r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3137
Expires: Wed, 25 Jan 2023 12:21:23 GMT
Date: Wed, 25 Jan 2023 11:29:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13646
Expires: Wed, 25 Jan 2023 15:16:33 GMT
Date: Wed, 25 Jan 2023 11:29:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6cd4f1da1215c7473500807c185f2449
b14db0c67cf1f5faf85648ed8f94baf2dd03808b
9750518efd869da5ff74ba65a196445bd4340c909157cc1a420f62c1d07224a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9750518EFD869DA5FF74BA65A196445BD4340C909157CC1A420F62C1D07224A0"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3648
Expires: Wed, 25 Jan 2023 12:29:55 GMT
Date: Wed, 25 Jan 2023 11:29:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 10:42:49 GMT
content-type: application/json
age: 2778
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JwygrvqTcd53gKI6xkTey2wYek8OlaidUkAIesQk039dTzIrCsierUUGhewe9SxuUeFaj5llt1c=
x-amz-request-id: RPY59VPCHXJX6YX9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 11:19:39 GMT
age: 568
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.ipc21.com/
200 OK 625 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (966), with CRLF line terminators
Hash 9e65c0050e62b8352c5775de48a0a876
5ab4c83ca396b4fd27e07831e31131a110c6c1cf
173a81eff509a1ceb3d21b4916192d6c3a9d7b0613de915367d3eac5646e760c
GET / HTTP/1.1
Host: www.ipc21.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 11:28:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:07 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.ipc21.com/common.js
200 OK 1.9 kB IP
File type HTML document text\012- HTML document, ISO-8859 text, with very long lines (443), with CRLF line terminators
Hash 4e6199d34c214b339a11e6eafeb3ee49
133d97581c588cc800edb73d49d2a05d48f27bd5
de06b497bd8230df6397c5903088ce0263a656ca2a88b3d46303b609370bffcf
GET /common.js HTTP/1.1
Host: www.ipc21.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ipc21.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 11:28:59 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.ipc21.com/tj.js
200 OK 258 B IP
File type ASCII text, with CRLF line terminators
Hash 473508bed3dd320e5b525f9e0b4f6cc7
002fd582b4f03d17a5a91c8a19e50d91bdb26d24
e58f9a0d43e48bd66b859fda2065046f70c112feb26759bc4fe3a31b14594242
GET /tj.js HTTP/1.1
Host: www.ipc21.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ipc21.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 11:28:59 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 10:48:59 GMT
age: 2408
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
209.73.159.131/shebi-common.php?val=shebi17&t=0.27957473646690256?v=084535329271856
200 OK 90 B URL HTTP/1.1 209.73.159.131/shebi-common.php?val=shebi17&t=0.27957473646690256?v=084535329271856
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ec7aa2507752674ced41555bc95021ad
a942157192eccba0241035cdb901eec6dae88ae9
a5a9e93501d3c6e8e22faecd997b9569a83a8ba0e4e63abbc9fa86cabdbd66eb
Analyzer Verdict Alert quad9 Sinkholed
GET /shebi-common.php?val=shebi17&t=0.27957473646690256?v=084535329271856 HTTP/1.1
Host: 209.73.159.131
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.ipc21.com
Connection: keep-alive
Referer: http://www.ipc21.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 11:29:07 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS,DELETE
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin
Content-Encoding: gzip
209.73.159.131/shebi-common.php?val=shebi17&t=0.44939489263671595?v=09363562185882394
200 OK 90 B URL HTTP/1.1 209.73.159.131/shebi-common.php?val=shebi17&t=0.44939489263671595?v=09363562185882394
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ec7aa2507752674ced41555bc95021ad
a942157192eccba0241035cdb901eec6dae88ae9
a5a9e93501d3c6e8e22faecd997b9569a83a8ba0e4e63abbc9fa86cabdbd66eb
Analyzer Verdict Alert quad9 Sinkholed
GET /shebi-common.php?val=shebi17&t=0.44939489263671595?v=09363562185882394 HTTP/1.1
Host: 209.73.159.131
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.ipc21.com
Connection: keep-alive
Referer: http://www.ipc21.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 11:29:07 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS,DELETE
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7286
Expires: Wed, 25 Jan 2023 13:30:33 GMT
Date: Wed, 25 Jan 2023 11:29:07 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WlCsbpTruule5szfoInNbg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: N0Jqv82DJpVSFVZdubkFDH0d5g8=
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 513c23fab37256f7d08f59cf99252d33
606ac40095366918f87310bdb64fe84dfc7d69cf
334844a3f2a9dea5844347d73ffd377d0fd93bc86d095df15329d3f7b09d492a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "334844A3F2A9DEA5844347D73FFD377D0FD93BC86D095DF15329D3F7B09D492A"
Last-Modified: Wed, 25 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3318
Expires: Wed, 25 Jan 2023 12:24:26 GMT
Date: Wed, 25 Jan 2023 11:29:08 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 513c23fab37256f7d08f59cf99252d33
606ac40095366918f87310bdb64fe84dfc7d69cf
334844a3f2a9dea5844347d73ffd377d0fd93bc86d095df15329d3f7b09d492a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "334844A3F2A9DEA5844347D73FFD377D0FD93BC86D095DF15329D3F7B09D492A"
Last-Modified: Wed, 25 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3318
Expires: Wed, 25 Jan 2023 12:24:26 GMT
Date: Wed, 25 Jan 2023 11:29:08 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 513c23fab37256f7d08f59cf99252d33
606ac40095366918f87310bdb64fe84dfc7d69cf
334844a3f2a9dea5844347d73ffd377d0fd93bc86d095df15329d3f7b09d492a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "334844A3F2A9DEA5844347D73FFD377D0FD93BC86D095DF15329D3F7B09D492A"
Last-Modified: Wed, 25 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3318
Expires: Wed, 25 Jan 2023 12:24:26 GMT
Date: Wed, 25 Jan 2023 11:29:08 GMT
Connection: keep-alive
klx3.zhgmjglh808k.com/
200 OK 6.3 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 8b75c6056f63609c412f36da4ba4bff2
69d4e2f08286db290098e9cad7014a53d384b6e5
936102829f58c18845296a001e08563ef3fc596ef5dd9cbe07e85fd0c3748933
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: klx3.zhgmjglh808k.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ipc21.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0iGTuQDkyJ%2FUoQOrrt8kW%2ButTh1weezl7Nf6rexJTC0VZjSNmqnLrIiVvqwB30RdWFLbch4pOK0A4eiNtmAoXfgoYbNa1fyohFXfoMrDrPCfO5O0WgHw7szmGaXVr0VEcTd2QCvoTMg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f0ab579bd5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/dh.js
200 OK 2.2 kB URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/dh.js
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 1d9ff2714cc0eadeba67c4b324a3ef4e
8ef16c46392f3c8b30683c6ea82d62b983e80717
87aed7ca6be8f4b7559b8d125f6a8cff83ded4f577549f4e9b6c93ea05f9714b
GET /yPS7hqfHgkFauS2djb/dh.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:43:02 GMT
vary: Accept-Encoding
etag: W/"63b7b4e6-196f"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8%2BwtM4HzT3qP%2Be5ZY0hokzouNijjAmLW1ZUiy%2BVCLl0%2BPQe8KGmyYHW5LKtS76BRrS8SdKl2jrbuf7OsZc%2Fy8um4iPG8ot3r%2B28A8OciQV2KS1Buhw82RQWGsL32bMJl7kSVT9fP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f0ab5b7d93b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tk.learning8809.com/images/xt3.gif
200 OK 193 kB URL HTTP/2 tk.learning8809.com/images/xt3.gif
IP
File type GIF image data, version 89a, 326 x 217\012- data
Size 193 kB (193237 bytes)
Hash a15551773d50ba1bc1c91f1ac0e7a45f
603c163ea29d202ec5019fecaf202962892d6500
dac04d049696b8e58a9d9ccc2c2e90f480ad925f796df8ddb5a87f10250bc39e
GET /images/xt3.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 193237
last-modified: Wed, 27 Apr 2022 12:03:11 GMT
etag: "626930ff-2f2d5"
expires: Sat, 18 Feb 2023 08:01:20 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 530868
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7U9UenybNyFbdDchOtZmJhHg7zxfoIp6Fq%2BQiC5hDTXkXXwCN1sPQMOC%2FG1TXJRcfdgSnaAiMRZIBiDB%2ByMI%2B1Mu98HyMzk%2Baj7tPQncet6Me65C2eFLxx53yStGrxoT%2BzamVKOj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e796db524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tk.learning8809.com/images/xt7.gif
200 OK 269 kB URL HTTP/2 tk.learning8809.com/images/xt7.gif
IP
File type GIF image data, version 89a, 120 x 120\012- data
Size 269 kB (269177 bytes)
Hash 3be5bc895ae3e525bbcfbb2a2696ed0f
1f3d2c548412b47b65acf224f1a6b7bf89dcf876
59c730a313db642dd842aad1586e7d3a29dabe14be7404a1cd0a0d25138e669c
GET /images/xt7.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 269177
last-modified: Wed, 27 Apr 2022 12:03:19 GMT
etag: "62693107-41b79"
expires: Tue, 21 Feb 2023 22:14:22 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220485
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VUEmv4zUIQH2V0%2FB7OOtm1nxZrnHVlc4hH%2B6T5i4YzZAcHrwzUIyZNCWDwegUKRTgH5sobQ4FzZT5sbQwQoyzC%2BcdQIQCXi5UQ1dXTgShCFy1em7nFKbrTaR8%2BctY71h0jHSuX6n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e7972b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tk.learning8809.com/images/xt9.gif
200 OK 329 kB URL HTTP/2 tk.learning8809.com/images/xt9.gif
IP
File type GIF image data, version 89a, 120 x 120\012- data
Size 329 kB (329331 bytes)
Hash 0982fef3f808ddf5925e60c39af631ba
80d6f27859a94c2c49b9175d2e9f84e6bd9b5605
bd96321466d68dddabbc45cf7d72821ab7801de184f638a382b6a6681fba949d
GET /images/xt9.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 329331
last-modified: Wed, 27 Apr 2022 12:03:21 GMT
etag: "62693109-50673"
expires: Tue, 21 Feb 2023 22:14:23 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220485
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fazspv3wl6pgTYXUEJ%2Blw28zjKhe8DjhYaNYk6JWnWJgyRAVpEC%2Fa7g7iQM4fclBarB4zI%2FkWEpm0Hg6s8O7ncEF89za38DEarKs04axQqWE7m6JstTQQHf4Z0gjkomj9UJxnXSG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e7979b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tk.learning8809.com/images/xt2.gif
200 OK 377 kB URL HTTP/2 tk.learning8809.com/images/xt2.gif
IP
File type GIF image data, version 89a, 448 x 359\012- data
Size 377 kB (376694 bytes)
Hash 8e954a81cfc4fcdc8b1d5ff074a421a7
80810fedd18106dc58686ddc5106e7586ec38bc3
0c0afb20158289f63a2b8a9d57502a932cbaabb4b255babeacac3bf0a6534d80
GET /images/xt2.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 376694
last-modified: Wed, 27 Apr 2022 12:03:09 GMT
etag: "626930fd-5bf76"
expires: Tue, 21 Feb 2023 22:14:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220487
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jTzg9UGKCZphTEz43jT%2FyFVHYAA1is7h%2Bc37dh1B8yHzRuVbHZ4ywUehlXYkbGsFiSjGwcEq%2BhQAWjth7%2BdREYXwJ2kgZM72ieqZgWMDz9tQSS9H71zJKUOl3%2BlJq0tNaQDaJVix"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e796bb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tk.learning8809.com/images/xt1.gif
200 OK 444 kB URL HTTP/2 tk.learning8809.com/images/xt1.gif
IP
File type GIF image data, version 89a, 200 x 200\012- data
Size 444 kB (443705 bytes)
Hash 8bc908398e73478d0b28d85191689891
5e9022d7583285c988d0acb55b6db7c920f3c3d0
c01d665a1abb0e10e3ac90119e3674db0363a112da7f8322c12bbafbe0bd88dc
GET /images/xt1.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 443705
last-modified: Wed, 27 Apr 2022 12:03:03 GMT
etag: "626930f7-6c539"
expires: Sun, 19 Feb 2023 14:14:58 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 422050
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3sxHK%2B31ED0%2BbXCNNDfv1%2BOUhqJgOSKsPM%2BuAS2iEdBxzgMwgEcXIsE5RBG0lnsZEmeuWcTbdCOiLDQz99aOnJ8bhNMhpWVhYtz55g4qlHUg%2BPjzfujKhSldfWXVpghxDf7iGQR4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e8988b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tk.learning8809.com/images/xt10.gif
200 OK 624 kB URL HTTP/2 tk.learning8809.com/images/xt10.gif
IP
File type GIF image data, version 89a, 145 x 145\012- data
Size 624 kB (623748 bytes)
Hash a32d51e341cd89abbece4c69d304f22d
66079b18e75f9469f4be074e9bc02ba0d85c4361
a9dfe27cd3c4cfd68f0deb55a593bcac7f77494883c5dc7dbe6f1301e150ab9d
GET /images/xt10.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 623748
last-modified: Wed, 27 Apr 2022 12:03:04 GMT
etag: "626930f8-98484"
expires: Tue, 21 Feb 2023 22:14:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220487
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TqotWw6HIKG%2B%2F4eVg86fnXMtLknjI6xpFSgLdCCT4bzivC0bRtWkTY6OpSOv5Dfh1cbeX4AII1HiCIHA4XvaXKRpJb4ZDzvX5rUHYFJcYDydlRlRW1bq%2BbSQRr6ntffkQWdqWfY6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e797cb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/252.js
200 OK 667 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/252.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 918959d26b8b16106cdd27dba1097d19
dc6492f4c850c60cb97380f597304566506a6649
adca852ae8c0928001bdfc7780418c9f2551c25142df98ce12bab96691d455f1
GET /yPS7hqfHgkFauS2djb/252.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:43:02 GMT
etag: W/"63b7b4e6-3f1"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OJRgqC4tOuHj3UDGrC5yGk1fEIEgkGJjVgWB99bWpLG9Bz%2FXlFDJ2KjffuC2Fr2%2Fzs4eVjx6mLYlVOMgs%2FlFOH1LmE20ovjE%2Bw2YfMo7ke7KaIgDBdWjSzoHWfY263%2Fuh%2BJEEYCs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b6d7bb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tk.learning8809.com/images/xt12.gif
200 OK 750 kB URL HTTP/2 tk.learning8809.com/images/xt12.gif
IP
File type GIF image data, version 89a, 200 x 200\012- data
Size 750 kB (749706 bytes)
Hash 5b3e843ec7923ace3c8c52e7e3d71608
65b34236bdea1d3bb438b23eaa028df8b587cc45
ea0a19f999b329c2bfbf1d2147109c6ddd90ad772d209b86229f0412324b0d47
GET /images/xt12.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 749706
last-modified: Wed, 27 Apr 2022 12:03:08 GMT
etag: "626930fc-b708a"
expires: Tue, 21 Feb 2023 22:14:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220487
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=heB4G41Cbg5FQlNudhjTZ7fbVA5l%2FimptJT%2B0D8YrTD5Q%2BTY1Mrkq5vbrkoafUZXWlV75WT%2BfkBaD8YerjnZAidZptKhh4Zn0og7R9U2%2FbSjLTwqS%2BoztlhuG4Z6EGxbntFdFf8%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e797ab524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/251.js
200 OK 1.6 MB URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/251.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size 1.6 MB (1640142 bytes)
Hash fc27195ea93724d9a771f429d985a8e4
8176d373773d378ff21a03a4580a1237735fb492
c2510420d6b2e829a48510417ab2b301333b6ceab94efb72511c80323346c4aa
GET /yPS7hqfHgkFauS2djb/251.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:48:37 GMT
vary: Accept-Encoding
etag: W/"63ca5565-427"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IZuh37b6uXOfCPzx6tQhNDjag53edfTnj4IacoRiXrQm1Z9mvk0fyG8buiKgLRUu1uhHtDBRAcjaevwqiccJj8sOgRFLjhKDdOkcPxC0kV5Frr7wO9zFzx6GWWQpmVziHNxs96gE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f0ab5b6d79b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/xx3.js
200 OK 1.7 MB URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/xx3.js
IP
File type HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size 1.7 MB (1693522 bytes)
Hash 9c1edfc4eebe43e0c244849531d494ef
5681d73675c514e64686e0421713dfdb88973879
43bd43384e058e8e8f7970ee1e41a00c9ffc7e7f34b1f6c7010859cf49247ccc
GET /yPS7hqfHgkFauS2djb/xx3.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:48:16 GMT
etag: W/"63ca5550-136"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x35Up67VXXz0LUQ8ux48qMAGvnxINtzvUgTvLnVLlt8%2B4%2BjI2KnpkWVxJtE%2FuQniAxLZmvNtSChn8S%2Fts7DnbzjrsxQkOPd7Jrmg6o2jLxqqnbQS1Dz7rUBLmUabBHohUkSi2VgJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b7d87b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c31440e3afc3201fc141954bb8178a65
ecdaab94c3885ea261e610b2a9aba15780e3b9b1
6301457a95cf66f8897ad0ac10cf2aa1bb30d2a5117bceefc02633432af9b6c8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6301457A95CF66F8897AD0AC10CF2AA1BB30D2A5117BCEEFC02633432AF9B6C8"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8457
Expires: Wed, 25 Jan 2023 13:50:06 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
tk.learning8809.com/images/xt6.gif
200 OK 2.2 MB URL HTTP/2 tk.learning8809.com/images/xt6.gif
IP
File type GIF image data, version 89a, 152 x 152\012- data
Size 2.2 MB (2168710 bytes)
Hash a0d945b4c30bc77735161545d1e00072
87c77a030ae771c3010d1215f73d1426e03f48dd
8a6920701b78e0d28ab0d1bc646ccb7a82f93eaf66399a435b55788356d594eb
GET /images/xt6.gif HTTP/1.1
Host: tk.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: image/gif
content-length: 2168710
last-modified: Wed, 27 Apr 2022 12:03:17 GMT
etag: "62693105-211786"
expires: Tue, 21 Feb 2023 22:14:22 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220486
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2FDXfOzZ6m%2Fck2spAKMJyjvNGTA1NG0Fm0Il0tXJFecMvnkGjxaAytd7Ge6KPm%2B3eE%2FMV6RGsl0IJv6DG620kD8%2FDUcit%2Fb%2B%2B50yEoGOYySI3tKlMZktWDw%2B1tHG6EaNB2ec%2Fa7k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5e7970b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c31440e3afc3201fc141954bb8178a65
ecdaab94c3885ea261e610b2a9aba15780e3b9b1
6301457a95cf66f8897ad0ac10cf2aa1bb30d2a5117bceefc02633432af9b6c8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6301457A95CF66F8897AD0AC10CF2AA1BB30D2A5117BCEEFC02633432AF9B6C8"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8457
Expires: Wed, 25 Jan 2023 13:50:06 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
sb.learning8809.com/yPS7hqfHgkFauS2djb/254.js
200 OK 825 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/254.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2a4d83f00ace61ac8f018f9178caa433
eef8e839472b79d16270c31df374fb188d074f66
afe47e57889cb3e143a5ddf6ab1ce6693e227f9538e1cb86efb602bd6c46f641
GET /yPS7hqfHgkFauS2djb/254.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:43:02 GMT
etag: W/"63b7b4e6-3f2"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KdDIGS1SZPrBU%2Fn7i0GE8hc%2BDWJgGfuXiEDRKd13rpofowRZhKbP6ZZHnNLAEQvTdXMlf1Ua9oAfGhaPTP61sawIw9SMQtkXsCi1JzNRAUQxOA3KMHJd%2FKWZyVbyfdHpQzXSXERw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b7d7eb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c31440e3afc3201fc141954bb8178a65
ecdaab94c3885ea261e610b2a9aba15780e3b9b1
6301457a95cf66f8897ad0ac10cf2aa1bb30d2a5117bceefc02633432af9b6c8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6301457A95CF66F8897AD0AC10CF2AA1BB30D2A5117BCEEFC02633432AF9B6C8"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8457
Expires: Wed, 25 Jan 2023 13:50:06 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c31440e3afc3201fc141954bb8178a65
ecdaab94c3885ea261e610b2a9aba15780e3b9b1
6301457a95cf66f8897ad0ac10cf2aa1bb30d2a5117bceefc02633432af9b6c8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6301457A95CF66F8897AD0AC10CF2AA1BB30D2A5117BCEEFC02633432AF9B6C8"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8457
Expires: Wed, 25 Jan 2023 13:50:06 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14736
Expires: Wed, 25 Jan 2023 15:34:45 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14736
Expires: Wed, 25 Jan 2023 15:34:45 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14736
Expires: Wed, 25 Jan 2023 15:34:45 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14736
Expires: Wed, 25 Jan 2023 15:34:45 GMT
Date: Wed, 25 Jan 2023 11:29:09 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 83cc768473d1683697a87bffc3af23c3
78456e9dc61e6684094e58a69ca21fef1b1eb2c8
e513d2321ebf06a654cce0d92a5a7526f2782f9459dda169055a86779b30f4c3
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 11:29:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 29 Jan 2023 10:45:46 GMT
ETag: "78456e9dc61e6684094e58a69ca21fef1b1eb2c8"
Last-Modified: Wed, 25 Jan 2023 10:45:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 718
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f0ab618afcb4f3-OSL
sb.learning8809.com/yPS7hqfHgkFauS2djb/xx1.js
200 OK 9.2 kB URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/xx1.js
IP
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 52977b3072d99ab1c619d0e0917e02cc
8caa25b6f13ef85659526e4b5ba433b3ee203461
70e92572c0156c6efaaa4b0b327b3ff403c69c9301422e834b0bf5b4291cae4e
GET /yPS7hqfHgkFauS2djb/xx1.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:48:10 GMT
vary: Accept-Encoding
etag: W/"63ca554a-407"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F4vzAPZUfM5FWsl5IDgEx1CZEhXPxFW63LiWrcwM1AIuZRAtoRcIpYbPacEleGeiH6hl73BlTiFOqV8K94R%2Fga4A1s%2BeqmKN9gQRWgivnin2FNHvr6HXSbAViYqCEQYN2HQup%2BFa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f0ab5b6d74b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0e7609-9fe9-4d8e-8e5d-d900bbac3bcf.webp
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0e7609-9fe9-4d8e-8e5d-d900bbac3bcf.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 946d8485d39fbe598dc6af86e735061d
4934319819697b4c89466949cd4ef93bb8b9c8b2
7bd130762bfaa189b24e3620e4a54b8e0cc7046ea2d917c37d11a8f248803840
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d0e7609-9fe9-4d8e-8e5d-d900bbac3bcf.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9343
x-amzn-requestid: 5786e270-1aae-45e2-b406-ad9ce4e90c20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHH8hEcBIAMFyjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5383-3b3fb6220035b4e34db73fee;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:05:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mVeNR5XqJqAXlMYpaB2oVd1YZDsXvbyDOOz3gkj1kn4roCQLb36RtQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 08:21:17 GMT
age: 11272
etag: "4934319819697b4c89466949cd4ef93bb8b9c8b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91b2e12a39dc4f63b9d52e8800cce1f2
42d5b4b4a091778d98c351f0002d8656449d0243
d4dbc79e3383e83f861ccf8cde3e78ba427a66cd3fa99c17e23ec935867de4ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 1988d3b3-5e1a-41fd-83f5-092eddb9185f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNys5GDKoAMFdbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe52-2349fde60b7db8a34c996717;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5_1j_Z6HZ3DSGFPAACJduM5D9eAqMQT42GgI61x8dHAmPQtUexpEYQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:59:15 GMT
age: 48594
etag: "42d5b4b4a091778d98c351f0002d8656449d0243"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
200 OK 29 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP
Hash 1a0b99a88addf6f8438563f3d253bb3f
4960510753e797c94d6a5cbea0bacdb35b585acc
f0dedf62a2ca7090132ce81c848271d2bef95d1630bbacc0722a1e98e24ac92a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:14:35 GMT
age: 22474
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7d50173f78bef1429160a353679dd91
695d7913e35a7e086d76c38d7c6f43462b0896df
4c761d1f9fd523750102aea0cce3f8c3cd92918d4c59853415745278292afa4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6231
x-amzn-requestid: 85406169-05a4-4ba9-8a20-5ed2badec48a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEXPmGB_oAMF7Zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb38ca-607a23df395511207f5958cd;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 00:58:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wgvWx8V8czjRN96TVCFkx21hxrAuvT7v7D8zcYjD7CJViXFkhp2FoA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:24:28 GMT
age: 21881
etag: "695d7913e35a7e086d76c38d7c6f43462b0896df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b458c619b07de23b3620f392b0f56f6
e45a3cfee589406e1ea0f1ebd6e8d321487474e1
9927c7a8e606180964b6e052e1eb2bacb007d05a46c1f04e28c48a74096d3c03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8736
x-amzn-requestid: 65bdef1c-0389-4d16-b5fd-931d4753d75d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuF_4oAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-1569aec44c54b7c87663feae;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3fzmJ8iZrVvBDurLOdAJXB6uuvk6KHvIBuKzMKAMSjKUzWICg1cCjQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:41:44 GMT
age: 24445
etag: "e45a3cfee589406e1ea0f1ebd6e8d321487474e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/aef559b3dc73cdd7cce2813dea6405d1.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/aef559b3dc73cdd7cce2813dea6405d1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 22dc1a988f61206c766b441079db0a0f
57ab3566df5b18fc6413c7f512247a97cef7cbcf
e6a8eba7d8696554907d9add24b87a8736dc90fab028a6d4e8a621408022bbc2
GET //upload/vod/20230124-1/aef559b3dc73cdd7cce2813dea6405d1.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10499
last-modified: Tue, 24 Jan 2023 01:30:10 GMT
etag: "63cf34a2-2903"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/8a7fd232bd135b61a9eb210b8de83ecb.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/8a7fd232bd135b61a9eb210b8de83ecb.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 6acc89b90540aa246e77f227a268fced
0aa33b925d2ac12869f22bf73ea98505da866bc6
1cc80637b50548e7d4a9869f21c32078ae3f39348b1c43a40797efde33e183ef
GET //upload/vod/20230124-1/8a7fd232bd135b61a9eb210b8de83ecb.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11351
last-modified: Tue, 24 Jan 2023 01:30:08 GMT
etag: "63cf34a0-2c57"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/2d15e4f8c583417418fe7c786b054c72.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/2d15e4f8c583417418fe7c786b054c72.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 75ef1ce35cd444236952f2592ef7fc43
c8c679d8d917dbcf8b82fee1e5fb24c224b721f4
7475bb913cab3db1da1e85e4c69151e4fa82c3768a0c8511ad287dabbe9560ec
GET //upload/vod/20230124-1/2d15e4f8c583417418fe7c786b054c72.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11838
last-modified: Tue, 24 Jan 2023 01:30:08 GMT
etag: "63cf34a0-2e3e"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
js.users.51.la/21278761.js
200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21278761.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash f699a4e503fc96bb448fbeeacd19e72b
02d1fa6a3772ec3c809a06b2c67abd16f2c1469c
3865324eadef796b018a5eee7bbdd260fd2ee812abe42204517b2ac6c07d779e
GET /21278761.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Wed, 25 Jan 2023 11:29:09 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=ab7392029fb00165fbb; path=/
HWWAFSESTIME=1674646148092; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
www.gg123456789gg.com//upload/vod/20230124-1/11b4cb51b3b9b06b5fa9fa90d41be243.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/11b4cb51b3b9b06b5fa9fa90d41be243.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 7d092f6adc9c6e6f6b5f42e241c6d199
51434c1ba1bde51c4233bef36557d7a42e46fa58
8f9de54d34c1d2fbf58906f348d66d46c557f3375d97b70fecb8b96f0c003702
GET //upload/vod/20230124-1/11b4cb51b3b9b06b5fa9fa90d41be243.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11519
last-modified: Tue, 24 Jan 2023 01:30:08 GMT
etag: "63cf34a0-2cff"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/bc2760914c33a75f719d0998040902d4.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/bc2760914c33a75f719d0998040902d4.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 89294f80f702ee1518ceab813e81fc5a
221a9d411774320ade2cb34b593f16e767110f99
5728235eacde221eee4a55f8ef717c3d62975a52c2fdffb64eed29b44ba0863d
GET //upload/vod/20230124-1/bc2760914c33a75f719d0998040902d4.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10119
last-modified: Tue, 24 Jan 2023 01:30:10 GMT
etag: "63cf34a2-2787"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/b75d83484f4985e615e93faf739e55ff.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/b75d83484f4985e615e93faf739e55ff.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 4624e396fde336d9b6df643f026b5c7a
30b34fda5ef22a1ebf238f2b323648ad6a3cbca4
670f9fc91ac1c00086c7d88fb7eda9568440b241393d84904483601d17f911de
GET //upload/vod/20230124-1/b75d83484f4985e615e93faf739e55ff.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10592
last-modified: Tue, 24 Jan 2023 01:30:08 GMT
etag: "63cf34a0-2960"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/09e3769bf89eb30d158149482bd29c94.jpg
200 OK 9.8 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/09e3769bf89eb30d158149482bd29c94.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 518d52844a9c4902e007c83569573fb2
45fceba934535742fe0f23315538900151955142
ce41d805d5f522d5017012d569c9d1ac38d654fb7332c7f46fbb8582b0289b65
GET //upload/vod/20230124-1/09e3769bf89eb30d158149482bd29c94.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 9776
last-modified: Tue, 24 Jan 2023 01:30:13 GMT
etag: "63cf34a5-2630"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/8960725df9c2e749ec2f9aee922b9d1a.jpg
200 OK 9.8 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/8960725df9c2e749ec2f9aee922b9d1a.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash cca7d2aac550d5f4da1eed3529c4fc34
4e9cfa651e021cfcb6ad79afd23584d869847361
135ec91881de96614806a9830e43863e9f300c2d6b17348b24e91b685f5dacea
GET //upload/vod/20230124-1/8960725df9c2e749ec2f9aee922b9d1a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 9752
last-modified: Tue, 24 Jan 2023 01:30:13 GMT
etag: "63cf34a5-2618"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/839dc26a830a0e967354012718ff0b2d.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/839dc26a830a0e967354012718ff0b2d.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 10fa5fe40aa6bfb5703e0c55d96a4eed
4efc9e6f9ce4bdee1ba5d5b27d2f45ea605215c4
42f0293a90f20d627c1c1a0b004c325d425103278892c88aa65e3938a9a39739
GET //upload/vod/20230124-1/839dc26a830a0e967354012718ff0b2d.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10242
last-modified: Tue, 24 Jan 2023 01:30:13 GMT
etag: "63cf34a5-2802"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/8dcbaf76b90eed7e251e080ac8f85c98.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/8dcbaf76b90eed7e251e080ac8f85c98.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 47c2280d8186971d399a6596fc67cc01
0029b2e797b0898111126d5d23ec7a7452f12ec7
88c6b0531894201f81c3348224fa77ac2d05a9cf1eaabe28d3c9260fe3b0b75e
GET //upload/vod/20230124-1/8dcbaf76b90eed7e251e080ac8f85c98.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11227
last-modified: Tue, 24 Jan 2023 01:30:13 GMT
etag: "63cf34a5-2bdb"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/4e4e55c6f62f4e374db7b8784783e221.jpg
200 OK 9.2 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/4e4e55c6f62f4e374db7b8784783e221.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash ff691d543046b338b704af170287decd
3800369992911a98d23d01e9babc81493f3299dd
b8e4b37850a0c63d6d3dd44bfaaa59abe9dbe52b8cdd69a132f190243a02bb19
GET //upload/vod/20230124-1/4e4e55c6f62f4e374db7b8784783e221.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 9218
last-modified: Tue, 24 Jan 2023 01:30:13 GMT
etag: "63cf34a5-2402"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/fd3e95e53bdb34fa53bcf9c3c3bee5e2.jpg
200 OK 7.0 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/fd3e95e53bdb34fa53bcf9c3c3bee5e2.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 073a4924a8ed0b86bebc4d12c2dc1f25
0faa0fcf885a71f6e4d9074110b83c5ce672bf6c
ebf7c30a99390cca179a34d4e9ae90dbcadcf6f4e064e48c7a23123d20d84f47
GET //upload/vod/20230124-1/fd3e95e53bdb34fa53bcf9c3c3bee5e2.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 7045
last-modified: Tue, 24 Jan 2023 01:30:12 GMT
etag: "63cf34a4-1b85"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/4af7cf55a9a77f5348ed9f782a85b37b.jpg
200 OK 14 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/4af7cf55a9a77f5348ed9f782a85b37b.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 9d52ba3de3da1d6993288d24a10d6621
cef51e0b2a211ad376ca49a79b3ef3f0362fb6eb
abaaa3d740bc95495a0dd615b4e2f06606217cf55b729263d93ef22d88ba403c
GET //upload/vod/20230124-1/4af7cf55a9a77f5348ed9f782a85b37b.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 13956
last-modified: Tue, 24 Jan 2023 01:30:12 GMT
etag: "63cf34a4-3684"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/ca1e7b67e7a19cdfd9ba92abbaf6a1cd.jpg
200 OK 9.4 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/ca1e7b67e7a19cdfd9ba92abbaf6a1cd.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash b4a2877f69e8b11b211054f5a59fd7d9
5b86573debc4322679058cfbd4560a56a7316aee
1a0eaba4adca58d6e527c2de12c0a0dce060dcaef68c2e4cda9abdfbf9b3ed85
GET //upload/vod/20230124-1/ca1e7b67e7a19cdfd9ba92abbaf6a1cd.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 9405
last-modified: Tue, 24 Jan 2023 01:30:12 GMT
etag: "63cf34a4-24bd"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/a151653799c4026ee886fbe8914fc72d.jpg
200 OK 15 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/a151653799c4026ee886fbe8914fc72d.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 259b80e0e73faa3292e1eced6350372a
26daaa78f60555b23b4e701743b3e9723734c734
5e0de7e4d769a38e718ea2b1240c6a74ef349061190594bc98792ed0f0fcd10d
GET //upload/vod/20230124-1/a151653799c4026ee886fbe8914fc72d.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 14587
last-modified: Tue, 24 Jan 2023 01:30:12 GMT
etag: "63cf34a4-38fb"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/1e0ff937b681eae78394934e2c2e105a.jpg
200 OK 14 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/1e0ff937b681eae78394934e2c2e105a.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 01f67e851928755fef599beb034b0e15
c70d0823b22b9c9f9478c0f5694a0f481e2b7cb0
7565e334e50354367cdd7a6943a151599578b9ca58a004921368b4b03390d0c7
GET //upload/vod/20230124-1/1e0ff937b681eae78394934e2c2e105a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 14305
last-modified: Tue, 24 Jan 2023 01:30:12 GMT
etag: "63cf34a4-37e1"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/075b92ffc500a10b78d9991baf431f10.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/075b92ffc500a10b78d9991baf431f10.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash f8007885f595d52613592195ee8239c0
2a1a1c80851c4d89e99b7b25805633604ffd643b
ad941654353e4b79b0bb697d3944a96bff8fd186acf419bfe41e12198fee2bc9
GET //upload/vod/20230103-1/075b92ffc500a10b78d9991baf431f10.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10882
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-2a82"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/57d47750bedf989be975e0bc11c84952.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/57d47750bedf989be975e0bc11c84952.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 2c46854204976d228296e50013abc02b
f02f7982af39ec08b8edfb80bd3368def83469f5
eb6303d55ab5015cb35e9d90ac8604e5193a5e25b6008fe9059423d5528d4c5c
GET //upload/vod/20230103-1/57d47750bedf989be975e0bc11c84952.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12630
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-3156"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/39500d2d0dee6f775109a788429bb6f1.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/39500d2d0dee6f775109a788429bb6f1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash f2fc8f397aa6dac1cd9cf7babcb580e7
9980cc3e78f9868bb2f11a864a3535f44249499f
a7154a336ce23bfc207d860e051865b6143ff15fdad0f86962126579437a77b4
GET //upload/vod/20230103-1/39500d2d0dee6f775109a788429bb6f1.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11848
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-2e48"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/8e4e79ebd6b033567704c61c9e994648.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/8e4e79ebd6b033567704c61c9e994648.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 5ace24fa8cfd29138634aca8f27b0182
6343ba02b84fff6c3b310380ac6e2b6c7561e8be
974e05a4ba4e0f73958b1bf222f961f2e19ad42047b9bc7541f93d38e51313a5
GET //upload/vod/20230103-1/8e4e79ebd6b033567704c61c9e994648.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10201
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-27d9"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/451f846caf1463d47aee3cd41190dfb1.jpg
200 OK 9.7 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/451f846caf1463d47aee3cd41190dfb1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 73d6f95c5e2d7606b3c7fd3c37543d39
5aea58d812e5a9d2ef1294a2ffca797449d38597
151d473ac5d6aa56a773468d45a054d68c67cae73892c022365e22125f0a7070
GET //upload/vod/20230103-1/451f846caf1463d47aee3cd41190dfb1.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 9693
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-25dd"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/5c78eb2da436e09a511a048417a9f9c9.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/5c78eb2da436e09a511a048417a9f9c9.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash b508e881a78c521c20ace081ef3f1648
82053dbeae5e7127845e07b99b19caba260a52d7
4554e1fe63a3955780450c29983b7ada310375f38e01eff016691a7273a22f1a
GET //upload/vod/20230102-1/5c78eb2da436e09a511a048417a9f9c9.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12008
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-2ee8"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/9cd9f7c2a3ac2832e855e0af45f90f5a.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/9cd9f7c2a3ac2832e855e0af45f90f5a.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 0dcdca48e51426f6fb0475c95ac04ff2
87021f3d0fdcb5af9fcb6c43ae3150ed753567a1
421f5253b8c55f77607ed9aa71a0e17a29f728fdd0878076e6d918a9e9e54c1e
GET //upload/vod/20230102-1/9cd9f7c2a3ac2832e855e0af45f90f5a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11492
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-2ce4"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/c67a0ef87a151654bf8a4d5312ce50a2.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/c67a0ef87a151654bf8a4d5312ce50a2.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash d93ac08f039a9440c7ebf21192cd64b6
f0efd394c83d791b95f67821ef00e9367d328923
58abd7ec60cdc5d0b79c820dd76184c07c4c4acaf320d814d6b1bdedbc4554d7
GET //upload/vod/20230102-1/c67a0ef87a151654bf8a4d5312ce50a2.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12796
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-31fc"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/fb8f33e2d45291f55742c65af433e472.jpg
200 OK 8.6 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/fb8f33e2d45291f55742c65af433e472.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash f5af197da3c9e7247ac0fed61ed85c40
ab4688ca92d510fd3c647bc82a1577c300f5c899
44fe9d5c0b08d272c153938aa7b7b6c8af752bbb99d0dbae00e9754f32c62100
GET //upload/vod/20230102-1/fb8f33e2d45291f55742c65af433e472.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 8568
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-2178"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/107f62761d40d7242305f172b6bf74d4.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/107f62761d40d7242305f172b6bf74d4.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash d347fd9450e5f44f461496672bbe3eeb
f45ee1b3fc9e74004bdf7517b9ffda321eb6d201
e925627d776916305c6fb4108e6c945d244916ae682c73816ebfd46721ab3b6c
GET //upload/vod/20230102-1/107f62761d40d7242305f172b6bf74d4.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10358
last-modified: Mon, 02 Jan 2023 04:30:04 GMT
etag: "63b25dcc-2876"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/66b782a1707a273ec25e4b4fe6912e4e.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/66b782a1707a273ec25e4b4fe6912e4e.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 5dbe9f7cd103e775930790270fc29674
b9c232b08270ec63921c9d4e486ce014d0c79ec6
8b729e02eb5b021d629744bad4648c52fdf286a64f7db3f1e36bdd3ecef9d861
GET //upload/vod/20230124-1/66b782a1707a273ec25e4b4fe6912e4e.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12661
last-modified: Tue, 24 Jan 2023 01:30:17 GMT
etag: "63cf34a9-3175"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/cca770343423e7b0da4a13ccc9790188.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/cca770343423e7b0da4a13ccc9790188.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash f6742be64d228b69780e2c84f81d6e41
1d6d1855f3983640361616f18e86ee1a9d5e7c67
dd848fb1d41401e7da15099118cac084b07b9625a6036eaed27616d2e3bc944d
GET //upload/vod/20230124-1/cca770343423e7b0da4a13ccc9790188.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12543
last-modified: Tue, 24 Jan 2023 01:30:17 GMT
etag: "63cf34a9-30ff"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/5a7eeb73c34259987710ce436d10b479.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/5a7eeb73c34259987710ce436d10b479.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 11153e50dacc61d95a1c38fcc85a20b4
804a81de9b4e7c6bd4c5eb83f28ce77ced147dde
a95ff5e5ce462dc7e73e48b7c5bd27aee971d65eee7ff751556e14190dee15cb
GET //upload/vod/20230124-1/5a7eeb73c34259987710ce436d10b479.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11580
last-modified: Tue, 24 Jan 2023 01:30:17 GMT
etag: "63cf34a9-2d3c"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/64a0addf6645df0c0537f8b3841ed583.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/64a0addf6645df0c0537f8b3841ed583.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 742a54617da6dca3913c188d9895d2da
dbd40be436440622c46bcd7bcaedea1dda723fcd
4ef29d52450fbaf06f730d29cc01ccf569800d439c4f890105906bf319d06dc5
GET //upload/vod/20230124-1/64a0addf6645df0c0537f8b3841ed583.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10616
last-modified: Tue, 24 Jan 2023 01:30:17 GMT
etag: "63cf34a9-2978"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/c373c12553edca1632d8284fae1f6f50.jpg
200 OK 8.9 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/c373c12553edca1632d8284fae1f6f50.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 4029a0909f92daac50cf982754beb210
18b1909e0b38d54974fcb90638a371e998df72a0
99dae691a76986c424a41665fdebf68bd551139dc281261cc63db3fa8a20b82d
GET //upload/vod/20230124-1/c373c12553edca1632d8284fae1f6f50.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 8859
last-modified: Tue, 24 Jan 2023 01:30:16 GMT
etag: "63cf34a8-229b"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/00dcd564c897e72389f148655d09d511.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/00dcd564c897e72389f148655d09d511.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 582ea82c6087055ca4897618ab7a4cdd
3fa0dabbf643703539423494d8e747d8f436c245
cbb1c838c8b16f4cabde1529ed29f7ef1126c03ec3ade451958471bf0fc2ae50
GET //upload/vod/20230124-1/00dcd564c897e72389f148655d09d511.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 10137
last-modified: Tue, 24 Jan 2023 01:30:16 GMT
etag: "63cf34a8-2799"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/ea9e5312b25eba498372b212a65cb617.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/ea9e5312b25eba498372b212a65cb617.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 5c6f464fcb3e9fe2b425f497d66ce3b7
60348d94b5aa627052aaf125bce1e5b7fa7adb50
da7aed3c9ebbb7fcd3b6bbd6c0f5a2c3e48494a148ca7ab64c72a6d59bd1e01e
GET //upload/vod/20230124-1/ea9e5312b25eba498372b212a65cb617.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 9963
last-modified: Tue, 24 Jan 2023 01:30:16 GMT
etag: "63cf34a8-26eb"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/fddc05cbf6d623f12a5b98b13653a1a4.jpg
200 OK 6.9 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/fddc05cbf6d623f12a5b98b13653a1a4.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 7d8338a5be564d2eafce3b8cf13d9b18
3a0f690f3f94b8ee937f41c69f2ffbf59e439f37
6f1a1a476589d1e27c89ee0b5a65d5ec529c7b8c919a2d060a5865c48a1ef1e5
GET //upload/vod/20230124-1/fddc05cbf6d623f12a5b98b13653a1a4.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 6896
last-modified: Tue, 24 Jan 2023 01:30:16 GMT
etag: "63cf34a8-1af0"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/6aed01979f3ed9d3922c937935952118.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/6aed01979f3ed9d3922c937935952118.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 1709eff1fd845abff72315ca9de334d1
8b86cc51f24cee4a48f33e68209b108b718a6e5f
34e67ec3b2c91ed4d31c3c43ac33b5e7401b5d8d62f29b23e061dd611a30260c
GET //upload/vod/20230124-1/6aed01979f3ed9d3922c937935952118.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 13447
last-modified: Tue, 24 Jan 2023 01:30:16 GMT
etag: "63cf34a8-3487"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash bbf96e0ea54e39008bb1711abadcc749
4f18901617641bde847b6586eb5f5402356c6bba
c362bde06835b58e0a5881109a6b6f4bbc557778d5af93b7dbf5d475bb7e9335
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121646
Date: Wed, 25 Jan 2023 11:29:10 GMT
Etag: "63d03bd3-1d7"
Expires: Thu, 26 Jan 2023 21:16:36 GMT
Last-Modified: Tue, 24 Jan 2023 20:13:07 GMT
Server: ECS (dcb/7F83)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ETrFs-EmXJCV43d75j0q9WglNqH6DrK2MQ0QoPHf6_6iVh_PKi5EBw==
Age: 3809
www.gg123456789gg.com//upload/vod/20230124-1/64968faa57428b7990a2e188437d1a9b.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/64968faa57428b7990a2e188437d1a9b.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 189bbe0b5994d391c5fe882877adc56d
29aaee74132e38b7bef9d62ae3c9a54ae23d25f2
43b0f27ea60c12172c0c84efb1f04aa56f56f80080affcc6aec9ce9e4e54db4d
GET //upload/vod/20230124-1/64968faa57428b7990a2e188437d1a9b.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 13116
last-modified: Tue, 24 Jan 2023 01:30:15 GMT
etag: "63cf34a7-333c"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20221202-1/e56ad8f73213ecf90a37e976ee04fdb6.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20221202-1/e56ad8f73213ecf90a37e976ee04fdb6.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 1e2dbbd9ce11fa40d488f69435a8050d
17e647ee8d7e435ba4038590131f81bdf29910a3
1e836f129ab861fb7e1688c45374b1336d11af9ff3f3121e41f78d7a24c3f398
GET //upload/vod/20221202-1/e56ad8f73213ecf90a37e976ee04fdb6.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12063
last-modified: Fri, 02 Dec 2022 01:30:02 GMT
etag: "6389551a-2f1f"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220531-1/51c4873e0809d56be0fce8d3f67c389a.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220531-1/51c4873e0809d56be0fce8d3f67c389a.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 768-769, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 10.011994\012- data
Hash be311ae69aa806e335bf3f486c9c1742
1f03f482ff608cab3163afdeab73c2ed62cf2de0
385ace7701f1372da6741105a4657a1c7987ce3a5a699f472dc86b5dcc0dcd03
GET //upload/vod/20220531-1/51c4873e0809d56be0fce8d3f67c389a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12628
last-modified: Mon, 30 May 2022 22:30:19 GMT
etag: "6295457b-3154"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220531-1/d7aae5cd95abf917a164034caf87219d.jpg
200 OK 14 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220531-1/d7aae5cd95abf917a164034caf87219d.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 15016e4dc41923e35678f6879d6c2eb2
56522e64a0e2257181aa35e32e9023801e3dfeb2
b016d08b5926768cbb1dd91adc16a0f0302bd1d3b1fcbfbe4dd30f66cfe0a9eb
GET //upload/vod/20220531-1/d7aae5cd95abf917a164034caf87219d.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 14145
last-modified: Mon, 30 May 2022 22:30:19 GMT
etag: "6295457b-3741"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220531-1/bbedf0d044382a6f05172a4e45bc5752.jpg
200 OK 15 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220531-1/bbedf0d044382a6f05172a4e45bc5752.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash e102994da73de1c4f40db37257545fb5
348d2ece7d32a7ed1c2af957c22eebb8863377d0
4638e1b3d37bcc0f7541ffd91879dc9f6bd069cdd76675562b6038a020925af9
GET //upload/vod/20220531-1/bbedf0d044382a6f05172a4e45bc5752.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 15357
last-modified: Mon, 30 May 2022 22:30:20 GMT
etag: "6295457c-3bfd"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220516-1/25b53882b68945b6ea9430cd4295982c.jpg
200 OK 33 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220516-1/25b53882b68945b6ea9430cd4295982c.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 260x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1a1fc7657b8d6926a53055671bee349d
68ab1bc12c02da3a8def2daa09a789991b8c54e7
a9189a3a524e8d0369e25ee5fe11e37f9730f4bf1860f33d082959ebece8a9aa
GET //upload/vod/20220516-1/25b53882b68945b6ea9430cd4295982c.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 32778
last-modified: Mon, 16 May 2022 04:30:15 GMT
etag: "6281d357-800a"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220516-1/775ea27fcc79d57b47c0daa2231eeddf.jpg
200 OK 34 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220516-1/775ea27fcc79d57b47c0daa2231eeddf.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 260x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 02fe4fa1cab54aa6afa13de6a5ec35a1
f6ad518dfccb3aeff5d5f809d288fdb7ab177519
e7388077486f760cc4b1ac6a8d84e7ba716cc74ffccd8b58bdce081a11994348
GET //upload/vod/20220516-1/775ea27fcc79d57b47c0daa2231eeddf.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 33634
last-modified: Mon, 16 May 2022 04:30:15 GMT
etag: "6281d357-8362"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220516-1/2c88d74092f9c5084b88232d74335828.jpg
200 OK 24 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220516-1/2c88d74092f9c5084b88232d74335828.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 260x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8e76298247b86c93518d6084cb4cccfe
c5da11c703b36e9415121d1e9f6ae7179c004ec3
95add14ccb4e022cf7194a6b5da42ab3e38bf171796f45a6d68733c6465dece9
GET //upload/vod/20220516-1/2c88d74092f9c5084b88232d74335828.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 23462
last-modified: Mon, 16 May 2022 04:30:15 GMT
etag: "6281d357-5ba6"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220515-1/3e6a21934a0acf4dc40c6faaa80e31e4.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220515-1/3e6a21934a0acf4dc40c6faaa80e31e4.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 210x299, components 3\012- data
Hash bec220b3b49b05c6b75d762efb631eb7
fd0f46d366a98e8b5c8a51f2062b648a688b1252
d653222e02b0dfb70d11368109bcb69e8d2a1ec0c0d7831d947375b772df96c7
GET //upload/vod/20220515-1/3e6a21934a0acf4dc40c6faaa80e31e4.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12353
last-modified: Sun, 15 May 2022 04:30:18 GMT
etag: "628081da-3041"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220515-1/b4849c7ed812f3e4b1e6d9ca08467f8c.jpg
200 OK 18 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220515-1/b4849c7ed812f3e4b1e6d9ca08467f8c.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 210x299, components 3\012- data
Hash d6c8ad2c7eac5b55275ad3906346b9b1
b4e791297c2aa69be4ee4166fc70f15b76c1103b
35742e874e60b23deec883cd5179e7c350f334fde1f07e5f9f2c1a1a7f2f18f6
GET //upload/vod/20220515-1/b4849c7ed812f3e4b1e6d9ca08467f8c.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 18119
last-modified: Sun, 15 May 2022 04:30:18 GMT
etag: "628081da-46c7"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/14c7979e7ebd99fbae44e7d936a42e2b.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/14c7979e7ebd99fbae44e7d936a42e2b.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 1b8ef330a3325d06e8441da4339bf8f9
897fc9aaec577abd3a81e486c0f3a401b6c8ea18
c0f6aed8b2f5442fc0ec7a604b8eb293b4d76d2299450ecf397c29d85877310c
GET //upload/vod/20230124-1/14c7979e7ebd99fbae44e7d936a42e2b.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 12924
last-modified: Tue, 24 Jan 2023 01:30:09 GMT
etag: "63cf34a1-327c"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/f760a4bc0e33b6a169314a09dea7e7c7.jpg
200 OK 8.5 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/f760a4bc0e33b6a169314a09dea7e7c7.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 739bb15cf778dd9ca4e1c82372663a80
af7e0d777cd5822252c5c2d4b9576658f814ce0f
bf711da0f7f529679a23a8d3bf4dde5e2b389ed5b0350668a48d89e87917b240
GET //upload/vod/20230124-1/f760a4bc0e33b6a169314a09dea7e7c7.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 8499
last-modified: Tue, 24 Jan 2023 01:30:09 GMT
etag: "63cf34a1-2133"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/be46a0346dac59634f78d6787b197a88.jpg
200 OK 9.3 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/be46a0346dac59634f78d6787b197a88.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash d9e3a8ee02c1a2102c7d3a51452ae54c
f93e7b6e27cd6107362651093a88e8bde720877c
e98f3439486ad1331e6f0f906b18d1278b245807dd9314fd89514cc479bfe299
GET //upload/vod/20230124-1/be46a0346dac59634f78d6787b197a88.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 9349
last-modified: Tue, 24 Jan 2023 01:30:09 GMT
etag: "63cf34a1-2485"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230124-1/ca43a7d1625c54761ceb659d7b4b37ca.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230124-1/ca43a7d1625c54761ceb659d7b4b37ca.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 87ab6da44e3660c2ef008b7508946248
f4c7f1ea711253c7a7c2c6173bc2034cb1c6e8ac
6b62d8ce69a44ca1fb98000a8718fed9841401c028aba2d1eb4b8755797d1110
GET //upload/vod/20230124-1/ca43a7d1625c54761ceb659d7b4b37ca.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 11258
last-modified: Tue, 24 Jan 2023 01:30:09 GMT
etag: "63cf34a1-2bfa"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20220515-1/10d13a7170bdc910487afba5201cbbb3.jpg
200 OK 76 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20220515-1/10d13a7170bdc910487afba5201cbbb3.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 625x900, components 3\012- data
Hash 8df7397c01f50d1a0216d5aa5df5b616
8d6f18e7901340760b112b8ee25487d732b64e3c
c10afccbf2eb99bc0f8f0b121ceaa6393f99ee707ec81d7b00d7ff7cb499c0c1
GET //upload/vod/20220515-1/10d13a7170bdc910487afba5201cbbb3.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 11:29:09 GMT
content-type: image/jpeg
content-length: 76403
last-modified: Sun, 15 May 2022 04:30:19 GMT
etag: "628081db-12a73"
expires: Fri, 24 Feb 2023 11:29:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 87377a4714ff6d2aef3c4572d2f2a02a
6ed0aa6fd03c0a598f154180b74935f95085c0f9
8a2021df681aac6732de7cf0a2e247a83445eab9a831efa5eb3e340eddeb2a38
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 11:29:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 29 Jan 2023 08:30:36 GMT
ETag: "6ed0aa6fd03c0a598f154180b74935f95085c0f9"
Last-Modified: Wed, 25 Jan 2023 08:30:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2352
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f0ab673bafb4f3-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 7dfab0b7d93b8becbdf72cc753d25fee
f7c457676fa10e704336eee52ac3cf8207d09cfc
912a987f9b6da2a9fab2d2da40399f0012b05ae922cc3980b0846671bbe6347f
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 11:29:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 29 Jan 2023 09:44:18 GMT
ETag: "f7c457676fa10e704336eee52ac3cf8207d09cfc"
Last-Modified: Wed, 25 Jan 2023 09:44:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1938
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f0ab69ef17b4f3-OSL
sb.learning8809.com/yPS7hqfHgkFauS2djb/253.js
200 OK 1.2 MB URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/253.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size 1.2 MB (1218238 bytes)
Hash 8b02721b423c51433b7c4fb364c42de0
fe0040152f4067f6fa5f638da0cac37876605954
1955d2aeaf0a91ad24d0a7b6f62f927b1fdb100292014e9fe12d6316f45333e0
GET /yPS7hqfHgkFauS2djb/253.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:48:47 GMT
vary: Accept-Encoding
etag: W/"63ca556f-421"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQ9bOg5jOBTjCalMjkMGqNzXcDazAaN9s%2BrhForocP9y62lbZhsuUEO9O69lTmwyrUoPEUimFz6mXPzj1fYzK%2FFFvvN%2BEOyNTSEql%2Bm7KN71RrAsiW83xCvu%2BytJy1zBlQKuKSS6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f0ab5b7d7cb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?1138ebd140b7eb3f7d7147d4a8915456
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1138ebd140b7eb3f7d7147d4a8915456
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (615)
Hash f6387d5d331a0330782d3030b2b0078d
5ceacd996f326e1bbcd37d6d7fcdb7d9f3f88bd9
0970e51c5502d8833a1cb8e69e0c70c390e6f87c9da856f28e7b1604f2451f70
GET /hm.js?1138ebd140b7eb3f7d7147d4a8915456 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11253
Content-Type: application/javascript
Date: Wed, 25 Jan 2023 11:29:10 GMT
Etag: 1fd60d05c403d78c793a74693a0a88a3
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=F81A5BE5CCCB2B2C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ia.51.la/go1?id=21278761&rt=1674646147814&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1674646147814&tt=shebiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx3.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.ipc21.com%252F
200 0 B URL HTTP/1.1 ia.51.la/go1?id=21278761&rt=1674646147814&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1674646147814&tt=shebiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx3.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.ipc21.com%252F
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21278761&rt=1674646147814&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1674646147814&tt=shebiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx3.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.ipc21.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Wed, 25 Jan 2023 11:29:11 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=585aeb2cb5763ded06b; path=/
HWWAFSESTIME=1674646148392; path=/
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1077249149&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.ipc21.com%2F&v=1.3.0&lv=1&sn=30294&r=0&ww=1268&u=https%3A%2F%2Fklx3.zhgmjglh808k.com%2F&tt=shebiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1077249149&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.ipc21.com%2F&v=1.3.0&lv=1&sn=30294&r=0&ww=1268&u=https%3A%2F%2Fklx3.zhgmjglh808k.com%2F&tt=shebiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1077249149&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.ipc21.com%2F&v=1.3.0&lv=1&sn=30294&r=0&ww=1268&u=https%3A%2F%2Fklx3.zhgmjglh808k.com%2F&tt=shebiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 25 Jan 2023 11:29:11 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5FDD03E2B8897A76; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
sb.learning8809.com/yPS7hqfHgkFauS2djb/zylm.js
200 OK 0 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/zylm.js
IP
GET /yPS7hqfHgkFauS2djb/zylm.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 04:14:42 GMT
etag: W/"62cf9832-3b7"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cok3X2UCYzVUVvrvTRyS6vhVAy8bFsovcmMWarY1qB3C3HNA5pnDUbQo6F0EMC5yr9dkAaliOrmHIx6DiBgx%2BDKnYjEV27mq809OrP4NSu12cjatsIwTl%2FG5bZtxyouYRFk9E4og"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b7d84b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/dh1.js
200 OK 0 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/dh1.js
IP
GET /yPS7hqfHgkFauS2djb/dh1.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Wed, 05 Oct 2022 08:47:05 GMT
vary: Accept-Encoding
etag: W/"633d4489-972"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zk5guSie6HL7xD%2F9rpsguVowGITPlMulYD5ccCpdPNErSUjgv5YxBFmAGT8KobjrdDsks9oZBQ3O0ZHpusZY%2BfscQVDR3xJBUN0SSo%2FgzJFuxECqS%2FS2d7ny3p5oxfoHuFDL1tm0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f0ab5b7d8db524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/xx2.js
200 OK 0 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/xx2.js
IP
GET /yPS7hqfHgkFauS2djb/xx2.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:48:14 GMT
etag: W/"63ca554e-136"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gRagleYuveCacrU97mhByJnWJYs2fS5hTm45umdscrf%2BJIkNHqf6PSl9uIW%2Bzc%2F%2BCgB2cm784aGepPXYVNJrsfiYcYeH5W%2FWiNt9lioNPFg%2FiKm7pzrYi%2FMITSRyF0taMziFiIwb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b7d8cb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/wz1.js
200 OK 0 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/wz1.js
IP
GET /yPS7hqfHgkFauS2djb/wz1.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:43:02 GMT
etag: W/"63b7b4e6-1b5"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rFD4WawFf7iioJ1XITKCAUaS3Vv1jrl9%2B1Ot%2BzbZEGAKmxvxiSShooZwKmLeEoUMSCOfAYzXCcJamC85W%2ByLfhjoiEyTTJ7jkKizrlOkI5NFgQP6pz4ze8fVtUy1NhM8WwsIOnS5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b7d81b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/wz.js
200 OK 0 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/wz.js
IP
GET /yPS7hqfHgkFauS2djb/wz.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:43:02 GMT
etag: W/"63b7b4e6-1a4"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QeJK6s7NBwkW78hc35m074EcRSbnJ8H1tfaAEpzCmSRhBZHTN3VytHqFqYcouCGly9CRgm4QhW7ajxGHskCBQGargHffyUmw74xawXyiT4lNs9htO9Hr4p2h%2FYDIswFEx2XkBzjJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b7d7fb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/250.js
200 OK 0 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/250.js
IP
GET /yPS7hqfHgkFauS2djb/250.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:43:02 GMT
etag: W/"63b7b4e6-3f3"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GmME84lLKurUv6RRcGVOu7GiM977a8lu%2FSemyfMZFnIWb3tgV1%2BRjDRAOhctn3bJH0LKxCVoOiJ3%2F2S7EKycGwtxEGhjFG%2F28B25kjfR9sMuCAXoIm%2FX4IQJR90YNEbls%2Bgk4vUI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f0ab5b7d94b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.learning8809.com/yPS7hqfHgkFauS2djb/foot.js
200 OK 0 B URL HTTP/2 sb.learning8809.com/yPS7hqfHgkFauS2djb/foot.js
IP
GET /yPS7hqfHgkFauS2djb/foot.js HTTP/1.1
Host: sb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx3.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 11:29:08 GMT
content-type: application/javascript
last-modified: Thu, 14 Jul 2022 04:14:38 GMT
vary: Accept-Encoding
etag: W/"62cf982e-449"
expires: Wed, 25 Jan 2023 23:29:08 GMT
cache-control: max-age=43200
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FL0ciA%2BHW4ua0RzgUCABhVQN1aNZRNttpdt4ejTd%2BfD9e6Np%2BL7K3ye1Mp5lLejPQQU2WGqpf5KAwbNIo%2BPUvSyMm%2FN3wkmgVh81%2F13qx76VWbx2S5891LHXLY5F93Y5bOpDdbVj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f0ab5b7d8ab524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
38.40.217.89
23.36.76.226
188.114.97.1
104.18.20.226
103.143.19.103
103.235.46.191