r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2524
Expires: Sun, 18 Sep 2022 15:58:00 GMT
Date: Sun, 18 Sep 2022 15:15:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 15:12:13 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: meVgPWmZiBgC-U6WtiV5DPd3xdkuiitNgpRO0PzHGtbhfC7HclD71Q==
Age: 223
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 03:30:43 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ld88uQ9ukOyBQ91qQnwUSHemN0WjhSDh9rdF6LshZo0wzq5qTEsJ4w==
age: 42313
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 15:15:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.168youke.com/index.php
156.252.154.42200 OK 633 B URL HTTP/1.1 www.168youke.com/index.php
IP 156.252.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (922), with CRLF line terminators
Hash f703308319688fbebb502283e760785c
ed8eccc01849d52241a101ed1871a97eb92f0bb0
786a4233b7e011524db06293c395393bce723feb320cd6e9f8f341a76315aea9
GET /index.php HTTP/1.1
Host: www.168youke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 15:15:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.168youke.com/tj.js
156.252.154.42200 OK 102 B IP 156.252.154.42:0
File type HTML document, ASCII text, with no line terminators
Hash 8c45c27edb65e9f9ed1747194dc79dc8
87813036abf883c7e9630dafe282798e4d5d7a35
fccde6d04940d918d1d5d702392cc302417f7f85050bbc0a7808c4a94353168d
GET /tj.js HTTP/1.1
Host: www.168youke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.168youke.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 15:15:54 GMT
Content-Type: application/x-javascript
Content-Length: 102
Connection: keep-alive
www.168youke.com/common.js
156.252.154.42200 OK 1.8 kB URL HTTP/1.1 www.168youke.com/common.js
IP 156.252.154.42:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 394d42df70e09c1264d39c5875130a29
f5a229f05c034a6a187dcf91cd22272521af8585
ee40092cf716773e5f6e14f04d36d50537232450100e199cc5189e4df7ac0546
GET /common.js HTTP/1.1
Host: www.168youke.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.168youke.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 15:15:54 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5313
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:15:56 GMT
Last-Modified: Sun, 18 Sep 2022 13:47:23 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 18 Sep 2022 15:03:22 GMT
Cache-Control: max-age=3600
Expires: Sun, 18 Sep 2022 15:03:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: baWnPKSqrnjIULVcduhbCE3Bk0wwtH3kqR69J_dEf5rqeO8utFzmNQ==
Age: 754
meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.477854201734799?v=039480581513701574
156.244.142.129200 OK 51 B URL HTTP/1.1 meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.477854201734799?v=039480581513701574
IP 156.244.142.129:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4b130d6073acd127d52c6cc99bf074c6
346743fb9f4a5bb4df4c31596cf391fb071dbf2c
36807300721e4dc9f7622f23b252d2ff2b7fc55ea2a27d0a5aa602a4f59fb0d8
GET /meicao_v01.php?val=bbgg1&t=0.477854201734799?v=039480581513701574 HTTP/1.1
Host: meimeicaomeimeicao01.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.168youke.com
Connection: keep-alive
Referer: http://www.168youke.com/
HTTP/1.1 200 OK
Content-Type: application/json
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: *
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Sun, 18 Sep 2022 15:16:05 GMT
Content-Length: 51
meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.3658651907286178?v=006939400098184412
156.244.142.129200 OK 51 B URL HTTP/1.1 meimeicaomeimeicao01.xyz/meicao_v01.php?val=bbgg1&t=0.3658651907286178?v=006939400098184412
IP 156.244.142.129:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4b130d6073acd127d52c6cc99bf074c6
346743fb9f4a5bb4df4c31596cf391fb071dbf2c
36807300721e4dc9f7622f23b252d2ff2b7fc55ea2a27d0a5aa602a4f59fb0d8
GET /meicao_v01.php?val=bbgg1&t=0.3658651907286178?v=006939400098184412 HTTP/1.1
Host: meimeicaomeimeicao01.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.168youke.com
Connection: keep-alive
Referer: http://www.168youke.com/
HTTP/1.1 200 OK
Content-Type: application/json
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: *
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Sun, 18 Sep 2022 15:16:05 GMT
Content-Length: 51
push.services.mozilla.com/
44.237.239.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.239.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eWYb/+m/4EraANmO93EGeA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NeMxEW4nNG06t3QWu372Xjnf1Lg=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 07a9b0b11ee21f7a76363b26fae52aeb
d83763bd98976ac2ccd032725ad99ed52c4a612a
b39ea1a10ec3676b9eae523648b981b95bb8508349c41d6656b22af22e01fef5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2029
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:15:57 GMT
Last-Modified: Sun, 18 Sep 2022 14:42:08 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
156.244.142.190/
156.244.142.190200 OK 5.9 kB IP 156.244.142.190:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash b19d882732101a50215ed4359044b459
58e835ef7256eeb96048e5435d6d2802a4c4649e
9844b78cac4f42297eb7ae47323613579a4601bb9351cab66654c0120015c5fa
GET / HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.168youke.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: PHP/7.0.33, ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 5856
fmlb.netlbtu.com/upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg
104.21.235.174200 OK 8.7 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f106414f2147b15cd1ad6f14d32eca5b
a31e44fc094210f6277754ca2ba6029a8acd579d
6d0206c36087c19c6218b5138e93129a868e7ca07440b7459e2b208e1879fdaf
GET /upload/vod/2022/09-07/13/lrar23ksygv1307lrar23ksygv201533.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 8720
cf-bgj: h2pri
etag: "6ab94db577c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:20 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BCVRqAL9t%2F0eK9BziL7SMwl6YeK6BPdR%2FaId1uZTEoVvaEBlQpnCjJ0Lyi3oKxZJs%2B4z0YYC89d69DN70j7lUOy92JwCjCJlFeRtaKQuQ2e85k8BsojtBdGuOgvC9pgkkIEC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf357713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/css/ate.css
156.244.142.190200 OK 4.5 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/css/ate.css
IP 156.244.142.190:0
File type ASCII text, with CRLF line terminators
Hash 1164a38c5186eff1838f351d96dbd192
1f5c06f7969ca9602774591594b1d4170137cdc3
fec2bebf191e9c67f3ce3234909acb71fa272057962f230dce334cdfd514b3e2
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 24 Jan 2021 07:28:36 GMT
Accept-Ranges: bytes
ETag: "06ae58622f2d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 4498
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 07a9b0b11ee21f7a76363b26fae52aeb
d83763bd98976ac2ccd032725ad99ed52c4a612a
b39ea1a10ec3676b9eae523648b981b95bb8508349c41d6656b22af22e01fef5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2029
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 15:15:57 GMT
Last-Modified: Sun, 18 Sep 2022 14:42:08 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
156.244.142.190/template/m1938pc/ads/xx1.js
156.244.142.190200 OK 996 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx1.js
IP 156.244.142.190:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 0f146ee270d1283647db0646c35ddd82
d4e2bcdafec688cb5240e174468f83456c96ab00
5faa5035b3c6c7127ce772cc1e64af8455caaf49a7cf4727affa416f17e908e8
GET /template/m1938pc/ads/xx1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 08:21:11 GMT
Accept-Ranges: bytes
ETag: "80f5af716ecad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 996
156.244.142.190/template/m1938pc/ads/dh1.js
156.244.142.190200 OK 702 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dh1.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash e5f397c03ba1d4aa4f24b2635cb6a6b9
9d97e51f24af73b2b539b2da996103d143448bf5
2586e8041343ef44424fd4c73969361fe2109a13765c14f07a8be2f92406d1f6
GET /template/m1938pc/ads/dh1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 05:18:47 GMT
Accept-Ranges: bytes
ETag: "fb9ad3f654cad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 702
156.244.142.190/template/m1938pc/ads/dh.js
156.244.142.190200 OK 558 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dh.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2eb0eb2dea379022d1393108ae11a497
4c678e34f273d7f946c173cac103aa6572be622f
23db644711719711a80603f86ac6ee7ba1aca934826093f0cc77ef46e98798b0
GET /template/m1938pc/ads/dh.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Sep 2022 11:49:59 GMT
Accept-Ranges: bytes
ETag: "808d2148f9c8d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 558
fmlb.netlbtu.com/upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9e6469b8504db4fb8a3517a0e8c51e4c
8ac09fd14dd49537951bfcbe846dbe6357e8971a
3e83a49d39868c14f56815ea4b8b206e204ae19ee3dfcd14adb0533beb4600d3
GET /upload/vod/2022/09-07/13/tqhgdl25gft1308tqhgdl25gft091571.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 10208
cf-bgj: h2pri
etag: "9c6c57d277c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:09 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oh1YwYug74HxzLuXapf%2B0RZ%2FLFLygGl165lduQsDBW3tZmEw%2BwD%2FgtARbnX%2F%2FBhCDHdhceomtU038A2DCEtxoC031kQHqb2QmexpUb7tzaI6otUJ1shq8jtly6QuAG3aFCN8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf7c7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg
104.21.235.174200 OK 8.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6b92d38c61f41a5a2dd70d7f314e9cf0
2d49d318d294c145af2eda5bb95cc8befaf9edaa
136e4be0a41b43ac9eca7106ed2c81f6aca8913751cdd6a049bb92f740bf45c7
GET /upload/vod/2022/09-07/13/dhutwioieas1330dhutwioieas541727.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 8896
cf-bgj: h2pri
etag: "a361507bc2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:54 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F4Jwik7A5KUvpBQNSB9YJsXCvrZ6RsJKvGJjSyq1Gq3auAPIVXmx%2Bn15TfxmjFccmit%2BFXeW8tUQ1JNn%2BsbEECCgsfAlIQcJXrOPAGE1t7CtPt8U3PhA2ve9jffKY%2BA0t01G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf737713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg
104.21.235.174200 OK 6.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1ad4b31ad1c424879d84e4ba999dba82
0c138ab9d68acf1511984816121aba4dbc660c0d
784849bcf5901415811ece90aefc69277e787963b58923bbd041f86213c9d93d
GET /upload/vod/2022/09-07/13/ks5rscgcyft1330ks5rscgcyft511721.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 6154
cf-bgj: h2pri
etag: "ba1b76fe7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:51 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F5%2BFOWE4ztODpaEMk1O6T5AYEzPHRwcHZerXJF7wf8Of4E7CBYUgSBANMTTSE%2FDpKYq61GhXr%2Be8%2FfG1PxjhRRqrmud443CXQwJGWadd39FK3OQFGErRyW7%2Bp6PFTafGbSqb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf6d7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/ads/xx2.js
156.244.142.190200 OK 655 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx2.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2c315b758e897bde5fab815de9a27e30
6cacb6d609a7e024779101eb5324868eb9906099
dfd9598680bd32f76c04df53addb22f0618924caef46fdccedf0040aef94e8f9
GET /template/m1938pc/ads/xx2.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 08:21:11 GMT
Accept-Ranges: bytes
ETag: "c24519726ecad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 655
fmlb.netlbtu.com/upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg
104.21.235.174200 OK 8.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9204e98c69d4684810e606d7b813d0d5
6d9a9d3708250c1e51922af80368702f329fe0cd
7a67d268ecd53295205c3b8cc512a881a1fe742d99860d80b9606403570db6f6
GET /upload/vod/2022/09-07/12/hgwfyrcob1e1255hgwfyrcob1e221409.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 8190
cf-bgj: h2pri
etag: "24e32a976c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:22 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2fwkP0mtbGaI3TWgm3ypGcbzFDydiWQ0BE6pud5PPQbyD2WymWXQE1zAZ4ouWt486Jsdqy44RvHgw0sNk8FvRKBrzaG%2FGEpcBCVMRapWsCFoUlw8%2BGCtZkYKDJpg0Ud8OWqZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf657713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg
104.21.235.174200 OK 6.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a1029a786b088a2f378abfc33fe517f0
2c7cb1ba204c2b2b1b7fc630da4ca5652efee2d4
e1400dc677ff49a03091050f3ecf2636c7d4f0c3fae3e515786a528a510e9c03
GET /upload/vod/2022/09-07/13/scexixpyksi1308scexixpyksi111577.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 6418
cf-bgj: h2pri
etag: "89a5f1d377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:12 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sN6FiTcO4Uze1SAO2kq28l6Kbxxa%2FmBmTboglF7vLa8rfEbYwOKiFYdtESrYD%2BehNWVL5LycGXF5O8aUKlTjkMFXh92KBX9do2WeJiYcz4IgfpjjAWgrvxklm1m%2BYuTCAemF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf327713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg
104.21.235.174200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash be5459c67f79d490bb930363863288d8
0e47ee21289b8a1ad7d1cf54f0531f8a15e9bd92
4288f99e1361c0ef9085132f7050848483b0c67855888206b511acefc6bce6b3
GET /upload/vod/2022/09-07/13/hehjy0u3nx51330hehjy0u3nx5551729.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 9258
cf-bgj: h2pri
etag: "35899f07bc2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:55 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9A9FEZ32hhoZGmzPMjemW6fw3KV4OdXfwGKO2vbB2N6U5Yq4TwyxGxp%2BgkVYaLfioTucka9CDWLmeJEiOjwT9n8X6Fo%2FZ8Mzsdy0FCapSAR7CfImTF1SXtmKElaRVkaWwHLD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf727713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg
104.21.235.174200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 454ee1ac19092981fd8e96bab533fcfb
302ab66716bbe85532d35def00830a73e9810bb4
51af109a76c71f36a522bc5eaf966d9984b0d166621d8cf61510329ab84ee919
GET /upload/vod/2022/09-07/12/fc1gbhb4oje1255fc1gbhb4oje001407.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 12352
cf-bgj: h2pri
etag: "3d6318fc75c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:00 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fCxK574lh2wmmEidARwT5yLlG%2BL7Lcgnb5m1FVlM0KJ%2FChtXJczZ5GKtFe4hz0i6e1biq8yugrcNkn%2BwD7lsNW4Hvr1kMeTjAHt4vhi9Em9BS7MixKspVuFXxqGgZ1CDnWjx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf677713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg
104.21.235.174200 OK 9.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4d472cda79c89dbd226dbfd0d0a633b4
f94512b27d68388ceee44bd2e3aa2cddb4601f01
2bb6b16b4d754b8bf1f659d4fef02f551ccb4045a754d4d92c1ab415001eb7d7
GET /upload/vod/2022/09-07/12/2q00jx3ncgk12552q00jx3ncgk231411.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 9932
cf-bgj: h2pri
etag: "b7f1b9976c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:23 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QHjcjAK6oYHxexjD1CRH%2BqkKXKO0In7%2BGwn%2B9YNjpytQLELyKKm6T2a0kvTRUTBYlktp9xVASJ7CGtv45nBxeHvi4qVqqgxq%2FzKOnUCd98mRulGe3MdER9OVKplRkCcM3TSy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf637713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg
104.21.235.174200 OK 9.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5600b1dc0b13febccccad5ae5e8a2578
71badf0ab64bc26d7b50c8d82b35fe49da44986a
b8ac9990802b4fc1818c6c999c89337884a8f5c9cda42f47810047d2a723eaa3
GET /upload/vod/2022/09-07/13/axaleeg5hu41307axaleeg5hu4191531.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 8961
cf-bgj: h2pri
etag: "6bec1b477c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:19 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2VdX73Px5dM%2FjoFNpv6xuScVawmXsl3mMecPIHU8sQzNAL2fZmg%2BX6inRMSPeMCH9%2FVy1yQi0UMDFRC04ILXCrE3Tr%2FpMX%2BnWNQvRxPs7MSVRPvCxsifjQoREbs4mXeSEC5T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf367713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/ads/1.js
156.244.142.190200 OK 477 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/1.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 4165a9ea79da47e086c5104e0ad7076d
9fda2d145afbaa4560d6cb9069a9462537672d97
7fd5b52d2b6d6aae4a10f502d192aa0d4818d87ccec19d95fd609c1e7f826950
GET /template/m1938pc/ads/1.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Sep 2022 19:09:57 GMT
Accept-Ranges: bytes
ETag: "dc467bf36c9d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 477
fmlb.netlbtu.com/upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg
104.21.235.174200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b39a8eb121c5f3928dc2f521a782c02d
bcff2caa6eff59086a15f4f1ed423151ed4bb342
cec74cf5c0f7f5ad60cb8cc7632a66fb422d35374c14ecab36d13c337a208228
GET /upload/vod/2022/09-07/13/mc1yuv205t41307mc1yuv205t4171527.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 10650
cf-bgj: h2pri
etag: "b4a6b5b377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:17 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PEyW1Jw%2B6PAypHhPWTYhw2qMW1NviNsFpIPecnTWiWUgjEMCvIXvWIm7kKIoOcE%2FES9pYh5ETeHAlPvUmj21LlAtkTiZvZOl6aN7FfYDfUPRo9wIZuTQV47P5%2Fqvl8xqfXbc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf3b7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d06c328e22376fae7f42a6354059e1ee
0ea733d3c13ae0894449a8b8c5b5076adad4252a
e2559cc8bfd2591633f94bca82080a744dd3d9a1f423207c316242666e8f83af
GET /upload/vod/2022/09-07/13/fxjbvxj4bpa1307fxjbvxj4bpa171525.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 10535
cf-bgj: h2pri
etag: "878432b377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:17 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FDTBGisPCIlgguIWgm5uvUcGz3zlF%2BeCFmx0FpZMKCgh3SJX7agcSijyPlPDMNXXeONBd33ZF2nukuq%2BjNk9ZRSEdC0lDY5wYyYdSOOXdEWLQO2SLk%2F0aPTHNLYwXFPqFqlk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf3e7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg
104.21.235.174200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6f94e30c727d278d3575f3246ec329a2
31928d51a7892f354c9d03f6e767e06d2c4db77e
a56018bf4adc882e32ec42008ac59cd049b50f6e2517f7edd84a7fac45e9695f
GET /upload/vod/2022/09-07/12/1jwlp3d2nne12551jwlp3d2nne241415.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 11216
cf-bgj: h2pri
etag: "90e5d0a76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xc9YwLyCWMHGW2CsDWnt6ikAYXxIxMHRf%2BlxHZ%2BIWjVreFxht6fVOCTgosB14CRe9M0OseUFBcG2Aih3xQTDmjybaVk0amnG4cA5EOvrsVjinU443FHrGRFMjKM%2FIZFF6v9V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf707713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg
104.21.235.174200 OK 9.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash abe3a22559f3a446376ffdfc5910b301
1eaca4d6bd46f8aaff5a5119f98b2010ef1f1937
2951bf4233224514476d183387fb21f8360e54b850feb10b4a2c7f1a9453d13e
GET /upload/vod/2022/09-07/13/tc4lae0lqk01308tc4lae0lqk0101573.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 9756
cf-bgj: h2pri
etag: "b013ddd277c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:10 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uHzjG4Ph%2F3xmjOiKUTVzvqoZjnojXZ8F2wjny48xkvqG%2BWI4b%2FjPvN5Wzkfz%2FPZitYpBsboO2Tu%2FnXcZoOwxGcreFgl2yy8RF6FEo5ZRDjC335BdN67NOHafRrQtNGG9mSjA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf7b7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg
104.21.235.174200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash a5a7e5a878944a89c074143f96a1c47f
7e552cf2c502b95a7608f65b23c3c020384a0b25
ad499e5c551c6e26e17c0cc06c9022dcd19cf5f592618bd2cbe5aa938260a626
GET /upload/vod/2022/09-07/13/ve0cdbzrnnc1307ve0cdbzrnnc181529.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 11821
cf-bgj: h2pri
etag: "dc2639b477c2d81:0"
last-modified: Wed, 07 Sep 2022 05:07:18 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SberpuY1UDKBrrB0tzXZF1OXHzw%2FyUa9qMsYtjIYWADnUL3hjbk6607TDj1QS3XBpUxDNdfSIRu0iRw%2FzXvq7mYV2%2FJlzb7l0YMqgRScR5btnC%2F8UQe4V%2BV3VIQi9qXQfsVI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf387713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg
104.21.235.174200 OK 8.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash aa693b608481b6940793e5d374671ea4
fcf1ad1a12546bf5cf576763efa860c051c52bd1
625c8eaf4f9c75f8010a2c4931fc959abcfad3bb4f8a8dcb91eb709b67cb5dc6
GET /upload/vod/2022/09-07/13/4tf0dvbnibl13084tf0dvbnibl111575.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 8316
cf-bgj: h2pri
etag: "6fc369d377c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:11 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vLHE%2Fz5osnksYoroMleIWdTVBfoomhuYIIxC8LcMPuH88k2UPdXvt%2BA2vrO7msBqoGdJuupVmX1NegdlPZaR7bBODBTLrNZ8WziodE6Yen4n4%2BqVZhBECGm5hbzoAl0E5yHR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf2d7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg
104.21.235.174200 OK 9.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ad97440bf656f930e7ae1b57b0d2d3f8
a6a2995e15d795d167d6bc795ea6bcf0aaad02c5
8ac9b2a7b2ab3c46b1ecfe9fbeb5449a797c13e5b3ea6b4349363fcf46b19088
GET /upload/vod/2022/09-07/12/kcqj5tj02ct1255kcqj5tj02ct241413.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 9902
cf-bgj: h2pri
etag: "2f753fa76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:24 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hDq6bO2CaDUcRQpr%2FKUauyX3QQUQpFvDh54WQpX1VQY9DWouqVj9NfEQyIYuYGitihkBgR8MB7OA%2FBEaAO7xUu7Me8sh0BGVGNYxK9XXS2VEXwEDAVOLRJgtsPafCHghsUf3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3caf407713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/css/zui.css
156.244.142.190200 OK 15 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/css/zui.css
IP 156.244.142.190:0
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 48c376278eb9da985b90bb1612dbeee1
4d755742285a8bc38f9c73b3a5976c6b381e3c32
af7cb37270a26d66dd3bb89f42d9c122bb2a1bfe9f6fe076138d9864c7193bee
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 27 Jan 2021 05:34:18 GMT
Accept-Ranges: bytes
ETag: "0e972e6ef4d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 15351
fmlb.netlbtu.com/upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg
104.21.235.174200 OK 7.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 39a994d69d9156945e1f6b663cc44d50
b86ce9643daf36d6cb67ab5eac55f1b8d2f7736c
5373a333c07412b600c2003d0f2129021d10251558ea1cb4691dafc24c9e7bcc
GET /upload/vod/2022/09-07/13/fsxudjkso5t1330fsxudjkso5t521723.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 6980
cf-bgj: h2pri
etag: "37a77ff7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:52 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iB0r31u%2BZSSVtasjsSxLgLTlhUlwlIkDTRw4b2xSqlfSGBAltAOU7V1bVV0YreJPk3aUsAy8pmdTQMHnh05c%2BZPY4Xmz77FIu%2FNNmJq9EDYtNAV6Blc5JDzGGnFw0qsFn2Vd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf7a7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/ads/xx3.js
156.244.142.190200 OK 0 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/xx3.js
IP 156.244.142.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/m1938pc/ads/xx3.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Thu, 30 Jun 2022 14:22:56 GMT
Accept-Ranges: bytes
ETag: "de5c6e48c8cd81:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 0
156.244.142.190/template/m1938pc/ads/dl.js
156.244.142.190200 OK 505 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/dl.js
IP 156.244.142.190:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 772113e53cc89ddbf3ae23dfe28f65d4
6440b765ef2dbc485bf7e433554b0b923da727ba
5f5b37a6179c09b01198a144a5478ce3ef9dcff5db8bce21f1b5ffd53c0dffc0
GET /template/m1938pc/ads/dl.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sat, 17 Sep 2022 05:17:46 GMT
Accept-Ranges: bytes
ETag: "4583bad254cad81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 505
156.244.142.190/template/m1938pc/ads/tj.js
156.244.142.190200 OK 207 B URL HTTP/1.1 156.244.142.190/template/m1938pc/ads/tj.js
IP 156.244.142.190:0
File type HTML document, ASCII text, with no line terminators
Hash 04bb81185666d1c9d8a2493a4e5c2b71
5232eec6e742db8be8556571e72ab7dbaed474c3
29d87524da7c400e3a59d61db87572bab9f7e1d8ddd145aabedc996b150053e7
GET /template/m1938pc/ads/tj.js HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Sun, 24 Jul 2022 08:56:23 GMT
Accept-Ranges: bytes
ETag: "7dfedb3f3b9fd81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 207
fmlb.netlbtu.com/upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg
104.21.235.174200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ca4b3f2903ef4433c7ab885a04726847
cbfa6636abc2a692f285a6504209023edcf080e3
8e60248e74afcb1a19ed134b7766cc2c86bde88843cdbbc4233952f90268c3af
GET /upload/vod/2022/09-07/13/flphbwllrkr1330flphbwllrkr501719.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 9611
cf-bgj: h2pri
etag: "d51eefd7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:50 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=okPkT9Y0yyK9Zed%2FYNAaK2jYBbyNALci6B57zS743LNjns5PhwZXchF3tEIma8E2LpT%2FoRS0A60OHTz14DW1HvjxtasTVH8h0ZMH%2B4ML%2Ft0CWjEHPu3BwewUDSoyb3MBtYyn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf6e7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg
104.21.235.174200 OK 7.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 38c1547789f05c6ce1cd2efe38c3ac08
d087ec9bcc278189e607f426b23c30f89bc85d27
4a466ad4cd847a119cc5bb58576663e22a56b06788546aab8e6208d2dfacf927
GET /upload/vod/2022/09-07/13/svh2tggefir1330svh2tggefir531725.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 7366
cf-bgj: h2pri
etag: "33938fff7ac2d81:0"
last-modified: Wed, 07 Sep 2022 05:30:53 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tk4GA2fKbCC1Q0C2gBMB4THNbmLQn7AfjlbHsqRxFWvieX3vxCrIcpa4ZG4fk6KXAPAJXBXs4tki1axAbEyQT83voy45wB3OZR%2B4tsSoTRmymBU9jNDhCoRpytQPkej0yTSK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf747713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e9674310eadd5542ec475c0364c05dd5
3fe64e38b1075b73bfd5f6f1d84f981f4335ce42
39c25b2b230e63682443f00d4f2443323650b635b898f6e66afc53a3df5d8cfd
GET /upload/vod/2022/09-07/13/xj4by1cled11308xj4by1cled1081569.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 10429
cf-bgj: h2pri
etag: "22e8d1d177c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:08 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YWZNdjk4l%2Br6wnPbI4ZAqV%2BRHifEWgNr8mEaZ%2BrAXqWeRs8v5fhj4%2B9iWVKPptF16S20kbiG1OjGFoSGYTgSdMiFOi0s3%2FBF1fjJTcYylof%2FO03k8vkvk5MR0nkQqVDJuWCR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf7d7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg
104.21.235.174200 OK 7.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 61f2c7fdba6ca013e309ee65934bff40
46447f0fcfeac5c363cec337a5739eb1a72c8f92
b318a31ca0beb5a574c92103dcec62e8b037d9228e1e4af86e67bedaa9e7a52b
GET /upload/vod/2022/09-07/13/yj3ypyejt1f1308yj3ypyejt1f071567.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 7318
cf-bgj: h2pri
etag: "639147d177c2d81:0"
last-modified: Wed, 07 Sep 2022 05:08:07 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWgC28z6CeMom6FQQx5lb%2FDyJ4SshDymAAlu43XFXy5tcRx9ZOb%2ByUOnn%2B1IczDKEvojOQMREjyZDbMgqUKXf1SCBOEYvuxW1OiIA4SB%2Bde01PHnhdd8GZIqXeC8PT7RZLUg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf7f7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg
104.21.235.174200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 46746c8fb900de924ae65192f01f617a
02621393d1df5f12960002bf962889579dbf2217
fc0c9c98cca0009b63a00eb26c31e075eca511bfc9761ccf00922437a2ab48c8
GET /upload/vod/2022/09-07/12/12ibj2iy2vf125512ibj2iy2vf261417.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:57 GMT
content-type: image/jpeg
content-length: 9269
cf-bgj: h2pri
etag: "ec747fb76c2d81:0"
last-modified: Wed, 07 Sep 2022 04:55:26 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q4MF3ZjxSVllF3JHDLmOr%2Bct2sdwXR4l2YokuuqyQ%2BynA%2BVoqA1YjbnaMFs6fe2ElMFGtXhfHs40sR9USSxz2AdBa5mnrvOGVMj3NEJ2sqovzpNshyIYVnDQGhkxk%2Fh3FbPA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a3cbf6f7713-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
156.244.142.190/template/m1938pc/images/1.gif
156.244.142.190200 OK 254 B URL HTTP/1.1 156.244.142.190/template/m1938pc/images/1.gif
IP 156.244.142.190:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/images/1.gif HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 13 Oct 2021 12:55:54 GMT
Accept-Ranges: bytes
ETag: "7f8d6aa831c0d71:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 254
156.244.142.190/template/m1938pc/images/video-mask.png
156.244.142.190200 OK 107 B URL HTTP/1.1 156.244.142.190/template/m1938pc/images/video-mask.png
IP 156.244.142.190:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 24 Jan 2021 07:28:42 GMT
Accept-Ranges: bytes
ETag: "b0b58b8a22f2d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 107
156.244.142.190/template/m1938pc/images/video-play.png
156.244.142.190200 OK 1.6 kB URL HTTP/1.1 156.244.142.190/template/m1938pc/images/video-play.png
IP 156.244.142.190:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: 156.244.142.190
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://156.244.142.190/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sun, 24 Jan 2021 07:28:46 GMT
Accept-Ranges: bytes
ETag: "4081698d22f2d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 15:16:06 GMT
Content-Length: 1567
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2cc6a6babd3818355d1ae8a2b53986a
c3f2dd2b00268be45eb9fa3cc8e4dcc1eac18ffb
bf4e8a2c97e8bcc2d9a984bf6bf081bf1d6fb4d057bbda6e37619c2f2796ca39
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "BF4E8A2C97E8BCC2D9A984BF6BF081BF1D6FB4D057BBDA6E37619C2F2796CA39"
Last-Modified: Sun, 18 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5495
Expires: Sun, 18 Sep 2022 16:47:33 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
666999123.com/tu/267x160.gif
172.67.134.131200 OK 40 kB URL HTTP/2 666999123.com/tu/267x160.gif
IP 172.67.134.131:0
File type GIF image data, version 89a, 267 x 160\012- data
Hash a0871ff9ae597a9568512e38903b1c2e
5d2906013451d67aa270268e8780dd8756bd0473
5dd718fd89e147d5ea3ae5044656b7dc8881a889b49583756ab46c6448480236
GET /tu/267x160.gif HTTP/1.1
Host: 666999123.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:58 GMT
content-type: image/gif
content-length: 39782
last-modified: Thu, 25 Aug 2022 14:56:23 GMT
etag: "63078d97-9b66"
expires: Thu, 06 Oct 2022 07:17:19 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1065594
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWGhqpOTp8PM4iLezqrollQyb5fDMZC7FPG%2ByTlZW4gz5LRzAD9TgxvHmDUtEPbArevMl3mN2r4fnOsr17c0AN3fbN7ed4ZHP38uIHQD59xH2Gia9FCGtWO%2Fh9ygoAHK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a4079abb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2cc6a6babd3818355d1ae8a2b53986a
c3f2dd2b00268be45eb9fa3cc8e4dcc1eac18ffb
bf4e8a2c97e8bcc2d9a984bf6bf081bf1d6fb4d057bbda6e37619c2f2796ca39
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "BF4E8A2C97E8BCC2D9A984BF6BF081BF1D6FB4D057BBDA6E37619C2F2796CA39"
Last-Modified: Sun, 18 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5495
Expires: Sun, 18 Sep 2022 16:47:33 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aed2792ccded7dc027600d86680c2a5c
2ace3221b7b30d9840514b2bfeb7ab062afaafe1
e6b63cc200ae008f0b56cab1d8c1dee6f77060e20a060499c7403b5343f649b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6B63CC200AE008F0B56CAB1D8C1DEE6F77060E20A060499C7403B5343F649B3"
Last-Modified: Fri, 16 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17612
Expires: Sun, 18 Sep 2022 20:09:30 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b9759b342dd40e3e56ae2721ca574d0
60940607401f9939de693ab53a58d4d952c76f9e
b9e1e506c9a8487e909f19423c47faa4eede332b94acf5661fa768f6255d94e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9E1E506C9A8487E909F19423C47FAA4EEDE332B94ACF5661FA768F6255D94E0"
Last-Modified: Sat, 17 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12864
Expires: Sun, 18 Sep 2022 18:50:22 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0351e9530c5caf9963191edeb80223a
557cd483b33633bbc65f24b4df44c5fbf49c606a
b9e5702c063d363889761bacbe67e349fe03956e2744de42fb6b952cb4fa9be1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9E5702C063D363889761BACBE67E349FE03956E2744DE42FB6B952CB4FA9BE1"
Last-Modified: Fri, 16 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8823
Expires: Sun, 18 Sep 2022 17:43:01 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d530434ad61b3267ca2af0df0ae8f5e7
04c1b5043e7ca7ea7d589775e4233b487cfadaa8
0c20f667c32a0c9fd8d0ad0f129d3989bd6a6bb9703b492722d2a91fb0e3fe80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0C20F667C32A0C9FD8D0AD0F129D3989BD6A6BB9703B492722D2A91FB0E3FE80"
Last-Modified: Fri, 16 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3252
Expires: Sun, 18 Sep 2022 16:10:10 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4794
Expires: Sun, 18 Sep 2022 16:35:52 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4794
Expires: Sun, 18 Sep 2022 16:35:52 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4794
Expires: Sun, 18 Sep 2022 16:35:52 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4794
Expires: Sun, 18 Sep 2022 16:35:52 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e0d4379f6517fd75a29a3d94d9199eb
0d383b811ebe839400f04333d16a5c9d4d78f802
e64c0c03925bdfaa2520d90339c90d1f8d98c432441adb771dfe1e818220f06f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4794
Expires: Sun, 18 Sep 2022 16:35:52 GMT
Date: Sun, 18 Sep 2022 15:15:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Q6pjncaouCXUu0Pz7v6xF_8ClxxVypUSeggW23Z-UTsPamKCTgwjmA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:00:17 GMT
age: 62141
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9a9211e94d6aa2429e9663ef317707e
ac0d1af96508d026f9a1252d358660bd5671f9bd
36663b67119ae58b665e43d86b73045472cf23d73bf2c981754f479989690791
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5448
x-amzn-requestid: 3b63d209-af92-4d64-866a-d8f677aa62a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn659H9DIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263ea5-30e7f8a32603ba70671addec;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CqzHFWav9sDzwBhF58p314oyYPwfcbmlplVt2oF9QxSBIi5ktgpS7w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:54 GMT
age: 62764
etag: "ac0d1af96508d026f9a1252d358660bd5671f9bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56ade9172e883c777dd974ca879bceba
b2aaf019e083443a6404c262206ee2e981d3165c
c8407ad191143d2d947464b357d8426efb334cb165c4fa5ca01573d8f7ca7b76
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5133
x-amzn-requestid: 01f39c0a-c86f-4057-a505-20200819203c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioKkFrFoAMFhMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420a9-5821f44144b61475180ec961;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:07:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3tByM8rVW_WxdiBUCfXzxZWjMvH2PB2VQ290D-DLITqly6QQQKBNSw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:13:29 GMT
age: 28949
etag: "b2aaf019e083443a6404c262206ee2e981d3165c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51d067e534c477ce996b3e806f6a132e
451c1f67948e45909e636828e3d2a3099de922f0
e13318949733eb7992695c61570cc8b2961d881a8343c677a77cd035e787bbaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6869
x-amzn-requestid: 8d5cf972-bd9a-42b8-ba33-5dd05191e9f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6u1GspIAMF9vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263e5e-12430c8c7122a3594aba8949;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:38:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: leqr7rYJyeBFlYuFM2D-wGJfb7_w-5HbW2Y1aHwjTzZ9_4MTFybNaA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:08:03 GMT
age: 61675
etag: "451c1f67948e45909e636828e3d2a3099de922f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29f4a52fb629dce4ef8038d4df7ea58a
4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0
32cee35b22110b83738f49f49edb6efcedb54fe793d5ccc900004e16e3fefda3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5827
x-amzn-requestid: 9f179e66-3c6f-4e53-94f2-989bf32a6b90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7gyHvboAMFSzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632572d1-799e74a63288269b79170d58;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9firpBGLDHkjq_CJX01tbyPPS9OXPsTfzC0dLioWt1Axg7Vw5LQ0xg==
via: 1.1 497370ec058751eb0d9251f66d50af5e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:15:02 GMT
age: 28856
etag: "4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7334a6bdb209350f41e4640960c9ce2a
0b00e1a594dc88c8fb05044a69cc0ba1eafc4946
bf946afeb52d95f27e2a271486accf87a0c169e5e78f6d57cace80564e2ed668
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10554
x-amzn-requestid: 07497447-33e7-4f60-a3ff-974f581c5704
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn5tlG_7IAMFaIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263cbd-1964dc6548cb5f7c09f65b78;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:31:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4c7A4n-fW5-zEG1OjjUo8zWdY80KTpzwJdfKuDT0OjW5NpkZxxWB-A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:35 GMT
age: 62783
etag: "0b00e1a594dc88c8fb05044a69cc0ba1eafc4946"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kveii.com/dc0247b33019ed0ca09c321bb6fb4656.gif
104.143.94.110301 Moved Permanently 162 B URL HTTP/2 kveii.com/dc0247b33019ed0ca09c321bb6fb4656.gif
IP 104.143.94.110:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /dc0247b33019ed0ca09c321bb6fb4656.gif HTTP/1.1
Host: kveii.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 18 Sep 2022 15:15:58 GMT
content-type: text/html
content-length: 162
location: https://kvhsss.top/dc0247b33019ed0ca09c321bb6fb4656.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvhsss.top/dc0247b33019ed0ca09c321bb6fb4656.gif
104.21.37.222200 OK 796 kB URL HTTP/2 kvhsss.top/dc0247b33019ed0ca09c321bb6fb4656.gif
IP 104.21.37.222:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 796 kB (795791 bytes)
Hash a0fc10963ea2b912c10e39e46df5cd72
fa9e7953732f63170e38ed2dec8e945ba6f083e4
7ba4e934ee23a0c156e0b14b61757398bfff3e6c41b4b1ab72d803e39169b469
GET /dc0247b33019ed0ca09c321bb6fb4656.gif HTTP/1.1
Host: kvhsss.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://156.244.142.190/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:58 GMT
content-type: image/gif
content-length: 795791
last-modified: Wed, 23 Mar 2022 06:52:01 GMT
etag: "623ac391-c248f"
expires: Mon, 17 Oct 2022 20:08:19 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 68859
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5gsWxQHBl0438XZG%2BPYONSCZr3UQF34inZATq78UbuojryKpde3xPgXqUNBa3xOfiDkNcujcV5%2Fi95AiZLD7JKZXCjCby1%2B83o5NvG2HQ80DwWOgSBzyz0W0wAod"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cb0a438eab1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 8e0170bd3b4c389e2ee3d709400e5b60
9e84e2bbf5b09422a42acf40558de48ca74549c0
9062d361badd9c124daeb6fc600c389d57f9abee983be1ead27cdcdb9fa297c5
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:15:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 13:26:23 GMT
ETag: "9e84e2bbf5b09422a42acf40558de48ca74549c0"
Last-Modified: Sun, 18 Sep 2022 13:26:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2238
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cb0a43dd97b50f-OSL
tvpbhvr.com/96x120.gif
154.83.27.179200 OK 88 kB IP 154.83.27.179:0
File type GIF image data, version 89a, 960 x 120\012- data
Hash 9f47403a1048e94ca7a402b4f16383a1
facb5012af395501b990de13f256cf7f412f9444
3fcd8afece27d73f3afad475bd9e7bea853fb690cafe11e754a0fc14f7e0e0e7
Analyzer Verdict Alert quad9 Sinkholed
GET /96x120.gif HTTP/1.1
Host: tvpbhvr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Sun, 18 Sep 2022 15:15:58 GMT
Content-Type: image/gif
Content-Length: 87796
Connection: keep-alive
Last-Modified: Thu, 07 Apr 2022 11:25:26 GMT
ETag: "624eca26-156f4"
Expires: Tue, 18 Oct 2022 09:26:49 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Via: 154.83.27.178
CDN-Cache: HIT
Accept-Ranges: bytes
s2.loli.net/2022/04/13/UVtxe3bBIg2Efn7.gif
104.26.0.190200 OK 121 kB URL HTTP/2 s2.loli.net/2022/04/13/UVtxe3bBIg2Efn7.gif
IP 104.26.0.190:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 121 kB (120952 bytes)
Hash 8b1ce22d19b73e71ec05f04491df7cae
101ed504920b13424231d6fb3540fb7dfdba69e3
5a7a72fa04186d44d08de8b590fcf1644ad8370bc65007e51ba9300af2541dce
GET /2022/04/13/UVtxe3bBIg2Efn7.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 15:15:58 GMT
content-type: image/gif
content-length: 120952
last-modified: Wed, 13 Apr 2022 10:25:19 GMT
etag: "6256a50f-1d878"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BpNpHUh1V2oM9CH%2FrFbLtEgJAX8boI7MMhl8xDa%2F8lrGyJ0Hfym%2F9UCYuIfpkhKhMKfyjrS5PE3VFx3%2F068bNt7MFe1vmD9Ed7NeQ%2F9t0%2BSmj8sweqUWfQFlkjZf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74cb0a3ff8ecfac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pic.picnewsss.com/tu-2022290039/960-120.gif
23.225.139.251200 OK 369 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/960-120.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 369 kB (369108 bytes)
Hash d3f9f17ed067ebb6ee0792014656333e
1f5593ee409f13d7734fd538a9a779dbe469a7c1
69da833d60a8ae1c0d5f64a25dfb6b42579ac7d20046a2db7c2be4256b601b68
GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Sun, 18 Sep 2022 06:56:14 GMT
etag: "1663484174"
expires: Tue, 18 Oct 2022 06:56:14 GMT
last-modified: Sun, 18 Sep 2022 06:56:14 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 369108
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 93ec4180af6856353fa772e9c49bd2a5
ac1a6bffc22a46174977642bf6b3a78fb1411fcd
391b1bd14b60bca7a68c34d8d853cf7ec3cc25616f24a52abb8e0c13a0ccc63f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:15:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 02:35:21 GMT
Expires: Fri, 23 Sep 2022 02:35:20 GMT
Etag: "ac1a6bffc22a46174977642bf6b3a78fb1411fcd"
Cache-Control: max-age=385760,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb0a4759580b3d-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b5d26506ede419fb3d3990c68658f290
785c9daf931aff1bf2bccf7a2a9402fb44ec1c01
837591176cdd036c7cb8d635da0dcb235d635ced3feb01c8f02a4e621e3b8ebb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:15:59 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 03:06:37 GMT
Expires: Fri, 23 Sep 2022 03:06:36 GMT
Etag: "785c9daf931aff1bf2bccf7a2a9402fb44ec1c01"
Cache-Control: max-age=387636,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb0a475ba6b4f9-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 989a449fad05f9766741865338f67240
4f5fbd4a8cea9c8a1d1d0d14911709d39c82306e
0be54b9e3d60498d52919acbbcbd3a0f662265684d26e8f5e106235af95c02a9
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:15:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 13:40:23 GMT
ETag: "4f5fbd4a8cea9c8a1d1d0d14911709d39c82306e"
Last-Modified: Sun, 18 Sep 2022 13:40:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 148
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cb0a49bd1eb50f-OSL
u0062.com/62dcd681ac4f493889984a49140653d1.gif
20.239.191.83200 OK 238 kB URL HTTP/1.1 u0062.com/62dcd681ac4f493889984a49140653d1.gif
IP 20.239.191.83:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 120\012- data
Size 238 kB (238079 bytes)
Hash 0e654b6218f5cc6cdcb1910830206233
6e14b10f038e258c753558fdd139913139e642aa
2237d1b3cfcceda996092a426648bd8b9672ec10b57334a64e77262edb529a4b
GET /62dcd681ac4f493889984a49140653d1.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:15:58 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 21 Jul 2022 09:30:15 GMT
ETag: W/"62d91ca7-7d081"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
rrtwda9.com/946eee7be49243a49664096dddb44412.gif
45.61.212.57200 OK 221 kB URL HTTP/1.1 rrtwda9.com/946eee7be49243a49664096dddb44412.gif
IP 45.61.212.57:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 221 kB (221037 bytes)
Hash 76d11f9f0142237f14743e2281f89cbb
7b79920e1fa187351ac3822530b786e61dd29e93
fb4831054a446e499446c681e3cfdc687e707414605e037616598c3ab51141e7
GET /946eee7be49243a49664096dddb44412.gif HTTP/1.1
Host: rrtwda9.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62554ada-35f6d"
Date: Fri, 16 Sep 2022 08:48:58 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 12 Apr 2022 09:48:10 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-27
Content-Length: 221037
jcyunk2.com/dc0bcb706fb440cdaade3c0b609ead2b.gif
103.170.15.88200 OK 128 kB URL HTTP/1.1 jcyunk2.com/dc0bcb706fb440cdaade3c0b609ead2b.gif
IP 103.170.15.88:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 128 kB (128460 bytes)
Hash a27db76daea20381e7603b29173315ad
de92fdc3f51b1ddd7c047d77f73b262aeb37a642
ddf43ab0e61b6cd25843e3ddf116b65e50e0eb4df11f4cddd813502d64a91844
GET /dc0bcb706fb440cdaade3c0b609ead2b.gif HTTP/1.1
Host: jcyunk2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62554ac8-1f5cc"
Date: Fri, 16 Sep 2022 15:16:45 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 12 Apr 2022 09:47:52 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-18
Content-Length: 128460
pic.newtupic.com/image/dongfang.gif
103.186.84.28200 OK 260 kB URL HTTP/1.1 pic.newtupic.com/image/dongfang.gif
IP 103.186.84.28:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 260 kB (259681 bytes)
Hash dea56e9bf21a9d966dc144f5ec9e1db6
40d6d3f4be8ee4f8d4f2fe3c3264ffcf0c3a4546
27d0b3ff31e08d30f85fe19faf10a061a7e884d769702cee66e49fc30e1c8b38
GET /image/dongfang.gif HTTP/1.1
Host: pic.newtupic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 15:15:59 GMT
Content-Type: image/gif
Content-Length: 259681
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 09:05:14 GMT
ETag: "632047ca-3f661"
Expires: Tue, 18 Oct 2022 15:15:41 GMT
Cache-Control: max-age=1800
Strict-Transport-Security: max-age=31536000
server: ****
X-Cache: HIT
X-Cache-Hit: edge
X-Request-Id: ba86ca003ca2a8d00d92c6c2121300f5
Accept-Ranges: bytes
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X120.gif
47.75.19.91200 OK 212 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X120.gif
IP 47.75.19.91:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 212 kB (212323 bytes)
Hash 1e7356e466a72b7c5d137501da414a9e
0ed2f34eabe2609bc15e05bf3e4a9d598519404e
f93680cd55fe1803408a139984dbe3e18ea2e9c6b184ab8ce353a68dc17878a7
GET /gg/960X120.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 15:15:59 GMT
Content-Type: image/gif
Content-Length: 212323
Connection: keep-alive
x-oss-request-id: 6327362FDA8A7939318CEEE1
Accept-Ranges: bytes
ETag: "1E7356E466A72B7C5D137501DA414A9E"
Last-Modified: Sat, 17 Sep 2022 09:20:48 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14666006998441618956
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: HnNW5GanK3xdE3UB2kFKng==
x-oss-server-time: 2
p.qlogo.cn/qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif
43.129.255.47200 OK 47 kB URL HTTP/2 p.qlogo.cn/qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Hash 2b9c30b086d03d90a45a9174aef7b408
e87dbe76669e2f402826dd598bb047d793b1e20c
f1eb3044b464fb4b4b8f3e081295bc19cc4cddc9361adb34ad7fb73b93b25de6
GET /qqmail_head/nNWOk8hmFk9ZWcCAPdgknOkeIunEJMia6p5jlwvCSLicJoIcw9NMBecE7eT5NG8ibPAaP2SqIIia6Mk/0.gif HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://156.244.142.190/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sun, 18 Sep 2022 15:16:00 GMT
content-type: image/gif
content-length: 46855
vary: Accept,Origin
last-modified: Wed, 13 Apr 2022 16:09:33 GMT
cache-control: max-age=2592000
x-delay: 12271 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 46855
chid: 0
fid: 0
x-nws-log-uuid: 2e96df62-042f-46e8-9dae-7fc872c85dd8
X-Firefox-Spdy: h2