100%; width: 100%; background-color: rgb(255, 255, 255); background-position: initial initial; background-repeat: initial initial;"><iframe scrolling="yes" marginheight=0 marginwidth=0  frameborder="0" width="100%" height="100%" src="https://ii7.ii7-daxiangjiao.com/1662514406.html" allowfullscreen="true"></iframe></div><style type="text/css">html{width:100%;height:100%;}body {width:100%;height:100%;}</style>
                                    

#3 JavaScript::Write (size: 148, repeated: 1) - SHA256: 9582f31f9eb892b8823a780e579d464d54e26d97d65dc327d2b2bdd92d47c4b8

                                        < meta name = "viewport"
content = "width=device-width, user-scalable=no, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, viewport-fit=cover" / >
                                    


HTTP Transactions (112)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 07 Sep 2022 01:04:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rJF7XxpqTKXE-h-jLuWyDHud8z-73evQK6xSHmJGo32zTO5D8A2gmQ==
Age: 1554


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6894
Expires: Wed, 07 Sep 2022 03:25:23 GMT
Date: Wed, 07 Sep 2022 01:30:29 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Tue, 06 Sep 2022 03:46:34 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NA2JnTC494NPskUq3AyjPJpGwUynsMIp_M3LKF1MlyDE9ty0_eyiJQ==
age: 78236
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 07 Sep 2022 01:30:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: www.japanwork.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         38.40.136.50
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Wed, 07 Sep 2022 01:30:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (30346), with CRLF, LF line terminators
Size:   27532
Md5:    c5bf70567037e6274298bc311a9d766a
Sha1:   d6e75b2703809e7c2fd63de540bf7b884f3123c4
Sha256: 0910290193c68e18291220080b57218d828ac218f186da05b2fbc5cee28914b4
                                        
                                            GET /upload/vod/2022/08/gwlgt31rmrx.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8725
cf-bgj: h2pri
etag: "630c19e7-2215"
last-modified: Mon, 29 Aug 2022 01:44:07 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5509
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MI5TA2rNTYUn051pT9YmiNX6zyWFL4h4ztFEmEJFeRmLyiTKyeGSsMo2nL9aBrn8vdBGMhQqpbp5HfUocfctLdVqVNx9%2BhWf7AX8NTAqdK5t8Nv%2BAuQGjkcJ4UJB4V80ovIg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d7f76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8725
Md5:    8a8f110b7e106e6d86af638c34dac771
Sha1:   277c9fbc94e159e2abf089d05845aece6828306e
Sha256: cd2323128bf223a47e6a7120c291615621160cafa77ecf92610cbd347809626a
                                        
                                            GET /upload/vod/2022/09/thvjhegad34.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8762
cf-bgj: h2pri
etag: "6316e70c-223a"
last-modified: Tue, 06 Sep 2022 06:22:04 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 413
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jgHJDpIewyuEPZokBU2iekjT6JIBdwMAyUvAFZ62FYsgZ%2FcP4l6vRvPBEzwNZMRMuPvg%2BxiuxQDW%2FPABu8AQ1qINYWL6fvZ0DFIug5z2oEOARAvF2CzCqoVCeXSc9SPUtPaI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8276f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8762
Md5:    601b8a635193e559fecc69096af9c03f
Sha1:   d0d8a4b7c2e7fd74d202197eb0b116c7b6896dfc
Sha256: 4ed112b2d3dd20daa8c4ed1d444d82b0c0660b5a6193c2267c1f7f4b1f11ee6f
                                        
                                            GET /upload/vod/2022/09/xvd3domsij1.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 9989
cf-bgj: h2pri
etag: "6316e70e-2705"
last-modified: Tue, 06 Sep 2022 06:22:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 363
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lnaC6Kk3xpPvE4zkZpsucFmDOv8RegBlL%2FY7Czregk5qX6F%2Bb%2B2kMpkPsPhQwkE0o6NF1KQXBw0udJOC%2Fz4zgCC9%2F0UHK%2BBmlIovJTMkY48YaMAfiTeTpYxpzrzzShYd6eTp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8876f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   9989
Md5:    163948ace33ac7b46a3c66f661659454
Sha1:   12b50834684e6ea3b8285a6f3ed31e31fece3307
Sha256: 2fade719c63a2ee3f1b98eb0f500c25bc6dd35aefee8ef5845083eb4a33516fd
                                        
                                            GET /upload/vod/2022/09/xijfszpjsai.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8296
cf-bgj: h2pri
etag: "6316e6f1-2068"
last-modified: Tue, 06 Sep 2022 06:21:37 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2811
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JrMCCkl87lQ4jsCT8lpO2trkV6vfn0QSRwvxpv7QZzw9g909FzOnd%2BUOk25R1Hr2Bi%2FY25gNN7Ld81%2FbduJtMhSOJWcM%2FnazB7qEAQznqiuHtWJ5vt1Ddyj8tdZpS0dbQQsw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8676f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   8296
Md5:    6fb1a23e7a10c6c63f444d1c307d1eab
Sha1:   aa47f4db46516cc7a5322e75a3cc7d3e3cd0b8ac
Sha256: 8bdc5e9b6619625c8c875c0ca5b3c0b785ad88d3c26ec04d58db5bc916f8aa1d
                                        
                                            GET /upload/vod/2022/09/ip5fpquin53.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 11362
cf-bgj: h2pri
etag: "6316e6f0-2c62"
last-modified: Tue, 06 Sep 2022 06:21:36 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6605
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eYxp8M8iRFHQh2o0jBFDlojBLJA%2FYJ7pTg5KbvkQo7jVGCbfzsYFhp6GVvDHLHGIgU1CtpGncJCiloGW4OfFVGm%2BGxC%2FrpnHGRo3zZCE7ebuEXmjBVMxdcwhir%2B7MTDXb0qs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8376f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   11362
Md5:    783a1e9c25a8b674e1dd2d215b9bc643
Sha1:   ac6ddcbec1906d38b48fe13d188c826fa34d8c5c
Sha256: 5a32e54ad72f2eb552497f62939160075c9646d28618f2b61543f5a2ad31baee
                                        
                                            GET /upload/vod/2022/09/x4ubhmym212.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 7663
cf-bgj: h2pri
etag: "6316e70f-1def"
last-modified: Tue, 06 Sep 2022 06:22:07 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 362
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VOYflAchLXxFpX0c%2B0%2BFoA6yZnyskou9LNyj3YdeZb1S%2FroahKZjM8ToI1RyF87xFdHEiQITld4DBY143BNiiJb7jolKYA%2FI1%2FCr6Ab4LAhrJl%2BqpeRjb1gq3Hv89je%2BFFeC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8976f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Size:   7663
Md5:    69ac6ed329409a324956de28586ce25f
Sha1:   ed37556088ec65f901b4848e2d15daa23ad48b2c
Sha256: 91061f8a53be1cfb0f6a3df6650f4237caed7bc40596a615056a38d6d1f8a8a0
                                        
                                            GET /upload/vod/2022/09/bt0kfowewf4.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8762
cf-bgj: h2pri
etag: "6316e70d-223a"
last-modified: Tue, 06 Sep 2022 06:22:05 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 363
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tUtIUX8TTskcUvbbugQScQ7u%2B4j30rUDZphPk%2FkCcEwK2rsPDTNhMd7at2N28VeYFHewSIyYGyyifH7cmBxiTGoar5qA4AvjdjA%2F2iEaiJCQn4HrXzDPY1EUvOVv6Dqv2jId"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8776f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8762
Md5:    601b8a635193e559fecc69096af9c03f
Sha1:   d0d8a4b7c2e7fd74d202197eb0b116c7b6896dfc
Sha256: 4ed112b2d3dd20daa8c4ed1d444d82b0c0660b5a6193c2267c1f7f4b1f11ee6f
                                        
                                            GET /upload/vod/2022/09/e0cw4smsbm2.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8474
cf-bgj: h2pri
etag: "6316e6ec-211a"
last-modified: Tue, 06 Sep 2022 06:21:32 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1372
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=loRsiTx2bDEqF3CwEkMoO%2F9y6OpZ%2BZmOJxq8Z4puJeLB25%2FScGM2Wsi5Hi9iQ2hOa0j%2FVPOjP031JMVdGBe9mPnAZW8AhzVU1sJS5CGOfQmWO8fP12SBz8gcCOTlXk2Og45z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8c76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8474
Md5:    e3992053ecea3873176ef077e633acab
Sha1:   eef48099fc7ff39726942ceeb19b423470047d4d
Sha256: 6935e97b3bc0efe441f25b0a39f1f0b3e3a26dbf23eff09e9cc8f0fdf2bf5eeb
                                        
                                            GET /upload/vod/2022/09/cczwb2kvkb2.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 10047
cf-bgj: h2pri
etag: "6316e6ee-273f"
last-modified: Tue, 06 Sep 2022 06:21:34 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4835
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PrxBTL81%2BjWuTVFn4TbRlN8aB0yN741H%2F5sLm6vm6%2FICigR0tHBuYQWJyabSdiY5fsO9KYgbqcVU1uqQ%2BpDuB1FvLfumBcu%2BNHI%2FD01vuF2FvyCAyULUDr8KkoB8HAun1mDx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9676f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10047
Md5:    29584f2366e64c1595df220e3eb34381
Sha1:   1b67be8f89e7491952b1601cf6e112fc984980c5
Sha256: e2113a85a28d82524384660911d15b2b612ce5298893f5d66cb11ea36d7106fe
                                        
                                            GET /upload/vod/2022/09/xjbmvhmffin.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 11074
cf-bgj: h2pri
etag: "6316e6f3-2b42"
last-modified: Tue, 06 Sep 2022 06:21:39 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dtE42Q8dNBJ01PLKPdqG3OS9H09p0yN7%2FeUyPuTKra0u9S8hXNcAk1P8UEE2CKXHIpXhTU5IExkUN%2BuxNZGLbhKEIrHaiCV%2B3q2QFZEQ%2BAW2RB8MrdHe1FI35Yys3xvHQqF3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9776f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   11074
Md5:    ceaef5906a81fed3e32d4f4e16984fcf
Sha1:   bf19573c8ce0e596613bfb26fa29d4c3811aa11b
Sha256: f8b084aa7a7a250d29eaa5393526f25000e4b9a2260ab5a83dd7b47c2eaa2058
                                        
                                            GET /template/m1938pc/static/js/tj.js HTTP/1.1 
Host: www.japanwork.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.japanwork.net/

                                         
                                         38.40.136.50
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 07 Sep 2022 01:30:23 GMT
Last-Modified: Mon, 15 Aug 2022 03:09:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9b8f5-49ce"
Expires: Wed, 07 Sep 2022 13:30:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (17702), with CRLF line terminators
Size:   10795
Md5:    33fb0cee563a527e46b8c0e98c496298
Sha1:   cf3d7a7539a4bd80e2669dad3aff6fe6299d8158
Sha256: bb2d22126402bac9547bb3693290e831be174051b6f73555829875826a79c4c2
                                        
                                            GET /template/m1938pc/static/js/common.js HTTP/1.1 
Host: www.japanwork.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.japanwork.net/

                                         
                                         38.40.136.50
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 07 Sep 2022 01:30:23 GMT
Last-Modified: Mon, 15 Aug 2022 03:08:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62f9b8a8-f95"
Expires: Wed, 07 Sep 2022 13:30:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (466), with CRLF line terminators
Size:   1835
Md5:    5adc481ca8899b1c95e6b26de90a30db
Sha1:   0833d62613a612f6cce38ff2300b751364f98d3f
Sha256: 669f11868d18aba65eaac9187b6aacb45096ecc4d78a4910419b8deec6428bc8
                                        
                                            GET /upload/vod/2022/09/ys0nx2cyswh.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 13310
cf-bgj: h2pri
etag: "6316e711-33fe"
last-modified: Tue, 06 Sep 2022 06:22:09 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4835
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DprSOzbD%2Fz4HUAwHgdzHbt%2BWv0WuIULMZHJk7jezuI6P5i3I1F%2FHPLOcp%2FLgBxdx3qkXpI%2FIRodXE%2FDZI1cCLDyGs03unRBHn7Up1vGplQK69cGkSKqG%2F1iylf3I%2FsuMnLnW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9976f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   13310
Md5:    6dd0f75727c178ec8acd88265314f65c
Sha1:   af9a4e6ef3e3f2aec8740c2c18f59f0134009423
Sha256: 5925199f3281b8a96a74959c9c30a4b27c0ba0e59a2b5ca81e8ac614ae962e7d
                                        
                                            GET /upload/vod/2022/09/zduodjqvc0j.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 11199
cf-bgj: h2pri
etag: "6316e712-2bbf"
last-modified: Tue, 06 Sep 2022 06:22:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1482
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qym30JYo4UCELj7SikjPCRT1opUbdQSapjcZ1yka4oOUEIjMm9JetfI8JC9wgxSor%2FOptKBAfibuR%2BgiRdErbv7ePSSpS9%2BsOCFerVVjB17Z4UJrzBFtvQt9lqlxb4xhWen6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9a76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   11199
Md5:    3fba2389c146035b63d6f56be214d82d
Sha1:   47b5da3b7461159444760406c94d554dbf37431a
Sha256: 92c5e8bbe2df7868ba4c2918b92f825f86d7342955c25237039e54fc78e5ae41
                                        
                                            GET /upload/vod/2022/09/adg5urye1qg.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 9302
cf-bgj: h2pri
etag: "6316e713-2456"
last-modified: Tue, 06 Sep 2022 06:22:11 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6113
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vWL%2B0z78vdQrHSgjaFFx1SV8dQcFoHmprxQz1EzHdhgQmKk413f4ZbzHaMKFr2iWvURpYtKzlWnhJzMNAUXl0YuRAgLy%2BsiCfpbbxfWxYkiHyFNkvrwR3y17I2neQPcTqP6b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9b76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   9302
Md5:    b8c0095085d57d68d1540a6efe27720f
Sha1:   137b769c0fa48893292b624345637a717dfe33f8
Sha256: 7f9c86c5eff88db3f9caa8735fd1f7c2cabff5f62bb7c825c57229cc557bcc75
                                        
                                            GET /upload/vod/2022/09/o12dhqdviqz.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 9021
cf-bgj: h2pri
etag: "6316e6f4-233d"
last-modified: Tue, 06 Sep 2022 06:21:40 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3572
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q4RRND7ttloj%2BlFZZ9944jVPLwN2%2FYTX7qw4%2F%2BJZGubi2kilhutkY8DiAFiSkAE%2Fcceyn357bidIbPaX1t6x67Rj7pValUad9cv492wRykrq4Bzl52usSFslNk0fatb3eA5l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9c76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   9021
Md5:    9b8b01a0794dc800336c42621276c2f1
Sha1:   b6362cf23f5312c86ef85f11194f3e459d41ea1d
Sha256: 41f4a27da15444ac2c4f3b4811b9ed83a7c1678a9c4c1020eb8b4510d0edd585
                                        
                                            GET /upload/vod/2022/09/uwvk1z1fxv4.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8137
cf-bgj: h2pri
etag: "6316e714-1fc9"
last-modified: Tue, 06 Sep 2022 06:22:12 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6113
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lwmbvulUpoJcuCvhgH9bysm8xraPmIoB2gM5YGUD6dVjh%2FQNWpsX6ecqQv04JxtIDm%2BC2H%2BRnbFWRev9Am1Om%2B%2BV0G%2FCNxeeJgX5GnFO7EoOBYHL0TWoFMbxS7SiavORoxDB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9e76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   8137
Md5:    9340c17421f36c4b782ee23d7a6a3632
Sha1:   453bc34cdac99db511a77eb03a086e841ae85de6
Sha256: 7adf5fbd51f38853012208f667fe8787ce1ed93ee9c35fa8a69cfa38df3246f5
                                        
                                            GET /upload/vod/2020/07/xln4u32f4a1.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 13688
cf-bgj: h2pri
etag: "5f0a78c9-3578"
last-modified: Sun, 12 Jul 2020 02:43:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 958
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2diCCKEePmEXyzfuXodzlBXD0CIXbzHM%2FyAYdz%2BWh4H6KmKWo2Rv9Nr3863%2Fm%2FUtev3rrN3m%2FJqEFgfRvbwYKU3OGznOnR%2BW%2BrUQUA0mBP81CGv8UXSyGhEiHEODEnJjlHlr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da876f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   13688
Md5:    929ed62b63c75392c600dc7542e8d78e
Sha1:   ae739d86af2e1adfc586e326f149b52b510bee10
Sha256: 203f5d6f1721b6c9db714d3c6558ee9b95660d182022ac443508450374ae30dd
                                        
                                            GET /upload/vod/2021/03/il1ed0gcqt2.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 6339
cf-bgj: h2pri
etag: "6045f5db-18c3"
last-modified: Mon, 08 Mar 2021 10:00:59 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1370
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWuni9EWAAtP0g%2FF1H4mbBh4ogMRu%2B0QKSSZQVvQxQDMqdq7j8Ytt3OC5EJGlK8GpH2IJ4Uj%2FFZD1quSA%2BLssyBDJ8pLzb3BORe0rRnIrS33Fpm%2Fd7nA9h3J6g%2FTa79oXrqY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27dab76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   6339
Md5:    756608aebcbb9d9c84204516f9614c85
Sha1:   2bd38efdc4adb48ec9a0b38d195ac14acf863d2c
Sha256: ae16508a5326c046668acccb39b6034987fc7501a904e02835a7f36d20ee523e
                                        
                                            GET /upload/vod/2021/04/01gwcxvo4id.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8175
cf-bgj: h2pri
etag: "6086e3e6-1fef"
last-modified: Mon, 26 Apr 2021 16:01:42 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1369
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wT%2BlWwcojLaCvRUqO7msAW97MBVR07arcUioN3RoTMPkqgxC47b4tBGzeEJo2GKN0t406KYLqRW7RTJw6MZWoTNtxBXdRlbgDPLZEmJQZnXi0v021ZED35HDy54Pn%2BkxjYsK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf28daf76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8175
Md5:    19bcf64407656c5ee937b84bf14a20e9
Sha1:   bd7d3d4c3d167af9dbacab0f1f8b3c94eb1b83ce
Sha256: 8352a4366087387f78e3a48fbf10eec855a395ca73a524bbd68d15777a99564a
                                        
                                            GET /upload/vod/2021/05/ozajiz5p3np.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 10308
cf-bgj: h2pri
etag: "60a098df-2844"
last-modified: Sun, 16 May 2021 04:00:31 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1051
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PUmRPx3WWG8BwjcjKXi2COp3%2BCh8eCoa9uEKc5kHGaf3ccG%2F5roDy3SQdQl8e0CII48%2FT4pZD9S33PI%2FiQt%2BxgyBdzcIWL91%2FHU9UuoU%2BtQwf5iIF%2BmnuaKQJ2fpzytv2CU4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf28db076f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10308
Md5:    35a4ca2678b37dd525f331e425e61dbc
Sha1:   3b82b357273e1e4b2f6b5881add2c6ae8f03f234
Sha256: b7484ce4581de9846bd5a589e77af0585962b56ad9339a32a508d19e35af3690
                                        
                                            GET /upload/vod/20210705-1/b23c02b6e351d9d5c3110d2e34bc89cc.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 10189
cf-bgj: h2pri
etag: "60e28a2f-27cd"
last-modified: Mon, 05 Jul 2021 04:27:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1369
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=83zZRL%2FPK%2B6OzbpwmOS6Y2loBtQpMk44vrfGc91%2BMzQg38oQJ%2BQta9KfxBxklgXyJVIe%2BJ3swvAIl6zYe85Xxm2sTMZ%2BpxYo6FbAj9U6nTDZSbJfm1nBM44ogp1yFBTLsfbf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf28db176f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Size:   10189
Md5:    17f12a54fc7dfc5b40cda6be0315dc91
Sha1:   892095178bdb5297ee87dfb89ff79bf32f52acc7
Sha256: 5525803520939c3e51ad0e3da7bb956f95b0aa3f3e0445ffd2b07d2ef902be01
                                        
                                            GET /upload/vod/20210719-1/7714a55a4ebf549de89961169e85f347.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 177722
cf-bgj: h2pri
etag: "60f501cb-2b63a"
last-modified: Mon, 19 Jul 2021 04:38:35 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1369
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C0%2F%2BM2nYezKix6%2BTVaJVkgAz2cEcqvYr4BbmRVmzLZykao%2BdM4RLnvQoCDJeA9wmig0FC%2Bp%2BKLW2tt85AAzitfQqfIZgNwbExpHcPf%2FXJCznRAXAa8dW8ikw1Y8gXkLkgydU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf28db376f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x535, components 3\012- data
Size:   177722
Md5:    c1109d7c7419870d32f5d9ad640bfa6c
Sha1:   aa01f78b984248ec8dfd9af2a48c522080c731ae
Sha256: a62fd1d6755f704a0ee511d748785ccb79e28d5c4341f9f59d9ff49af0ceebf7
                                        
                                            GET /dxj/logo.png HTTP/1.1 
Host: dxjbar.github.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.199.110.153
HTTP/2 200 OK
content-type: image/png
                                        
server: GitHub.com
permissions-policy: interest-cohort=()
last-modified: Thu, 11 Aug 2022 08:56:12 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: "62f4c42c-1ccd"
expires: Wed, 07 Sep 2022 01:40:30 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 5776:12E7:1B6EF3:1CC383:6317F436
accept-ranges: bytes
date: Wed, 07 Sep 2022 01:30:30 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1665-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662514230.114409,VS0,VE122
vary: Accept-Encoding
x-fastly-request-id: 42d7144538bf58cb8c27aef6be4a0bacca650a56
content-length: 7373
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 558 x 148, 8-bit/color RGBA, non-interlaced\012- data
Size:   7373
Md5:    6dff4818f659a9931d6422729c79c1c0
Sha1:   6fe249b74c53bddca7b418c4a24ea007e2e1ba3d
Sha256: 36d048f954a26361ea2081106246c43f288b2963ee0f2ca94b26bfa065b28a71
                                        
                                            GET /upload/vod/2022/09/bvh2hbyg4td.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 5764
cf-bgj: h2pri
etag: "6316e6ef-1684"
last-modified: Tue, 06 Sep 2022 06:21:35 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZDh9iTsqtg214W2d%2FP3YKKpW8A5geL9EWwvRp4lzljNMjeFWHszkuwoAWBXpkm3nRaH5XUzm%2BQ6UOrzwCi7CKG72K9%2FzEU2aF%2FBbOG8qXNxQNDVo1TN%2B2Q23JF1i%2F5RuAp5Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8476f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   5764
Md5:    9d037e962e825597fb995c12772d524d
Sha1:   691c1110f2c3ec61adbd676353e5a3a1b3e4d544
Sha256: 99fa2ed790936ff6efb7f46353e3e35d22d686d2efdeebbb3ade2e557f18f774
                                        
                                            GET /upload/vod/2020/07/mung2fppjtw.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 9461
cf-bgj: h2pri
etag: "5f0b33f6-24f5"
last-modified: Sun, 12 Jul 2020 16:01:58 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mlkEK8KInS2RAgV5UTb7xBNuwHR4OU4Tpb2i1rpg1ZDd%2Be6ocvBV8L%2F6sZlHsdGnkj2gkg%2BFDG8tV8XwX5G1yCKL%2FZDSn0bhaJol92rno7cJVX3KejyWGANcFaFecl7RGaZl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9f76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9461
Md5:    178265e42323f911ec2d2c1e15d9bf11
Sha1:   23f6779d46b75a28151ed165a4f930b2e22aaa30
Sha256: 039615989e88569da9068f68ff14fc8de1cdece6db2d7712443ddf7d04b23f43
                                        
                                            GET /upload/vod/20210714-1/e0f3ccc8cdc932d7361f475e5c1f239d.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 31570
cf-bgj: h2pri
etag: "60ee4bb7-7b52"
last-modified: Wed, 14 Jul 2021 02:28:07 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dGpRVcFSRdPm5a8rhE9Q%2BQQfsbjrUf9XkBiyzT82NRWVxVpoQh1%2BSHad5DvJoJx7Unr5DO1gNzvaWMmC9JFUil5A23PCVuxPIYZqDjOupZtkZt%2Bvb7tU9We%2BffrF%2B4vQ2whe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf28db276f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 795x447, components 3\012- data
Size:   31570
Md5:    0a2e256e33391cba0c20590c0b2de14c
Sha1:   a0871588face1973522194af59968c5030efcab8
Sha256: 2bc2d79da8219b7d97f4df9e64e84e45bf871f77f56734db19b6d9359f71ce3b
                                        
                                            GET /upload/vod/20200806/heyzo_hd_2182.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 126453
cf-bgj: h2pri
etag: "5f2c288a-1edf5"
last-modified: Thu, 06 Aug 2020 15:58:02 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MtHdhKr5bykUif6bPNzc4xkXn7WWrxSCI%2B5Yon%2BIvqHzWNeyJihfyJEgGNce6KEnhJCBHsvKN7MW%2FLtI0DsNEp4lRwk%2FckO13Z9OUf%2F1qSsTqWAtITITnWm2uz13x%2FXEkVfm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da576f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x450, components 3\012- data
Size:   126453
Md5:    4a3c59ed85512178c6c4da217f4b9958
Sha1:   feab42a3a2c8d4346263f6a6ef463755073e15f9
Sha256: 5d619f96f4ebb5bed2508b4f95031c2a52aa27207781186a20a0ae1d9aea8082
                                        
                                            GET /upload/vod/2022/09/1jpbn04bgdm.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 8311
cf-bgj: h2pri
etag: "6316e70b-2077"
last-modified: Tue, 06 Sep 2022 06:22:03 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=auV7ksbTm2m8VFitNZBTuItF7hijsGVs6%2BSDiod6xoiU3Kj9u6QsWXivucNsrL5ImSYjXvlyOsXpn%2B6fNzOjb7tSgwIi8cJ4Ndkvxz%2FzQEMPx92yjsySfIKgAvLLffOJJMcS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8076f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8311
Md5:    e5be09e3d00373c1516ecd3fc4df1502
Sha1:   ea2371a23619311790fdd6635f24dc02c7071524
Sha256: 544d20f9cdb74d0196a864e7efc56303d7eeed074daa979674409fa9015899d4
                                        
                                            GET /upload/vod/2022/09/mfzz0wsddda.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 13131
cf-bgj: h2pri
etag: "6316e710-334b"
last-modified: Tue, 06 Sep 2022 06:22:08 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VJO7n17DyoqXQBW6GeRtDLvx8jgYdWNNNQJWJDnW%2Fruq2QDm77A6DjP7RTQ9Hx1PbldZ5e4qmB5UTBZqi7LNjvhyZQgDy1bJ8eTzluf7vkHcz2Gn8MneND4%2B%2Fv0Q8PwbNICY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8a76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   13131
Md5:    7ed0cea55e8ac46f88a6434247a5e987
Sha1:   46dcafc45ee980498932fe9c2cf13a07e8a76c52
Sha256: 000facb378727c315c85c8e9484736ebbb317eac9952428cff56bff901dd4b33
                                        
                                            GET /upload/vod/20200809/hitozuma1303.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 35620
cf-bgj: h2pri
etag: "5f2ef8ae-8b24"
last-modified: Sat, 08 Aug 2020 19:10:38 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sKy5R%2FztWvR8SYOePST8i9%2FRVf3ip%2BGho299Ba3YIMpXiwT5hMQm%2FoPf%2F8Vds0pHSG3XlhcK2uIK6GIuFfefv654aZ9g%2BqSs0vvlWjL6QUAAsBDT%2F%2FB3JH7lcmvlvn3aoGyE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da676f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x225, components 3\012- data
Size:   35620
Md5:    94b7aa5f1fffc55bf9ed68313d459ddc
Sha1:   f25cf4d645dfc31697e1a52d8fa2261d3ae9d6e9
Sha256: 2fbe90d206153255d0a5c8694efa022002653af119f499503265914e7de1a0f7
                                        
                                            GET /upload/vod/20200721/118dic066pl.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 170087
cf-bgj: h2pri
etag: "5f15ced7-29867"
last-modified: Mon, 20 Jul 2020 17:05:27 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lH4QvISa8PwGtQEGJfX5yKh95LB3vLaPNCK9awIJnyzfxy5GU0bvESEo0z2dPEdpGVx%2BUM0LAHTVzZ7gO4qifelMY8zASVDVO4OB%2BCwelKuAkOX4%2BGaFd2mQP67C4cTj7QsJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da476f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x539, components 3\012- data
Size:   170087
Md5:    237873490a00e5c85eda9a8031d0a837
Sha1:   7d66a5e31e78c7e82a8c08e39ac89ba56dbf2f09
Sha256: 5d7bb89f04bf10a2436b34b318482172eec616f6a01231eab066c7bce37af1d5
                                        
                                            GET /upload/vod/2020/07/ms3vx4yro1l.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 11763
cf-bgj: h2pri
etag: "5f13daad-2df3"
last-modified: Sun, 19 Jul 2020 05:31:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pEJdj5z8iljDHI1eA7jy66aJOJUIrx8%2BfXPB%2B%2BAHWcjfOcpkqR5x%2BqLmj4LUckWAQ0y9wYKS4rSBBEmk7JJ99RH%2F8KCrztWPp9IhArHDAOBRY%2FhNzCPSR4OM4vIeLntQ3CPP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da276f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   11763
Md5:    273cb649bee006064735e1597607b029
Sha1:   ebdddac3a2ae0a3a3b3229260943c1bbb3a1fb1d
Sha256: 86cab1b5eceadb48731cab17b8dce648e533eb159fd671d0dbed6fd6f16a83ae
                                        
                                            GET /upload/vod/20201005/U2h4YT.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 139645
cf-bgj: h2pri
etag: "5f7a96d8-2217d"
last-modified: Mon, 05 Oct 2020 03:45:28 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxCMl%2BQF%2FdsxrWGuvQcWJJXghvf4F7scBxgj14d9vjyqvOrvBsTak%2ByXhDsPzJrt%2BD0a6M%2BGeBLh6xFppPHoYBhRFSiTSt0bCFmViNVeruOjn4qL%2Bo3A4c%2FxGGui4pdMjBVZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da976f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 960x540, components 3\012- data
Size:   139645
Md5:    8139ea5b246d621d864d2c358bd47f47
Sha1:   64879c886ee30d374ea8b65fa14750ff8e37ebfb
Sha256: 82204914698d702b7e96e2f24abf0745ed2d76c2c04c623f4bf3283003ab2e6c
                                        
                                            GET /upload/vod/2022/09/s1axrfhmtb1.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 9407
cf-bgj: h2pri
etag: "6316e6ed-24bf"
last-modified: Tue, 06 Sep 2022 06:21:33 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jyi8XvO4y4Aep%2BHfjJcmI0UHKgrDWh2Fwqz5YIgVDgTo8BrF847xmGtr6bTQJ0iEeL0naVmuxBdzwNsxONBhdwg7YiizYc9%2BGsbMoTsWvv8or39RfIxBgembdiHADkMbP3zj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8576f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9407
Md5:    23549a4d4742135e28a9b3b839372553
Sha1:   0fa45657e90cf70415edda9b531763d47a5536d3
Sha256: b9fd5bff33d5a1e5f707ed3c4e40eb1cf27f4748b5c6743fa3497b16ed14ae50
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E5252D2007FD06A253A02A4F8FBB67436C89DBE3F93FA13FD2A9ECF5030A7C9A"
Last-Modified: Sun, 04 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13083
Expires: Wed, 07 Sep 2022 05:08:33 GMT
Date: Wed, 07 Sep 2022 01:30:30 GMT
Connection: keep-alive

                                        
                                            GET /upload/vod/2022/09/pxalhqfjbgl.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 5987
cf-bgj: h2pri
etag: "6316e6f6-1763"
last-modified: Tue, 06 Sep 2022 06:21:42 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Narnzie4r7iuMq8GlTgrnHdYtucP82HUM5%2BG8Qw%2BvndfQ5%2BhuYFCnhdaOvLb7GH9uhNHWYIbG7hMF39hN33QevqP%2BzRXh0cGAShFdJHB6MlCQjqVNbLvf78H8Hl71%2FrJb63D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27d9d76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 2096x2859, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   5987
Md5:    213ef28aa8f1baa4d56a9d3c71d55993
Sha1:   0c07ff950b11123358466a23d5041abfab53c0d2
Sha256: 11bbace57250d37c4193271ca3e615bfe4a5d347ebb719629b489624bcbb58e0
                                        
                                            GET /upload/vod/2022/09/fn30wynqa20.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 11283
cf-bgj: h2pri
etag: "6316e6f2-2c13"
last-modified: Tue, 06 Sep 2022 06:21:38 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jEsx1LbuAORhQp3d3cC26xI3%2BdnUrQ2xjUp3DjFKLu2SAT%2BW243OttCpKHr%2BeRohTJU%2BhIxDiADGReq45bpoHUi33y5ZmUdvndWWJF6HobxIbM7k6Rup48fU6buGlaqDXser"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf26d8d76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   11283
Md5:    c115899616fc3c22e93896d3d3488715
Sha1:   d3b44fbd308fbab4767d0cc497c478d32343c012
Sha256: 2d40adf63ae1449d3422efde4e963f7257d6da39c634bdafa7a9de972ed1b994
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E5252D2007FD06A253A02A4F8FBB67436C89DBE3F93FA13FD2A9ECF5030A7C9A"
Last-Modified: Sun, 04 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13083
Expires: Wed, 07 Sep 2022 05:08:33 GMT
Date: Wed, 07 Sep 2022 01:30:30 GMT
Connection: keep-alive

                                        
                                            GET /upload/vod/2021/04/xupdpwawbof.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 11213
cf-bgj: h2pri
etag: "6086e3d2-2bcd"
last-modified: Mon, 26 Apr 2021 16:01:22 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vE%2BBXwPFoIT3wl6XZLndf%2FZuferpeS%2BQXUxPqS8nCZiw8AnxcPHhhrWXui4tUk7rXxAZzP1s6CzWUDxhoz0vjdZpXtAK55kbB3EVh06rmVeQPDKnxCXjYvC18m9lg31vL2Zh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf28dae76f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   11213
Md5:    2149e43e1bc12970c47fa21a509e2ebc
Sha1:   9680eff77868b3fe96a8340d85f92ded3415f83b
Sha256: b4d391a6481ab52ceeb5a3213fde48109376f76c855ca656957fe75bbec11601
                                        
                                            GET /upload/vod/20200715/miaa209pl.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 164783
cf-bgj: h2pri
etag: "5f0ec706-283af"
last-modified: Wed, 15 Jul 2020 09:06:14 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R48WWxsvEyaMXfRAI%2FW5YpPX0GOfUsOTjNx2SujK5VrhDwQENpUNCU66DEG%2FgtEpaDJd6atNqz8FFAGSpHEm8vlikJKKDN0LRqHEaTIVcSeMPDzdK4CkLsZSbeNJ1B94dybq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da176f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size:   164783
Md5:    e7d961539acc515b0763f77f1909e095
Sha1:   f1ac087280dba54b195be0ad1d9e9a808047b08c
Sha256: 35d1e181c494b3e310dd0d3e3cc222041c4fae3b99041c83b58febc0da048612
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E5252D2007FD06A253A02A4F8FBB67436C89DBE3F93FA13FD2A9ECF5030A7C9A"
Last-Modified: Sun, 04 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13083
Expires: Wed, 07 Sep 2022 05:08:33 GMT
Date: Wed, 07 Sep 2022 01:30:30 GMT
Connection: keep-alive

                                        
                                            GET /upload/vod/20200921/1dvdes633pl.jpg HTTP/1.1 
Host: fmtu.netfhtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.63
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 07 Sep 2022 01:30:30 GMT
content-length: 170556
cf-bgj: h2pri
etag: "5f67d77f-29a3c"
last-modified: Sun, 20 Sep 2020 22:28:15 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EOXVeJkUdx4a1mMBZplCGuNuO2yL9H0IS%2FNyFe4a2j6MIv3HBA3bG536UkDp6sLFPAvmDhCCgkaOT9VeLMrd2a%2B6y7AuXoC0JpKngfg%2B7iDb924UBVpXZ8hkRN5t3oK6vL4c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 746badf27da776f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size:   170556
Md5:    066d2e8297d4140179389fffd5dad40b
Sha1:   aa4f84a1858afc23e7b470690a1028b2daf436ba
Sha256: 4b58e81c57b168b05d006170530cdf36c47badff5aaf851726942a18be235c6b
                                        
                                            GET /template/m1938pc/static/css/index.3e73f18a.css HTTP/1.1 
Host: www.japanwork.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.japanwork.net/

                                         
                                         38.40.136.50
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Wed, 07 Sep 2022 01:30:23 GMT
Last-Modified: Thu, 03 Mar 2022 07:47:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6220727e-171b6"
Expires: Wed, 07 Sep 2022 13:30:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   30298
Md5:    05649b6b53bfa3d1b1ca69b50e1ef900
Sha1:   8bb5e01cf5992b377a5e1a9bea14b4d8a16ab06e
Sha256: c298caad00f0eb48d96c3a1976e296d9407bd8f3cc330e67672b96ac334d3b7b
                                        
                                            POST /gsgccr3dvtlsca2020 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 01:30:30 GMT
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 10 Sep 2022 22:45:53 GMT
ETag: "61a5dca5b9236ba6d7cf6f02a2a712031e3d5d5c"
Last-Modified: Tue, 06 Sep 2022 22:45:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 293
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746badf4bf73b503-OSL


--- Additional Info ---
Magic:  data
Size:   1414
Md5:    f5db207eb683903f57d1e1d1b4fb5a13
Sha1:   61a5dca5b9236ba6d7cf6f02a2a712031e3d5d5c
Sha256: c730f43908a13209d4cc35db1930f317b61b55e9a23475f3a99ea73e1ca5914e
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 07 Sep 2022 00:38:18 GMT
Cache-Control: max-age=3600
Expires: Wed, 07 Sep 2022 00:48:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z-A6qtukLNGEYnP2XgoH49XXOOigi_iwDltFVoYHfgoRjr5pRSL90Q==
Age: 3132


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /21376231.js HTTP/1.1 
Host: js.users.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.143.19.103
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: CloudWAF
Date: Wed, 07 Sep 2022 01:30:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=afb7b1301eb59d6e0d3; path=/ HWWAFSESTIME=1662514230196; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (4898)
Size:   2310
Md5:    15f80a7c4c4e6ecd1ab2577435d27ed7
Sha1:   a50f70c8ab8330124959d7b5b83faa7bc22154a0
Sha256: 633edfc656ffdbf056fddb1943df4d7c088a0095090bed51947687b7ae891e51

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6502
Cache-Control: 'max-age=158059'
Date: Wed, 07 Sep 2022 01:30:30 GMT
Last-Modified: Tue, 06 Sep 2022 23:42:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /20220614/D2BE7A621B23FC63/D2BE7A621B23FC63.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:30 GMT
Content-Length: 8330
Last-Modified: Sun, 10 Jul 2022 03:50:15 GMT
Connection: keep-alive
ETag: "62ca4c77-208a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8330
Md5:    771e696b6b6de68e9d6e6d461a592a0d
Sha1:   11edb0450fb6dc3389db486ce081a0698ae6669b
Sha256: 1ea49de14ba07eec5836964bdadc8c8b41ebeb808976df2e80a575b7857d20d9
                                        
                                            GET /20220908/582F41E568DC15B3/582F41E568DC15B3.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:30 GMT
Content-Length: 13212
Last-Modified: Sun, 04 Sep 2022 17:06:35 GMT
Connection: keep-alive
ETag: "6314db1b-339c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   13212
Md5:    f6902485c4f2f24c71f592f5f464da86
Sha1:   7179cf162af1980b1c8653c7542e005fb5d38f0a
Sha256: e7183eeb06652f19959c4537fedaa0b57b5f6eb02f8c48356c094a5611190399
                                        
                                            GET /20220904/399BBE1EACD3D26D/399BBE1EACD3D26D.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:30 GMT
Content-Length: 12557
Last-Modified: Thu, 01 Sep 2022 13:08:07 GMT
Connection: keep-alive
ETag: "6310aeb7-310d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   12557
Md5:    a6b25e6205de0dbdf98dc04237021660
Sha1:   a65c8e3012d419dba52a39bb2dee882bb7c6a9ef
Sha256: c1fa4e9d772104386521a71b145070cf358a9bda0e70f7927f816317483829ce
                                        
                                            GET /20220908/6B93B4140712B254/6B93B4140712B254.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:30 GMT
Content-Length: 7338
Last-Modified: Sun, 04 Sep 2022 17:06:36 GMT
Connection: keep-alive
ETag: "6314db1c-1caa"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7338
Md5:    a50a2c53bb17416d1a60c654abcb5689
Sha1:   97d3e3c7a0ab195be6b51922af55a2f6e806409c
Sha256: 939566a1b9e6b6bb98fd79366c5ec0c1e9744bb72a8a934a1ceaeda43ceda79a
                                        
                                            GET /20220908/A0678E4C61A20F44/A0678E4C61A20F44.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 6509
Last-Modified: Sun, 04 Sep 2022 17:06:36 GMT
Connection: keep-alive
ETag: "6314db1c-196d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size:   6509
Md5:    35e83e64d1bd0596eb6d6357edaaed2e
Sha1:   8c780c6560ca5195e3b1186dab9b09ca6dffe488
Sha256: ede0adeeb6518c1ba317a73d6f62279c7388047777b39c79c83b68b8a9fd0922
                                        
                                            GET /20220908/BF18568A8C1A5D98/BF18568A8C1A5D98.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 9833
Last-Modified: Sun, 04 Sep 2022 17:06:35 GMT
Connection: keep-alive
ETag: "6314db1b-2669"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9833
Md5:    6cf1390d12dfdc86e60d6df3d8c07bea
Sha1:   233eedbb5026e50b1f1b95ca3cd63f65dadd3b59
Sha256: 796723cde774702e1fb62a54d32e9328a6cdd7e8262a7ecf85ab61dc7004b52b
                                        
                                            GET /20220906/9C5E759849EE8BD8/9C5E759849EE8BD8.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 7463
Last-Modified: Sat, 03 Sep 2022 11:39:06 GMT
Connection: keep-alive
ETag: "63133cda-1d27"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7463
Md5:    34c591b8b074b652764ef023cb91064c
Sha1:   23520e3419c32915a4c4d8d3fd2ab25966e83d0e
Sha256: 5aa74f46be179aa9b57bb0b388496ff68777233081923e0f2bdf3d50e7b5f8f6
                                        
                                            GET /20220907/C1709820F4EFAB50/C1709820F4EFAB50.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 11240
Last-Modified: Sat, 03 Sep 2022 11:39:06 GMT
Connection: keep-alive
ETag: "63133cda-2be8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   11240
Md5:    94120a9676e4beaade8a7574044602ee
Sha1:   b1122ce254495345036733943b82de759d873d56
Sha256: 0ea33d19f092d4761c6ca107d4a57dab9083295688d15cd47463775152d0bc82
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: auZYjEtDneau/+WI/FK/zQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.218.164.174
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KYLd8ZL1s1QCVxkTmnPKX56Jzjg=

                                        
                                            GET /20220902/88498F78163EBDD1/88498F78163EBDD1.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 9993
Last-Modified: Wed, 31 Aug 2022 10:12:36 GMT
Connection: keep-alive
ETag: "630f3414-2709"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9993
Md5:    680eaa28bb8be6978e03bf4ca86978b8
Sha1:   68d7f7d887f979759587687572da69ee0cfc8962
Sha256: a19ad18bbd3ad61ac04abfca5e819dd7f410ab624184c4f1c4f9a43a920c76e4
                                        
                                            GET /20220908/F998C98AE019C069/F998C98AE019C069.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 8171
Last-Modified: Sun, 04 Sep 2022 23:26:38 GMT
Connection: keep-alive
ETag: "6315342e-1feb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8171
Md5:    4a9bf358df12c94ead96dc8a5643aabe
Sha1:   5a2947a71a6672d99ed92a372144edff20e647c9
Sha256: ee12dff10dcb0d5ce3b8837de393e17c7729f4186738b3c02b11593a914fdded
                                        
                                            GET /20220907/DE57AEB161DFAB25/DE57AEB161DFAB25.jpg HTTP/1.1 
Host: pt1.putaozy.info
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.218.113.202
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: Tengine
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 13655
Last-Modified: Sun, 04 Sep 2022 18:50:02 GMT
Connection: keep-alive
ETag: "6314f35a-3557"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   13655
Md5:    7eeefc9b94af36161c0140194e5264cb
Sha1:   4807d79c601f90502a2da2203831e3e9ba9dd6e4
Sha256: 1b0b96f09d7d21285f814d56a4289e839787c88bf79d3a74fc6d7b813f5d0be5
                                        
                                            GET /go1?id=21376235&rt=1662514224880&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=0&vd=2&ce=1&cd=24&ds=&ing=3&ekc=&sid=1662514224862&tt=%25E5%25A4%25A7%25E9%25A6%2599%25E8%2595%2589%25E5%25BD%25B1%25E8%25A7%2586%2520-%2520dxj.bar&kw=&cu=http%253A%252F%252Fwww.japanwork.net%252F&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.japanwork.net/

                                         
                                         103.143.19.103
HTTP/1.1 200
                                        
Server: CloudWAF
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=13f30742a03baa0e743; path=/ HWWAFSESTIME=1662514227158; path=/

                                        
                                            GET /go1?id=21376231&rt=1662514224847&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=1&ekc=&sid=1662514224847&tt=%25E5%25A4%25A7%25E9%25A6%2599%25E8%2595%2589%25E5%25BD%25B1%25E8%25A7%2586%2520-%2520dxj.bar&kw=&cu=http%253A%252F%252Fwww.japanwork.net%252F&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.japanwork.net/

                                         
                                         103.143.19.103
HTTP/1.1 200
                                        
Server: CloudWAF
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=7b37767f12ef7de60be; path=/ HWWAFSESTIME=1662514227811; path=/

                                        
                                            GET /go1?id=21376235&rt=1662514224862&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=&ing=2&ekc=&sid=1662514224862&tt=%25E5%25A4%25A7%25E9%25A6%2599%25E8%2595%2589%25E5%25BD%25B1%25E8%25A7%2586%2520-%2520dxj.bar&kw=&cu=http%253A%252F%252Fwww.japanwork.net%252F&pu= HTTP/1.1 
Host: ia.51.la
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.japanwork.net/

                                         
                                         103.143.19.103
HTTP/1.1 200
                                        
Server: CloudWAF
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=56c11595c46c36d7cfd; path=/ HWWAFSESTIME=1662514228090; path=/

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "399A73816B1695B5B0D3203086A68C832179A3B9F61BFF8823EB888E6C4B0929"
Last-Modified: Tue, 06 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11978
Expires: Wed, 07 Sep 2022 04:50:09 GMT
Date: Wed, 07 Sep 2022 01:30:31 GMT
Connection: keep-alive

                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 01:30:31 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Sep 2022 23:30:37 GMT
ETag: "ea16b2e16ff80fb67aee001075c0e9a559b96054"
Last-Modified: Tue, 06 Sep 2022 23:30:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 299
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746badfb8a16b503-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    24c71b38eb6a85ce86b3c579bc4e3489
Sha1:   ea16b2e16ff80fb67aee001075c0e9a559b96054
Sha256: cdcc84506372c591eaace9a5e85666d3a48ef9b59cfadc597b2b69e536d9984f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "399A73816B1695B5B0D3203086A68C832179A3B9F61BFF8823EB888E6C4B0929"
Last-Modified: Tue, 06 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 07 Sep 2022 07:30:31 GMT
Date: Wed, 07 Sep 2022 01:30:31 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7617
Expires: Wed, 07 Sep 2022 03:37:29 GMT
Date: Wed, 07 Sep 2022 01:30:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7617
Expires: Wed, 07 Sep 2022 03:37:29 GMT
Date: Wed, 07 Sep 2022 01:30:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7617
Expires: Wed, 07 Sep 2022 03:37:29 GMT
Date: Wed, 07 Sep 2022 01:30:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7617
Expires: Wed, 07 Sep 2022 03:37:29 GMT
Date: Wed, 07 Sep 2022 01:30:32 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0800dbf4-64cd-48ab-95cc-48192d2f25f3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8756
x-amzn-requestid: d48113bc-fe40-4d59-b700-194b1092ab67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqmxQEbVoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db807-14ff6f5b0ffb9a7f08e57906;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:11:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YKs0giofWi83MnLBqx6zAu1NGd_A9-l6y2pULUBn2RK0-H3KNRzrUg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 15:59:32 GMT
age: 34260
etag: "3bf0d51801523d7014ac76b5ab90c989fc7a770f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8756
Md5:    44ee4c9bd1e550045d69f24ad511070c
Sha1:   3bf0d51801523d7014ac76b5ab90c989fc7a770f
Sha256: ee48c13050faa498f79222216f9c71b20b3a4e5e8e5c59c7156c276ab942703c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa395dcd-c2bf-4b9e-a70f-5dc4000d8b8f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3187
x-amzn-requestid: 8a44698f-2fd0-4980-9882-971810debb88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X6Wf9GyaoAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63140465-3a46f65e5f8c4522065c5ad5;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 01:50:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: skw7KXeCdFODdGvzIqmWcyKbf3jbapZMoMXLqbu6WPaAmStKp2TKlg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 23:55:36 GMT
age: 5696
etag: "f9767c74a6f717635f67ac541f0126f5a63bd7d3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3187
Md5:    ed39b35d8a767c2aad6a77fadc60f233
Sha1:   f9767c74a6f717635f67ac541f0126f5a63bd7d3
Sha256: 343efa10126cf70588f1968dea7c77ec3ff8a121e1152f1f9b9b4960fc42bddb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8510bf06-7808-4fda-a5d9-b75fc73021c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12661
x-amzn-requestid: 71ef9e09-ccf1-4930-865d-665ece4bf3a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3hXnFnXIAMFqKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312e296-627daf7c7ad3e23a60b183cd;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 05:13:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xwunW741LulZXvM0har5nqrcCiyYoUwvhCWiPsEvs5P2VKSe476_Cw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:38:56 GMT
etag: "dd9cd9b711d7112efa85eff8a798346dbd7d5f5f"
age: 10296
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12661
Md5:    79f4356c488498012cc7fc03be21e3df
Sha1:   dd9cd9b711d7112efa85eff8a798346dbd7d5f5f
Sha256: ebd84bf1db6b39b92be1020c7ea5c32eaa23dfb347ec83941d5bc56e80855ebc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74f48f7-6138-4042-9b4c-f63bb036324f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11972
x-amzn-requestid: e71daf97-7463-492d-b55a-0eab022d8b05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0nI2G1tIAMFk2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311b89e-7d6c6d1769649d371c505453;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 08:02:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fOWoYZ9FyUKt55cLxVvwCBhX0DzsF2yPaX2Y6USE6OZcNFe3lWyOHA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:42:42 GMT
age: 13670
etag: "3dcd7b5ca2cc9ab604df554b341d1e08bffaa3d7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11972
Md5:    124a0c0a970006aa660031b5e0ec70d9
Sha1:   3dcd7b5ca2cc9ab604df554b341d1e08bffaa3d7
Sha256: 14c5c6aaf110c123037eb860ecc9d386d46af55fe54cb50f9d1ad430f7e0c516
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2cde93c-0513-450d-8955-bde7c6e24fcb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8501
x-amzn-requestid: 5424e02c-4ff4-4d45-9e1d-7a43ac9a2d8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDrvxFRRIAMFfug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bffe-5d1e19c74682a1c950221ece;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:47:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -_7fvry5PiqGos8cS42sr0MXgZzw34IxmsYoQ6ePjLFvtbFU3KWGcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:51:25 GMT
etag: "d7f050173460584cecb8e280aefeb0e0f3a8c1d6"
age: 13147
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8501
Md5:    b8270b1deb7d093ca8add7908bcc5136
Sha1:   d7f050173460584cecb8e280aefeb0e0f3a8c1d6
Sha256: 148080cd0f4f5aafcfc5a9d737dd99e101895f83a177e0dc15d27079cf6b56bb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 03:37:00 GMT
age: 78812
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6214
Md5:    f922505178de0cea92eedcfda85a9f67
Sha1:   50f1459de01174e594e03e7df4dfaa8eb1798672
Sha256: 981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "54A86062B97B123D4899B389411CC2949F89E76C2E145D93CDB235A7D7A381EF"
Last-Modified: Tue, 06 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 07 Sep 2022 07:30:32 GMT
Date: Wed, 07 Sep 2022 01:30:32 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: zerossl.ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 07 Sep 2022 01:30:32 GMT
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 02:57:11 GMT
Expires: Tue, 13 Sep 2022 02:57:10 GMT
Etag: "f6e10be8ec792a6ec8fd457e33aa8385bf67239e"
Cache-Control: max-age=522997,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 746bae00d88d1c12-OSL

                                        
                                            GET /js/jquery.js HTTP/1.1 
Host: ii7.ii7-daxiangjiao.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ii7.ii7-daxiangjiao.com/1662514406.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.203
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:32 GMT
last-modified: Tue, 28 Dec 2021 07:35:02 GMT
vary: Accept-Encoding
etag: W/"61cabe26-109b"
expires: Tue, 30 Aug 2022 10:48:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1935
Md5:    742e8475be67be76bdbbdde6e80a5d8d
Sha1:   e889fba2e88ad69949abfda9c94daecf8e5b704d
Sha256: f349f10e128cc34203c949834f46a07818518c559b01e677e1b623dd2f8d6099
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4BC77B9B385E238832D87DAF403C30E60E1F0A602C1A62138CF2539E9E4A3B31"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Wed, 07 Sep 2022 07:29:42 GMT
Date: Wed, 07 Sep 2022 01:30:34 GMT
Connection: keep-alive

                                        
                                            GET /1662514406.html HTTP/1.1 
Host: ii6.ii6-daxiangjiao.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         156.243.30.140
HTTP/2 200 OK
content-type: text/html
                                        
date: Wed, 07 Sep 2022 01:30:32 GMT
last-modified: Sat, 18 Dec 2021 07:18:36 GMT
vary: Accept-Encoding
etag: W/"61bd8b4c-427"
strict-transport-security: max-age=31536000
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   36142
Md5:    74c5340ab94aad20cf40a5cc54ee1ccb
Sha1:   43c4c29eacb16e50cb07c5b5a5f454a79d306783
Sha256: c1e898727769ace1124b472cc90f2db5c57145cf7be949e28fcf12727ab6a39b
                                        
                                            GET /1662514406.html HTTP/1.1 
Host: ii7.ii7-daxiangjiao.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.japanwork.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         156.243.30.203
HTTP/2 200 OK
content-type: text/html
                                        
date: Wed, 07 Sep 2022 01:30:32 GMT
last-modified: Sat, 18 Dec 2021 07:18:36 GMT
vary: Accept-Encoding
etag: W/"61bd8b4c-427"
strict-transport-security: max-age=31536000
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   36141
Md5:    cbbd1b9b9c22c8b288ad218ccaf5ff0d
Sha1:   9a9b5099a92f1eb6b9574a42253312d2c1b9238c
Sha256: f2f8843d00f03023332560d0dbb0a11c2ee19262c95fd1d77aa946271adaffe7
                                        
                                            GET /static/search.png HTTP/1.1 
Host: api.5mqac1ry.world
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.5mqac1ry.world/?tt=1662514408
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.139
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 07 Sep 2022 01:30:36 GMT
content-length: 690
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
etag: "62f4c100-2b2"
expires: Wed, 28 Sep 2022 22:47:57 GMT
cache-control: max-age=2592000
server: RielCDN
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   690
Md5:    a179ac8d63fa71c8339fd4d30d48c64e
Sha1:   76635704a1ad75435f8bf1fe924e36281258df49
Sha256: 1f6da2f31a4af79a702fa2a594600a3308c0d0f251c8c7ccba2dd03139c33e1e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6EB91CFE70B54CCEC65B9C6B7753BB0ED1C4B0D2527E54A5760537FF9E49FF53"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1530
Expires: Wed, 07 Sep 2022 01:56:07 GMT
Date: Wed, 07 Sep 2022 01:30:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6EB91CFE70B54CCEC65B9C6B7753BB0ED1C4B0D2527E54A5760537FF9E49FF53"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1552
Expires: Wed, 07 Sep 2022 01:56:29 GMT
Date: Wed, 07 Sep 2022 01:30:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6EB91CFE70B54CCEC65B9C6B7753BB0ED1C4B0D2527E54A5760537FF9E49FF53"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1487
Expires: Wed, 07 Sep 2022 01:55:24 GMT
Date: Wed, 07 Sep 2022 01:30:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6EB91CFE70B54CCEC65B9C6B7753BB0ED1C4B0D2527E54A5760537FF9E49FF53"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1498
Expires: Wed, 07 Sep 2022 01:55:35 GMT
Date: Wed, 07 Sep 2022 01:30:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6EB91CFE70B54CCEC65B9C6B7753BB0ED1C4B0D2527E54A5760537FF9E49FF53"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20123
Expires: Wed, 07 Sep 2022 07:06:00 GMT
Date: Wed, 07 Sep 2022 01:30:37 GMT
Connection: keep-alive

                                        
                                            GET /static/search.png HTTP/1.1 
Host: api.q5wefsf1.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.q5wefsf1.life/?tt=1662514408
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.220
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
content-length: 690
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
etag: "62f4c100-2b2"
expires: Wed, 28 Sep 2022 22:49:08 GMT
cache-control: max-age=2592000
server: RielCDN
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   690
Md5:    a179ac8d63fa71c8339fd4d30d48c64e
Sha1:   76635704a1ad75435f8bf1fe924e36281258df49
Sha256: 1f6da2f31a4af79a702fa2a594600a3308c0d0f251c8c7ccba2dd03139c33e1e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /static/loading.svg HTTP/1.1 
Host: api.q5wefsf1.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.q5wefsf1.life/?tt=1662514408
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.220
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Wed, 07 Sep 2022 01:30:38 GMT
content-length: 1784
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
etag: "62f4c100-6f8"
server: RielCDN
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  exported SGML document, ASCII text
Size:   1784
Md5:    91762b2af9bdefdd58f5a5b6e7387361
Sha1:   0a511968514d38a4702c5585ead7c01d4f20def0
Sha256: d887368f18aa4483d5a267a86d1ff5d26a09048bb1c93c0ac9d374e438014342

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /static/index.2772579d.css HTTP/1.1 
Host: api.q5wefsf1.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.q5wefsf1.life/?tt=1662514408
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.220
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 07 Sep 2022 01:30:35 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-17031"
expires: Tue, 30 Aug 2022 10:49:33 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /static/js/chunk-vendors.cfd417ac.js HTTP/1.1 
Host: api.q5wefsf1.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.q5wefsf1.life/?tt=1662514408
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.220
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:35 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-b48ff"
expires: Tue, 30 Aug 2022 10:49:33 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /static/js/pages-detail-art~pages-detail-vod~pages-index-index~pages-play-play~pages-search-search~pages-type-a~3bdb0e93.8f674fad.js HTTP/1.1 
Host: api.q5wefsf1.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.q5wefsf1.life/?tt=1662514408
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.220
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-d9e2"
expires: Tue, 30 Aug 2022 10:49:34 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /web.php/index/type HTTP/1.1 
Host: api.7zhrrhpp.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://api.q5wefsf1.life
Connection: keep-alive
Referer: https://api.q5wefsf1.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         156.243.30.172
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /static/index.2772579d.css HTTP/1.1 
Host: api.5mqac1ry.world
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.5mqac1ry.world/?tt=1662514408
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.139
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 07 Sep 2022 01:30:34 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-17031"
expires: Tue, 30 Aug 2022 10:47:55 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/js/pages-index-index.c2312e26.js HTTP/1.1 
Host: api.q5wefsf1.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.q5wefsf1.life/?tt=1662514408
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.220
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-13e4"
expires: Tue, 30 Aug 2022 10:49:34 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /web.php/index/tj HTTP/1.1 
Host: api.7zhrrhpp.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://api.5mqac1ry.world
Connection: keep-alive
Referer: https://api.5mqac1ry.world/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         156.243.30.172
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /web.php/index/showType HTTP/1.1 
Host: api.7zhrrhpp.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://api.5mqac1ry.world
Connection: keep-alive
Referer: https://api.5mqac1ry.world/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         156.243.30.172
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /common.php?val=daxiangjiao&t=0.4595301464346385?v=011429033240869613 HTTP/1.1 
Host: ccapi.api-daxiangjiao.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.japanwork.net
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         156.243.30.140
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 07 Sep 2022 01:30:31 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST,GET,OPTIONS,DELETE
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin
strict-transport-security: max-age=31536000
server: RielCDN
x-cache-status: MISS
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /common.php?val=daxiangjiao&t=0.2913616571856289?v=04890302247321451 HTTP/1.1 
Host: ccapi.api-daxiangjiao.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.japanwork.net
Connection: keep-alive
Referer: http://www.japanwork.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         156.243.30.140
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 07 Sep 2022 01:30:31 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST,GET,OPTIONS,DELETE
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin
strict-transport-security: max-age=31536000
server: RielCDN
x-cache-status: MISS
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/js/index.21fb267f.js HTTP/1.1 
Host: api.5mqac1ry.world
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.5mqac1ry.world/?tt=1662514408
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.139
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:34 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-1bb78"
expires: Tue, 30 Aug 2022 10:47:56 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /web.php/index/base HTTP/1.1 
Host: api.7zhrrhpp.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://api.q5wefsf1.life
Connection: keep-alive
Referer: https://api.q5wefsf1.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         156.243.30.172
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /web.php/index/config HTTP/1.1 
Host: api.7zhrrhpp.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://api.q5wefsf1.life
Connection: keep-alive
Referer: https://api.q5wefsf1.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         156.243.30.172
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /js/jquery.js HTTP/1.1 
Host: ii6.ii6-daxiangjiao.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ii6.ii6-daxiangjiao.com/1662514406.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.140
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:32 GMT
last-modified: Tue, 28 Dec 2021 07:35:02 GMT
vary: Accept-Encoding
etag: W/"61cabe26-109b"
expires: Tue, 30 Aug 2022 10:46:59 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/js/chunk-vendors.cfd417ac.js HTTP/1.1 
Host: api.5mqac1ry.world
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.5mqac1ry.world/?tt=1662514408
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.139
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:34 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-b48ff"
expires: Tue, 30 Aug 2022 10:47:55 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/js/index.21fb267f.js HTTP/1.1 
Host: api.q5wefsf1.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://api.q5wefsf1.life/?tt=1662514408
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         156.243.30.220
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 07 Sep 2022 01:30:35 GMT
last-modified: Thu, 11 Aug 2022 08:42:40 GMT
vary: Accept-Encoding
etag: W/"62f4c100-1bb78"
expires: Tue, 30 Aug 2022 10:49:33 GMT
cache-control: max-age=43200
content-encoding: gzip
server: RielCDN
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /web.php/index/showType HTTP/1.1 
Host: api.7zhrrhpp.life
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://api.q5wefsf1.life
Connection: keep-alive
Referer: https://api.q5wefsf1.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         156.243.30.172
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 07 Sep 2022 01:30:37 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE
access-control-allow-headers: x-requested-with, Referer,content-type,token,DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type, Accept-Language, Origin, Accept-Encoding
content-encoding: gzip
server: RielCDN
x-cache-status: MISS
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed