r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5436
Expires: Thu, 23 Mar 2023 09:48:33 GMT
Date: Thu, 23 Mar 2023 08:17:57 GMT
Connection: keep-alive
hnkangermei.com/dz4akw_10891.html
301 Moved Permanently 0 B URL HTTP/1.1 hnkangermei.com/dz4akw_10891.html
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dz4akw_10891.html HTTP/1.1
Host: hnkangermei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Server: nginx
Location: http://www.hnkangermei.com/dz4akw_10891.html
Content-Type: text/html
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13649
Expires: Thu, 23 Mar 2023 12:05:26 GMT
Date: Thu, 23 Mar 2023 08:17:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 08:15:05 GMT
content-type: application/json
age: 172
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14486
Expires: Thu, 23 Mar 2023 12:19:23 GMT
Date: Thu, 23 Mar 2023 08:17:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: m/xqHzZigC5b/Jj5IpZxLxcnKxmGWDgMhxKDTvMYG+i1J+X6ZI4tKRZOAlMvU1aHEiHUKmZbHuQ=
x-amz-request-id: 3JAN2XMPGR8S1G1Q
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 07:53:58 GMT
age: 1439
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:17:57 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 08:17:23 GMT
age: 35
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hnkangermei.com/dz4akw_10891.html
200 OK 2.1 kB URL HTTP/1.1 www.hnkangermei.com/dz4akw_10891.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (842), with CRLF line terminators
Hash 0cdc3e6e4964f4c4224ba0bd7739d0ba
1f028d98bce23083a49bf33799a7470f1d0dbe53
fac3c0f75c7a60412b82379aa351defa26292701ac67837f2d7fe6a76f86ffb2
GET /dz4akw_10891.html HTTP/1.1
Host: www.hnkangermei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:17:58 GMT
Content-Length: 2104
Content-Type: text/html
Server: nginx
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 050ca4dc2182e0a27573b0d9f32b7834
bec14dc5af0d0b32210470673511acd8db404308
b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7857
Expires: Thu, 23 Mar 2023 10:28:55 GMT
Date: Thu, 23 Mar 2023 08:17:58 GMT
Connection: keep-alive
www.hnkangermei.com/common.js
200 OK 1.2 kB URL HTTP/1.1 www.hnkangermei.com/common.js
IP
File type ASCII text, with CRLF line terminators
Hash 1aceb97ad7fb2a86bd27c8456d862a34
aa048b99ea12f7cdb8209d25775b732b909002c3
32f25d8027ef54105605c7992653709700a9e8e611336f81a5820a9d64d4cd40
GET /common.js HTTP/1.1
Host: www.hnkangermei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hnkangermei.com/dz4akw_10891.html
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:17:59 GMT
Content-Length: 1191
Content-Type: application/x-javascript
Server: nginx
www.hnkangermei.com/tj.js
200 OK 816 B URL HTTP/1.1 www.hnkangermei.com/tj.js
IP
File type HTML document, ASCII text, with very long lines (554), with CRLF line terminators
Hash d12b8f410d1b75dac665b911bfd3e3c4
2f84f1af6ab9fb0139702f3c0096e81b8b560821
8004d4fa41c70ee133db541791c707a1ba2c8f4d8b1962801e7e6238187d3d6b
GET /tj.js HTTP/1.1
Host: www.hnkangermei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hnkangermei.com/dz4akw_10891.html
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:17:59 GMT
Content-Length: 816
Content-Type: application/x-javascript
Server: nginx
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Zg++sBi2Ue+t141F77ZdHA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DS0Mrt1i7tbphgJF55ynMKc6FnI=
sdk.51.la/js-sdk-pro.min.js
200 OK 13 kB URL HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (34110)
Hash 29243483fe441404931c046d27be80a6
92a0c68b0169eff0addb8cc05a53f6e009d41d47
4865f22b0a68c6a0a6c2d3cbedb9a190ffbea105c4f1e2a5806172919456f3b1
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hnkangermei.com/
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 23 Mar 2023 08:17:58 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 10 Jan 2023 04:34:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63bceaef-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
api.xpgys11.xyz/news/index.php
200 OK 47 B URL HTTP/1.1 api.xpgys11.xyz/news/index.php
IP
File type HTML document, ASCII text, with no line terminators
Hash fc85f8ae73e9115d7d0db8bdb3049f87
ea85207ece10f485dfafc746433640e1a00a2465
06e8aab0f94e607266dfee3aa62468025bd845498f0912b9dd9b87a0832f3569
GET /news/index.php HTTP/1.1
Host: api.xpgys11.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hnkangermei.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 08:17:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
api.xpgys11.xyz/news/api.php
200 OK 177 B URL HTTP/1.1 api.xpgys11.xyz/news/api.php
IP
File type ISO-8859 text, with CRLF line terminators
Hash de15609bc809b31bba804e4a0a7c37df
d0ed8c7ab57e9cb4bc266def2c83f91d39e87360
48cd7f8b1e71f8df647796399d5ebff988f72eae6314ba2076d3e3d475486e57
GET /news/api.php HTTP/1.1
Host: api.xpgys11.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://api.xpgys11.xyz/news/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 23 Mar 2023 08:17:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.hnkangermei.com/favicon.ico
200 OK 2.1 kB URL HTTP/1.1 www.hnkangermei.com/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (842), with CRLF line terminators
Hash 0cdc3e6e4964f4c4224ba0bd7739d0ba
1f028d98bce23083a49bf33799a7470f1d0dbe53
fac3c0f75c7a60412b82379aa351defa26292701ac67837f2d7fe6a76f86ffb2
GET /favicon.ico HTTP/1.1
Host: www.hnkangermei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.hnkangermei.com/dz4akw_10891.html
Cookie: __vtins__JvgkH5NmeNafAelN=%7B%22sid%22%3A%20%227c093932-3e82-58a8-8071-21fa3a4516e7%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201679561286562%2C%20%22ct%22%3A%201679559486562%7D; __51uvsct__JvgkH5NmeNafAelN=1; __51vcke__JvgkH5NmeNafAelN=6f0bde2e-f09b-57db-ad87-d0c8271dd936; __51vuft__JvgkH5NmeNafAelN=1679559486567
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:18:00 GMT
Content-Length: 2104
Content-Type: text/html
Server: nginx
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6769
Expires: Thu, 23 Mar 2023 10:10:48 GMT
Date: Thu, 23 Mar 2023 08:17:59 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6769
Expires: Thu, 23 Mar 2023 10:10:48 GMT
Date: Thu, 23 Mar 2023 08:17:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c05bfdf1411a931d8ea9adc64b07bc74
156ef59e53564a4f2b27002b2695fafecd578d82
15d17c0df2d2b0625ecf5f576a7ff630ae8b923b28be354ad23aec6a284a801a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be1b286-007a-44a5-a6fd-872190ecfa0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6692
x-amzn-requestid: 3a0f6a8d-89b1-43f4-8a15-8749bdbc047b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9d9FcOoAMFaFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b75f2-3540256d6be3d4f85bba65ea;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:06 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jj5lAwItWYm45j5kLqQnd3fhsiGsiuSiSVtrBUOolyHvPAmCc0S71A==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:54:24 GMT
age: 1415
etag: "156ef59e53564a4f2b27002b2695fafecd578d82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: k6VaCG5oTQnKOvKJnleVqxIIc9yOgdOL0oPcL0ZSVw7DZQ8_GzFoZQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:47:43 GMT
age: 37816
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31ad983ec21e3dee7b6083bc04742aee
a98933e2845c02158175a54d9648f12086a96569
8cb18730db03dd8727b2ff42ecfa7885b9e8dbe3c37c08b1ad0c67e629338b95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcbdd70a4-b533-4e87-84d2-c2122ca1cdc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5915
x-amzn-requestid: 1c6acb42-48cc-4113-a8d0-6a811cd16613
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xXaGUVoAMFwIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64156295-0edcaad90df031882fa7457c;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:04:53 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 6f6NSPPmIBAP_pxmZuHRz6WJJjnp3NIO26SNyKYhq2FikQkP5hOe7w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:58:52 GMT
age: 37147
etag: "a98933e2845c02158175a54d9648f12086a96569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4a771935927950222124e14b56046df
d07fe53e4ac41048497b2732c017f6666c3eda9e
4e8388626074646c2336711be0a170ceab367c343648a32d2389dd87640251d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4912
x-amzn-requestid: d8fcf495-12af-42ae-ad69-0ea07b1a8669
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8H3Fl1IAMFYgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b73cb-01cbd1981a57e53b3d3cde93;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:31:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: soxgrR0B6Rz79QysB7qbMTsNYmkYfG8doOMPpTEd9uLlrE6WTcDKdw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:47:44 GMT
age: 37815
etag: "d07fe53e4ac41048497b2732c017f6666c3eda9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32536e34-d62f-40f1-b196-c4bbe784cca6.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32536e34-d62f-40f1-b196-c4bbe784cca6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f148d2e3cd5679fe5cb9cd58630517c7
b312f7c6526254709a0f7424502952e9eaff9c78
6e98a90935a53caa8871238088e77269e5d7215d16dccabe7e9e4af09f39f7b0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32536e34-d62f-40f1-b196-c4bbe784cca6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: a49dca74-54fa-457c-a5b6-e347fd139d1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8ovEgAIAMFcnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b749e-673461e13b7d2f4e7ad66e7f;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:35:26 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ATbmD8auxaSsKlj6KDtI9biU-euAHDVEIVMiHR7hmroViIWghZUsKQ==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:45 GMT
age: 38054
etag: "b312f7c6526254709a0f7424502952e9eaff9c78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc0bc3b0-2c17-4305-a4d7-d558f47aeace.jpeg
200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc0bc3b0-2c17-4305-a4d7-d558f47aeace.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0e547b770b9e32980b318e1be9312f72
85abadbfd327a42779dcc4ba5fb918096a44c51d
8d10e97a58c7c70c62cdb2b2eb057b2d701813db8d794c87818caa0226fcbb73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc0bc3b0-2c17-4305-a4d7-d558f47aeace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3165
x-amzn-requestid: 4ebffee3-ebba-4a57-a851-807d901bc7c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9xbmGjwIAMFy6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641562b0-552caa9c405a4c871b0f94b5;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:05:20 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: HXhyjX5UpyaB-JQqbafrfE-T5xvGSa3NB5OqZiovPdjChWTqfNpvgA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 00:13:06 GMT
age: 29093
etag: "85abadbfd327a42779dcc4ba5fb918096a44c51d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash ac970dfff389d23209a70caeab0a60f7
a1a2c2af6b12021fba6a5109c51a7600982c397f
5ca97b94428fc5cc4c09131262746f0cee5066ba1a84876057e77e1fe8e40aa4
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Mon, 27 Mar 2023 06:10:02 GMT
ETag: "a1a2c2af6b12021fba6a5109c51a7600982c397f"
Last-Modified: Thu, 23 Mar 2023 06:10:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 08:17:59 GMT
Age: 4074
X-Served-By: cache-qpg1274-QPG, cache-bma1630-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 167, 1
X-Timer: S1679559480.882637,VS0,VE1
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash ac970dfff389d23209a70caeab0a60f7
a1a2c2af6b12021fba6a5109c51a7600982c397f
5ca97b94428fc5cc4c09131262746f0cee5066ba1a84876057e77e1fe8e40aa4
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Mon, 27 Mar 2023 06:10:02 GMT
ETag: "a1a2c2af6b12021fba6a5109c51a7600982c397f"
Last-Modified: Thu, 23 Mar 2023 06:10:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 08:17:59 GMT
Age: 4074
X-Served-By: cache-qpg1274-QPG, cache-bma1677-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 167, 1
X-Timer: S1679559480.887034,VS0,VE1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 389e8148f7d4fc4e91e482f92344e2b0
544c818fbfc79a5ee6e600f813c518f5f47b067a
5ee0ab59de1e0954f217be3fd06f1b246f0f334b9dc3419956d370552d3db5ae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EE0AB59DE1E0954F217BE3FD06F1B246F0F334B9DC3419956D370552D3DB5AE"
Last-Modified: Tue, 21 Mar 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21563
Expires: Thu, 23 Mar 2023 14:17:23 GMT
Date: Thu, 23 Mar 2023 08:18:00 GMT
Connection: keep-alive
collect-v6.51.la/v6/collect?dt=4
403 0 B URL HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 480
Origin: http://www.hnkangermei.com
Connection: keep-alive
Referer: http://www.hnkangermei.com/
HTTP/1.1 403
Server: CloudWAF
Date: Thu, 23 Mar 2023 08:18:00 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=7a5c418529a120fd172b; path=/
HWWAFSESTIME=1679559477044; path=/
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.hnkangermei.com
Access-Control-Allow-Credentials: true
www.xpg69.xyz/static/images/hot.gif
200 OK 254 B URL HTTP/2 www.xpg69.xyz/static/images/hot.gif
IP
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /static/images/hot.gif HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: image/gif
content-length: 254
last-modified: Wed, 29 Sep 2021 05:51:09 GMT
etag: "6153fecd-fe"
expires: Sat, 22 Apr 2023 08:18:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.xpg69.xyz/static/images/empty.jpg
200 OK 47 kB URL HTTP/2 www.xpg69.xyz/static/images/empty.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Macintosh), datetime=2020:05:13 21:35:29], baseline, precision 8, 235x141, components 3\012- data
Hash 23eb9e82fb7523ac495688e32e3b484b
a8b2b1cfa9b7587e5a29482317104d1655087fd3
166172be9d739f235271d347708bcfd323f5222d1fa573afdcfd345b4019fd97
GET /static/images/empty.jpg HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: image/jpeg
content-length: 46597
last-modified: Thu, 07 Apr 2022 12:02:06 GMT
etag: "624ed2be-b605"
expires: Sat, 22 Apr 2023 08:18:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.xpg69.xyz/static/images/sprite.gif
200 OK 55 B URL HTTP/2 www.xpg69.xyz/static/images/sprite.gif
IP
File type GIF image data, version 89a, 10 x 10\012- data
Hash 8647a09907f1a5c35a56aaf41e8e0132
b55547d0446299a57eed391407359d1378032a09
d16e2c8d92eb72e4b584790314f6ca14916e3d5ae9374358515429b5b999bd31
GET /static/images/sprite.gif HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: image/gif
content-length: 55
last-modified: Thu, 30 Sep 2021 05:50:28 GMT
etag: "61555024-37"
expires: Sat, 22 Apr 2023 08:18:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.xpg69.xyz/dingbu.html
200 OK 274 B URL HTTP/2 www.xpg69.xyz/dingbu.html
IP
File type HTML document, ASCII text, with no line terminators
Hash f66a696fc6868927b85b82106989d5ec
340c1de0fb0f23b618c4f7e102ad6bbaaad1ffcf
810a80031cc7a7cd0a5d726190c1a552215f260c69335859d0d18c858d6519e7
GET /dingbu.html HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: text/html
content-length: 274
last-modified: Wed, 08 Mar 2023 10:07:30 GMT
etag: "64085e62-112"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.xpg69.xyz/template/RX@04dgr@r/static/henniu/jquery.autocomplete.js
200 OK 7.1 kB URL HTTP/2 www.xpg69.xyz/template/RX@04dgr@r/static/henniu/jquery.autocomplete.js
IP
Hash cb0eba2902ad9443bfe0db500b483172
f422e8343a8704f94cc2400f8d52b36bde540113
7e5f6386718edde2fe59afc8938cffbd447ad6c9e69b08eb04ace831352331d4
GET /template/RX@04dgr@r/static/henniu/jquery.autocomplete.js HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:40:42 GMT
vary: Accept-Encoding
etag: W/"61554dda-64a0"
expires: Thu, 23 Mar 2023 20:18:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-27/13/ra4scrsa5rr1341ra4scrsa5rr142581.jpg
200 OK 9.4 kB URL HTTP/1.1 lbfm.lbpictupian.com/upload/vod/2022/10-27/13/ra4scrsa5rr1341ra4scrsa5rr142581.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash eea26248e3011d3d2c8c18b3c2c8a214
ddc9b90fff3184eb6653cdcb2dd0f63e9e125c59
510397bae6c6aeed644c74db6ec73d809c1d9a395666986e364fb3cda4885212
GET /upload/vod/2022/10-27/13/ra4scrsa5rr1341ra4scrsa5rr142581.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:18:00 GMT
Content-Type: image/jpeg
Content-Length: 9431
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 05:41:14 GMT
ETag: "635a19fa-24d7"
Cache-Control: max-age=31536000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ac53dc0ac600b49-OSL
hm.baidu.com/hm.js?7f282ebdb148aa59c915a176cdbeb728
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7f282ebdb148aa59c915a176cdbeb728
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 331f707003b21bc89355b6eedfed3ed1
5054a6a6a8a97d0182f6c938b407dc0d19ed3167
f7c7f026a81d504a4c1f82e202f542d1ec3421514f30a5570f5bbf85b6af20a6
GET /hm.js?7f282ebdb148aa59c915a176cdbeb728 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hnkangermei.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Thu, 23 Mar 2023 08:18:00 GMT
Etag: 938c594b27c06daa0018795c82ffaf26
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=44F25B6C65E3AC1B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp2.globalsign.com/gsorganizationvalsha2g3
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash 6d65cacafd8d03c79d2ff675fa927114
9ae85988234f6c514afa29090ca4373bcd4953f9
eaaa1812be64f286d6e4f1ae70e4b2e65f4436f48f4e01853018ae7afe0b6210
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1461
Server: nginx
Content-Type: application/ocsp-response
Expires: Mon, 27 Mar 2023 07:22:37 GMT
ETag: "9ae85988234f6c514afa29090ca4373bcd4953f9"
Last-Modified: Thu, 23 Mar 2023 07:22:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 08:18:01 GMT
Age: 3322
X-Served-By: cache-qpg1232-QPG, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 52, 1
X-Timer: S1679559481.031319,VS0,VE1
www.xpg69.xyz/template/RX@04dgr@r/static/henniu/style.css
200 OK 16 kB URL HTTP/2 www.xpg69.xyz/template/RX@04dgr@r/static/henniu/style.css
IP
Hash 7952b46ab1212204b6578ac31cccc1f5
b63a18ad6b9172e94c3d0160db40b179b073ba01
4285b28cb5dbfc56f7d3217cf5cd11dffcad8bbfc7724af7a8319a84d440c8f6
GET /template/RX@04dgr@r/static/henniu/style.css HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: text/css
last-modified: Wed, 14 Sep 2022 07:59:07 GMT
vary: Accept-Encoding
etag: W/"632189cb-56b1"
expires: Thu, 23 Mar 2023 20:18:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.xpg69.xyz/static/images/pngtree-icon-close-button-png-image_1357955.jpg
200 OK 9.2 kB URL HTTP/2 www.xpg69.xyz/static/images/pngtree-icon-close-button-png-image_1357955.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /static/images/pngtree-icon-close-button-png-image_1357955.jpg HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/dingbu.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 30 Jun 2022 06:45:34 GMT
etag: "62bd468e-23ce"
expires: Sat, 22 Apr 2023 08:18:00 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?734be710924d2e5bc2ed8eeea6793297
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?734be710924d2e5bc2ed8eeea6793297
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 1c60af7fcd59b6995846904782bdf0aa
71dbb0b4fe9b0c66862765bc2d70594b21769027
7f72ed7c90bbcae0dec0475d43105c981cded0f2b51f22a35a99a1655ab65e1c
GET /hm.js?734be710924d2e5bc2ed8eeea6793297 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hnkangermei.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Thu, 23 Mar 2023 08:18:00 GMT
Etag: 29f145179428a448a7479c6229eb0333
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6FC946B968C6D678; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7695663ea093eb6f72330cb32e807d9f
436afe737a7203ad376d6018fd15a598d581c08f
c42c3519c0303ca15d7a8d9769f2181dfa8687da087bd942270781e3a98c6ca7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:18:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 20 Mar 2023 20:12:41 GMT
Expires: Mon, 27 Mar 2023 20:12:40 GMT
Etag: "436afe737a7203ad376d6018fd15a598d581c08f"
Cache-Control: max-age=387878,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac53dc4ab2fb509-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 7695663ea093eb6f72330cb32e807d9f
436afe737a7203ad376d6018fd15a598d581c08f
c42c3519c0303ca15d7a8d9769f2181dfa8687da087bd942270781e3a98c6ca7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:18:01 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 20 Mar 2023 20:12:41 GMT
Expires: Mon, 27 Mar 2023 20:12:40 GMT
Etag: "436afe737a7203ad376d6018fd15a598d581c08f"
Cache-Control: max-age=387878,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac53dc4aadab4f7-OSL
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1117650144&si=7f282ebdb148aa59c915a176cdbeb728&v=1.3.0&lv=1&sn=28509&r=0&ww=1280&u=http%3A%2F%2Fwww.hnkangermei.com%2Fdz4akw_10891.html&tt=%E6%B9%96%E5%8C%97%E8%84%8A%E5%8B%A4%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1117650144&si=7f282ebdb148aa59c915a176cdbeb728&v=1.3.0&lv=1&sn=28509&r=0&ww=1280&u=http%3A%2F%2Fwww.hnkangermei.com%2Fdz4akw_10891.html&tt=%E6%B9%96%E5%8C%97%E8%84%8A%E5%8B%A4%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1117650144&si=7f282ebdb148aa59c915a176cdbeb728&v=1.3.0&lv=1&sn=28509&r=0&ww=1280&u=http%3A%2F%2Fwww.hnkangermei.com%2Fdz4akw_10891.html&tt=%E6%B9%96%E5%8C%97%E8%84%8A%E5%8B%A4%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hnkangermei.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 23 Mar 2023 08:18:01 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5F971CA0E4D0CA85; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=225014598&si=734be710924d2e5bc2ed8eeea6793297&v=1.3.0&lv=1&sn=28509&r=0&ww=1280&u=http%3A%2F%2Fwww.hnkangermei.com%2Fdz4akw_10891.html&tt=%E6%B9%96%E5%8C%97%E8%84%8A%E5%8B%A4%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=225014598&si=734be710924d2e5bc2ed8eeea6793297&v=1.3.0&lv=1&sn=28509&r=0&ww=1280&u=http%3A%2F%2Fwww.hnkangermei.com%2Fdz4akw_10891.html&tt=%E6%B9%96%E5%8C%97%E8%84%8A%E5%8B%A4%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=225014598&si=734be710924d2e5bc2ed8eeea6793297&v=1.3.0&lv=1&sn=28509&r=0&ww=1280&u=http%3A%2F%2Fwww.hnkangermei.com%2Fdz4akw_10891.html&tt=%E6%B9%96%E5%8C%97%E8%84%8A%E5%8B%A4%E5%BD%B1%E8%A7%86%E6%96%87%E5%8C%96%E5%8F%91%E5%B1%95%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.hnkangermei.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 23 Mar 2023 08:18:01 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=EA87419221D5BD09; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8af149004bb39bb1907a0ce28a3d6d59
892e71c910d8a417cab3380b809e50d1126cab38
d8864755a1deeea1fe7abf6d09733d3299af2309c82c78f505115cf370f6b580
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8864755A1DEEEA1FE7ABF6D09733D3299AF2309C82C78F505115CF370F6B580"
Last-Modified: Wed, 22 Mar 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4672
Expires: Thu, 23 Mar 2023 09:35:53 GMT
Date: Thu, 23 Mar 2023 08:18:01 GMT
Connection: keep-alive
www.xpg69.xyz/static/fonts/voltaire.woff
404 Not Found 8.6 kB URL HTTP/2 www.xpg69.xyz/static/fonts/voltaire.woff
IP
Hash db1be675f849f3049b57cdd716fb9c1c
6f37d961a9b26d09cd0c21e72ccbd00330dd13a7
effe4ed5befb2ddb3c2bf7da4925321a293599c98804287192511ad485154cf2
GET /static/fonts/voltaire.woff HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.xpg69.xyz/template/RX@04dgr@r/static/henniu/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 23 Mar 2023 08:18:01 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aaf1812178357b2ebef633a2e18fce40
7f7395419a1891076940abc0baa2a4c86446b3fb
194eb86cad88d0cf4dc0bbd0d68d77a0550da79f6b285fdec60a7c7a3eb4e2a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "194EB86CAD88D0CF4DC0BBD0D68D77A0550DA79F6B285FDEC60A7C7A3EB4E2A5"
Last-Modified: Tue, 21 Mar 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2205
Expires: Thu, 23 Mar 2023 08:54:46 GMT
Date: Thu, 23 Mar 2023 08:18:01 GMT
Connection: keep-alive
js.users.51.la/21565299.js
200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21565299.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash 003fb832d5c08415157e4a7ba6b84b4b
f659dc7b0e8a0505685c5f3b1a12b5ac12067b05
5252faaabe75b8e441235ff8a042ea73df5a0031398e2c401bad6b78e63b2233
GET /21565299.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Thu, 23 Mar 2023 08:18:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=d31d97997d130d6b00; path=/
HWWAFSESTIME=1679559481889; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g3
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash ed9213423a55f0e1bd1b22026bd3f5f0
e1021200002d321c0db35122ba901e11400e3170
c470f2c405e2748359ba2e2136e0c801ae69b1033b7d5f7891f4c0fdc533df2a
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1461
Server: nginx
Content-Type: application/ocsp-response
Expires: Mon, 27 Mar 2023 06:21:22 GMT
ETag: "e1021200002d321c0db35122ba901e11400e3170"
Last-Modified: Thu, 23 Mar 2023 06:21:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 08:18:02 GMT
Age: 4044
X-Served-By: cache-qpg1251-QPG, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 56, 1
X-Timer: S1679559482.117521,VS0,VE1
qp.ezfxpuo.cn/66x66.gif
200 OK 44 kB IP
File type GIF image data, version 89a, 66 x 66\012- data
Hash 3269342ca2d40f6c1233867b0fe86272
d81f0ce006a0fb1157fc4b32ee38b47a55bfc3cc
37d963997266698ffc704ef8b9eff6c45f45dfe828352b5c26421e736964e988
GET /66x66.gif HTTP/1.1
Host: qp.ezfxpuo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NgxFence
date: Thu, 23 Mar 2023 08:18:01 GMT
content-type: image/gif
content-length: 44445
x-oss-request-id: 640840D1D0409B35391C8FEB
etag: "3269342CA2D40F6C1233867B0FE86272"
last-modified: Fri, 24 Feb 2023 05:35:44 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 678057160036147890
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
content-md5: Mmk0LKLUD2wSM4Z7D+hicg==
x-oss-server-time: 11
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
kkgif.oss-cn-hangzhou.aliyuncs.com/960X60.gif
200 OK 77 kB URL HTTP/1.1 kkgif.oss-cn-hangzhou.aliyuncs.com/960X60.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Hash fb2784144ab7570babf493dfb6dedabd
fbc0729d4481fdf62fef0d7b63ca1bacedfc723a
6715f0bb3ca5cd02212be6206016c84a3e596ab50c2e371c2fee09d0c432a1bf
GET /960X60.gif HTTP/1.1
Host: kkgif.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 23 Mar 2023 08:18:01 GMT
Content-Type: image/jpg
Content-Length: 76761
Connection: keep-alive
x-oss-request-id: 641C0B39384922323324ADE9
Accept-Ranges: bytes
ETag: "FB2784144AB7570BABF493DFB6DEDABD"
Last-Modified: Fri, 14 Oct 2022 13:04:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15652673086147622604
x-oss-storage-class: Standard
x-oss-ec: 0048-00000113
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: +yeEFEq3Vwur9JPftt7avQ==
x-oss-server-time: 48
img.firefoxcartoon.com/image/22cc.gif
200 OK 840 kB URL HTTP/2 img.firefoxcartoon.com/image/22cc.gif
IP
File type GIF image data, version 89a, 128 x 128\012- data
Size 840 kB (840352 bytes)
Hash 367441fd0f9cc373d70d8fc69e97d46a
fb39591de5c3e2692f952801ffb34e88f4765c47
b22f3ed319624e493ebe8e41e7ef367fe86e9bc5b0ddbcc22d1ab75deafe05a3
GET /image/22cc.gif HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:01 GMT
content-type: image/gif
content-length: 840352
last-modified: Sun, 23 Oct 2022 07:47:52 GMT
etag: "6354f1a8-cd2a0"
expires: Sat, 22 Apr 2023 08:18:01 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kkgif.oss-cn-hangzhou.aliyuncs.com/96060-1.gif
200 OK 62 kB URL HTTP/1.1 kkgif.oss-cn-hangzhou.aliyuncs.com/96060-1.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Hash e395406df64eeb7c363e6adeac428f67
2ec92371a1e3fdeebd977a7cc830365ef98535fe
6ea22a9fef8b07c5a0a110d68b85aac5e63b0dd650070818261b2c7a32c5c3b2
GET /96060-1.gif HTTP/1.1
Host: kkgif.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 23 Mar 2023 08:18:01 GMT
Content-Type: image/jpg
Content-Length: 62223
Connection: keep-alive
x-oss-request-id: 641C0B396172673335EEB88D
Accept-Ranges: bytes
ETag: "E395406DF64EEB7C363E6ADEAC428F67"
Last-Modified: Fri, 14 Oct 2022 13:04:45 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8379537113911644262
x-oss-storage-class: Standard
x-oss-ec: 0048-00000113
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 45VAbfZO63w2PmrerEKPZw==
x-oss-server-time: 3
zerossl.ocsp.sectigo.com/
200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash c15604db5e4ddd8b0ba77e2dd45ce812
019d74eff1d385f6424865e6fc94a7e38b697cf8
eeb25504e1b6f80288a6458b20e2d1062dbebc9bae536a44211e9e86b4099fa0
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:18:02 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 19:06:48 GMT
Expires: Tue, 28 Mar 2023 19:06:47 GMT
Etag: "019d74eff1d385f6424865e6fc94a7e38b697cf8"
Cache-Control: max-age=470324,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac53dcc8d280b31-OSL
www.xpg69.xyz/template/RX@04dgr@r/static/henniu/jquery.superslide.js
200 OK 78 kB URL HTTP/2 www.xpg69.xyz/template/RX@04dgr@r/static/henniu/jquery.superslide.js
IP
Hash 5805d8c9e4a6796e646dce77b29c78ed
96ed36cd276c2404c917166968fc4f4bde5f0592
fe7331a0eaac7b75ae67fc0a02d562401b61774912963341b8e7a66e9ed01772
GET /template/RX@04dgr@r/static/henniu/jquery.superslide.js HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:41:32 GMT
vary: Accept-Encoding
etag: W/"61554e0c-2506"
expires: Thu, 23 Mar 2023 20:18:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash 32496792ef7fd962d571c080ea2c415d
9ab721a996acbf74d073b63946dc441d89876d62
0d54b275b7f6397a317f134ac58ed2c1cda7b1b67a2ec2e900eb60c10ff1fb26
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 08:18:02 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Mon, 20 Mar 2023 12:53:50 GMT
Expires: Mon, 27 Mar 2023 12:53:49 GMT
Etag: "9ab721a996acbf74d073b63946dc441d89876d62"
Cache-Control: max-age=361546,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac53dcc8b65b503-OSL
img.firefoxcartoon.com/image/a7.gif
200 OK 1.3 MB URL HTTP/2 img.firefoxcartoon.com/image/a7.gif
IP
File type GIF image data, version 89a, 200 x 200\012- data
Size 1.3 MB (1264586 bytes)
Hash 24276ed40d33cdc7c91be6aee4a5c649
406a93691820e9768a0190f7a216c61b939ce22c
e6ed2d7c48fa4150292f76a06067d50597c16e7f402b030c9d2d22d8540ff733
GET /image/a7.gif HTTP/1.1
Host: img.firefoxcartoon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:01 GMT
content-type: image/gif
content-length: 1264586
last-modified: Thu, 21 Jul 2022 11:37:53 GMT
etag: "62d93a91-134bca"
expires: Sat, 22 Apr 2023 08:18:01 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?ada0351fdae07b1b65fbb21320bcaeb9
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ada0351fdae07b1b65fbb21320bcaeb9
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 07e1db5eb4b8e793511ae30da0483001
3a1d891d29f1527fd1f0311d7ea7ddd16787f536
793d1ee58f31d07d3927a8e6ac03509ffd62a87f64dd1adc59b4f49a9107a077
GET /hm.js?ada0351fdae07b1b65fbb21320bcaeb9 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Thu, 23 Mar 2023 08:18:02 GMT
Etag: 0f31eb7c0ac62c055dee1f55ef062472
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=908D86B4542FAE20; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
kkgif.oss-cn-hangzhou.aliyuncs.com/960x120-2.gif
200 OK 319 kB URL HTTP/1.1 kkgif.oss-cn-hangzhou.aliyuncs.com/960x120-2.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 319 kB (318990 bytes)
Hash aa24656f40e8051bc01ab3b7b54ba39c
c79fad7ee2056cbc38a2934b5836ace69855b335
dd7d9844bcdd274145914d077c70c51a5c873539c6259e5855c367d9ac7e2000
GET /960x120-2.gif HTTP/1.1
Host: kkgif.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 23 Mar 2023 08:18:01 GMT
Content-Type: image/jpg
Content-Length: 318990
Connection: keep-alive
x-oss-request-id: 641C0B3907D4B93632DA17DF
Accept-Ranges: bytes
ETag: "AA24656F40E8051BC01AB3B7B54BA39C"
Last-Modified: Fri, 14 Oct 2022 13:04:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11367310566151348241
x-oss-storage-class: Standard
x-oss-ec: 0048-00000113
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: qiRlb0DoBRvAGrO3tUujnA==
x-oss-server-time: 3
qp.ezfxpuo.cn/1000X60.gif
200 OK 263 kB URL HTTP/2 qp.ezfxpuo.cn/1000X60.gif
IP
File type GIF image data, version 89a, 1000 x 60\012- data
Size 263 kB (263009 bytes)
Hash 50802d5a69166660355ba24984615097
0558f5272c4ec60aadf366adacfbdebec98fb7ce
d184d7a86c83c9430ce3950a5fffe879dcc714b9c1e61f296da63d416cb18484
GET /1000X60.gif HTTP/1.1
Host: qp.ezfxpuo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NgxFence
date: Thu, 23 Mar 2023 08:18:01 GMT
content-type: image/gif
content-length: 263009
x-oss-request-id: 63F9A9C6D0409B37303CCB45
etag: "50802D5A69166660355BA24984615097"
last-modified: Fri, 24 Feb 2023 05:36:19 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1993876528418509061
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
content-md5: UIAtWmkWZmA1W6JJhGFQlw==
x-oss-server-time: 43
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=919661493&si=ada0351fdae07b1b65fbb21320bcaeb9&su=http%3A%2F%2Fapi.xpgys11.xyz%2F&v=1.3.0&lv=1&sn=28510&r=0&ww=1280&u=https%3A%2F%2Fwww.xpg69.xyz%2F&tt=%F0%9F%8D%8E%E5%B0%8F%E8%8B%B9%E6%9E%9C%2C%F0%9F%8D%8E%E5%B0%8F%E8%8B%B9%E6%9E%9C%E5%BD%B1%E8%A7%86
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=919661493&si=ada0351fdae07b1b65fbb21320bcaeb9&su=http%3A%2F%2Fapi.xpgys11.xyz%2F&v=1.3.0&lv=1&sn=28510&r=0&ww=1280&u=https%3A%2F%2Fwww.xpg69.xyz%2F&tt=%F0%9F%8D%8E%E5%B0%8F%E8%8B%B9%E6%9E%9C%2C%F0%9F%8D%8E%E5%B0%8F%E8%8B%B9%E6%9E%9C%E5%BD%B1%E8%A7%86
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=919661493&si=ada0351fdae07b1b65fbb21320bcaeb9&su=http%3A%2F%2Fapi.xpgys11.xyz%2F&v=1.3.0&lv=1&sn=28510&r=0&ww=1280&u=https%3A%2F%2Fwww.xpg69.xyz%2F&tt=%F0%9F%8D%8E%E5%B0%8F%E8%8B%B9%E6%9E%9C%2C%F0%9F%8D%8E%E5%B0%8F%E8%8B%B9%E6%9E%9C%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 23 Mar 2023 08:18:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=2B4C7F928B68419E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash cd694e72b5685ec58b8b49398082754e
411e4b1b5bccc0c4ea24c51a689caf7da3a6cb8e
2f9e5955b63ccb3e565b4ad6ea93215d93ef5deea2bb008a03dbdab9c6c23ae4
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Mon, 27 Mar 2023 06:59:17 GMT
ETag: "411e4b1b5bccc0c4ea24c51a689caf7da3a6cb8e"
Last-Modified: Thu, 23 Mar 2023 06:59:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Thu, 23 Mar 2023 08:18:03 GMT
Age: 1060
X-Served-By: cache-qpg1233-QPG, cache-bma1677-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 31, 1
X-Timer: S1679559483.159911,VS0,VE1
www.xpg69.xyz/template/RX@04dgr@r/static/henniu/home.js
200 OK 177 kB URL HTTP/2 www.xpg69.xyz/template/RX@04dgr@r/static/henniu/home.js
IP
Size 177 kB (176777 bytes)
Hash d166fe8909384f47304becbf4ea02412
3ab94acc41dbdbcfe92297c7c458d23f2ea50783
91b6d29a8a6cd3208d0fe9e40bfa0a0fd027db40ded61e8c249ab3a59d24de14
GET /template/RX@04dgr@r/static/henniu/home.js HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:43:46 GMT
vary: Accept-Encoding
etag: W/"61554e92-994b"
expires: Thu, 23 Mar 2023 20:18:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
8499226.com/8499/zzxx/960x80.gif
200 OK 367 kB URL HTTP/2 8499226.com/8499/zzxx/960x80.gif
IP
File type GIF image data, version 89a, 960 x 80\012- data
Size 367 kB (366944 bytes)
Hash bde9cbff38e305f40a245a7cf87bd85a
4aaa627b0db260ac7f97a9223e93b1e2f35caba4
375eaceb954016306188bd02f6cc229f71c8e1ef337e99b6ec0a98fad9b3eb7e
GET /8499/zzxx/960x80.gif HTTP/1.1
Host: 8499226.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 08:18:02 GMT
content-type: image/gif
content-length: 366944
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "59960-5f092cf09840f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ia.51.la/go1?id=21565299&rt=1679559489566&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E5%25BA%2593%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E8%25A7%2586%25E9%25A2%2591%252C&ing=1&ekc=&sid=1679559489566&tt=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586&kw=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E5%25BA%2593%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E8%25A7%2586%25E9%25A2%2591%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E9%2599%25A2%2520-%25F0%259F%258D%258E%2520xpgys.xyz%25F0%259F%258D%258E&cu=https%253A%252F%252Fwww.xpg69.xyz%252F&pu=http%253A%252F%252Fapi.xpgys11.xyz%252F
200 0 B URL HTTP/1.1 ia.51.la/go1?id=21565299&rt=1679559489566&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E5%25BA%2593%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E8%25A7%2586%25E9%25A2%2591%252C&ing=1&ekc=&sid=1679559489566&tt=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586&kw=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E5%25BA%2593%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E8%25A7%2586%25E9%25A2%2591%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E9%2599%25A2%2520-%25F0%259F%258D%258E%2520xpgys.xyz%25F0%259F%258D%258E&cu=https%253A%252F%252Fwww.xpg69.xyz%252F&pu=http%253A%252F%252Fapi.xpgys11.xyz%252F
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21565299&rt=1679559489566&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E5%25BA%2593%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E8%25A7%2586%25E9%25A2%2591%252C&ing=1&ekc=&sid=1679559489566&tt=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586&kw=%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E8%25A7%2586%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E5%25BA%2593%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E8%25A7%2586%25E9%25A2%2591%252C%25F0%259F%258D%258E%25E5%25B0%258F%25E8%258B%25B9%25E6%259E%259C%25E5%25BD%25B1%25E9%2599%25A2%2520-%25F0%259F%258D%258E%2520xpgys.xyz%25F0%259F%258D%258E&cu=https%253A%252F%252Fwww.xpg69.xyz%252F&pu=http%253A%252F%252Fapi.xpgys11.xyz%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Thu, 23 Mar 2023 08:18:03 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=2fa7710c965623de5eec; path=/
HWWAFSESTIME=1679559479900; path=/
hailifang.oss-cn-hongkong.aliyuncs.com/222-100.gif
200 OK 443 kB URL HTTP/1.1 hailifang.oss-cn-hongkong.aliyuncs.com/222-100.gif
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 100\012- data
Size 443 kB (442596 bytes)
Hash f0c42543e3dacd9031eeaade0e22bf0a
876b1ac87dd77c4a7f9891176f02133c0fc3cdff
ee4043cc1ea3e569716571ff220c59dc5de2eb4cb0f67a723cb13eb774010b76
GET /222-100.gif HTTP/1.1
Host: hailifang.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Thu, 23 Mar 2023 08:18:02 GMT
Content-Type: image/gif
Content-Length: 442596
Connection: keep-alive
x-oss-request-id: 641C0B3A8A23F73730C669CC
Accept-Ranges: bytes
ETag: "F0C42543E3DACD9031EEAADE0E22BF0A"
Last-Modified: Tue, 07 Mar 2023 14:54:09 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2501525507557434852
x-oss-storage-class: Standard
Content-MD5: 8MQlQ+PazZAx7qreDiK/Cg==
x-oss-server-time: 3
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffa9cba5-a508-44d3-b8ad-393590528e8b.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffa9cba5-a508-44d3-b8ad-393590528e8b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9a774aa1a206523471dfa75b624be2af
e41ca3e0550e74562b0374565225444ffb977c4e
208ea0f25d7bde64057701891811cdb8c0a67b6f60899ca514fbaf2e04d595bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffa9cba5-a508-44d3-b8ad-393590528e8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9550
x-amzn-requestid: 0c3d2b49-9407-4d12-930a-83e585c165b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CBF7kFvwIAMF43g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6416b6b0-59461f0119abb54f773150a0;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 07:16:00 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: wVn33PkqDp-KFwzsDiNz8uSRuW2lwBLllYsQevboO6qidq1OkL-X5Q==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 22:33:44 GMT
age: 35062
etag: "e41ca3e0550e74562b0374565225444ffb977c4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.xpg69.xyz/static/fonts/voltaire.woff
404 Not Found 0 B URL HTTP/2 www.xpg69.xyz/static/fonts/voltaire.woff
IP
GET /static/fonts/voltaire.woff HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.xpg69.xyz/template/RX@04dgr@r/static/henniu/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 23 Mar 2023 08:18:01 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.xpg69.xyz/template/RX@04dgr@r/static/henniu/jquery.base.js
200 OK 0 B URL HTTP/2 www.xpg69.xyz/template/RX@04dgr@r/static/henniu/jquery.base.js
IP
GET /template/RX@04dgr@r/static/henniu/jquery.base.js HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: application/javascript
last-modified: Thu, 30 Sep 2021 05:43:08 GMT
vary: Accept-Encoding
etag: W/"61554e6c-1917"
expires: Thu, 23 Mar 2023 20:18:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.xpg69.xyz/smbaidu/duilian.js
200 OK 0 B URL HTTP/2 www.xpg69.xyz/smbaidu/duilian.js
IP
GET /smbaidu/duilian.js HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xpg69.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: application/javascript
last-modified: Wed, 08 Mar 2023 15:01:11 GMT
vary: Accept-Encoding
etag: W/"6408a337-61d"
expires: Thu, 23 Mar 2023 20:18:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.xpg69.xyz/
200 OK 0 B IP
GET / HTTP/1.1
Host: www.xpg69.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://api.xpgys11.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 08:18:00 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
104.164.67.179
218.66.171.96
104.22.13.214
103.235.46.191
23.36.77.32