r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7475
Expires: Fri, 09 Dec 2022 06:01:33 GMT
Date: Fri, 09 Dec 2022 03:56:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5121
Expires: Fri, 09 Dec 2022 05:22:19 GMT
Date: Fri, 09 Dec 2022 03:56:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 03:08:17 GMT
content-type: application/json
age: 2921
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4686
Expires: Fri, 09 Dec 2022 05:15:04 GMT
Date: Fri, 09 Dec 2022 03:56:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AeUUgTeLubcBQMQeuu1XG92JIHADM+4dEGiPysYD4l74uhuDxvpsh+I/nTjpNAcbmGwdg1RZTOQ=
x-amz-request-id: 1M73Z5SNWRZH7X6J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 03:48:10 GMT
age: 528
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
investfatafat.com/
206.2.160.52301 Moved Permanently 0 B IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Dec 2022 03:56:57 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.investfatafat.com/index.php
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 03:56:58 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 03:07:55 GMT
age: 2943
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3879
Cache-Control: max-age=108872
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:56:59 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:11:31 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.240.57.100101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.57.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NyRSmfFhJV6LIgOXD6cixg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: azT4kaDnkPMC2CKjuR4dX49tYjI=
www.investfatafat.com/index.php
206.2.160.52200 OK 9.5 kB URL HTTP/1.1 www.investfatafat.com/index.php
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3224), with CRLF, LF line terminators
Hash 9bfdd3645bbcb1355ad4c8c780013ad8
c78a82f9dbd48e3a166a065a1da56d280e94289b
9d80dfd523bf13b46a02050a3e2036e876c710ddd7ca46d6cbc339404a140efb
GET /index.php HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.investfatafat.com/App/Home/View/Default/Public/Css/aos.css
206.2.160.52200 OK 2.9 kB URL HTTP/1.1 www.investfatafat.com/App/Home/View/Default/Public/Css/aos.css
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type ASCII text, with very long lines (31567), with no line terminators
Hash 9166a094a8f9a4d163ee80c66241d6b1
1a3ed8681f51580ca08aa5e77a9d96ed57e5eac7
5b5d62e553cb87c0573aaffbd1f193d766939721a44a80cd0f08ec9cb8aed359
GET /App/Home/View/Default/Public/Css/aos.css HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:58 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 13:19:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"628cdb54-7b4f"
Expires: Wed, 14 Dec 2022 03:56:58 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
www.investfatafat.com/tj.js
206.2.160.52200 OK 258 B URL HTTP/1.1 www.investfatafat.com/tj.js
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type ASCII text, with CRLF line terminators
Hash e09aa4486992f84705409d27cccda3dc
d8b49730a9be5a3c88c0f2afdf5a2e5f1a637f21
1d8c12badd8414da582cc471d838a642dad5c01f660fcda9824b48d2e9d81084
GET /tj.js HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:58 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.investfatafat.com/App/Home/View/Default/Public/Css/index.css
206.2.160.52200 OK 2.6 kB URL HTTP/1.1 www.investfatafat.com/App/Home/View/Default/Public/Css/index.css
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (417)
Hash 888e8be39dbd9ebc9c7e2581cfe70438
f009faf76f4ec0410b40b0ccfb2526780f9f0d2e
50aca91c398ddbd71c26b49b24a641b3ac54c95b3f464641d3c24d5cee205345
GET /App/Home/View/Default/Public/Css/index.css HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:58 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 13:19:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"628cdb54-3308"
Expires: Wed, 14 Dec 2022 03:56:58 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
www.investfatafat.com/App/Home/View/Default/Public/Css/global.css
206.2.160.52200 OK 12 kB URL HTTP/1.1 www.investfatafat.com/App/Home/View/Default/Public/Css/global.css
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type Unicode text, UTF-8 text, with very long lines (356)
Hash 8d85d4ccf3a8ccd7e3213af11527ce67
233cc9ed1823c1f202d0f770eae494d1814be4e1
d7c1030ae89854a3d0b4ca416b0e291b7b8f83f0d76a08c7e5723174fb6b034b
GET /App/Home/View/Default/Public/Css/global.css HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:58 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 13:03:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"628cd79a-fefb"
Expires: Wed, 14 Dec 2022 03:56:58 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
www.investfatafat.com/common.js
206.2.160.52200 OK 651 B URL HTTP/1.1 www.investfatafat.com/common.js
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type HTML document, ASCII text, with very long lines (342), with CRLF line terminators
Hash 3b427197837b8bfe929a14749df7c72a
0a70c2d978cffac558bb3c132b79e87517bb74fa
b9e55cdb1bfd5fac252079f96a9c879a37e8d58fc6f73cfe81555ae83a4960ac
GET /common.js HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:58 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.investfatafat.com/App/Home/View/Default/Public/Css/style.css
206.2.160.52200 OK 7.0 kB URL HTTP/1.1 www.investfatafat.com/App/Home/View/Default/Public/Css/style.css
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Hash 3aa92834990006a09a7e0a6bd9ed6ddf
c789cb649b88aea43aca6a9df52c288fb35449f8
e779ecd2f8cb3a0016c05199ce9f83ea07d8843c495f29c691dd966877f46024
GET /App/Home/View/Default/Public/Css/style.css HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:58 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 13:07:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"628cd8a6-6f43"
Expires: Wed, 14 Dec 2022 03:56:58 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
www.investfatafat.com/App/Home/View/Default/Public/Css/public.css
206.2.160.52200 OK 808 B URL HTTP/1.1 www.investfatafat.com/App/Home/View/Default/Public/Css/public.css
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Hash 4e04f6e1de205af60c834aea68a47c43
193b3ff640ab0f6b68ccb5e32fbb87189fee4cf4
d6d42f8b0a4506040030af9b2e8497b91518cca7a9b7623b964ba3547253d8c8
GET /App/Home/View/Default/Public/Css/public.css HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:59 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 13:19:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"628cdb53-90e"
Expires: Wed, 14 Dec 2022 03:56:59 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
www.investfatafat.com/App/Home/View/Default/Public/Css/jquery.bxslider.css
206.2.160.52200 OK 1.2 kB URL HTTP/1.1 www.investfatafat.com/App/Home/View/Default/Public/Css/jquery.bxslider.css
IP 206.2.160.52:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Hash 8a7b7967b5cdf4650e6d44cda21945b5
2ab06512e17ba2abb68f99e5b669189874b9bef5
c07bafc3b7fd6d2dc2c498776881b532af2dd4c5141e42e3be29b8984a55f900
GET /App/Home/View/Default/Public/Css/jquery.bxslider.css HTTP/1.1
Host: www.investfatafat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:56:59 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 13:19:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"628cdb53-f2e"
Expires: Wed, 14 Dec 2022 03:56:59 GMT
Cache-Control: max-age=432000
Content-Encoding: gzip
x9dh216.buzz/
154.22.126.9200 OK 12 kB IP 154.22.126.9:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3670), with CRLF line terminators
Hash 7a5af5312a0edd64d35c3d9cb68efcde
500ac56212fbe81c7d89db3ce777c9ae9bdb47ee
874a16b0c60b98adb066af94768d03933ce5142592c593f3e428f725e5feeced
GET / HTTP/1.1
Host: x9dh216.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.investfatafat.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:57:00 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
x9dh216.buzz/Template/A446/css/style.css?v=2
154.22.126.9200 OK 3.2 kB URL HTTP/1.1 x9dh216.buzz/Template/A446/css/style.css?v=2
IP 154.22.126.9:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type assembler source, Unicode text, UTF-8 text, with very long lines (327), with CRLF line terminators
Hash 2fafe9558a8eeff81410f875c689ef70
6be2be852a750d29b7430a350caafbf1c13f743f
adb65584cbc9802d93c02d801088a96729fc44e2e9c30c63637ca8829b9baaac
GET /Template/A446/css/style.css?v=2 HTTP/1.1
Host: x9dh216.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://x9dh216.buzz/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:57:00 GMT
Content-Type: text/css
Last-Modified: Mon, 18 Apr 2022 19:14:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"625db87a-2957"
Expires: Fri, 09 Dec 2022 15:57:00 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
x9dh216.buzz/Template/A446/js/xzye.js
154.22.126.9200 OK 499 B URL HTTP/1.1 x9dh216.buzz/Template/A446/js/xzye.js
IP 154.22.126.9:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 53a3f07523fd9ace348e218b340ab908
01e880324815d309a3fa828d367b4059343e6898
a0571615c2e744d6d4813e9484b68dea127de400726be92696e5a6880996adbe
GET /Template/A446/js/xzye.js HTTP/1.1
Host: x9dh216.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://x9dh216.buzz/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:57:00 GMT
Content-Type: application/javascript
Last-Modified: Thu, 23 Jun 2022 11:25:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62b44db6-b98"
Expires: Fri, 09 Dec 2022 15:57:00 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
jc.8f23aa8.com/2022/01/2ecb00060.jpg
54.230.111.93200 OK 143 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2ecb00060.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 143 kB (143283 bytes)
Hash 3a750461b1c6c889f5aa23f12b5af7aa
a7a5640f9117cc22cc625cf785b8cd71b14ac1df
e1cbd4d3bb77b176011a7ef271933e72c250265f38386808a8de0bd59d6503f9
GET /2022/01/2ecb00060.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 143283
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 04:51:28 GMT
Last-Modified: Sun, 25 Sep 2022 12:26:07 GMT
ETag: "633048df-22fb3"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8zlhHBama_pt5iNaheIG-yQDIzbuykxoxYk2KO8hwzfi3Bgep6lzsQ==
Age: 83131
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00083.jpg
54.230.111.93200 OK 152 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00083.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 152 kB (152374 bytes)
Hash 3389c6cfb79381f0781bcaad0ead5b3b
9bef2cc86a0998c610a5f53130b3aa54f3c5387d
ea84a43cf84ee991ddc61fbbb9a0877f32811ef98822f7df5827e570fa1500cc
GET /2022/01/36doks00083.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 152374
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 05:06:23 GMT
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
ETag: "63747cad-25336"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PenWehZo6mFx88BHYjgD1U0eTl6HXEj-gFSvOVb-oJ6XrcAZEzzLgg==
Age: 82237
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/2wss00162.jpg
54.230.111.93200 OK 155 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2wss00162.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 155 kB (155130 bytes)
Hash ab565cb80dedecd8e3a276ac7ef9ce93
699c2967509a7044872933b49201353f47910561
68165957a85a844d17d0d0fa7c35dce71d13e2435fc05a7029d05bc05eedfa76
GET /2022/01/2wss00162.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 155130
Connection: keep-alive
Server: X
Last-Modified: Wed, 12 Oct 2022 01:53:39 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 04:11:04 GMT
ETag: "63461e23-25dfa"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: R_zvGiqIdxYur9LM3_sRNHKzsI1OsyyQbzuTypSgHmK3Dtf0bYdaDA==
Age: 85556
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00081.jpg
54.230.111.93200 OK 157 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00081.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 157 kB (157258 bytes)
Hash 6a67d5219c3de8c4e7762d793c8366d6
9231446cde574af536ebe98c1beb0908673de950
1e147d270d3ff722fda1177734529e3aaab6ed9c6a20f8890ccf4bbbf38f1171
GET /2022/01/36doks00081.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 157258
Connection: keep-alive
Server: X
Date: Fri, 09 Dec 2022 01:47:41 GMT
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
ETag: "63747cad-2664a"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1NELdY0V3gTSNM6H_LxIBkVcrZYZiKOAhyEBHNh5PcuXACfgFwbr-Q==
Age: 7759
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/2ecb00057.jpg
54.230.111.93200 OK 147 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2ecb00057.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 147 kB (146575 bytes)
Hash 72a16c9bd8f814fa7e2f3c10e15a9ee5
3247ef74491c271fedcdadae1436b35b4291c0d5
54bfdcef6537cb6e7744a7c5a242fbc2f382443a778f22097d01e8229bd2eb6b
GET /2022/01/2ecb00057.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 146575
Connection: keep-alive
Server: X
Last-Modified: Sun, 25 Sep 2022 12:26:07 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 04:24:56 GMT
ETag: "633048df-23c8f"
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: raZXKDGU6BmcATNRMKkD4T9Itf95ktOn7qLNw1C6mF_eK_xlYkS91g==
Age: 84724
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/06/20211223051.jpg
54.230.111.65200 OK 89 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/06/20211223051.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 608x408, components 3\012- data
Hash ac585a55d92b0ec1346df5fa63e0b6fc
0b52a6e0c27716bdeb86d10c57efa56204371750
a0c5c59907a8eb664217e6054abb2c86cfcdd0040c507aabdb6b2e08bf2f16eb
GET /uploads/2021/06/20211223051.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 89138
Connection: keep-alive
Server: X
Last-Modified: Thu, 23 Dec 2021 06:03:21 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 00:35:09 GMT
ETag: "61c41129-15c32"
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hHOU8Xn7S3um-NyDAOmJEUJFR3diPmM0-6ZJOwaz3X7Gb2DShbu4mQ==
Age: 12358
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/06/20211223073.jpg
54.230.111.65200 OK 101 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/06/20211223073.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 608x406, components 3\012- data
Size 101 kB (101364 bytes)
Hash 6ad9c4107b0f217ecd2125edd435728b
8288b2528563ee4917046d92dc95a0a66c7155d6
caa2294c61cacd7c24bb5e03187f616a6a311f7cd80802661758833bc78ec195
GET /uploads/2021/06/20211223073.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 101364
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 07:18:25 GMT
Last-Modified: Thu, 23 Dec 2021 06:03:23 GMT
ETag: "61c4112b-18bf4"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c_CqWR951sEKPypFeIYCwDVF_8UNRBaMBQzF7Q92_BW4e9XjkjUHjg==
Age: 74315
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/05/20211006106.jpg
54.230.111.65200 OK 179 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/05/20211006106.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 179 kB (179389 bytes)
Hash b5560f4cb19b653b92735332d78bed9c
cd9c93e9654b5244109cb6b3dc311ad8dc56f0cb
4bfb49cbadd9ea36f8ac50ed327f116df41e75e1473f204b430a44e14029919e
GET /uploads/2021/05/20211006106.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 179389
Connection: keep-alive
Server: X
Last-Modified: Wed, 06 Oct 2021 11:47:20 GMT
Date: Fri, 09 Dec 2022 02:23:30 GMT
ETag: "615d8cc8-2bcbd"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xxug1Lawehkn3C9jn13I9ObOQIdwcf1NS_-MNIfT2KK6_Bn90LwvzQ==
Age: 7849
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/05/20211120390.jpg
54.230.111.65200 OK 153 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/05/20211120390.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x535, components 3\012- data
Size 153 kB (153169 bytes)
Hash bd75c5e23933c04b5e4e53ec0a21fcd6
6bcc1cc1f787512280b2603ef5f6059dceacd6e0
7612c28155d4b51a29463db83f26c74da77a1fb1ddf43834b4c4caef03807111
GET /uploads/2021/05/20211120390.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 153169
Connection: keep-alive
Server: X
Last-Modified: Sat, 20 Nov 2021 14:39:49 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 06:55:04 GMT
ETag: "619908b5-25651"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: B1UVC1oE8aU4FiSoDczrkwpoYfE7eHGanzbgmkw1LT3OWIbizFkX-g==
Age: 75716
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/2ecb00065.jpg
54.230.111.93200 OK 158 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2ecb00065.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 158 kB (157610 bytes)
Hash 664f9530fcc0352e93d63f6eb3c364a2
8de385a635856f4891e0a24b077acf2daf036421
aac94cb15b3c3b4fa3e254d1ca3785c54b1cc5e1e29425d2cf47b2bbf0b259d7
GET /2022/01/2ecb00065.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 157610
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 04:44:58 GMT
Last-Modified: Sun, 25 Sep 2022 12:26:07 GMT
ETag: "633048df-267aa"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LdxgEV3o1YKfQ6c5DIhSqxv4ikBatxFHacqwyJhFjGTvMSNfPJlZiA==
Age: 83522
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/06/20211223306.jpg
54.230.111.65200 OK 235 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/06/20211223306.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 235 kB (234872 bytes)
Hash 23ba077d49a8aee2180a2d4308df0b04
5895044bd476f04f97431ab5fd14a9201f5253c4
de08ea3b6daa80e303d8763b5579429b708ec5a6cfc39b52227472848d341637
GET /uploads/2021/06/20211223306.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 234872
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 08:07:40 GMT
Last-Modified: Thu, 23 Dec 2021 06:03:39 GMT
ETag: "61c4113b-39578"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MKYUe8IpNynUS0p6-PGDzamkmec_3F8rR3VJNt029Q_fXIWxDiiPSg==
Age: 71359
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/2ecb00067.jpg
54.230.111.93200 OK 155 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2ecb00067.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 155 kB (154805 bytes)
Hash 6a2b3efe7751008ba13dcdc400cfc801
3cc36dff54fff5828f79178de28f8377038468f8
1b7abe0f8a50ef5a799f87511e732be96234da899ffeb5cd449422c5c0ccd448
GET /2022/01/2ecb00067.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 154805
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 05:55:52 GMT
Last-Modified: Sun, 25 Sep 2022 12:26:07 GMT
ETag: "633048df-25cb5"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: crzPu3i1inByXuzxEAAEzrqOYG5eU0yPG8pZa7Dj_YzsEiIaE4DCxQ==
Age: 79268
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00088.jpg
54.230.111.93200 OK 158 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00088.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 158 kB (157768 bytes)
Hash 6086dba8610c1748efef31e134601327
c69fb2fbd64e7da7eb0444d0661af132bf201a5e
44714b4ad42791f611229bd1bac998164a4b40487cc9b1dc127e11aace3f93a3
GET /2022/01/36doks00088.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 157768
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:00 GMT
ETag: "63747cad-26848"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DqHTWzVWKbZsTGRbsYHk1Lmicp4mSs31uqdpIHI_4rZCoZLzU4TUhQ==
Age: 1046
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/05/20210910489.jpg
54.230.111.65200 OK 118 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/05/20210910489.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 608x407, components 3\012- data
Size 118 kB (118153 bytes)
Hash 3f46bc9194ab54b540dc61acb72a0d2c
ba25e703c8a1842e9c662b3d30c47a818d2d3cd2
65efcc468d5c72a6baa864d7f398e312efa2179ed9efbd5990ec0912299f7016
GET /uploads/2021/05/20210910489.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 118153
Connection: keep-alive
Server: X
Last-Modified: Fri, 10 Sep 2021 08:12:04 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:00 GMT
ETag: "613b1354-1cd89"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S1vA89AOK8aKUFMvP3PJIPo4o_kwAb8Ok3ugQDdE8W_sxrDrPpszig==
Age: 1052
Vary: Accept-Encoding, Origin
www.zyzimg.com/pic/uploadimg/2022/04/220830GC377.mp4.jpg
54.230.111.89200 OK 20 kB URL HTTP/1.1 www.zyzimg.com/pic/uploadimg/2022/04/220830GC377.mp4.jpg
IP 54.230.111.89:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=22075ths 246rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Hash 4fcc31970ae4868faf114988be7c48d7
070fcfe85609a1a3236bad3434c607c090e978f1
abfdb82d9b65b83bcabda459ae44b8dad3fdf87296cc42ed742edda208484054
GET /pic/uploadimg/2022/04/220830GC377.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 19888
Connection: keep-alive
Server: X
Last-Modified: Sat, 03 Sep 2022 03:54:38 GMT
Date: Fri, 09 Dec 2022 01:37:28 GMT
ETag: "6312cffe-4db0"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HOqfNIzKYNPggHZoh0qUMXg4IN0vDIFKUcjTyLyQOVvpda0saMQKDw==
Age: 8372
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00087.jpg
54.230.111.93200 OK 415 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00087.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2009:06:22 12:25:33], baseline, precision 8, 800x538, components 3\012- data
Size 415 kB (414776 bytes)
Hash 451d80da4dbce6695ea8290cbd0bdb15
b87646833e4cb278373d56b289c8fe9863dc5688
2bc3a18d1aa6a92229f35350e73e2553d1359ce762e2d1258c3b8e68af153f73
GET /2022/01/36doks00087.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 414776
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63747cad-65438"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: axIpBzWNpWtf5Ieq4CnMTW7OrHMNWRxc4txFk1pYqncfg7eiXVGdqA==
Age: 7280
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00085.jpg
54.230.111.93200 OK 150 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00085.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 150 kB (149679 bytes)
Hash d40110774c0fb0f84aa904d05c39c155
bafeaa983285afe740fdf9a20d1e957a30a28600
ca94673ab8e0399bd697ddad72575ece5ee9090667387678c26f24684c8a7ab4
GET /2022/01/36doks00085.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 149679
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 04:32:28 GMT
ETag: "63747cad-248af"
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jiv_y3P1bGBm3LKhila-ehltOLPpc3e450BdrzARh5IA2-apZ-QZeA==
Age: 84273
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00100.jpg
54.230.111.93200 OK 161 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00100.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 161 kB (161339 bytes)
Hash 5336af420489ae26a120ca78e89e088e
62c6e520dcd0df38f6603a1308cfe5c05cfae7c5
7031a63b1883b7bfc8947cba4a4f363ae86e3c5bb50cc882f38aed4476ad3785
GET /2022/01/36doks00100.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 161339
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 04:53:17 GMT
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
ETag: "63747cad-2763b"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jkINUQlVIwI2jZ8oaPRQM83GIs9G12uv6Jyo4zOY7ehDCU8OMH8GOw==
Age: 83023
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00078.jpg
54.230.111.93200 OK 155 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00078.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 155 kB (155386 bytes)
Hash 208477949ba9359ef32669923d22d2e5
b87ca42776c0c8cf9ac74f6f7e16eea27ad45976
6e312c7b03c70f33065a110d0e730438badd0014d9a8f8f5c3b14b2e9b58c157
GET /2022/01/36doks00078.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 155386
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:16 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:40:53 GMT
ETag: "63747cac-25efa"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2Ln-KzGUiyfdK-8DDD10qZ_ZebU6YBBBUgCHqfffq9USrt13WhMCaQ==
Age: 968
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00079.jpg
54.230.111.93200 OK 170 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00079.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 170 kB (169917 bytes)
Hash 411449925eb0086c93b18e4e6802686b
dc11e2a81444076cdffb00d05658ba9d1ce852b2
c8e62e7f368cb0cf8298bc257db366cdfc619382e9e461bfe95513859c8b0d01
GET /2022/01/36doks00079.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 169917
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:16 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63747cac-297bd"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CAAMrLn0p7u1ApX45bB3y0RLbf6OAj01ob8k4WFmtoaEfWFm2KjdoA==
Age: 8768
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00084.jpg
54.230.111.93200 OK 151 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00084.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 151 kB (151226 bytes)
Hash 0eed5dc6feb1f3e1c13b5a8f6340dc5d
ad28e0c87c11f3586d92bd1cf4b09971e4bc957a
1ce1683e460f16ae7d07bde330cf938a1594179ce012c4b9a1dfeca5c1bcda6b
GET /2022/01/36doks00084.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 151226
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63747cad-24eba"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: h_2mM-r5kxT7k-T3X8P-eaB-G5sR581xHyaih5DKGvrmH8c9-KWOww==
Age: 6803
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36doks00101.jpg
54.230.111.93200 OK 168 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36doks00101.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 168 kB (167931 bytes)
Hash a7e2ee7ee7abc6eac3ccfc2616e95dbe
1b1127958ab3c150111c9a41ca34ccd4c484e0ca
28d97d1d8e56e56cb4160265e1a764ea874526f51732b3d8d08fc5d15a741444
GET /2022/01/36doks00101.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 167931
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:17 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 06:03:02 GMT
ETag: "63747cad-28ffb"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BofKurB5ioQd2SU8Qj98kzaLwhcuwjJ9r5Suq443LB87CyKUFZOekA==
Age: 78839
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/2ecb00062.jpg
54.230.111.93200 OK 132 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2ecb00062.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 132 kB (131863 bytes)
Hash ebcfa546fddeb9b7e90484137e3265a3
67016d7e8b834443033e34567d6de59d1d69fc85
033a9280de16467ecd4c6548a682c1cade50fe2bc7313099c8d83ac162b84e31
GET /2022/01/2ecb00062.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 131863
Connection: keep-alive
Server: X
Last-Modified: Sun, 25 Sep 2022 12:26:07 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 05:33:07 GMT
ETag: "633048df-20317"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RtbNb1ehLekiQUGtm8rwz8r4Cfof59aGM22sjJ-YOOjdX95mlrhQqQ==
Age: 80634
Vary: Accept-Encoding, Origin
www.zyzimg.com/pic/uploadimg/2022/04/220830GC378.wmv.jpg
54.230.111.89200 OK 14 kB URL HTTP/1.1 www.zyzimg.com/pic/uploadimg/2022/04/220830GC378.wmv.jpg
IP 54.230.111.89:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=22076ths 246rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Hash ceccbfb636058d954cd01725e5949503
0cf6789683e8b6faba9b60483a48a7f0ba3f23c5
944fc3de99b9fd147cefc9dc5eca42f3cda883a34287d55c3688e380b180172f
GET /pic/uploadimg/2022/04/220830GC378.wmv.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 13782
Connection: keep-alive
Server: X
Date: Fri, 09 Dec 2022 03:57:01 GMT
Last-Modified: Sat, 03 Sep 2022 03:54:38 GMT
ETag: "6312cffe-35d6"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DM61_QkpfQrsqK-zjKQAZ6xA7V-ts6WWgbC61mcC1b59zjWamo5NjA==
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/36dohi00011.jpg
54.230.111.93200 OK 182 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/36dohi00011.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 182 kB (182358 bytes)
Hash 9639c605f21950ddeba7eef93f7403e8
1557340b4513acff0dccd9f6a9fee0aeb407e8f4
5838ea7d5e3f69cb161b3ef0ac4c0eaa561079ace4738a7f370b8ddfc79ace60
GET /2022/01/36dohi00011.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 182358
Connection: keep-alive
Server: X
Last-Modified: Wed, 16 Nov 2022 06:01:13 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63747ca9-2c856"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Gw7bDQ-abPlMeD-1oqcvJuWB-kYAMb-JY8GqICP2tJJUE0vL8CCrSg==
Age: 6672
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/33dphb00001.jpg
54.230.111.93200 OK 192 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/33dphb00001.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 192 kB (191608 bytes)
Hash e83ef5689417a58b1c1695b6e119a758
938c37e62dafd293c216c50ee950e8f1bdb36288
e9c2f29e88954a84e5dea7b25d1e573036f1217c6d0878bd20e33997c7d24e59
GET /2022/01/33dphb00001.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 191608
Connection: keep-alive
Server: X
Last-Modified: Thu, 27 Oct 2022 02:00:17 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 02:26:15 GMT
ETag: "6359e631-2ec78"
X-Cache: Hit from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lvZ4156bcrODJG-ymyciW7xNkAYEgEfQ237ULzLOAZl4-EA5CoGQ8Q==
Age: 5446
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2022/01/20220211143.jpg
54.230.111.65200 OK 112 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2022/01/20220211143.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 2x2, segment length 16, baseline, precision 8, 608x406, components 3\012- data
Size 112 kB (112323 bytes)
Hash 90e33276b33ade1c8bcc3f6b9b73e1a8
b54fe820a251df4ed29ea6ef26dbcc2fd0e800f7
9b494d8baf9989e2653fbc46f6f651f5a22cf2d591eede2f5d7bb5864f1010a8
GET /uploads/2022/01/20220211143.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 112323
Connection: keep-alive
Server: X
Last-Modified: Wed, 23 Mar 2022 01:48:38 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 00:35:09 GMT
ETag: "623a7c76-1b6c3"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: R5AEJJo5--qimQ09h0vG-ajWR9e60lZe9-nDDFWPar081sLs6UjkkA==
Age: 19554
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/33zos00008.jpg
54.230.111.93200 OK 230 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/33zos00008.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 230 kB (229834 bytes)
Hash 956ad7e7cc0780f13aa970ccf69a0500
6682ae84fa9bd46e845eda04984056d4dbd19b1c
823f8fcd94fcbd000f674c1ae86a385fb0265bab59ce25c80d123140798df6f0
GET /2022/01/33zos00008.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 229834
Connection: keep-alive
Server: X
Last-Modified: Sun, 06 Nov 2022 00:56:06 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 04:12:49 GMT
ETag: "63670626-381ca"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dQK4sPWBZmtFz0iQZO38UnPOKN9S-dXb7FWANmzUBF8pYPd7J3j5ag==
Age: 85452
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2022/01/220601ym060.jpg
54.230.111.65200 OK 214 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2022/01/220601ym060.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 214 kB (214005 bytes)
Hash dbba3589a0b8c2a87b3888548a70f4a8
3eaacdb29810d6382c808bc1487502ba315ec8bf
11a27020279c61bc201e23c82e9f6f57750fbf5ba82b38fb2fa50ca2f6573786
GET /uploads/2022/01/220601ym060.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 214005
Connection: keep-alive
Server: X
Last-Modified: Thu, 07 Jul 2022 00:29:05 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "62c628d1-343f5"
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UaO38PcqqR8-YPEsDEMwhnI4m32gtGwcdGiTXKJr1hBTg6f3U70U_g==
Age: 1739
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2022/01/20220211163.jpg
54.230.111.65200 OK 118 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2022/01/20220211163.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 608x408, components 3\012- data
Size 118 kB (118313 bytes)
Hash 9c681e0d6e993d058b4543fcfb2a58c5
53186ae211e61b497969145a941f8a9b16f9a45b
3809ca1011fbab571b1857f95919a3c294023858fc019d9a721e6c0c60d8315c
GET /uploads/2022/01/20220211163.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 118313
Connection: keep-alive
Server: X
Last-Modified: Wed, 23 Mar 2022 01:48:39 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "623a7c77-1ce29"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8fQqI5HlWwixp1ENaQGJa71cVs35knUbOWW2XTetBthJ4r4EmwHqbQ==
Age: 72
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/06/20211223511.jpg
54.230.111.65200 OK 202 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/06/20211223511.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x535, components 3\012- data
Size 202 kB (201749 bytes)
Hash 62cb192deecd32e1438d2616918c4fb3
156732d8f313a923cffb0a118a58107e4866dc57
2b17224195ed7ba6cccd06331223cbf74305cc6d056022f953cd7040685efdd3
GET /uploads/2021/06/20211223511.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 201749
Connection: keep-alive
Server: X
Last-Modified: Thu, 23 Dec 2021 06:03:55 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 01:00:54 GMT
ETag: "61c4114b-31415"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Kcq0N0_XvCPX0yZu4dBI28PM2iMpiHsUDyYhNgv-mVyw30_pxu2igg==
Age: 11490
Vary: Accept-Encoding, Origin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:57:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:57:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cb76c68a8cd472600106cc118067868
6cee6b1828c709f68b995197ca943a5c393f86fb
009d9ba19043b03b5aceeb80b69bf249f19a0a225bdbfef7ab8691669cb64130
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8204
x-amzn-requestid: cf54b5f8-ede8-49d5-aa56-5d9de98e3ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtKfEiToAMFSXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af576-6ddfe35c0b31074d6a07076f;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UfqFAlLedF6ZkfbGXhyYDcvu0porNJb6LPaeQ8p4dqWqsFD6iRgWLw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 15:50:07 GMT
age: 43614
etag: "6cee6b1828c709f68b995197ca943a5c393f86fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 18:34:32 GMT
age: 33749
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:57:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:15:07 GMT
age: 74514
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:57:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955c6ac69b89f6cbd497df53fcb2ae1b
2506152cdd1056533116feb9350124356e570e54
fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 10:15:09 GMT
age: 63712
etag: "2506152cdd1056533116feb9350124356e570e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb00a2a503a690cee3e4dd729b5bc9bd
cfb1e5bcab2148a777889680e6e36b9d7e8917ec
7e4583ae78ab597639f53669ac2d67d1ebd26be3278c2fc3fc95af934178c116
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: beadd240-39d0-407d-a890-6a095657cac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEd8HC0oAMFUag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb459-44d4f63c62f58684782ef14a;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yL-FrFYh-3PuCZCpCHYg--ebTS7wMmMQ7IE2mgimDVsKWFEtKC2gVQ==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 05:44:09 GMT
age: 79972
etag: "cfb1e5bcab2148a777889680e6e36b9d7e8917ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110795.jpg
54.230.111.23200 OK 100 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110795.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x430, components 3\012- data
Hash c561266162cdbe586245774162b3bb04
de0e201eeb2d8fa3560735798003c8c0bee39d29
40f71c295e7541f72ce74d573e602457660e9e26e64c21c39e8cc7c98b6a4d6f
GET /upload/vod/202211/2022-11-07/a2022110795.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 99847
Connection: keep-alive
Server: X
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63683fc0-18607"
X-Cache: Hit from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pNLOKtLdEGXKRZZB_tYC1maeHz5_VdUGtXCGzjaZb5tkUc08siJZXA==
Age: 5339
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a20221107100.jpg
54.230.111.23200 OK 57 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a20221107100.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x429, components 3\012- data
Hash 0f7f0e9894993d737d0d7e1ea4d40f36
0a103fc0a90ae717e2a5ed6842278c644e30cc7a
8fe7aaf57f2e66cde9dd3f71a087cad8da308b55fbde4554a1aa1a17ff02378e
GET /upload/vod/202211/2022-11-07/a20221107100.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 56895
Connection: keep-alive
Server: X
Last-Modified: Sun, 06 Nov 2022 23:14:07 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63683fbf-de3f"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: aq6zAeBMEhtNlH_syMFBwqV9NrTLEsyA07VpHZkCsrH791nxgtlcLQ==
Age: 239
Vary: Accept-Encoding, Origin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 03:57:01 GMT
Connection: keep-alive
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110799.jpg
54.230.111.23200 OK 65 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110799.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x426, components 3\012- data
Hash d52d5460d5760508517d0d1aa31be110
55f75d5a22d4e66d02d0361c74597267d9d0b754
9680ada6fd805885ac7846199e8273bf6ac6a4bc991bfcb871d946c72cc1d55b
GET /upload/vod/202211/2022-11-07/a2022110799.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 65436
Connection: keep-alive
Server: X
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63683fc0-ff9c"
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4xJ_SHNco5INQh_KxlOCLSKa298_l8_bG_bVyKkKeCXwh04XwgWKbA==
Age: 75422
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110796.jpg
54.230.111.23200 OK 63 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110796.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x429, components 3\012- data
Hash 867c757d39223d5d5812be9301a84747
52ec6563b051fe2ad30b2d2aa0d6a5a8363f7351
2699c7d71f371d480e0a1ffad47c3f84e22e5c5ad74547563b54a4eb1359951e
GET /upload/vod/202211/2022-11-07/a2022110796.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 63318
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 08:09:27 GMT
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
ETag: "63683fc0-f756"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -CZYsGDopsFLmOq_LAl7Q8NwoezxGZJ6nVMdIkfTw746F8mS2aP1-A==
Age: 71254
Vary: Accept-Encoding, Origin
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 1115
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
jc.8f23aa8.com/2022/01/2ecb00061.jpg
54.230.111.93200 OK 137 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2ecb00061.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 137 kB (137360 bytes)
Hash a6bde232f95e96cdedc70e9dc3edabaf
8393a9ebde398cf8000fc992f1e4796924e54fdb
439c1529993e15696f0be8ecb7825572a95d9718c4f86f3689d208304e2075cf
GET /2022/01/2ecb00061.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 137360
Connection: keep-alive
Server: X
Last-Modified: Sun, 25 Sep 2022 12:26:07 GMT
Accept-Ranges: bytes
Date: Thu, 08 Dec 2022 05:32:12 GMT
ETag: "633048df-21890"
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: coJiJHFOfJaNMUeavAwGCUZ3j_QPlwCWqGP1X3aFXTGXEsXKXdN_fg==
Age: 80689
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/2ecb00059.jpg
54.230.111.93200 OK 139 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/2ecb00059.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 139 kB (139447 bytes)
Hash e949354b41e724ba3a2ef5313e98ea40
a11bf771e2d7661200f67e89334e4ba5c9c9f8ea
e6a1a174b127895a4daef98b9dd2eac4ae78addf1d78b12a5a81272c920e40a7
GET /2022/01/2ecb00059.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 139447
Connection: keep-alive
Server: X
Last-Modified: Sun, 25 Sep 2022 12:26:07 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "633048df-220b7"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Iyked_NTKR607ypk_b206v1HUP4cdUWZe3926RKC7B72Md8H4iVvzA==
Age: 6055
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110798.jpg
54.230.111.23200 OK 59 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110798.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x430, components 3\012- data
Hash 30e0152cc5c4805accd847069b66644c
45f0b18a6cd4ed1d3b37eb523c6b8cf2028cca27
bd83e9f68d0ac65a9cb975d7c272b3c134a709f9425a6922cb5dce19a1981a6a
GET /upload/vod/202211/2022-11-07/a2022110798.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 59285
Connection: keep-alive
Server: X
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63683fc0-e795"
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qUijDagjFC4hFg_CVhrXYxXocOiUL2iQ6r9iF4eD9ACc9FV28EKXwQ==
Age: 11670
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110792.jpg
54.230.111.23200 OK 67 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110792.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x430, components 3\012- data
Hash f656c2c74bcc5e682b4784b80bc9fdce
3a134a81d801b982c1fc6120a3e8d9d1b40bced1
b8d53017b560bb5e4fb599fcf0a355e5f924abc218a69bb383968dd4cb7bf01b
GET /upload/vod/202211/2022-11-07/a2022110792.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 66826
Connection: keep-alive
Server: X
Date: Thu, 08 Dec 2022 08:05:06 GMT
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
ETag: "63683fc0-1050a"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GANjac87AaJPNpUcf-YTT2zwidylT-kQ-VOIH4UOKKqPBzZc50fKfg==
Age: 71515
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110794.jpg
54.230.111.23200 OK 70 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110794.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x426, components 3\012- data
Hash 411a0a9700314152c199c6727071f005
e304dfd535ffd17ee643bd9e69df97250c4e58b3
e259200c7fd0de9052b3ba1c054b7ae77c209e820f8232595925e2cc59e1846a
GET /upload/vod/202211/2022-11-07/a2022110794.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 69800
Connection: keep-alive
Server: X
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63683fc0-110a8"
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jic-aHphD59KbVojAa1Fo8TLdz00YjOnupoVZmlb-gpSaQqKdoC5bA==
Age: 82006
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110793.jpg
54.230.111.23200 OK 66 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110793.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x430, components 3\012- data
Hash 4b92bf0eb4ad5e5236e32c6cb5ddefcf
e65e97733fc3eafce7f0e8afc9a4a81f0e8d317b
ff6186b3ea2ec33f896963f8f18a8ab65d09058602a5bc7ab4a6baaebc49e347
GET /upload/vod/202211/2022-11-07/a2022110793.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 66143
Connection: keep-alive
Server: X
Date: Fri, 09 Dec 2022 02:11:05 GMT
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
ETag: "63683fc0-1025f"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PRVDiotwaiBd9OQ4xSZVXO8aaCz9dKE_RkEiGrEvnw_fw1b15_GE7w==
Age: 6356
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110797.jpg
54.230.111.23200 OK 72 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110797.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x429, components 3\012- data
Hash db0d51509f4ecf2c990208891cbac3e7
43716259d20df3ec4184809a32797ed1d3e20283
a7e4e4017810077503cf8fa82ee0ae93fbcd12cfd6a5b4f11ef3ec31e4a2d4d7
GET /upload/vod/202211/2022-11-07/a2022110797.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 71573
Connection: keep-alive
Server: X
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
Accept-Ranges: bytes
Date: Fri, 09 Dec 2022 03:57:01 GMT
ETag: "63683fc0-11795"
X-Cache: RefreshHit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fEL_rHIsyfZnvp_t5G_9xthowG8kDaEeK2piag9EgAC-LaD0ENu8Vg==
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202211/2022-11-07/a2022110791.jpg
54.230.111.23200 OK 60 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202211/2022-11-07/a2022110791.jpg
IP 54.230.111.23:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 300x430, components 3\012- data
Hash b63344ddcab87fb9594b46de70c35830
f10e68ac1d1c6b75941c835bb7c262625033c04d
b79a224185a71ec62b535c345558e0f30c328a1c9b5f9a57d58e43f128d8ec5a
GET /upload/vod/202211/2022-11-07/a2022110791.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 59572
Connection: keep-alive
Server: X
Date: Fri, 09 Dec 2022 03:57:01 GMT
Last-Modified: Sun, 06 Nov 2022 23:14:08 GMT
ETag: "63683fc0-e8b4"
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _wpC5F6EmXTfm5WXIgj5NYTHzWCHUnGyYqVR4LwbYw0Ty51ne1lnrA==
Vary: Accept-Encoding, Origin
x9dh216.buzz/Template/A446/img/loading.gif
154.22.126.9200 OK 6.0 kB URL HTTP/1.1 x9dh216.buzz/Template/A446/img/loading.gif
IP 154.22.126.9:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type GIF image data, version 89a, 210 x 128\012- data
Hash 8ba249611e14979975df9d90e5cecf09
2c189ef5bc2eeaf37c915caa878ef8fdbe52f29f
4e05abf29cb9f1bcc9cf8c233ddd6293377c7ecc9b2feaeaa3f12c1abcafeb43
GET /Template/A446/img/loading.gif HTTP/1.1
Host: x9dh216.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://x9dh216.buzz/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:57:01 GMT
Content-Type: image/gif
Content-Length: 5999
Last-Modified: Wed, 06 Apr 2022 15:59:19 GMT
Connection: keep-alive
ETag: "624db8d7-176f"
Expires: Sun, 08 Jan 2023 03:57:01 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 0c9e507186130881c0ea340cc1eb9b95
06e6f52edf11334c76b2d9ba67a0fb3384f27ce2
e8ee8c01db94ff4b9ec820032b6d7401b6d258b3c58ecb686b9ab3946eef654b
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 03:57:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Dec 2022 02:47:05 GMT
ETag: "06e6f52edf11334c76b2d9ba67a0fb3384f27ce2"
Last-Modified: Fri, 09 Dec 2022 02:47:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 726
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776ad0755eb8fab4-OSL
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 4136a1f4a81217e9a59421887bbb6cf1
6f427db11b073c14b8e461db083e998f97f41dae
44d428b85bf843be2c1c21d6f27321c60895efd92d05c7067f4124cef6c9a3aa
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 03:57:02 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 11:13:52 GMT
Expires: Thu, 15 Dec 2022 11:13:51 GMT
Etag: "6f427db11b073c14b8e461db083e998f97f41dae"
Cache-Control: max-age=544008,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776ad0798d12b4f7-OSL
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 96950e82d0e47b0e336e3a98a6ddc359
63bbf1511654083b49737aad3a8fd0cae6ebc256
0e45ba726379ecf844b17a01df5fe9a5cdab2cc7e6d51c4c0020e9e031b820ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5541
Cache-Control: max-age=156628
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:57:02 GMT
Etag: "63925d3d-2d7"
Expires: Sat, 10 Dec 2022 23:27:30 GMT
Last-Modified: Thu, 08 Dec 2022 21:55:09 GMT
Server: ECS (amb/6BA4)
X-Cache: HIT
Content-Length: 727
p3.douyinpic.com/obj/tos-cn-i-dy/37e7e2b36d1d4e729a3d16bd1a8b447e
47.246.44.228200 OK 718 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/37e7e2b36d1d4e729a3d16bd1a8b447e
IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 100\012- data
Size 718 kB (718303 bytes)
Hash 5081817a71c4e1523142ab913142cfb2
49e534fff66cb3c5bf6abeb58cc4cfb0a12b197c
e119e50d8e79c5ceece9000cb9eb4dd759425de14fedc658cd39c435ebb8cb0e
GET /obj/tos-cn-i-dy/37e7e2b36d1d4e729a3d16bd1a8b447e HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 718303
date: Mon, 05 Dec 2022 12:29:25 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 05 Dec 2022 11:42:44 GMT
nw-session-id: 202212051942430101510921010CCCC91Fw6qnk01dy
nw-session-trace: 2022-12-05T19:42:44.000333044+08:00 48
x-bdcdn-cache-status: TCP_HIT
x-length: 718303
x-powered-by: ImageX
x-response-date: Mon, 05 Dec 2022 19:42:44 GMT
x-tt-logid: 202212051942430101510921010CCCC91F
via: n150-050-027, cache11.l2de2[0,0,206-0,H], cache3.l2de2[1,0], cache3.l2de2[1,0], cache2.se1[0,0,200-0,H], cache3.se1[1,0]
x-request-ip: fdbd:dc02:22:599::144
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 0118efc1fc430e7f3d0b3669154a25cbc26535a993d94b52f4ef1d317b91e6c24bf445d5ab91145a926a9f39c94a295f1f98573d21f43109ff32399491d1e9535349a2884f8c9517695ad5a9be5ccad2eaa622fa27372d4b6cac215123eea84f66
x-response-lb: image
ali-swift-global-savetime: 1670243366
age: 314856
x-cache: HIT TCP_MEM_HIT dirn:6:363296894 mlen:0
x-swift-savetime: Mon, 05 Dec 2022 14:04:42 GMT
x-swift-cachetime: 31530284
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716705582227404775e
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash bda4e45711672e707760e882ab15a91e
6814840e80737dca48f85ab1053a1a753c24fb8c
40379ec95df0b4a10fa1e7f2be758bd5f2ea0bf1c031ffce316d37e144903ca5
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 03:57:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 13 Dec 2022 03:04:08 GMT
ETag: "6814840e80737dca48f85ab1053a1a753c24fb8c"
Last-Modified: Fri, 09 Dec 2022 03:04:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 797
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776ad07cbb14b505-OSL
hm.baidu.com/hm.js?8d3a05365b0817bdc9060c9cdad6d75e
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?8d3a05365b0817bdc9060c9cdad6d75e
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 733b94ed66f63ef7cc2deda31bdff3d5
5b1d4bd198c640a9ebe18f5fa37f9dbbe868eb5a
60b1fe66e1f598ad8f674cce69b40e56b135d781ce1f0a191bd25267db92ac79
GET /hm.js?8d3a05365b0817bdc9060c9cdad6d75e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Fri, 09 Dec 2022 03:57:02 GMT
Etag: adb5f1b069366231a37727f13875cb26
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=3670217DAE0557FC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11726f10b2cca3fa2dcc256e7a99be57
af91e3d15b14467f66a2e50e033914043f03e5c8
ff914f6696c2161a82ca45c9e7ab42d42e9bceaa25d7955dc7282619c6c6933d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF914F6696C2161A82CA45C9E7AB42D42E9BCEAA25D7955DC7282619C6C6933D"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21567
Expires: Fri, 09 Dec 2022 09:56:30 GMT
Date: Fri, 09 Dec 2022 03:57:03 GMT
Connection: keep-alive
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1735798954&si=8d3a05365b0817bdc9060c9cdad6d75e&su=http%3A%2F%2Fwww.investfatafat.com%2F&v=1.3.0&lv=1&sn=5537&r=0&ww=1280&u=http%3A%2F%2Fx9dh216.buzz%2F&tt=x9%E5%AF%BC%E8%88%AA
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1735798954&si=8d3a05365b0817bdc9060c9cdad6d75e&su=http%3A%2F%2Fwww.investfatafat.com%2F&v=1.3.0&lv=1&sn=5537&r=0&ww=1280&u=http%3A%2F%2Fx9dh216.buzz%2F&tt=x9%E5%AF%BC%E8%88%AA
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1735798954&si=8d3a05365b0817bdc9060c9cdad6d75e&su=http%3A%2F%2Fwww.investfatafat.com%2F&v=1.3.0&lv=1&sn=5537&r=0&ww=1280&u=http%3A%2F%2Fx9dh216.buzz%2F&tt=x9%E5%AF%BC%E8%88%AA HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 09 Dec 2022 03:57:03 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=18D94276313B8B46; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
8499683.com/8499/960x100.gif
23.224.101.37200 OK 460 kB URL HTTP/2 8499683.com/8499/960x100.gif
IP 23.224.101.37:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 460 kB (460379 bytes)
Hash 5a1530561500d39b3bfe81bdaf3dc20b
233cb54f51d312aef12624f2921e772a7396e3a5
d609cb292dd1415f628223b19a93ed62b0c9b0101d5d1c9dd9c3f59759203a32
GET /8499/960x100.gif HTTP/1.1
Host: 8499683.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 03:57:02 GMT
content-type: image/gif
content-length: 460379
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "7065b-5ed03aef4110d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash ba2f65d7b2b3cd39348dd36f3ed174bb
8423189c8631db546e30aab12aa60e02a9065b30
c7d004fc5a10ac8339c7ed65d9fbcd7c13944040d82efa1667a4a795fc9f1e3a
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 03:57:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 19:24:14 GMT
Expires: Fri, 09 Dec 2022 19:24:14 GMT
ETag: "8423189c8631db546e30aab12aa60e02a9065b30"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash ba2f65d7b2b3cd39348dd36f3ed174bb
8423189c8631db546e30aab12aa60e02a9065b30
c7d004fc5a10ac8339c7ed65d9fbcd7c13944040d82efa1667a4a795fc9f1e3a
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 03:57:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 19:24:14 GMT
Expires: Fri, 09 Dec 2022 19:24:14 GMT
ETag: "8423189c8631db546e30aab12aa60e02a9065b30"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
img.thethsdnadagvx.com/bucketimg/e280a989-ff8c-4f4e-8c8c-f259a3c5239d.gif
103.183.199.71200 OK 454 kB URL HTTP/1.1 img.thethsdnadagvx.com/bucketimg/e280a989-ff8c-4f4e-8c8c-f259a3c5239d.gif
IP 103.183.199.71:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 454 kB (453640 bytes)
Hash 68f2606d75eedd0309c6e1d807ccaad1
3e81fbfc4554b27a9632b05a3c659e482b060652
941d2a3c6e8610762f2d16481f2fe91811d874db7d5f9686ab1630898a8f0335
Analyzer Verdict Alert quad9 Sinkholed
GET /bucketimg/e280a989-ff8c-4f4e-8c8c-f259a3c5239d.gif HTTP/1.1
Host: img.thethsdnadagvx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"b12a4a87d65339bde85afa2b99b7a273"
Server: nginx
Date: Tue, 29 Nov 2022 15:59:56 GMT
Content-Type: image/gif
Content-Security-Policy: block-all-mixed-content
Last-Modified: Sat, 12 Nov 2022 02:47:31 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Accept-Encoding, Accept-Encoding, Origin
X-Amz-Request-Id: 172C197F3C9691BB
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 453640
x9dh216.buzz/Template/A446/img/favicon.ico
154.22.126.9200 OK 4.3 kB URL HTTP/1.1 x9dh216.buzz/Template/A446/img/favicon.ico
IP 154.22.126.9:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash f2d2896c488493e18c1b112cdd9bb1d9
9566a02d9d66bbeaea16df206ea4d9add214826f
2681561eb24e7435fea1acf26f3af95e4efc9f7d451587b58bef62f030f337e9
GET /Template/A446/img/favicon.ico HTTP/1.1
Host: x9dh216.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://x9dh216.buzz/
Cookie: Hm_lvt_8d3a05365b0817bdc9060c9cdad6d75e=1670558222; Hm_lpvt_8d3a05365b0817bdc9060c9cdad6d75e=1670558222
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 03:57:04 GMT
Content-Type: image/x-icon
Content-Length: 4286
Last-Modified: Sat, 11 Jan 2020 03:54:48 GMT
Connection: keep-alive
ETag: "5e194708-10be"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
p.qlogo.cn/qqmail_head/PiajxSqBRaEJ9B4UlyASnW3oH3MPQFqEtXG2iaiak1YbXW1icwHo5cMXeib5SCVWkUPsUvqNhTJ0ia1ss/0
43.129.255.47200 OK 460 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaEJ9B4UlyASnW3oH3MPQFqEtXG2iaiak1YbXW1icwHo5cMXeib5SCVWkUPsUvqNhTJ0ia1ss/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 100\012- data
Size 460 kB (460379 bytes)
Hash 5a1530561500d39b3bfe81bdaf3dc20b
233cb54f51d312aef12624f2921e772a7396e3a5
d609cb292dd1415f628223b19a93ed62b0c9b0101d5d1c9dd9c3f59759203a32
GET /qqmail_head/PiajxSqBRaEJ9B4UlyASnW3oH3MPQFqEtXG2iaiak1YbXW1icwHo5cMXeib5SCVWkUPsUvqNhTJ0ia1ss/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Fri, 09 Dec 2022 03:57:03 GMT
content-type: image/gif
content-length: 460379
vary: Accept,Origin
last-modified: Sat, 12 Nov 2022 15:56:32 GMT
cache-control: max-age=2592000
x-delay: 60346 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 460379
chid: 0
fid: 0
x-nws-log-uuid: 2fd64ff8-a3da-4474-919e-fb7e56b5c8ba
X-Firefox-Spdy: h2
jocelynrace.com/brlihvgy/ywcno1hpn0ykiunl8hogi/1988/ywcno
8.218.134.195200 OK 62 B URL HTTP/1.1 jocelynrace.com/brlihvgy/ywcno1hpn0ykiunl8hogi/1988/ywcno
IP 8.218.134.195:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with no line terminators
Hash 42196d9c2ca4885b86289410f021c21d
20ca64c3c4f91ef23b906d2def97c86084f59a19
274249e54967e28c279fabd4dad17f92ef5bb6cf312f5d903ed594a90344dea6
GET /brlihvgy/ywcno1hpn0ykiunl8hogi/1988/ywcno HTTP/1.1
Host: jocelynrace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Fri, 09 Dec 2022 03:57:05 GMT
Content-Type: text/html;charset=UTF8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Fri, 09 Dec 2022 03:57:05 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: Content-Type, Content-Range, Content-Disposition, Content-Description
P3P: CP=CAO PSA OUR
Content-Encoding: gzip
jocelynrace.com/brlihvgy/ywcno1hpn0ykiunl4hogi/1988/ywcno
8.218.134.195200 OK 62 B URL HTTP/1.1 jocelynrace.com/brlihvgy/ywcno1hpn0ykiunl4hogi/1988/ywcno
IP 8.218.134.195:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with no line terminators
Hash 42196d9c2ca4885b86289410f021c21d
20ca64c3c4f91ef23b906d2def97c86084f59a19
274249e54967e28c279fabd4dad17f92ef5bb6cf312f5d903ed594a90344dea6
GET /brlihvgy/ywcno1hpn0ykiunl4hogi/1988/ywcno HTTP/1.1
Host: jocelynrace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Fri, 09 Dec 2022 03:57:05 GMT
Content-Type: text/html;charset=UTF8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Fri, 09 Dec 2022 03:57:05 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: Content-Type, Content-Range, Content-Disposition, Content-Description
P3P: CP=CAO PSA OUR
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F111d6163-0ce5-4897-9a84-a9cefa74d2a9.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F111d6163-0ce5-4897-9a84-a9cefa74d2a9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00cf5825452b2f69b0ac859dccb64ab
60aed079c48181cf46cef4d1aaa1c316a7ef7048
3aea2aa14407b6ac9d64d0f35111fec50f51632adfc39047c15bde4afd148a78
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F111d6163-0ce5-4897-9a84-a9cefa74d2a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7694
x-amzn-requestid: 0c67138c-1a6d-49ef-bd43-f9a7176679ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2LZjFjrIAMFUSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63925909-764272151a0a4d284c6cb1bb;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aaEYG20Wueg557qEBq46sSUl3-_HxgZA73s-kPo3GmYgWgrGgFPl_Q==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:48:32 GMT
age: 22115
etag: "60aed079c48181cf46cef4d1aaa1c316a7ef7048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img.1137555.com/images/638ded9709ca91e0020145c0.gif
185.239.226.87302 Found 0 B URL HTTP/2 img.1137555.com/images/638ded9709ca91e0020145c0.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
GET /images/638ded9709ca91e0020145c0.gif HTTP/1.1
Host: img.1137555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://x9dh216.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/37e7e2b36d1d4e729a3d16bd1a8b447e
X-Firefox-Spdy: h2