r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12699
Expires: Sat, 10 Dec 2022 13:49:48 GMT
Date: Sat, 10 Dec 2022 10:18:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2445
Expires: Sat, 10 Dec 2022 10:58:54 GMT
Date: Sat, 10 Dec 2022 10:18:09 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 10 Dec 2022 10:08:23 GMT
content-type: application/json
age: 586
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3708
Expires: Sat, 10 Dec 2022 11:19:58 GMT
Date: Sat, 10 Dec 2022 10:18:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BdYwJVSpSD3DPxPXSrQpD47ZhzP/x9lRUwBFmffnLvyoHS2pE407rvotMNiZHAMeng1JNERHct8=
x-amz-request-id: RG6Z4AR5HA22Q3SC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 10 Dec 2022 09:48:44 GMT
age: 1766
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:10 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 10 Dec 2022 09:33:14 GMT
age: 2696
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 44d4574b46375a2d215ae74bc5eae610
5257ed3edeb56231a9bee921671bb2e0c566000e
923454b28e4fa10085df809768a75c2d9f58f104afa016c06ccca7a26479073b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 943
Cache-Control: max-age=169463
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 10:18:10 GMT
Etag: "63944c2a-1d7"
Expires: Mon, 12 Dec 2022 09:22:33 GMT
Last-Modified: Sat, 10 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: f1kwbF9Xm3Qi3wSrfnCMlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ek/oa+ErvpB1shKZ3SvZ6SiuUv8=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6750
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 10:18:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6750
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 10:18:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6750
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 10:18:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1a13d12c326848d5b7adeb2562a35a5
d795c519ea637a213aab1d80daaf44ce5ad19069
f7b99c93b99268e1b2fa438d493cf23cd75a98833710ddd22b5278a76e9f019a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0c11050-5c0c-4d59-80cd-f72cf377a852.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7919
x-amzn-requestid: 05f49b7c-7c76-4df4-8258-c270078d8fe9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctl_TH-KoAMFkWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9fb-1971e1e0359763a96b4d320b;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:06:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 38rHJFU5mLhdS81J4hbEWQLAAVgwdpQk_iSHvdKg0cvFrbuQv9AO1A==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 11:54:26 GMT
age: 80626
etag: "d795c519ea637a213aab1d80daaf44ce5ad19069"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0df452512aae4c4c1f4a2cd263b16dfd
68bac75574641febc463bd0819392dae2da15811
e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: YTqJN92gTy04q3obEXe4P1gmG2h9b2IQjjSkkUXyqnfFOL67uobN4Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:58:18 GMT
age: 44394
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 052b61a3bd1c839e1f5ce37834cad817
1fbbf8fb328a1406904d6346004e2c89c6ba2419
96dcb266eaec98f6305071598df3b49ca93234e0e8b1c8c9801a1a99d7f5c817
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7811
x-amzn-requestid: dc97f86e-a29c-4139-887a-e775a0327280
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4EH_oAMFYqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-3a38086160ac180b3f8cf5d8;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TM_0Q_GmJDuXth6JpRvm_JAZXwT-xFZEjzuMeIzfzBu1J5jQ_Tng9A==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:15:38 GMT
etag: "1fbbf8fb328a1406904d6346004e2c89c6ba2419"
content-type: image/jpeg
age: 43354
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9051770b3587c195bea670f8820e8cfe
abf58087f0e345202da088238daea85d177b431b
f687a10c0ae63699a551977e9a4ec5bc7ba606b1925178d7ed4ec6728889bb2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8841
x-amzn-requestid: 09b64f8e-60c0-4cf6-a0dc-15e597bd9d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWH7MIAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3471ee5f5a78b55c424e2c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bVrZoVci4YfYCRAZqXhH60jeZdSTx3uS0lLKZB9DOfHBiqFvyAAkfw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:53:17 GMT
age: 44695
etag: "abf58087f0e345202da088238daea85d177b431b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4acdd84d-55dd-4e5d-bcf3-ab9d63566335.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4acdd84d-55dd-4e5d-bcf3-ab9d63566335.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a81548132f6f176f60e4fc278114ff84
3f330d6c27242cc3d65b975ab4a1c39b08fb69de
82095572be60a13b933293fa38a956e366a854becc5532dfccbf5893366ab702
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4acdd84d-55dd-4e5d-bcf3-ab9d63566335.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7535
x-amzn-requestid: 9c904976-42b9-40c9-aefa-201f0f84358f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMUHw7IAMFSng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3a601e621f9f31c7509f4e52;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXI46ZBJB6-LoLmfPuwmnQV9lamFDrpOdrgRXopTz7fGgwDYYGmT9A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:53:07 GMT
age: 44705
etag: "3f330d6c27242cc3d65b975ab4a1c39b08fb69de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc287dc2-d769-4627-972b-c4304963fead.jpeg
200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc287dc2-d769-4627-972b-c4304963fead.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a164807db41edd8da259af2cec18b328
99f89631065869ff2f25762feb2f39af108b5ed8
400c635040d3d141ec35237e64380b7cd1ba02016a90e36e8376afc41a14cb0f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc287dc2-d769-4627-972b-c4304963fead.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3357
x-amzn-requestid: 860c993a-e391-474a-b306-064c0faabc67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eLwFaSoAMFwfw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4b-30dcd029382c1d825f2a0791;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -MI_dPaTXZPndQzYo2R9p-UiDQNyRh76-XU2fhwjXyKiTVRLjNc3fQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:04:04 GMT
age: 44048
etag: "99f89631065869ff2f25762feb2f39af108b5ed8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gjyw.nxhh.net/ask1123931.html
200 OK 4.3 kB URL HTTP/1.1 gjyw.nxhh.net/ask1123931.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (317), with CRLF, LF line terminators
Hash 6c36aaff9ace1b37312b84791c67e8f4
7977894b33770b6c5a19f5e0d7c47aeb388ddb05
e95adb61ff041d56f4c1807fc73230633fe9ca0aa7aa83d259d89ce6fcff7770
Analyzer Verdict Alert fortinet Phishing
GET /ask1123931.html HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 10 Dec 2022 10:18:21 GMT
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Set-Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0; expires=Sat, 10-Dec-2022 12:18:17 GMT; Max-Age=7200; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
X-Cache: MISS from cdn-ovh
Transfer-Encoding: chunked
gjyw.nxhh.net/statics/cz_1/css/style.css
200 OK 2.1 kB URL HTTP/1.1 gjyw.nxhh.net/statics/cz_1/css/style.css
IP
File type ASCII text, with CRLF line terminators
Hash dda06093ccb6dcc0981ef25aec6f7772
cec17e89868f2ad5b2b650db8721f81b1c951410
c3d487c8568e58266c7398dd2b5a5fa45acf65a0949283b49a56f6d93af7ddc7
GET /statics/cz_1/css/style.css HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/ask1123931.html
Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0
HTTP/1.1 200 OK
ETag: W/"62f36f24-2555"
Server: nginx
Date: Sat, 10 Dec 2022 10:18:21 GMT
Content-Type: text/css
Last-Modified: Wed, 10 Aug 2022 08:41:08 GMT
Vary: Accept-Encoding
Expires: Sat, 10 Dec 2022 22:18:21 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
X-Cache: MISS from cdn-ovh
Transfer-Encoding: chunked
gjyw.nxhh.net/statics/cz_1/css/font_1184273_ya2tmsre81.css
200 OK 15 kB URL HTTP/1.1 gjyw.nxhh.net/statics/cz_1/css/font_1184273_ya2tmsre81.css
IP
File type ASCII text, with very long lines (18428), with CRLF line terminators
Hash 484894d8aa37ced0f6a2d24f57032a39
e319c56426802bba14bf0df342566e44bb0ff910
cf194f494b4b0fa79b84d1676440a462b363f27469dbb9a465d5ce3ae7050403
GET /statics/cz_1/css/font_1184273_ya2tmsre81.css HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/ask1123931.html
Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0
HTTP/1.1 200 OK
ETag: W/"62133942-5634"
Server: nginx
Date: Sat, 10 Dec 2022 10:18:22 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Feb 2022 07:03:30 GMT
Vary: Accept-Encoding
Expires: Sat, 10 Dec 2022 22:18:22 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
X-Cache: MISS from cdn-ovh
Transfer-Encoding: chunked
gjyw.nxhh.net/statics/cz_1/js/layui.js
200 OK 3.7 kB URL HTTP/1.1 gjyw.nxhh.net/statics/cz_1/js/layui.js
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 985f91e704c52c933a4bdd1ec7fa1c4c
5ee575ce20fa03fba835a336d48d5e77b74f208e
e8cf7a01ff51669a689449b29bba2ff6f88047bde342fe5fdd78e634ae2c5d3f
Analyzer Verdict Alert fortinet Phishing
GET /statics/cz_1/js/layui.js HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/ask1123931.html
Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0
HTTP/1.1 200 OK
ETag: W/"62133942-2bef"
Server: nginx
Date: Sat, 10 Dec 2022 10:18:22 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Feb 2022 07:03:30 GMT
Vary: Accept-Encoding
Expires: Sat, 10 Dec 2022 22:18:22 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
X-Cache: MISS from cdn-ovh
Transfer-Encoding: chunked
gjyw.nxhh.net/statics/cz_1/css/layui.css
200 OK 17 kB URL HTTP/1.1 gjyw.nxhh.net/statics/cz_1/css/layui.css
IP
File type ASCII text, with very long lines (733), with CRLF line terminators
Hash 4a46ce6bfc2b20f4a7f5eea35aa8c59d
f10df1e291068da3c91e5685390f2cdef81826a9
d6938357c225b6b5639005f00fe7598f51200a6d93243a73d53dab324512ca14
GET /statics/cz_1/css/layui.css HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/ask1123931.html
Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0
HTTP/1.1 200 OK
ETag: W/"62133942-16c62"
Server: nginx
Date: Sat, 10 Dec 2022 10:18:22 GMT
Content-Type: text/css
Last-Modified: Mon, 21 Feb 2022 07:03:30 GMT
Vary: Accept-Encoding
Expires: Sat, 10 Dec 2022 22:18:22 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
X-Cache: MISS from cdn-ovh
Transfer-Encoding: chunked
gw.acadki.com/gw/gw.js
400 Bad Request 258 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type XML 1.0 document text\012- XML document, ASCII text
Hash 855c197a75a104d238d938237e365e2e
735b53101905eacb5f86da64e2abd5cb85538ac1
84e02289314de76ea2b0aa039fd883a7d95f728dd560cfc4f87562323c8c981d
GET /gw/gw.js HTTP/1.1
Host: gw.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
HTTP/1.1 400 Bad Request
Server: Tengine
Content-Type: application/xml
Content-Length: 258
Connection: keep-alive
Date: Sat, 10 Dec 2022 10:18:16 GMT
x-oss-request-id: 63945CE8B258223132BC9995
Ali-Swift-Global-Savetime: 1670667496
Via: cache5.l2de2[602,602,400-1280,M], cache26.l2de2[606,0], cache8.se1[1127,1127,400-1280,M], cache2.se1[1129,0]
X-Cache: MISS TCP_MISS dirn:11:326043862
X-Swift-SaveTime: Sat, 10 Dec 2022 10:18:16 GMT
X-Swift-CacheTime: 0
X-Swift-Error: orig response 4XX error
Timing-Allow-Origin: *
EagleId: 2ff62c9616706674958455212e
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0cf5902f13382405d1941a1334def549
482a07a640023a6c3196d879dec628aac76029ee
d0836a193f00d3fed2d101ed389d3a05c1e17697324bf0593c0b3c2059ad0bf4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0836A193F00D3FED2D101ED389D3A05C1E17697324BF0593C0B3C2059AD0BF4"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20804
Expires: Sat, 10 Dec 2022 16:05:01 GMT
Date: Sat, 10 Dec 2022 10:18:17 GMT
Connection: keep-alive
gjyw.nxhh.net/statics/cz_1/js/jquery.min.js
200 OK 35 kB URL HTTP/1.1 gjyw.nxhh.net/statics/cz_1/js/jquery.min.js
IP
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash bf35e3236fad6afcb77338a6d4d902a5
13b59dcb6819d921e895423de6a854d4dc25e0d6
c91df0ca42e5cab30cb168ce1f910bb05be116911a6eb2aee11d1442749d2409
Analyzer Verdict Alert fortinet Phishing
GET /statics/cz_1/js/jquery.min.js HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/ask1123931.html
Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0
HTTP/1.1 200 OK
ETag: W/"62133942-15d86"
Server: nginx
Date: Sat, 10 Dec 2022 10:18:22 GMT
Content-Type: application/javascript
Last-Modified: Mon, 21 Feb 2022 07:03:30 GMT
Vary: Accept-Encoding
Expires: Sat, 10 Dec 2022 22:18:22 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
X-Cache: MISS from cdn-ovh
Transfer-Encoding: chunked
lib.acadki.com/assets/images/user_logo/3ff0f81434804cc55df13a43b23c03eb06b15b8e.jpg
200 OK 1.2 kB URL HTTP/2 lib.acadki.com/assets/images/user_logo/3ff0f81434804cc55df13a43b23c03eb06b15b8e.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash 8f1683b0803f8af0aa552f1019f20a2f
58db6f7a3c27ceb0f6584e77c2fc1d2c0e6d3e87
6a1b76307ac7b7071a7eb09a7d2a6d43be96fc6fd9eb3fc40547f2f89893abed
GET /assets/images/user_logo/3ff0f81434804cc55df13a43b23c03eb06b15b8e.jpg HTTP/1.1
Host: lib.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:23 GMT
content-type: image/jpeg
content-length: 1158
last-modified: Fri, 14 Oct 2022 06:12:46 GMT
etag: "6348fdde-486"
expires: Mon, 09 Jan 2023 10:18:23 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
lib.acadki.com/assets/images/user_logo/0a7925260971cab431a69cd9b1daad7de2a9186a.jpg
200 OK 1.7 kB URL HTTP/2 lib.acadki.com/assets/images/user_logo/0a7925260971cab431a69cd9b1daad7de2a9186a.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Hash 6b9568f9d067819833fa2efb513c28cb
70574681e893e2c738fe1349f87983cd57e99efa
25bc56693f4c3bef20d19cb088be0484e0d5e6e330983c122569cb07fe20bbed
GET /assets/images/user_logo/0a7925260971cab431a69cd9b1daad7de2a9186a.jpg HTTP/1.1
Host: lib.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:23 GMT
content-type: image/jpeg
content-length: 1730
last-modified: Fri, 14 Oct 2022 06:12:46 GMT
etag: "6348fdde-6c2"
expires: Mon, 09 Jan 2023 10:18:23 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
lib.acadki.com/nxhh_net/lwimages/5ee9be06679c4e1ce0532646042877c0.jpg
200 OK 24 kB URL HTTP/2 lib.acadki.com/nxhh_net/lwimages/5ee9be06679c4e1ce0532646042877c0.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
File type PNG image data, 600 x 400, 8-bit colormap, non-interlaced\012- data
Hash 26ce6eb1451d67385ff36c7359367d32
c0ebde5bacb5e89f914ebe370710b2ca9fd78278
6d0d583891e1e164fc86fff157d58c5a18c83ebfc4b8dbac980e90d09737fa79
GET /nxhh_net/lwimages/5ee9be06679c4e1ce0532646042877c0.jpg HTTP/1.1
Host: lib.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:23 GMT
content-type: image/jpeg
content-length: 24156
last-modified: Fri, 14 Oct 2022 06:21:12 GMT
etag: "6348ffd8-5e5c"
expires: Mon, 09 Jan 2023 10:18:23 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
lib.acadki.com/assets/images/user_logo/39d06cad3956ba38a0abb108de986886ea7e0b3a.jpg
200 OK 1.3 kB URL HTTP/2 lib.acadki.com/assets/images/user_logo/39d06cad3956ba38a0abb108de986886ea7e0b3a.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash b2e412bb5faba3fc902332e4246efe1e
f278ece1d8247a6aa6c16b1e1e1799c5de665346
377bd2c4d0a75782fac8cadb4b1ff7d0d51c56ffd044762963adaaefa4b51487
GET /assets/images/user_logo/39d06cad3956ba38a0abb108de986886ea7e0b3a.jpg HTTP/1.1
Host: lib.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:23 GMT
content-type: image/jpeg
content-length: 1319
last-modified: Fri, 14 Oct 2022 06:12:46 GMT
etag: "6348fdde-527"
expires: Mon, 09 Jan 2023 10:18:23 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
lib.acadki.com/assets/images/user_logo/3add89fdee311d8008f203901cfbd459ed01a9e2.jpg
200 OK 1.3 kB URL HTTP/2 lib.acadki.com/assets/images/user_logo/3add89fdee311d8008f203901cfbd459ed01a9e2.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash e2f340b88e5854a5c4e08470db8a05d1
a5379261993cd869e8bcadf11ef3dcd5aa46e3f3
c7690e94b0bc5f36d250927694a28af6a7d6ebbeeb72ba99ae1b564a6e970997
GET /assets/images/user_logo/3add89fdee311d8008f203901cfbd459ed01a9e2.jpg HTTP/1.1
Host: lib.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:23 GMT
content-type: image/jpeg
content-length: 1314
last-modified: Fri, 14 Oct 2022 06:12:46 GMT
etag: "6348fdde-522"
expires: Mon, 09 Jan 2023 10:18:23 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
gjyw.nxhh.net/statics/cz_1/font/iconfont.woff?v=240
200 OK 27 kB URL HTTP/1.1 gjyw.nxhh.net/statics/cz_1/font/iconfont.woff?v=240
IP
File type Web Open Font Format, TrueType, length 26744, version 1.0\012- data
Hash e9caaa0617fa61c01f765960d10da0ef
f116555d117ded6e97229847ba3c8e8ca12e2f2b
6e9dac35a993a17830b37c400415142906634d2b0a7af0b2418a92ed959ae201
Analyzer Verdict Alert fortinet Phishing
GET /statics/cz_1/font/iconfont.woff?v=240 HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://gjyw.nxhh.net/statics/cz_1/css/layui.css
Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0
HTTP/1.1 200 OK
ETag: "62133942-6878"
Server: nginx
Date: Sat, 10 Dec 2022 10:18:23 GMT
Content-Type: font/woff
Last-Modified: Mon, 21 Feb 2022 07:03:30 GMT
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
X-Cache: MISS from cdn-ovh
Content-Length: 26744
gw.acadki.com/gw/gw.js
400 Bad Request 258 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type XML 1.0 document text\012- XML document, ASCII text
Hash d21fe12e0f92e585cec7d1bbd9444b52
7034256ab39068abaafdac0924b0c0fdd69fc9f6
7752a9e8b9db9d9d5cb0da7a83bfae270df58fbb361e3e56d90ad34e938c08f3
GET /gw/gw.js HTTP/1.1
Host: gw.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
HTTP/1.1 400 Bad Request
Server: Tengine
Content-Type: application/xml
Content-Length: 258
Connection: keep-alive
Date: Sat, 10 Dec 2022 10:18:17 GMT
x-oss-request-id: 63945CE9224F963835E40A51
Ali-Swift-Global-Savetime: 1670667497
Via: cache5.l2de2[604,603,400-1280,M], cache3.l2de2[605,0], cache8.se1[625,625,400-1280,M], cache2.se1[627,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Sat, 10 Dec 2022 10:18:17 GMT
X-Swift-CacheTime: 0
X-Swift-Error: orig response 4XX error
Timing-Allow-Origin: *
EagleId: 2ff62c9616706674971296094e
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03617199432ced2191d36a539a29ae8d
50c04a0778ab04351461189c7226c9f3b95fed9d
69195c57ca597d482b937218ae28aad9c9b3d61bca27d8e09fc43b088504f185
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69195C57CA597D482B937218AE28AAD9C9B3D61BCA27D8E09FC43B088504F185"
Last-Modified: Sat, 10 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 10 Dec 2022 16:18:17 GMT
Date: Sat, 10 Dec 2022 10:18:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03617199432ced2191d36a539a29ae8d
50c04a0778ab04351461189c7226c9f3b95fed9d
69195c57ca597d482b937218ae28aad9c9b3d61bca27d8e09fc43b088504f185
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69195C57CA597D482B937218AE28AAD9C9B3D61BCA27D8E09FC43B088504F185"
Last-Modified: Sat, 10 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Sat, 10 Dec 2022 16:18:09 GMT
Date: Sat, 10 Dec 2022 10:18:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03617199432ced2191d36a539a29ae8d
50c04a0778ab04351461189c7226c9f3b95fed9d
69195c57ca597d482b937218ae28aad9c9b3d61bca27d8e09fc43b088504f185
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69195C57CA597D482B937218AE28AAD9C9B3D61BCA27D8E09FC43B088504F185"
Last-Modified: Sat, 10 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 10 Dec 2022 16:18:17 GMT
Date: Sat, 10 Dec 2022 10:18:17 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03617199432ced2191d36a539a29ae8d
50c04a0778ab04351461189c7226c9f3b95fed9d
69195c57ca597d482b937218ae28aad9c9b3d61bca27d8e09fc43b088504f185
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69195C57CA597D482B937218AE28AAD9C9B3D61BCA27D8E09FC43B088504F185"
Last-Modified: Sat, 10 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Sat, 10 Dec 2022 16:17:35 GMT
Date: Sat, 10 Dec 2022 10:18:17 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash c03ecee6c800c337c914c2a988406f28
82bd5f196a61e2c5274f1003d3f593cb2ba85251
38b85fd4b45220aa3960b231d3897a1afa8ca961be29d7a775c8b091f11b67ce
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 10:18:17 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 14 Dec 2022 06:53:54 GMT
ETag: "82bd5f196a61e2c5274f1003d3f593cb2ba85251"
Last-Modified: Sat, 10 Dec 2022 06:53:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1589
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77753c554946b52d-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03617199432ced2191d36a539a29ae8d
50c04a0778ab04351461189c7226c9f3b95fed9d
69195c57ca597d482b937218ae28aad9c9b3d61bca27d8e09fc43b088504f185
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69195C57CA597D482B937218AE28AAD9C9B3D61BCA27D8E09FC43B088504F185"
Last-Modified: Sat, 10 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Sat, 10 Dec 2022 16:17:53 GMT
Date: Sat, 10 Dec 2022 10:18:17 GMT
Connection: keep-alive
gjyw.nxhh.net/statics/cz_1/images/top_bg.jpg
200 OK 7.4 kB URL HTTP/1.1 gjyw.nxhh.net/statics/cz_1/images/top_bg.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b1b2d54df21cb143d9313fe0e74350cb
e0a93b3058829eddf97c6c5f55ee250de71c1bcf
bdca1be991018f24dd8a7326f8d87fbe5bfcb0adc930e7e57130865c3cc7192e
GET /statics/cz_1/images/top_bg.jpg HTTP/1.1
Host: gjyw.nxhh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gjyw.nxhh.net/statics/cz_1/css/style.css
Cookie: poscms_ci_session=isqn4fp4urh5r31k7kcilrputnrhd2b0
HTTP/1.1 200 OK
ETag: "62133942-d926"
Server: nginx
Date: Sat, 10 Dec 2022 10:18:23 GMT
Last-Modified: Mon, 21 Feb 2022 07:03:30 GMT
Expires: Mon, 09 Jan 2023 10:18:23 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
Content-Type: image/webp
X-Cache: MISS from cdn-ovh
Transfer-Encoding: chunked
Vary: Accept
hm.baidu.com/hm.js?e3d8b7e1bf7f6cd5e31595da2127040e
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?e3d8b7e1bf7f6cd5e31595da2127040e
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (660)
Hash 57eee3cb1789ef01e67e3515934af5e7
7f342aff846462399196213b7e313300b959c799
46ff0b3ea80f6999cc48fd56aceab8dbd63bebaa5c41de4d504c529b0c520065
GET /hm.js?e3d8b7e1bf7f6cd5e31595da2127040e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11298
Content-Type: application/javascript
Date: Sat, 10 Dec 2022 10:18:18 GMT
Etag: 4148975b43efb4fd1e8d9aa85855a3aa
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=53582FB21147DDF8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
bk.acadki.com/journal_imgs/QCYX.jpg
200 OK 50 kB URL HTTP/2 bk.acadki.com/journal_imgs/QCYX.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 279x392, components 3\012- data
Hash ff203961d71894442baa17bea74ca8a0
b382a79495a99a9c867b9d5ea20f4d8c9f31810c
e9f7c783553abacda1008da578e9bf101534011576a9a105d5612a33e36c430d
GET /journal_imgs/QCYX.jpg HTTP/1.1
Host: bk.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:24 GMT
content-type: image/jpeg
content-length: 49490
last-modified: Thu, 28 Jan 2021 00:48:51 GMT
etag: "601209f3-c152"
expires: Mon, 09 Jan 2023 10:18:24 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
bk.acadki.com/journal_imgs/PTXK.jpg
200 OK 18 kB URL HTTP/2 bk.acadki.com/journal_imgs/PTXK.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 261x392, components 3\012- data
Hash 2156b2ae73a70fb30bd74e8d4c86cd9e
28bbad02bb5fda06143b971fe2f0989b9ea73c18
1b97c10c7214dd40ea6adeedeede12cec4302163785afb47032ddcbdc294430b
GET /journal_imgs/PTXK.jpg HTTP/1.1
Host: bk.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:24 GMT
content-type: image/jpeg
content-length: 18296
last-modified: Sat, 21 Nov 2020 02:05:52 GMT
etag: "5fb87600-4778"
expires: Mon, 09 Jan 2023 10:18:24 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
bk.acadki.com/journal_imgs/ZXWT.jpg
200 OK 0 B URL HTTP/2 bk.acadki.com/journal_imgs/ZXWT.jpg
IP
ASN #137697 CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
GET /journal_imgs/ZXWT.jpg HTTP/1.1
Host: bk.acadki.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gjyw.nxhh.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 10:18:24 GMT
content-type: image/jpeg
content-length: 68838
last-modified: Thu, 28 Jan 2021 01:00:08 GMT
etag: "60120c98-10ce6"
expires: Mon, 09 Jan 2023 10:18:24 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
51.81.250.87
93.184.220.29
104.18.21.226
23.36.77.32
103.53.126.94
103.235.46.191
47.246.44.209