Overview

URL www.dgsgdp.com/index.php
IP156.252.155.219
ASNIHGGROUP-001
Location United States
Report completed2022-09-14 14:54:08 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-14 2 kvtaaa.top Sinkholed
2022-09-14 2 kvtaaa.top Sinkholed
2022-09-14 2 kvtaaa.top Sinkholed


Files

No files detected



Passive DNS (34)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.dgsgdp.com (4) 0 No data No data 156.252.155.219 Unknown ranking
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-14 04:48:22 UTC 104.18.20.226
mnemonic passive DNS dimg04.c-ctrip.com (1) 139731 2014-05-08 16:11:10 UTC 2022-09-14 12:24:15 UTC 104.110.17.24
mnemonic passive DNS kvkaa.com (3) 0 2022-05-19 09:47:10 UTC 2022-09-14 09:52:24 UTC 64.32.13.142 Unknown ranking
mnemonic passive DNS kvtaaa.top (3) 0 2022-05-19 09:36:19 UTC 2022-09-14 12:27:08 UTC 104.21.30.227 Unknown ranking
mnemonic passive DNS 107.148.82.45 (1) 0 2017-06-01 15:32:57 UTC 2017-07-10 04:44:31 UTC 107.148.82.45 Unknown ranking
mnemonic passive DNS 107.148.82.46 (1) 0 2017-07-05 05:56:13 UTC 2017-07-10 04:44:34 UTC 107.148.82.46 Unknown ranking
mnemonic passive DNS p.qlogo.cn (1) 48578 2014-01-15 11:11:45 UTC 2022-09-14 05:15:44 UTC 43.154.254.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-14 04:47:55 UTC 143.204.55.49
mnemonic passive DNS p3.toutiaoimg.com (1) 67652 2021-01-20 17:23:58 UTC 2022-09-14 11:27:42 UTC 47.246.44.224
mnemonic passive DNS 107.148.82.44 (22) 0 2017-05-31 07:02:04 UTC 2021-05-14 11:44:40 UTC 107.148.82.44 Unknown ranking
mnemonic passive DNS fmlb.netlbtu.com (30) 187701 2021-09-14 11:57:06 UTC 2022-09-14 10:27:13 UTC 104.21.235.174
mnemonic passive DNS hm.baidu.com (2) 8254 2012-05-26 08:38:45 UTC 2022-09-14 06:46:56 UTC 103.235.46.191
mnemonic passive DNS n0300.com (1) 0 2016-07-16 20:51:42 UTC 2022-09-12 14:16:23 UTC 20.239.190.150 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-14 12:26:26 UTC 143.204.55.115
mnemonic passive DNS r3.o.lencr.org (8) 344 2020-12-02 08:52:13 UTC 2022-09-14 04:47:59 UTC 23.36.77.32
mnemonic passive DNS vgvjkw.com (1) 0 2022-07-07 16:38:40 UTC 2022-09-12 16:42:08 UTC 103.170.15.60 Unknown ranking
mnemonic passive DNS 107.148.82.21 (1) 0 2017-06-19 12:23:26 UTC 2017-07-10 04:44:50 UTC 107.148.82.21 Unknown ranking
mnemonic passive DNS ocsp.sectigo.com (3) 487 2018-12-17 11:31:55 UTC 2022-09-14 11:54:44 UTC 172.64.155.188
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-14 04:48:23 UTC 44.237.239.70
mnemonic passive DNS api.share.baidu.com (2) 44629 2013-04-25 14:45:11 UTC 2022-09-14 05:14:38 UTC 112.34.113.148
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-14 04:48:25 UTC 34.120.237.76
mnemonic passive DNS 107.148.82.2 (6) 0 2017-06-21 09:00:44 UTC 2022-02-13 04:49:07 UTC 107.148.82.2 Unknown ranking
mnemonic passive DNS cdn.jsjsjs.xyz (1) 0 2022-02-22 21:30:27 UTC 2022-09-14 09:32:00 UTC 104.21.63.42 Unknown ranking
mnemonic passive DNS kvemm.com (1) 222018 2021-10-18 01:51:02 UTC 2022-09-14 12:57:26 UTC 78.46.107.74
mnemonic passive DNS 107.148.82.47 (1) 0 2017-07-05 05:55:17 UTC 2017-07-10 04:44:06 UTC 107.148.82.47 Unknown ranking
mnemonic passive DNS 107.148.82.43 (1) 0 2017-07-05 05:24:27 UTC 2017-07-10 04:44:52 UTC 107.148.82.43 Unknown ranking
mnemonic passive DNS ocsp2.globalsign.com (1) 1544 2012-05-21 07:12:19 UTC 2022-09-14 04:52:22 UTC 104.18.20.226
mnemonic passive DNS push.zhanzhang.baidu.com (1) 57139 2015-07-22 05:44:02 UTC 2022-09-14 05:14:36 UTC 39.156.68.163
mnemonic passive DNS 884329.com (1) 0 2015-07-21 18:05:02 UTC 2022-09-14 07:28:27 UTC 47.75.19.14 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-14 07:25:26 UTC 93.184.220.29
mnemonic passive DNS vcawmm.com (1) 0 2022-07-08 17:09:52 UTC 2022-09-13 13:46:35 UTC 103.170.15.44 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-14 04:48:22 UTC 34.117.237.239
mnemonic passive DNS kvkiii.top (1) 0 2022-08-16 22:28:55 UTC 2022-09-14 09:14:16 UTC 104.21.234.205 Unknown ranking


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 156.252.155.219

Date UQ / IDS / BL URL IP
2022-09-14 14:54:08 +0000
0 - 0 - 3 www.dgsgdp.com/index.php 156.252.155.219

Last 5 reports on ASN: IHGGROUP-001

Date UQ / IDS / BL URL IP
2022-12-03 02:44:31 +0000
0 - 0 - 20 www.imaysoft.com/exe/VConference.exe 156.244.163.252
2022-12-01 23:16:08 +0000
0 - 0 - 10 beijing202.com/ 154.205.152.199
2022-11-28 07:23:40 +0000
0 - 0 - 13 jaytakeapic.com/ 154.205.217.205
2022-11-28 04:41:05 +0000
0 - 0 - 2 www.zx9688.com/index.php 156.244.25.73
2022-11-27 01:33:08 +0000
0 - 0 - 4 www.freshmp3world.com/artist6728/usher-/%3Edo (...) 156.252.234.207

Last 1 reports on domain: dgsgdp.com

Date UQ / IDS / BL URL IP
2022-09-14 14:54:08 +0000
0 - 0 - 3 www.dgsgdp.com/index.php 156.252.155.219

No other reports with similar screenshot



JavaScript

Executed Scripts (29)


Executed Evals (2)

#1 JavaScript::Eval (size: 2127, repeated: 1) - SHA256: f796f924638ba46a6ae1d20cadaf872bc40964b402d497b52458d904f1b9027e

                                        (function($) {
    $.fn.lazyload = function(options) {
        var settings = {
            threshold: 0,
            failurelimit: 0,
            event: "scroll",
            effect: "show",
            container: window
        };
        if (options) {
            $.extend(settings, options)
        }
        var elements = this;
        if ("scroll" == settings.event) {
            $(settings.container).bind("scroll", function(event) {
                var counter = 0;
                elements.each(function() {
                    if (!$.belowthefold(this, settings) && !$.rightoffold(this, settings)) {
                        $(this).trigger("appear")
                    } else {
                        if (counter++ > settings.failurelimit) {
                            return false
                        }
                    }
                });
                var temp = $.grep(elements, function(element) {
                    return !element.loaded
                });
                elements = $(temp)
            })
        }
        return this.each(function() {
            var self = this;
            $(self).attr("original", $(self).attr("src"));
            if ("scroll" != settings.event || $.belowthefold(self, settings) || $.rightoffold(self, settings)) {
                if (settings.placeholder) {
                    $(self).attr("src", settings.placeholder)
                } else {
                    $(self).removeAttr("src")
                }
                self.loaded = false
            } else {
                self.loaded = true
            }
            $(self).one("appear", function() {
                if (!this.loaded) {
                    $("<img />").bind("load", function() {
                        $(self).hide().attr("src", $(self).attr("original"))[settings.effect](settings.effectspeed);
                        self.loaded = true
                    }).attr("src", $(self).attr("original"))
                }
            });
            if ("scroll" != settings.event) {
                $(self).bind(settings.event, function(event) {
                    if (!self.loaded) {
                        $(self).trigger("appear")
                    }
                })
            }
        })
    };
    $.belowthefold = function(element, settings) {
        if (settings.container === undefined || settings.container === window) {
            var fold = $(window).height() + $(window).scrollTop()
        } else {
            var fold = $(settings.container).offset().top + $(settings.container).height()
        }
        return fold <= $(element).offset().top - settings.threshold
    };
    $.rightoffold = function(element, settings) {
        if (settings.container === undefined || settings.container === window) {
            var fold = $(window).width() + $(window).scrollLeft()
        } else {
            var fold = $(settings.container).offset().left + $(settings.container).width()
        }
        return fold <= $(element).offset().left - settings.threshold
    };
    $.extend($.expr[':'], {
        "below-the-fold": "$.belowthefold(a, {threshold : 0, container: window})",
        "above-the-fold": "!$.belowthefold(a, {threshold : 0, container: window})",
        "right-of-fold": "$.rightoffold(a, {threshold : 0, container: window})",
        "left-of-fold": "!$.rightoffold(a, {threshold : 0, container: window})"
    })
})(jQuery);
                                    

#2 JavaScript::Eval (size: 17, repeated: 1) - SHA256: 9627dbcefdb323564f74ac4672d911ec7dbae7b0d2cbb41d97706c6f7654ce2a

                                        10 + 10 + 10 + 10 + 10 + 10
                                    

Executed Writes (89)

#1 JavaScript::Write (size: 96, repeated: 1) - SHA256: 4098d4dd9b893f26e9b2946d117a75f855d5fedeff26cfba436e08e21c4d81ae

                                        < script type = "text/javascript"
language = "javascript"
src = "http://107.148.82.2/js/3.js" > < /script>
                                    

#2 JavaScript::Write (size: 146, repeated: 1) - SHA256: 785b178531b88145915586c88a8b51879053e531181ad2de485cf069ef023e7a

                                        < img src = 'https://dimg04.c-ctrip.com/images/03937120009rrlapb69C4.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#3 JavaScript::Write (size: 77, repeated: 1) - SHA256: 699c42d1913325175053de501db3f92a7b1b0c1be3dffaa47bdd657a92535aed

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > 6�� < /a></dd >
                                    

#4 JavaScript::Write (size: 81, repeated: 1) - SHA256: 308c1602283a160806cec2baada1b0cdad2de5ddb69543fa9ae12dcc3123053d

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > ���� < /a></dd >
                                    

#5 JavaScript::Write (size: 72, repeated: 1) - SHA256: 612317228846d03871865e8e8c4ddaef811d13a08b061088fafa3feed6d18f8f

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > ��Z1 < /a></dd >
                                    

#6 JavaScript::Write (size: 194, repeated: 1) - SHA256: 164b1052b0251e3706a1261c8dd3c1d1b5881429536d7926aa3357d28a531b48

                                        < li > < a href = 'https://16043.xyz:2053/xpj/xpjapp/index.html?shareName=16043.xyz'
target = '_blank' > < img src = 'https://kvkaa.com/3b519146003914bff4ecede8a7b76f26.gif' > < br > < span >  < /span>��888</a >
                                    

#7 JavaScript::Write (size: 72, repeated: 1) - SHA256: 4732fcbc352c4a9193adc10b1ce65f0c416765a0e8d484ef4984330182ed64b8

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > �� ^ h < /a></dd >
                                    

#8 JavaScript::Write (size: 6, repeated: 1) - SHA256: aac32651b10f567c461b9b4f255d6fb1fa6859b5368d8bd9a51af920ab21cf23

                                        < /div>
                                    

#9 JavaScript::Write (size: 50, repeated: 1) - SHA256: 972ed6494084b1376101ff5baabe257878fce8c57c5b2339d7d5562ff46aafea

                                        < a href = 'https://4225t.com:30653'
target = '_blank' >
                                    

#10 JavaScript::Write (size: 51, repeated: 1) - SHA256: 13f7e9662a96ca1b8cea1f630d169b70e6e24cdb38ce84f594e074df7173e4a5

                                        < dd > < a href = 'http://154.7.62.161' > �x� < /a></dd >
                                    

#11 JavaScript::Write (size: 74, repeated: 1) - SHA256: eec66e17cf33ce830995a12b76104e38933194889cd5f5c0c085fd4f77c1189a

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > ��Q� < /a></dd >
                                    

#12 JavaScript::Write (size: 72, repeated: 1) - SHA256: 50cec9eec5330673138faa79275ab1c0b5c40cf9802142d828047b169ec23d92

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > ��p < /a></dd >
                                    

#13 JavaScript::Write (size: 75, repeated: 1) - SHA256: 4adfb3eebf9f65a4a84cd37fd0baad82b41edd2d89b010005bd25f75cb777a13

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > -�WU < /a></dd >
                                    

#14 JavaScript::Write (size: 72, repeated: 1) - SHA256: a6aa26a933705ddb4e16b85bb56ee20e3ec05376b7ca3ac6bd2570eef7cd5637

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > f�� < /a></dd >
                                    

#15 JavaScript::Write (size: 68, repeated: 1) - SHA256: 9d6f901a066e64fe2c3c5538bf4a0f35b0969bd4a12ebdd203e649b79fd4d861

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > M9zM < /a></dd >
                                    

#16 JavaScript::Write (size: 214, repeated: 1) - SHA256: e36f4cafce1f104c70cafed23233f458281cb6f8e97f50d3096c82226047a625

                                        < li > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha'
target = '_blank' > < img src = 'https://p3.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/2d4d08599b6a4800add1475ec6705825~noop.image' > < br > < span >  < /span>���</a >
                                    

#17 JavaScript::Write (size: 31, repeated: 1) - SHA256: 7aac2e8dea621c2367166d688ffb04dbcb61013d2d2bac4c0e104700fd0c8392

                                        < script type = 'text/javascript' >
                                    

#18 JavaScript::Write (size: 72, repeated: 1) - SHA256: f00ab7e7777538dac60696a5456b1b9e8f57aace8071222c0597ac7be8b320d7

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > �x� < /a></dd >
                                    

#19 JavaScript::Write (size: 155, repeated: 1) - SHA256: ad1c111b1fa0da432768a2e37a1e57a9280388b51534e6303cabc1aad0d331a0

                                        < li > < a href = 'https://b3621.com:36555'
target = '_blank' > < img src = 'https://vcawmm.com/f354576cc6374341ad1eb982f7a8cbd1.gif' > < br > < span >  < /span>��365C</a >
                                    

#20 JavaScript::Write (size: 97, repeated: 1) - SHA256: 3c9b2bc32b1aa2202905602c44df22e5a00e62b47720b31fec05846675b299e4

                                        < script type = "text/javascript"
language = "javascript"
src = "http://107.148.82.2/js/dh.js" > < /script>
                                    

#21 JavaScript::Write (size: 49, repeated: 1) - SHA256: 6f51f81e44e42c2907a5d6e4bcf22c0626b5c39384e0ea34fdd6117b8a1a6c1a

                                        < dd > < a href = 'http://154.7.62.161' > �s < /a></dd >
                                    

#22 JavaScript::Write (size: 103, repeated: 1) - SHA256: d9b1851ed7e7df3f42b0907774e9d811efe38d1861b9dd500a1ddd2d476c3dd3

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > < font color = '#FFFF66' > �s�� < /font></a > < /dd>
                                    

#23 JavaScript::Write (size: 101, repeated: 1) - SHA256: c6ff1155e57d9702dc8901dbbc0d3bea0f5d8e403ea011edc169effae45d14e9

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > < font color = '#FFFF66' > M9�� < /font></a > < /dd>
                                    

#24 JavaScript::Write (size: 70, repeated: 1) - SHA256: 0909db5e0b6434ead9c7d3dacbe7957a294eb5c28aae53ca0324b11551865492

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > Φ� < /a></dd >
                                    

#25 JavaScript::Write (size: 95, repeated: 1) - SHA256: a0f307862115d72aa4e1d514ab2ff233b743d965e3fb1cd7c1c85e8c048a31a0

                                        < script type = "text/javascript"
language = "javascript"
src = "http:/107.148.82.2/js/2.js" > < /script>
                                    

#26 JavaScript::Write (size: 142, repeated: 1) - SHA256: 220440e98a25eca47dd1caa7314ab90c3bedf85d00fe8e74f4edcde1b5fb14a8

                                        < img src = 'https://884329.com/844589934a864e83815cbd3df153acea.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#27 JavaScript::Write (size: 49, repeated: 1) - SHA256: 196e26b9c2f423a1d2e7e53204876a153b26d4585309a3b25e22f40ddc7ffc13

                                        < dd > < a href = 'http://154.7.62.161' > �,  < /a></dd >
                                    

#28 JavaScript::Write (size: 70, repeated: 1) - SHA256: d8ad6037882f5e44d4a89acd02500d2b5d6e057f63b483c785fc460a11a0ef9d

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > �s < /a></dd >
                                    

#29 JavaScript::Write (size: 72, repeated: 1) - SHA256: 4d23ed551fdadbd7623298c1ecf757170936eb9551ab63d741c9c12cc5be4936

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > f�� < /a></dd >
                                    

#30 JavaScript::Write (size: 72, repeated: 1) - SHA256: 17c7315ad6bc9add221eb5a9901f60b51ee88035ec6a7b08f06a382b7252cf13

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > | L�� < /a></dd >
                                    

#31 JavaScript::Write (size: 126, repeated: 1) - SHA256: 0445b7e7106a414a7e5f3e414fbdad5e3d6bd2fc809abb5a03507c37ba0e8a18

                                        document.write('<script src="https://wpercent.lpasdfgwer.com:25688/ty/D12C5B2A-2C27-18394-34-DAEA801F7EDE.alpha"><\/script>');
                                    

#32 JavaScript::Write (size: 91, repeated: 1) - SHA256: c24e16bc0f1cd221c561f8f81fa17a7569ed86b6e687a9a892ae578c161fb182

                                        < a href = 'https://16043.xyz:2053/xpj/xpjapp/index.html?shareName=16043.xyz'
target = '_blank' >
                                    

#33 JavaScript::Write (size: 75, repeated: 1) - SHA256: b628833b9138ddcc9c3bd9ae4073fe149d2de882b4e5c71dd24c89bf905ae160

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > � < /a></dd >
                                    

#34 JavaScript::Write (size: 53, repeated: 1) - SHA256: 3b706fc5cc3970913e783e5536b7b8e095de2c1a7fa3bdfc06378be64d6dc8d8

                                        < dd > < a href = 'http://154.7.62.161' > ��� < /a></dd >
                                    

#35 JavaScript::Write (size: 49, repeated: 1) - SHA256: 9cd535abce689d4a193c312f3215694746834011b29427bd0af08edd90f10121

                                        < dd > < a href = 'http://154.7.62.161' > -�WU < /a></dd >
                                    

#36 JavaScript::Write (size: 101, repeated: 1) - SHA256: 0dc0a4fffbec77002e8249f1371d4fc6d6a3cb0c7e52411e267bfa1e2a1ebe82

                                        < script type = "text/javascript"
language = "javascript"
src = "http://107.148.82.2/js/piaofu.js" > < /script>
                                    

#37 JavaScript::Write (size: 22, repeated: 1) - SHA256: 2eccfb41e55f88b284d20767b0f431e9f11925d9e7f048222a0288d6e2549e53

                                        var _hmt = _hmt || [];
                                    

#38 JavaScript::Write (size: 141, repeated: 1) - SHA256: 2c1a060caf2f430d432a0d4c8632401df5ac94a1eb58296bd8d451b20d2fc39b

                                        < img src = 'https://kvkaa.com/153ac71e52df3d7d664bf0bb17905f12.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#39 JavaScript::Write (size: 141, repeated: 1) - SHA256: f4c7de0f45b74c6c4b7c65569a3179041d7e630f9e280bbd7ad7c2ecda1b94c0

                                        < img src = 'https://kvkaa.com/b4304dba9cab30c3fcd7fd1920abfd62.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#40 JavaScript::Write (size: 47, repeated: 1) - SHA256: 717f2ca85c5929d9207d00156b6fd61cd40be411084696f79774a89b6f7800b1

                                        < dd > < a href = 'http://154.7.62.161' > s 'f</a></dd>
                                    

#41 JavaScript::Write (size: 72, repeated: 1) - SHA256: bac6039a1aeacbb76343b5d4d6c6af9a56e9bf18e234e9567b89d3991a6b1e1b

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > z�� p < /a></dd >
                                    

#42 JavaScript::Write (size: 97, repeated: 1) - SHA256: 4e027061e59f89db7474352ca875e918cac7848f8e796ba7c97194d62aae4a22

                                        < script type = "text/javascript"
language = "javascript"
src = "http://107.148.82.2/js/66.js" > < /script>
                                    

#43 JavaScript::Write (size: 52, repeated: 1) - SHA256: 1005268a9b8ad47935081243a8cdb3d7211ce9c70afefea0ce43266a0eb7b92d

                                        < p align = 'center' > < b > < font size = '5'
color = '#FF0000' >
                                    

#44 JavaScript::Write (size: 84, repeated: 1) - SHA256: d826d57ac0d8213ac279e5f165aa7ffa052907b060f9ec93458d594c86ca31af

                                        < span style = 'background-color: #FFFF00' > J\ Telegram@ nvyou99 < /span></font > < /b></p >
                                    

#45 JavaScript::Write (size: 71, repeated: 1) - SHA256: 45f1cbe114031d4026f152575ad55f4bfaac3aa816cf82ce26ad26f3199fd094

                                        < a href = 'https://8030973.cc:8443?shareName=8030973.cc'
target = '_blank' >
                                    

#46 JavaScript::Write (size: 53, repeated: 1) - SHA256: 05caa7e0990bfbd79d920a69cf85433891cdb3e282649f39593a63ba710787cc

                                        < dd > < a href = 'http://154.7.62.161' > ���s < /a></dd >
                                    

#47 JavaScript::Write (size: 70, repeated: 1) - SHA256: d845940d8318d792d2ec5302e7bd83db60816989fd86bec0260c2ccbcf4fd722

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > Dф� < /a></dd >
                                    

#48 JavaScript::Write (size: 9, repeated: 1) - SHA256: 6c9656210a0202719c1cc3f33bba512135c26bb8d970d2350552e75d257631ca

                                        < /script>
                                    

#49 JavaScript::Write (size: 70, repeated: 1) - SHA256: c6d111a2d844ed8e4320944758567fdf4fc15a70ab038df90154f1243378d83e

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > !� % r < /a></dd >
                                    

#50 JavaScript::Write (size: 126, repeated: 1) - SHA256: bdb1b6fa9d8352990f09ba78a98cd293376004cc7d036646f115c242bf9e7fd3

                                        document.write('<script src="https://wpercent.lpasdfgwer.com:25688/ty/D9063937-1C8C-17229-33-07D0E191BFD8.alpha"><\/script>');
                                    

#51 JavaScript::Write (size: 5, repeated: 1) - SHA256: 9f49d5ddded342f8184c0ae9ad7394e52a1f8f41ac7ced56607bafeae43fb26e

                                        })();
                                    

#52 JavaScript::Write (size: 55, repeated: 1) - SHA256: 171700c6926f9227356fe08dc1a299afd91cae6867c4760ce5352e949f7450bc

                                        < a href = 'https://7nvkb.bmvqf.com:6996'
target = '_blank' >
                                    

#53 JavaScript::Write (size: 96, repeated: 1) - SHA256: c450f546759036eceacf2d02688f18a0a59c9395e8437ddc82e8e436360da827

                                        < a href = 'https://696253.com:8443/index.html?shareName=696253.com&proxyAccount='
target = '_blank' >
                                    

#54 JavaScript::Write (size: 77, repeated: 1) - SHA256: 983480b95badae53322ccece811bf4b67a0cb92f28c674700051f7c0478c3df7

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > �, � < /a></dd >
                                    

#55 JavaScript::Write (size: 101, repeated: 1) - SHA256: 7eda8ed6a718c55085ee61e28e75da9ef98cf46906f6fc3fe8b12509c4476d6a

                                        < script type = "text/javascript"
language = "javascript"
src = "http://107.148.82.2/js/xuanfu.js" > < /script>
                                    

#56 JavaScript::Write (size: 44, repeated: 1) - SHA256: 9e6cf13213e1524ae38e2146b019ea5d2a6023c25a919ec7ce823abf55191032

                                          var hm = document.createElement('script');
                                    

#57 JavaScript::Write (size: 48, repeated: 1) - SHA256: 766d29bdafa26635acd9d80a7f545bffed95c79cd31e764bb83e0f05680ce231

                                        < a href = 'https://andytz14m.com'
target = '_blank' >
                                    

#58 JavaScript::Write (size: 145, repeated: 1) - SHA256: b4f4f5269a86308bc8d0abc8ed58a0fb9632f7c6597eee5b7300cdd0df09b7f1

                                        < img src = 'https://cdn.jsjsjs.xyz/happy/newyear/kongkong/960x60ns.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#59 JavaScript::Write (size: 79, repeated: 1) - SHA256: db6045f828804f204c23f024717847520784d53669e274d29cf85af97418cf4c

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > ���r < /a></dd >
                                    

#60 JavaScript::Write (size: 82, repeated: 1) - SHA256: 509997edfd2f301004b2afc0a9314259524a2bd12be8569f623cf0b125d3398d

                                        < dd > < a href = 'http://154.7.62.161' > < font color = '#FFFF66' > ��� < /font></a > < /dd>
                                    

#61 JavaScript::Write (size: 77, repeated: 1) - SHA256: 221ac80b45096bfdaf7799d813d78bd048fb64ef1691c7ab63e34457740c2e13

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > Q�;� < /a></dd >
                                    

#62 JavaScript::Write (size: 75, repeated: 1) - SHA256: ff4e2be98ab4ad16c7804c524fe23f824776a9f43afd09ed056fd2cdd1885559

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > �,  < /a></dd >
                                    

#63 JavaScript::Write (size: 72, repeated: 1) - SHA256: cfee36e76ee5a56b09a9a45e7ead4327e35c8a379a4c7e296dc8eb598a6590d0

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > �f� < /a></dd >
                                    

#64 JavaScript::Write (size: 103, repeated: 1) - SHA256: 53db339b0b80637f13dfc63813d7366c899cebe0db896602886ece619163d82e

                                        < meta id = "viewport"
name = "viewport"
content = "user-scalable=no,width=device-width, initial-scale=1.0" / >
                                    

#65 JavaScript::Write (size: 87, repeated: 1) - SHA256: 83bb85f2af78f20867aaf309bc56288e88127d3f3b84f855555664ce0a217fe9

                                        < div style = "width:100%;height:100%;position:absolute;top:0;left:0;z-index:2147483647;" >
                                    

#66 JavaScript::Write (size: 35, repeated: 1) - SHA256: 14e70e4e363cdbe0b68e5f839171ba065a9e52f65745924cd7966dd62819f69f

                                          s.parentNode.insertBefore(hm, s);
                                    

#67 JavaScript::Write (size: 0, repeated: 1) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    

#68 JavaScript::Write (size: 50, repeated: 1) - SHA256: 759ec27e8306173253c1dd9c5f1567baff5bda4c5263e5697b3fc788bb729691

                                        < a href = 'https://b3621.com:36555'
target = '_blank' >
                                    

#69 JavaScript::Write (size: 68, repeated: 1) - SHA256: f3d5bf2bab9ab975970007f5aa42c22ff6a5fe397d6cdbbf27df8a2d5157e09c

                                        < dd > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha' > M9 G < /a></dd >
                                    

#70 JavaScript::Write (size: 74, repeated: 1) - SHA256: 42c66851818bb4e663b0c26250c0c1c182dc0b97c1fefc8299fbef3a8cf4dbaa

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > b��� < /a></dd >
                                    

#71 JavaScript::Write (size: 70, repeated: 1) - SHA256: 1dd84951e0d0a618305894816477c2560046f1266858026a33be8c91b28daa2f

                                        < dd > < a href = 'http://810.cgn8j9f4j3g.com:1888/810.html' > Τ� < /a></dd >
                                    

#72 JavaScript::Write (size: 13, repeated: 1) - SHA256: dd30c61ce44e1179496b353c30a57edf31617fc33880c11ea05a5c4c39712945

                                        (function() {
                                    

#73 JavaScript::Write (size: 73, repeated: 1) - SHA256: 403ee59ae4f643ee3e73d936bdcf4aea7bd1436999249bbaac21c9c90d247266

                                          hm.src = 'https://hm.baidu.com/hm.js?31fc15ed6fc408cac175f2344885ef49';
                                    

#74 JavaScript::Write (size: 54, repeated: 1) - SHA256: d18352f8c4ba8addb6d4bca4d54a65307d4f44034f65e02b84daf1ec016dc65f

                                          var s = document.getElementsByTagName('script')[0];
                                    

#75 JavaScript::Write (size: 142, repeated: 1) - SHA256: c326ad93f3db57025c5e6a36a81bec58f3d38b50387311b75084b07075f1ce86

                                        < img src = 'https://vgvjkw.com/fa2dd3c090594b5d87b3e4f85c63145a.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#76 JavaScript::Write (size: 51, repeated: 1) - SHA256: c352254feb28588a7a1170cccb92945fdb873f5e63a2787e6218a95c74d12fec

                                        < dd > < a href = 'http://154.7.62.161' > �B� < /a></dd >
                                    

#77 JavaScript::Write (size: 202, repeated: 1) - SHA256: 1a6ac5f218c37b3525b924f2b344665476bd5992006976511a6d6c9f5673727d

                                        < li > < a href = 'https://7nvkb.bmvqf.com:6996'
target = '_blank' > < img src = 'https://p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png' > < br > < span >  < /span>љ1P�</a >
                                    

#78 JavaScript::Write (size: 77, repeated: 1) - SHA256: 235f11ebdcfb5a9e00906afc39c11efbaeed816b9040567cd61f18f9ce7242d4

                                        < style > html, body {
    widht: 100 % ;height: 100 % ;overflow: hidden;clear: both;
} < /style>
                                    

#79 JavaScript::Write (size: 8, repeated: 1) - SHA256: 5b63e5b2097fc6906601e85e381d998a7db971aca73c9213dc2b107ccab734d4

                                        < script >
                                    

#80 JavaScript::Write (size: 96, repeated: 1) - SHA256: 03b1044850fd6c0520ecda65cfd0faa2260eb97636b118abf1b5f2677cc07854

                                        < script type = "text/javascript"
language = "javascript"
src = "http://107.148.82.2/js/1.js" > < /script>
                                    

#81 JavaScript::Write (size: 152, repeated: 1) - SHA256: a6dbfabb2b8183861f663bdcfde97c15dd1fdfbc7de07e8ab0215f608e9b8095

                                        < li > < a href = 'https://6286x.com:8825'
target = '_blank' > < img src = 'https://n0300.com/06ebccf61bbf42cc877e5a5b000674ba.gif' > < br > < span >  < /span>��888</a >
                                    

#82 JavaScript::Write (size: 141, repeated: 1) - SHA256: f80831303aba408cdfd923df0acc992ddf3c07c6e90f7a478effc98b097f9f83

                                        < img src = 'https://kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif'
border = '0'
width = '100%'
height = '80'
style = 'border: 1px inset #00FF00' / > < /a>
                                    

#83 JavaScript::Write (size: 106, repeated: 1) - SHA256: 92decaa53793f33c4b04921ff4e60ed7eea5d5680e55c69ad6b881b800e97359

                                        < script src = "https://wpercent.lpasdfgwer.com:25688/ty/D12C5B2A-2C27-18394-34-DAEA801F7EDE.alpha" > < /script>
                                    

#84 JavaScript::Write (size: 154, repeated: 1) - SHA256: 15214528cbd22461b07ea255efbe457b9e6b3a4660d5ba2cd3b2c143277bd426

                                        < li > < a href = 'https://wyokmjund.live/ww/zl/jJdAG.alpha'
target = '_blank' > < img src = 'https://img.nihao014.com:881/gif/014.gif.123' > < br > < span >  < /span>H'</a >
                                    

#85 JavaScript::Write (size: 172, repeated: 1) - SHA256: 6512d0abb9749b31132551f81626a3ef6b7732b10ba6eabb301232208b08e097

                                        < iframe src = " http://107.148.82.21/nv.html"
frameborder = "0"
style = "border:0;width: 100%; text-align: center; border: medium none; height:100%;max-height: 4000px;" > < /iframe>
                                    

#86 JavaScript::Write (size: 17, repeated: 1) - SHA256: dfd809d968f841c6d1643f8d3b3d9587e34b9844aacfaaaa7bd8d9ffb8ad38b5

                                        < div class = 'nab' >
                                    

#87 JavaScript::Write (size: 108, repeated: 1) - SHA256: 951d1dc55f6d3be85414c2cab1cebd40e3c0226535ca9c92518ab55650efa9a8

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > < font color = '#FFFF66' > ���P < /font></a > < /dd>
                                    

#88 JavaScript::Write (size: 79, repeated: 1) - SHA256: 21c9773197e8e9e2a4a12834aefbe05080dec69131cfd2fe74db1764560b4e4f

                                        < dd > < a href = 'https://plmkojhnbcefcw.live/ww/zl/GWxy7.alpha' > '���</a></dd>
                                    

#89 JavaScript::Write (size: 53, repeated: 1) - SHA256: bb2071d7dc6a5a37a3b86bc1347c03237e15aa74717cd4370087088e6c4945c9

                                        < dd > < a href = 'http://154.7.62.161' > ��� < /a></dd >
                                    


HTTP Transactions (114)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 14:09:33 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: aOUMdIarj8W3ZwU7SGAhxfqPXh_nCB8eGWrV1qacyihMIN1ESX8Y9Q==
Age: 2663


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14690
Expires: Wed, 14 Sep 2022 18:58:46 GMT
Date: Wed, 14 Sep 2022 14:53:56 GMT
Connection: keep-alive

                                        
                                            GET /index.php HTTP/1.1 
Host: www.dgsgdp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         156.252.155.219
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (518), with CRLF line terminators
Size:   472
Md5:    fa72db0e09b49559d3662bd9da3ff79f
Sha1:   476da3895d2d2a5923519fe8d8b408788342ef3e
Sha256: 4da0af573973e3963f2155f9b18f44014fe78d40e3274f4f7bf903ae4cbbcb4f
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: W4GY8SLYzWKPrgPeufWrUEraYiNvkaiSBkXDK7q_bFK9worx1_i3oQ==
age: 37121
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 14 Sep 2022 14:53:57 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /common.js HTTP/1.1 
Host: www.dgsgdp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dgsgdp.com/index.php

                                         
                                         156.252.155.219
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (389), with CRLF line terminators
Size:   1036
Md5:    04d4a63d0ab0655860971d8b099b70e9
Sha1:   e41163795c0979bf945ad63113e5fdb683213f68
Sha256: 47182f959966fb711eb9b3c9bc8700ea0507c5154e729fcee4fea1743685d2a1
                                        
                                            GET /tj.js HTTP/1.1 
Host: www.dgsgdp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dgsgdp.com/index.php

                                         
                                         156.252.155.219
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:04 GMT
Content-Length: 497
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   497
Md5:    99b8a07a6915286cb2093a0fe7f941d3
Sha1:   88d6413d0d20ecd8745eb5c05e67b4d19194a944
Sha256: 706b74839aad156fcfd4606c841ec4fe890afae1470797b034e7633e3121bdc7
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 14 Sep 2022 14:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 14 Sep 2022 14:07:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tWIL0PKpuJrh5_QKz1OgZcW9xlcEOg-R7RQ0iQFMox9PfaVqWTLw6g==
Age: 3035


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /nv.html HTTP/1.1 
Host: 107.148.82.21
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dgsgdp.com/
Upgrade-Insecure-Requests: 1

                                         
                                         107.148.82.21
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:57 GMT
Last-Modified: Fri, 09 Sep 2022 15:52:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631b6150-516"
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   558
Md5:    1b0797eda7dc122e00b91ae6a6860710
Sha1:   affdb5a17d7befdfb338a6a5f13f78885c6236cf
Sha256: e1261973cbe13cf3b006b2839566c3e64e4981282773ec43f49d14882cb5b424
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.dgsgdp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dgsgdp.com/index.php

                                         
                                         156.252.155.219
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:05 GMT
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Mon, 19 Sep 2022 14:54:05 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    7ef1f0a0093460fe46bb691578c07c95
Sha1:   2da3ffbbf4737ce4dae9488359de34034d1ebfbd
Sha256: 4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5330
Cache-Control: 'max-age=158059'
Date: Wed, 14 Sep 2022 14:53:57 GMT
Last-Modified: Wed, 14 Sep 2022 13:25:07 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /1.txt HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://107.148.82.21
Connection: keep-alive
Referer: http://107.148.82.21/

                                         
                                         107.148.82.44
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:57 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /1.txt HTTP/1.1 
Host: 107.148.82.45
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://107.148.82.21
Connection: keep-alive
Referer: http://107.148.82.21/

                                         
                                         107.148.82.45
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:57 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /1.txt HTTP/1.1 
Host: 107.148.82.47
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://107.148.82.21
Connection: keep-alive
Referer: http://107.148.82.21/

                                         
                                         107.148.82.47
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:57 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /1.txt HTTP/1.1 
Host: 107.148.82.43
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://107.148.82.21
Connection: keep-alive
Referer: http://107.148.82.21/

                                         
                                         107.148.82.43
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:57 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /1.txt HTTP/1.1 
Host: 107.148.82.46
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://107.148.82.21
Connection: keep-alive
Referer: http://107.148.82.21/

                                         
                                         107.148.82.46
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:57 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Sep 2022 14:53:58 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 18 Sep 2022 11:27:17 GMT
ETag: "e2846d88b1397414f4dfa2582d83489e76a3cbb3"
Last-Modified: Wed, 14 Sep 2022 11:27:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2678
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a9f4858912b527-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    877f4741926933566c9e2b2bc0ca5a41
Sha1:   e2846d88b1397414f4dfa2582d83489e76a3cbb3
Sha256: 336b5dbdec072646872abf8c82c0303574e2a078b18541e3b39506ae806037b2
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zhh9D6sDz2t7nayRIWRt7Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.237.239.70
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FLh1UL260cZjkSihYjUrM+ILLo4=

                                        
                                            GET / HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.21/
Upgrade-Insecure-Requests: 1

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4501), with CRLF, LF line terminators
Size:   6695
Md5:    a9f9157564f660fd776e95a60c15d86a
Sha1:   4e3bd772e4543eba40d38f87ca2dc8b428dfa448
Sha256: f1d69f002393a4ba9577fc2c660b8afc8b6cf1e78dc25fb12e9cfb1746336265
                                        
                                            GET /upload/vod/2022/07-04/11/3cmscs022yr11333cmscs022yr42567.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 9421
cf-bgj: h2pri
etag: "d6c38dc568fd81:0"
last-modified: Mon, 04 Jul 2022 03:33:42 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2056
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8E0Vlb4IWYGJ7K%2F%2F25CG1su4rSfEI3RcghnS8PSnfJ2X4%2Bzdq469ReyNmxqPDal1kW5A7H%2F8v0IdvNy1%2FC0H8FOKEecRH41SJwmX5lLRYqseeujqR8GB6PW%2FF8UR3PihbolT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd2e76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9421
Md5:    0fba42c9e6c3908b75a7520f5106cf71
Sha1:   e6de499625d6dd2774cf3d778be9809f3a7fc20d
Sha256: c3f18489d13cff4bda2fbdb74629580e9586416ac50ad5f97c009f8042138519
                                        
                                            GET /upload/vod/2022/07-04/11/vhchjrjcvnd1148vhchjrjcvnd10723.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 6708
cf-bgj: h2pri
etag: "27c5de1588fd81:0"
last-modified: Mon, 04 Jul 2022 03:48:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2057
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AG18WBTsjAAcB5cvXnxJ1MpeHKsZfT0WLwsWSStd4HUpR3R7uNRlDfGO3iYuFDVLesk71UJdrYaZmcMsUdd10FIJenklh9C2m8TCR%2FlL7neHUMPt7p2d1lbezp%2FUlfo6mb0N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd2676db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   6708
Md5:    057ab14ca0710bb7ffeeeadd1bb2fb66
Sha1:   9aaf95f3f59cf081f0ebc592425f18e6c70e6db3
Sha256: 702524ca9711df0dac29c9a26ac696dcdb2ecc5439a53617064dee7633d64f66
                                        
                                            GET /upload/vod/2020/04-17/06/wzfp043t5lm0604wzfp043t5lm377646.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 10873
cf-bgj: h2pri
etag: "2ae3953b14d61:0"
last-modified: Thu, 16 Apr 2020 22:04:37 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2057
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EGJF7EAlO1vS%2F9O4JwyhHPwnYab44PvmpB340dGMp8%2Fotgqmv5UpUGs3Hjm4khxM19EGEdySiYr6vO3JvaW8DoZ5zOcFGMKUgFqoT9C89mYExD5pUzqbfonuz5ypj%2FyCFJOL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd2176db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10873
Md5:    f4bfc3a6f50a5769f17e835f711cbdbb
Sha1:   e731c2a6136cc0cc9483df992fe531bc28678386
Sha256: 40c153a63f43dc2d040658839775c2c4377081b1b447cb75d7ecba0c8038ae67
                                        
                                            GET /upload/vod/2022/07-04/11/t4sxoihi3j11141t4sxoihi3j136661.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 9294
cf-bgj: h2pri
etag: "e66a1f6578fd81:0"
last-modified: Mon, 04 Jul 2022 03:41:37 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2057
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bh4BbUIBAUy%2FtM7f8ijS1%2BECz9NDlW4cksfdLqcuA%2Bl7LhuZ9%2Fc44kRj8ITAQGHIukJDg1t11eNfZo8apwzLVvVMAb8GwvCSMFnxKuIPgmVPaMJ1ZXEAR7Selv%2Blo1%2BwsTwh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd2576db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9294
Md5:    88ee9f3c036d6ac7f03dba54bbc22494
Sha1:   3a158562ba6d835bbde3c1a80abf6f1577df4412
Sha256: 5b489dca9d2765cf06475be92e4bf2447f5735afe4169c091554f731645b22ba
                                        
                                            GET /upload/vod/2020/04-17/06/rxrg53ozu0s0604rxrg53ozu0s307628.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 9509
cf-bgj: h2pri
etag: "3134ad03b14d61:0"
last-modified: Thu, 16 Apr 2020 22:04:30 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2057
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nRlVjko0eh7DHgq9Sji%2Bk%2BP6iKzMET4TVW0UGtFtKmHQUCgDQi5SiAEjXuHLDguxMKIxjPZ5UIb2s%2FJXIe3%2FPcK9S6N7zY38e3WovfncwU49SsPKvI8RGR24wVR7a8QXr4ag"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd3b76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9509
Md5:    77d199861b456df9f8bfd819c1c79759
Sha1:   ea74d3099bd5811b4ecac72689f3dc976e574b3b
Sha256: 1f8025694c235df3434605e3f3abe925868f6fbc6590407d1d71531cd77a5636
                                        
                                            GET /template/default/css/style.css HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Sun, 27 Jun 2021 05:26:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60d80bf8-2611"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  assembler source, Unicode text, UTF-8 text
Size:   2748
Md5:    e79cabd16b3d7c64fa20bff2a8c7e70e
Sha1:   1cee53c9eceff1c250d3e70fb662b39915eca726
Sha256: 5d43f225823b6688e322acf4d2e54dc2167706b8365b1b65841a7fc8b026bb95
                                        
                                            GET /upload/vod/2022/07-04/11/f2vh4c2eynl1146f2vh4c2eynl46703.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 9062
cf-bgj: h2pri
etag: "16a0efae588fd81:0"
last-modified: Mon, 04 Jul 2022 03:46:46 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2057
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n2w6P41jwL%2BIqgiQgBy0AWO0S0QQ3dHzsltRarJFQMpCsXyk4zHwH378eDKxjXxGvSP1oioQLDo3PpAJjt7MDjB4Qb1%2FBz0TKWrIoL%2B%2FlVbhTqqKEBssuhCjnEFih8oV4%2Fck"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd2376db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9062
Md5:    44eb23c1c967f4ab5b03f4d1e927fcc0
Sha1:   ee23a0e1330ff1dbf3edd73ab3e7e97bdce390c0
Sha256: 7114a2b7fa5dd816511ce1cf797eca6b05af379a85d14469a1de525f8cf9adcc
                                        
                                            GET /upload/vod/2020/02-27/16/0tjo51om2ot16230tjo51om2ot111873.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 8955
cf-bgj: h2pri
etag: "41a4f72547edd51:0"
last-modified: Thu, 27 Feb 2020 08:23:11 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FnaDSt4n%2BS1ZsqPME7yhmXeXobk6Lhy2wf2gwg0V5SQ3Vv2rq5%2BUwNpwhIOZGucnQdNMFkUYHnQx62lFd%2FbsZm531EnjgiHFQm8o8ywdobDBJoVnY20hxs0qkksPlZp38QQG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8076db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8955
Md5:    92c5350d8f00dc90f1c6fb2a304d115d
Sha1:   33327b1044a16157b95437fe3e69ffd0882b9851
Sha256: 600f3cbf47c51d4b8ee7c33d70d7532048da44140fa78127de7b9e6331cc3af9
                                        
                                            GET /upload/vod/2022/07-04/11/ontoruwscat1148ontoruwscat19743.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 12534
cf-bgj: h2pri
etag: "705c4ee6588fd81:0"
last-modified: Mon, 04 Jul 2022 03:48:19 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=buYRyDi%2BnuX6Hz8FkTMMMqerHmEuP1wcMQFmmogzr4c60BmMqJ1PoOS761%2B2vtDsDYleR9QlIjibL8%2FJDZvYOyHYYSIEazCj4NdeFuWZiUYh%2B3TvvhJycXzOOq8%2FtOYnO6qe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd7076db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   12534
Md5:    d3d21486e2328768bedd31ad509dc03c
Sha1:   22a9f8aa56e88f680f826dc8c5f23e2552bdfc7b
Sha256: 021e086c678b9a8e70c6cce14ffdb36fdc39adc8541a8f2feccab7308660bb20
                                        
                                            GET /upload/vod/2021/06-22/17/ocfykgze4lr1749ocfykgze4lr214800.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 16064
cf-bgj: h2pri
etag: "77189ce04b67d71:0"
last-modified: Tue, 22 Jun 2021 09:49:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5757
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rUlEh3lgv4HR1DF9Vha99Ot7jp2HD4yal%2BeLdeu1HE43%2FtbKhOpPrugrqt10EqnnNBL9EPSSGB8%2FcXvE7il21noV%2FohixF8DwgmZJhAio8qROlwEAoVsz5Gw396hB4uSpu%2BT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd6776db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   16064
Md5:    743f1757768a2378edecadba43f777ad
Sha1:   fe40de7d71e39f4b5c8396686c891a176fab22f9
Sha256: 264806a4a145a85cf26f7bf3542cc086ff4d9fa5d39ecacd62e41a015799480d
                                        
                                            GET /upload/vod/2021/06-18/00/bessmwlmw1t0021bessmwlmw1t424430.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 11412
cf-bgj: h2pri
etag: "408ee6db9463d71:0"
last-modified: Thu, 17 Jun 2021 16:21:42 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LkUV1AQOfXkGlD9cwzMC8XN%2BvSIg0zvWowuM5yfxkualW%2BFqUZJZThZi3T6kh5bA6jFIKCzv5Eh4Ln6dlZbvgh5QeIr69VZWjJOWkkIMuso1TEazewYjhS99IBdh8Vw9KbrY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8276db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   11412
Md5:    4c2fa06a7a1fc5d2158dd6e3331a805c
Sha1:   946d6e76cb94ff8d2760d48b0c94867da80d39b9
Sha256: df879e04e7586d7da1bc8a0c4933c94cf25e87f686b85ab143d34542ac5ff6cc
                                        
                                            GET /upload/vod/2022/05-15/21/i1j31iteyex2136i1j31iteyex371529.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 9367
cf-bgj: h2pri
etag: "c0dd1ccd6068d81:0"
last-modified: Sun, 15 May 2022 13:36:37 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pXLNHyNDwdcZFFqDaQAgYkr%2Bkl72siu3u9hvxmgDGv6ysK7f7bTSco4Syjk8TtVwNnbi87vyQsa51eGNSQ%2FnoaaNxpO6scH4GozXNg60hnm7dtt1ltETMqvX7ctdY0qZ%2FTzV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8476db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9367
Md5:    201b1c5480e5c82095bea2c77b0aee4b
Sha1:   1632bc0d310d6daca46b4e450154ac400b99e101
Sha256: fe61761c51ab6f2904d987689a8ff09589e52b8aa7f26686ddda1290e15973dd
                                        
                                            GET /upload/vod/2020/08-04/18/unzfmszkkzt1820unzfmszkkzt119966.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 7352
cf-bgj: h2pri
etag: "10b25d6486ad61:0"
last-modified: Tue, 04 Aug 2020 10:20:11 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HrzpfjEfpJOqJxADSd%2F2kth9W37dRVFQTDaYbxxGg58H4DX7FdhLe%2BQWl5mQILat6TwdKqgVlcDnv%2FbwoWcq878BosxBmJIlhCbxMFV%2Bl0RgIqiON4%2BUUdvEzPGGMi4qeBCh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8576db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7352
Md5:    40499d5cef3efc3a42474f7f91a7104d
Sha1:   9c018b70c32ceafdee6f6e35f370aba10f9061ae
Sha256: c4f3cb6eb59c6b35823c3726b92985176dd5ce3f71c3ccc42c7563818fcc5365
                                        
                                            GET /upload/vod/2020/08-04/18/r03ohxmbn1h1820r03ohxmbn1h109962.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 8784
cf-bgj: h2pri
etag: "d4a459d5486ad61:0"
last-modified: Tue, 04 Aug 2020 10:20:10 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QnmU0Y8d3PTInoJDirK71M2he0UB1iVGdpNe1PTRAuy9w65nN%2BlKNa7H5MloK2FM0eREH%2BtQqghNsbCV4sa%2BGCOsVWCkn%2F1fT%2BokpHNc08htdVZ69Siek%2Bumad%2FntbB8LKk2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8776db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8784
Md5:    6c17a7172a69ab3a6c8d5b4542c3043f
Sha1:   930fdd6fa6768291fae9cdd9f5618a9fd5dff831
Sha256: 0c9ec8c6ffc0c8bef4a3b6a104f3826a71e27edcaafb0675f5961be592c94b19
                                        
                                            GET /upload/vod/2020/04-17/06/rkmiprk20sy0604rkmiprk20sy237612.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 10271
cf-bgj: h2pri
etag: "8770a1fc3a14d61:0"
last-modified: Thu, 16 Apr 2020 22:04:23 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2056
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ztLMc2lsPoAj7pxLutACHt8xsP44oL93s1yqJKTsUwa5%2F5SXB38mXnOtrYdJPAUES0cRbFVCNeZssGBH0Ifm9IlESqayzoB6QUlpOKO%2BOXFcBiEuGtalF67ocqpNkJmFM54a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8c76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10271
Md5:    9f53532b40fe334645ace07cc256947d
Sha1:   7dba0ae77ed4f764ecd100abcd11c8b1c444225c
Sha256: 082e7860dd5db7d9265ccedc938b7345f542306f9976f79f6a0eb8457fb5264b
                                        
                                            GET /upload/vod/2022/07-04/11/hhu355mu3kl1141hhu355mu3kl36659.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 7204
cf-bgj: h2pri
etag: "7631bf6578fd81:0"
last-modified: Mon, 04 Jul 2022 03:41:36 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2058
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=om0Mn%2BG%2Foz4gXGyJmzAoIzb8X2GkKXgc4ju%2FI8%2BuE4VN0obRXhYx63zW2aZZ1b8kYLycQDBz3UyMXg4bKgEcVlNsM%2Bkzfq2vzLjmBdGlOZKLWhOJglVLXQ8gz%2FY7s2klt2dP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8d76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7204
Md5:    7afeae1ee7af4c0f77b59f240696b155
Sha1:   c6e108438452105db3e8049caa7fc1b884056b48
Sha256: fecf77ccab52208e3a79703d9b5a7160a2ada8610c597487235e7484598940af
                                        
                                            GET /upload/vod/2022/05-13/06/z3tv5vpfa4n0643z3tv5vpfa4n281299.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 6304
cf-bgj: h2pri
etag: "45deab25166d81:0"
last-modified: Thu, 12 May 2022 22:43:28 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nkv2w9xmcaBGOXjvSdMFqXUqYraE1jVo0zQvSwCiFCvifBpWtwmuWcXsnOA8LguFWjAbpokhFK2pSkFf9RgNWmWzq0N9q0jElhhlwiCwt6RWtCCDfFmUiIuCWt9STHe%2B26SN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8e76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 728x915, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Size:   6304
Md5:    b6f00a895e31f53c83b0cea9f36f56ee
Sha1:   efecfe0c946ff7a63c4cf921039345bb34a52214
Sha256: cf2da40c4dfa407532843a6cf6a8ee7703acf38313087389e5eb7375854709eb
                                        
                                            GET /upload/vod/2020/02-27/16/3auxpr1cvt416233auxpr1cvt4461877.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 13148
cf-bgj: h2pri
etag: "65aab93a47edd51:0"
last-modified: Thu, 27 Feb 2020 08:23:46 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2061
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NC91Tfm5I3b9mmO%2BPgmkSDVUujOY61Dh4TwA%2FkbZ5xLtyUebj7e9iPho8d2L%2F7u9n76i8cq%2BTNlhbrygVATf4kUUVeeb0tOu%2F4lJcqGlEhJ9Q3ry3eefQbSixSyW%2F9aiwdLp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8f76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   13148
Md5:    c7a94c3ee972972d7f1f814702c3b55b
Sha1:   814a22f34513f113618e668bd728a675c8b6b2ac
Sha256: 80a89f7f44bc9245478523f6f32b0d5efa3216e1e001fd2179c433054f312e7e
                                        
                                            GET /upload/vod/2022/07-04/11/yq5xu0i33yl1132yq5xu0i33yl38535.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 8160
cf-bgj: h2pri
etag: "13095b5568fd81:0"
last-modified: Mon, 04 Jul 2022 03:32:38 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mTGmgUB%2FCv3omZcHet79xUmN5uSgehM2B2DRgeKIVTeNfCZ7ZZ79690o7e5bHht02aTPj3LigssvcV39P95FDFY2uCOzYfYm92CNvaP07BjvvBH5it9sbQB8jf7FRVlpOzCO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd2c76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8160
Md5:    88a96bced4cc6c55ee83f8db4acc6e2d
Sha1:   eed505ee6b504947d6512648195250b925572305
Sha256: 24e75da7e0dac05594a70d64e61ad5520a22de7c8c4f249aae0916113cbc32b0
                                        
                                            GET /upload/vod/2022/07-04/11/11z0gblqhlf112311z0gblqhlf55435.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 11569
cf-bgj: h2pri
etag: "a45eb77d558fd81:0"
last-modified: Mon, 04 Jul 2022 03:23:55 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZRyCOcDldCOMwCThEjjF57iD%2Badjf8LSiNMcpIbeu6V27fSNWm1RxMFUpVZT605113Bj4IOhDJpsUgjBHn8TwaLxB%2Bj7WXAXx%2Bd%2FmhZm30VBo7KEDrtzGktkCBu%2BBLGgOkC5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd7176db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   11569
Md5:    317bf5608439f7e6496c49d2dd1b4262
Sha1:   58f737f5554ab3d1f331d6f780320d96026aadd0
Sha256: 5db8a1f77f11b4d7ca5768d8d2554f41daea9bcc6c0515ea297202c333bc5db2
                                        
                                            GET /upload/vod/2021/06-22/17/hrjsgl4z2zu1749hrjsgl4z2zu234805.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 7479
cf-bgj: h2pri
etag: "377b64e14b67d71:0"
last-modified: Tue, 22 Jun 2021 09:49:23 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GPx6EPkE396yBUI4regzy0CFxFCwAHHUwRx4XKEMLQHrU6TmRdhNDupls%2BvwiZtlUzZNQ7uVzmn8VtA38uSR4LP42FL6UuATKrnaBSvnjclQoOLWE07jiOG%2BbePqeKnLtHia"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd6976db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7479
Md5:    023ddbb4d40e4f2aa3b5a06371afc5db
Sha1:   a5a0d5325622e4660abe6da948234a11ea253aaf
Sha256: d3902944ff2193b944b3517358758e80458e2c7204ec8f806bd57d3a118a97a4
                                        
                                            GET /upload/vod/2022/07-03/11/cvjjgqstfck1137cvjjgqstfck18319.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 5176
cf-bgj: h2pri
etag: "a47f14328e8ed81:0"
last-modified: Sun, 03 Jul 2022 03:37:18 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3h0T7kR4h8Ms4OpRb2kRPlLIdE9QKTi0LzeCmfWTDEFt3hSIIvESoeGSEeyKKPILwp97DPbu46LxZoZoQUWIht8SZMVSR65U9IUZH9qrC5dDo9i5q%2Btn%2FdXZbqG6LxdEKopm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8876db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   5176
Md5:    c4c73fd75e431b73c9bd4580e092b1d1
Sha1:   20721b82152656cacc64ae778543204f9369e1fe
Sha256: f4915ab046d2e30cbdac2551568a07ebc93bf0e89b80a085d38d2498df5fda95
                                        
                                            GET /upload/vod/2022/07-04/11/fwu3051iikq1123fwu3051iikq46417.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 8475
cf-bgj: h2pri
etag: "b992e378558fd81:0"
last-modified: Mon, 04 Jul 2022 03:23:47 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5CE%2BaHNOG3LNQkUHvslT6Y5aij24DuRSNXDVUiXQYQe0dsBFrDy%2FaAvfPulbaTa4V5%2BAjEQQVg4LW66y4A8dHSdCVv%2BVpHSp%2Bt2S6BAB29a59jl20i1CT%2Fu5tdRfv2IdkqYW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd7876db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8475
Md5:    9b0fa0008774d60c1affa71a15c9ec68
Sha1:   c66da22cb47879fc0e403235e98707d971d0d408
Sha256: f3c0ed06a05aeabe75a50d2606af7037acd64b94e3d1c99e36aac88447a3b4d0
                                        
                                            GET /static/css/home.css HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Tue, 24 Aug 2021 06:28:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61249182-5337"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (310)
Size:   5831
Md5:    450fb016075d2231047a4d127c2f1e41
Sha1:   bf8f539abbbff7c9d222cc450c94485102aec7b8
Sha256: ba0f7991b02b9a60fa5635e68553a6c3d4db6229b6c398c72c7a2d191833bd7f
                                        
                                            GET /upload/vod/2022/07-04/11/xoqkgh1goeh1123xoqkgh1goeh47419.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 9501
cf-bgj: h2pri
etag: "dafb6d79558fd81:0"
last-modified: Mon, 04 Jul 2022 03:23:47 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pr63WNvEg94igwyki85KoYu%2Fft21qlM%2BVvRK3yD7FaJjfYFnGDh3tp9rRAOdB0cC1ATSBFXZCNCaoz9cwvHcnZ6Dm%2Bxa8RXzwBxWK1m1EyXlrX3tnJoK2%2FJDCgvnad0Nxe0s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd8a76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9501
Md5:    8946b830774d7192b10e3c7b1574faab
Sha1:   fe9fb9af0d3a2a67cca35a1a4f481b52c9a6404b
Sha256: b87c33f28ff36e2afc6d4f6c8f47f52d02df593ae427664db4e843f145997be8
                                        
                                            GET /upload/vod/2020/06-23/18/fomsjfzehfv1808fomsjfzehfv5211003.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 9549
cf-bgj: h2pri
etag: "af1fed4b4649d61:0"
last-modified: Tue, 23 Jun 2020 10:08:52 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fC%2BD0B9WCFR20m%2FIirPtxl4sC1hpJX9qx9xCsZN%2FnGiREDyvhi63WRhWzPFKvGLUApzMxt6dU6ygxqF4OQGkHjrjutEkzGKX1m4nZnzBtftUnB5MpufhOuaBR0KoSO9sLJsG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd6a76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   9549
Md5:    4fc819c89fea2eb50ccb3ad6189ec56f
Sha1:   b8e55ee65e394d1ffe4ca0b45242e3034b383c6f
Sha256: 586b621a0afceb72da65f218b6f072a851dacbf912921289e35806d88238353a
                                        
                                            GET /upload/vod/2022/07-04/11/h3gykekxkfy1129h3gykekxkfy35463.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 7692
cf-bgj: h2pri
etag: "8bbde548568fd81:0"
last-modified: Mon, 04 Jul 2022 03:29:36 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4z1AtMqhTq%2BcCqYdVQrJXWrwh4PKPvYfFx6lnoPqE8csn%2Bvu2EM3kd32yYayIrrOJWHq3Z7Bg4z1Er1sueVwtQ3ct5sH2fjVO6rHdZ2O0%2FZJ1A8a2aoWFdsbLNO0iFFL7M4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd7576db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   7692
Md5:    2f7cd284b883748e61198f1309a76765
Sha1:   c735fa6b8dafd67502f6ef70f194eea031c791e0
Sha256: 9f92d3d0ef7f7ac4890a340fa26425a20a6c555628c1db2310f50bff24fdafb0
                                        
                                            GET /static/js/jquery.autocomplete.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Mon, 11 Mar 2019 01:12:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c85b614-64a8"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text, with CRLF line terminators
Size:   6356
Md5:    d9f67b358ecd6dc03fc709356018ab11
Sha1:   11a75063c50de09d8a323dc8bb93c194729055c0
Sha256: d1f6fa1324f9b17b39672b105b95aa7792ab1a5e10a5a95e625f26b0c1b0a801
                                        
                                            GET /static/js/jquery.lazyload.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Mon, 11 Mar 2019 01:12:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c85b614-8ba"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (2230), with CRLF line terminators
Size:   747
Md5:    51bc439737d248eeaa9c42758e5c6b4f
Sha1:   a93e2cf688564063a325704c0f35a66edb0b3e20
Sha256: cae2d23160e178f39804d4d3d13ce98d231a34871baf6111e4714c52653f10b1
                                        
                                            GET /template/default/js/jquery.superslide.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Sun, 09 Dec 2018 18:28:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c0d5ece-24d8"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ISO-8859 text, with very long lines (9089)
Size:   2913
Md5:    2728d1c0b6f67113e4fd43bfe1c5fd9f
Sha1:   3c02fa0572cee1ff2050f36a6700b9d40a5bcd0a
Sha256: 1094d4cbd8570de92dbe8a1ed928d25e8f5edfc186de9319156c50ee1582cbaf
                                        
                                            GET /static/js/home.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Tue, 24 Aug 2021 06:28:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61249190-95a5"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (2677)
Size:   10446
Md5:    94964f375af85be8e991d7e6abd9a40b
Sha1:   d768fa9eafd3435729ff69c95aecdb442cb27952
Sha256: 5a46491195ed6546583712062a62c500342c792958f93477d125a00901ec9af4
                                        
                                            GET /s.gif?l=http://www.dgsgdp.com/index.php HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dgsgdp.com/

                                         
                                         112.34.113.148
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Content-Length: 0
Date: Wed, 14 Sep 2022 14:53:58 GMT

                                        
                                            GET /upload/vod/2022/07-04/11/i5qmpjkd1451131i5qmpjkd14523525.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 8163
cf-bgj: h2pri
etag: "5f1a3d89568fd81:0"
last-modified: Mon, 04 Jul 2022 03:31:23 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FtIaGBgGRxo89cqNqX81Kzvsl4F7c%2FNGGmptfmid5tQ%2Bih%2BFiAwusiR3Ec%2BS009lrdZquLcTOzUU9a%2BtXER8pe6aLOXE8hM4U09zLwpLrv4RNT3KRpLoO%2FbozsAciurfBD3l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488dd2976db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   8163
Md5:    3ea3ab99e8485ab095c23f456fbf2448
Sha1:   607cc84e1d3955974f957c1eca7c221d96335a06
Sha256: 68d6aea4b29ee89e9ef6ba285ea75a5be542d2256f28c91dc241b1383f9e3701
                                        
                                            GET /upload/vod/2020/06-23/18/tjunruwr4jr1808tjunruwr4jr5411007.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 10496
cf-bgj: h2pri
etag: "5abbf84c4649d61:0"
last-modified: Tue, 23 Jun 2020 10:08:54 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c0Pvk67C2kyFJNvsRIvz1aUYT9ScTczMKcDzMHrgkv%2BbCxNETL2LxWsLf2WIuy2OqWo993H%2Bk%2FmXx%2FunWRqASeBXsITY%2F8Zw5V7kN91rctQf92xQZJmxpmODA2cqzaM3zghN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd6e76db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10496
Md5:    8fbdb68e4ee082ab6182a61c8fd04c88
Sha1:   1ed93110a7629a1623bc668005e35013b4a72604
Sha256: b8ffc86712004182f1ba7b4c954dc0f631addc1ad5b6de9c3d2770a9e19e75ee
                                        
                                            GET /upload/vod/2021/06-22/17/fdbh2x3ljvo1749fdbh2x3ljvo224803.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.235.174
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 14 Sep 2022 14:53:58 GMT
content-length: 10989
cf-bgj: h2pri
etag: "b927ce14b67d71:0"
last-modified: Tue, 22 Jun 2021 09:49:22 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fk1dY9buLtaCSQSmLEQXcE0vtGbh32OAraS1nCiUbfOk2Gsca0zEir6uDBPOfNaO5%2B7sSs17z5jFUyto5EjPSLJSbAytARTRkcbzpegM%2FQcL%2FA6Zlt2BKky9SdPlOUmRbidn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f488fd7376db-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size:   10989
Md5:    807f06021d2852df674783ddad10e027
Sha1:   845a8d5e70a913be358449d6146f3c21d3285431
Sha256: 67ac4b93d3780648be6dc7e6bf9bc87fdbff2ea1104d6ce9b1dfdd9251ad2391
                                        
                                            GET /template/default/js/jquery.lazyload.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Sun, 09 Dec 2018 18:28:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c0d5ece-6bb"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1625)
Size:   1000
Md5:    bf2425bba1a58286585a883b427b7e37
Sha1:   c882f6bb9ce1aced0148ae6267212ed2d661b6a4
Sha256: db4d5d319b7298317e8dba72976392f629c829c38c043025bb459272456d6cc9
                                        
                                            GET /template/default/js/jquery.base.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Sun, 09 Dec 2018 18:28:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c0d5ed0-1835"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   2221
Md5:    e0bc5c26ea7f84a654cd7f3eadded5bc
Sha1:   eb806caf087af4435e03cd5701600d9dcf67f695
Sha256: da42ceceb9a32cd547126d1d67ef79d7ec1f52cfdcd126a76815945bfa24e8a7
                                        
                                            GET /static/js/jquery.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Last-Modified: Mon, 11 Mar 2019 01:12:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c85b614-169d9"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (32089), with CRLF line terminators
Size:   36748
Md5:    cb8b32d2a46a250954f981780ea7d0d3
Sha1:   149d7140bb977c0ea043397cd72f067e56974692
Sha256: 080e5c45daae1e54faf78ecb600d5bd6680e7889343ebf220f94b6b9a343beae
                                        
                                            GET /js/2.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Content-Length: 125
Last-Modified: Thu, 21 Apr 2022 12:54:40 GMT
Connection: keep-alive
ETag: "62615410-7d"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   125
Md5:    7ed4839d0d1ffaea533a81f8ace8411b
Sha1:   6b3b8d41d3ad01d92366c97e7692ebee252f79a0
Sha256: 3fd792080a2d483e0fe34b62fa2edc75963ab5475e828050b9cc93de83f3c567
                                        
                                            GET /js/dh.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Content-Length: 125
Last-Modified: Thu, 21 Apr 2022 12:55:11 GMT
Connection: keep-alive
ETag: "6261542f-7d"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   125
Md5:    b2de46742a8d6b2717cb47a7b5eb16c5
Sha1:   54cbdac428b59089768209886e509b80e78f8ffa
Sha256: b3afae17f534f0d9e232869dbac0b2405c9eac80eb5d6edac9313ffdb37102be
                                        
                                            GET /images/2022/02/04/zhubo147887.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         104.21.235.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Sep 2022 14:53:58 GMT
Content-Length: 107622
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "2e2aa80018d81:0"
Last-Modified: Wed, 02 Feb 2022 06:45:44 GMT
Cache-Control: max-age=31536000
CF-Cache-Status: HIT
Age: 5504
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0mY309QfZXjnvu8xYZiTg74ilm57IYllFejxCln2%2B%2BuWkbMiBRYMGRkwCP5gpjovsLYgdGgzOV5URQzg1wB1gglDmbq9pma7bgdIrXaVQ7HHnh8mw7ROurff1R%2FmMfqkzaYk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a9f48b7e0876b9-LHR
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.16.100", baseline, precision 8, 1280x720, components 3\012- data
Size:   107622
Md5:    3a40a564392dfc069aec257aadab9d48
Sha1:   194889bea281c7c702d5ecba462a128c3b714b99
Sha256: e3c5f2623a2074f147ab7865199556a388db99090ad42d21cf4bd1e615273596
                                        
                                            GET /js/piaofu.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Content-Length: 129
Last-Modified: Thu, 21 Apr 2022 12:55:17 GMT
Connection: keep-alive
ETag: "62615435-81"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   129
Md5:    0a016f875f783e17a945c0c91d175388
Sha1:   2c0fc18781c783de7f1dca1a80b64ed36229ff80
Sha256: 6c3df486ccb8f228be27d5ef0a71c2fa182afb429eb2ab90daf6c8292ce78bcc
                                        
                                            GET /js/66.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Content-Length: 125
Last-Modified: Thu, 21 Apr 2022 12:55:05 GMT
Connection: keep-alive
ETag: "62615429-7d"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   125
Md5:    0081b549e7907bb20ea2262d76176589
Sha1:   0e7f24f5253e936abe9d00a72b6d2ebf36bcb22e
Sha256: 09bddeb910457b87cafcb6b907c9eda089bb953176a34f8257d311c4bea4b79e
                                        
                                            GET /hm.js?31fc15ed6fc408cac175f2344885ef49 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.dgsgdp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11344
Date: Wed, 14 Sep 2022 14:53:58 GMT
Etag: 4322e902fe287d00af23ca06a116c18b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=167AFF9D8CF52939; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800


--- Additional Info ---
Magic:  ASCII text, with very long lines (631)
Size:   11344
Md5:    6a07e087837087ffbf27fd1cb8b41ede
Sha1:   cfcd9390ddcf555fb738d41705a3917a0b3de05d
Sha256: cca59ae6c69cf6948af6c79c3f4c360b489f84bf92eb2c296a9a8d2a6c4be98c
                                        
                                            GET /js/3.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:58 GMT
Content-Length: 128
Last-Modified: Thu, 21 Apr 2022 12:54:48 GMT
Connection: keep-alive
ETag: "62615418-80"
Expires: Thu, 15 Sep 2022 02:53:58 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   128
Md5:    d568d73187a973291da6f6f44f1d79dc
Sha1:   75361d689d5d55fbc94522889904cbb185a5bbeb
Sha256: be1422d7355b979f960e47ef94953418c7444e88799674008f9f2f86f77eb85d
                                        
                                            GET /js/5.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /js/xuanfu.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Content-Length: 129
Last-Modified: Thu, 21 Apr 2022 12:55:23 GMT
Connection: keep-alive
ETag: "6261543b-81"
Expires: Thu, 15 Sep 2022 02:53:59 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   129
Md5:    507d97bf2e235d52e872f4ce09e2f98d
Sha1:   2cc8aa2260603bae2af5ab06399980777bdb24cd
Sha256: 30f42888eddfc1b12d3d9bd42c10a7fa187323058af3a56d02b686267061861f
                                        
                                            GET /js/duilian.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /images/2022/02/05/hey5391.jpg HTTP/1.1 
Host: fmlb.netlbtu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         104.21.235.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 14 Sep 2022 14:53:59 GMT
Content-Length: 130127
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "ef2e5af39918d81:0"
Last-Modified: Thu, 03 Feb 2022 01:04:09 GMT
Cache-Control: max-age=31536000
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XyRZWVc68BxQkZmiBaEdURIQCgUBQcxLfGu4UAs5hqidYHLgC6l7hKR%2FzyMDaJckUtQxEaqQAK%2FlNKLPEzP0AAd0WyErkYoHmmbCMihEUuCuIEtaNEzyKOHMalJ7NiJrSmul"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a9f48b7c87741f-LHR
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 350x350, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=17, height=1848, bps=0, PhotometricIntepretation=RGB, description= , manufacturer=SONY, model=ILCE-7S, orientation=upper-left, width=2768], baseline, precision 8, 960x540, components 3\012- data
Size:   130127
Md5:    f0f925d570c9e0521c682502b62f5a19
Sha1:   3b48c6bb799d89df2fdba6244e00e17f8d3d3a9f
Sha256: 8096ad6b12ced6ae9f204a09acb92beffbd76fdc6f9a24f7481dfb952d15ff42
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16573
Expires: Wed, 14 Sep 2022 19:30:12 GMT
Date: Wed, 14 Sep 2022 14:53:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16573
Expires: Wed, 14 Sep 2022 19:30:12 GMT
Date: Wed, 14 Sep 2022 14:53:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16573
Expires: Wed, 14 Sep 2022 19:30:12 GMT
Date: Wed, 14 Sep 2022 14:53:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16573
Expires: Wed, 14 Sep 2022 19:30:12 GMT
Date: Wed, 14 Sep 2022 14:53:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10366
x-amzn-requestid: e4d41ba8-41c5-4350-bacb-850136434eaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEw28GD7IAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63182e92-4098031d1475d45f4899654b;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 05:39:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BcQa5iNJlJ_rm50BT4O-rIEayxXyD0Jb5dUq_sUccIWfv12HfBec0g==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:40:56 GMT
age: 58383
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10366
Md5:    8c1314c7778ea0d32e8c69dae0c38b6d
Sha1:   c4772b9b182f9f905fead84f3761fe296073ca65
Sha256: 5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1X79jBMZa4UQmWsLdg_QIg5MQeersp1O3iSgpKd6R2f8Kl7PAJh0hQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:49:32 GMT
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
age: 61467
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5988
Md5:    f5befd5bb8e6d5dad2465be69d5a33e4
Sha1:   e5b46c3ca439a09950290cada1af5e27cede10f2
Sha256: 4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:51:32 GMT
age: 61347
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6078
Md5:    f2157f7cfbdeb607f28ae51eb090f2c3
Sha1:   33d0dcadaa42179b2eae914c8ad16c9c088afbc9
Sha256: 135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CZRpgjU_AxNYoyeSTOwhJhONl2DS4pvCLJ62RgAFp0flw-kPz3GkpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:48:11 GMT
age: 61548
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14151
Md5:    fef8234ab83f6f8f8b29665f592cbc9f
Sha1:   a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
Sha256: 569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:02:44 GMT
age: 42675
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10138
Md5:    0789404fdbe3613d465d8fa89a63d7b8
Sha1:   0617d2e513097ca415a1d07cd39b1cb64d832ecf
Sha256: 80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yP22CSG5x3BVfq29UMdw30TZcvuaL-kUDgjBZDUEMpRVDWqlZrCgdQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:42:05 GMT
age: 61914
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   15547
Md5:    56811a1a20a467464e1f3da171ef8b14
Sha1:   366b2090d409d694b72b4b4131df46dd65d69c5a
Sha256: 4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
                                        
                                            GET /js/1.js HTTP/1.1 
Host: 107.148.82.2
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Last-Modified: Mon, 12 Sep 2022 04:40:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631eb843-854"
Expires: Thu, 15 Sep 2022 02:53:59 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   663
Md5:    fabc10d6d75ebaedeb882638799b6854
Sha1:   adf7affb36acca5dd5757462e2d0f4d8ef040509
Sha256: 05c18880ac4eead82cf4287b5b09c5494074b5784ea4e28fcc17a0b261808ff9
                                        
                                            GET /images/03937120009rrlapb69C4.gif HTTP/1.1 
Host: dimg04.c-ctrip.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.110.17.24
HTTP/2 200 OK
content-type: image/gif
                                        
content-length: 1688325
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
x-edgeconnect-midmile-rtt: 6
x-edgeconnect-origin-mex-latency: 153
cache-control: max-age=13215643
expires: Tue, 14 Feb 2023 13:54:42 GMT
date: Wed, 14 Sep 2022 14:53:59 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 100\012- data
Size:   1688325
Md5:    25826da95ffdf588580eddd7094843dc
Sha1:   474b57ab381840a0127bcdd22bd8cea2d439cdfa
Sha256: 8bc2738721361b98ab069ae0bc41c9c5ab543eae052db5fcb3fee6268c85bd36
                                        
                                            GET /js/dh.js HTTP/1.1 
Host: 107.148.82.2
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Last-Modified: Wed, 14 Sep 2022 10:50:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6321b1e9-1122"
Expires: Thu, 15 Sep 2022 02:53:59 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   736
Md5:    35bd8021726d6d68264da696e0b56615
Sha1:   13f575a0f4314b47b8edb29a087474872549f3b1
Sha256: 11c327f08eedafd260fa0b9d4a6d6f661f02c48c38104e7aa127d049de1e2af9
                                        
                                            GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1276086839&si=31fc15ed6fc408cac175f2344885ef49&v=1.2.97&lv=1&sn=19995&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.dgsgdp.com%2Findex.php&tt=%E8%90%A5%E5%8F%A3%E6%8C%9A%E8%8F%8A%E5%95%86%E8%B4%B8%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1 
Host: hm.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.dgsgdp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.235.46.191
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Date: Wed, 14 Sep 2022 14:53:59 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=FA57B017090063D3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B3157AB6956E37EB1C161474E13D16A5B3DCA068759956A55DFE8FE08D25AAC0"
Last-Modified: Mon, 12 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5617
Expires: Wed, 14 Sep 2022 16:27:36 GMT
Date: Wed, 14 Sep 2022 14:53:59 GMT
Connection: keep-alive

                                        
                                            GET /happy/newyear/kongkong/960x60ns.gif HTTP/1.1 
Host: cdn.jsjsjs.xyz
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.63.42
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 14 Sep 2022 14:53:59 GMT
content-length: 406419
last-modified: Wed, 16 Feb 2022 13:39:39 GMT
etag: "620cfe9b-63393"
expires: Wed, 05 Oct 2022 01:58:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 824113
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wIVDcGbeNu14hmKVd4Q%2FCaTYdTP0YLQC1GGI6SK%2BFN953YNRH%2FoNYHe028u0EQlbvjcYkvPAd%2BrKcQSFw5cb%2BEkr9NOPzwsHmtlYiZTmLQHuTxwxbCg8TzOIUr7Dmqy78w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f48f5d680b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 60\012- data
Size:   406419
Md5:    91949a67089d61d1c111d50f6e101660
Sha1:   fab540d8a71b28159836bf995e398a9569314e47
Sha256: 35ede3c11832a2e4f6562a484535420d010601981e3b07fdc271f160b0a81507
                                        
                                            GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1 
Host: kvemm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         78.46.107.74
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: nginx
date: Wed, 14 Sep 2022 14:53:59 GMT
content-length: 162
location: https://kvkiii.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
                                        
                                            GET /107.148.82.2/js/2.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /js/piaofu.js HTTP/1.1 
Host: 107.148.82.2
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Content-Length: 0
Last-Modified: Wed, 16 Mar 2022 18:41:55 GMT
Connection: keep-alive
ETag: "62322f73-0"
Expires: Thu, 15 Sep 2022 02:53:59 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E30F309AE49FAAA446E60EE84D1D4C066FDD8903B2746C491AA992D2B1181417"
Last-Modified: Mon, 12 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8881
Expires: Wed, 14 Sep 2022 17:22:00 GMT
Date: Wed, 14 Sep 2022 14:53:59 GMT
Connection: keep-alive

                                        
                                            GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1 
Host: kvkiii.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://107.148.82.44/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.234.205
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 14 Sep 2022 14:53:59 GMT
content-length: 966741
last-modified: Sat, 12 Mar 2022 15:18:45 GMT
etag: "622cb9d5-ec055"
expires: Fri, 14 Oct 2022 05:29:26 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 33873
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NOV7QD6qoInC5c2%2B67BzMq2OD2oTK8QLoGYlnOJiAbx3wvEUzVloBD4jbQ%2Fgd1tofUF1HVc0d8cIm791eKhGiuJVCI%2F%2B8w%2FalmesxHgzyCIe2VNUQ6qElnwvLEgC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f4907957dd84-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   966741
Md5:    e6e170a45f5089c336f21c4453d4e00f
Sha1:   20fcfbe9d22eb6868add8b1782234d1b888c0337
Sha256: a37eaf9f04a634f3e85dcd7353eb1fa224ddefa8d1e04b65a946b3cebf97ea75
                                        
                                            GET /js/66.js HTTP/1.1 
Host: 107.148.82.2
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:53:59 GMT
Last-Modified: Wed, 14 Sep 2022 10:45:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6321b0ca-508"
Expires: Thu, 15 Sep 2022 02:53:59 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text
Size:   602
Md5:    d6569293c23a240891ddf31a85bc9108
Sha1:   090f26ada1a8de76c3ee84c078178156aecaccf5
Sha256: e95c51e122955c427d16e6748d88a37663edece17b55b88071b446c9547b2c41
                                        
                                            GET /b4304dba9cab30c3fcd7fd1920abfd62.gif HTTP/1.1 
Host: kvkaa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         64.32.13.142
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: nginx
date: Wed, 14 Sep 2022 14:53:59 GMT
content-length: 162
location: https://kvtaaa.top/b4304dba9cab30c3fcd7fd1920abfd62.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
                                        
                                            GET /153ac71e52df3d7d664bf0bb17905f12.gif HTTP/1.1 
Host: kvkaa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         64.32.13.142
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: nginx
date: Wed, 14 Sep 2022 14:53:59 GMT
content-length: 162
location: https://kvtaaa.top/153ac71e52df3d7d664bf0bb17905f12.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Sep 2022 14:54:00 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 11:23:37 GMT
Expires: Tue, 20 Sep 2022 11:23:36 GMT
Etag: "6fba47c42d5687de4407c684d6a13660950e8b8e"
Cache-Control: max-age=505176,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a9f490c9edfab4-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4330
Cache-Control: 'max-age=158059'
Date: Wed, 14 Sep 2022 14:54:00 GMT
Last-Modified: Wed, 14 Sep 2022 13:41:50 GMT
Server: ECS (amb/6B73)
X-Cache: HIT
Content-Length: 727

                                        
                                            GET /js/3.js HTTP/1.1 
Host: 107.148.82.2
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:00 GMT
Last-Modified: Mon, 12 Sep 2022 04:40:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"631eb84d-765"
Expires: Thu, 15 Sep 2022 02:54:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   528
Md5:    70ed8188d8be1cf6966cbc99f1c09638
Sha1:   38ba3a1004a51762a4cd91f68bb3bac28cb19a84
Sha256: 1f0d9269f94512113859df433cd6cf80b3fea8977899a163c19a03a8a75b9082
                                        
                                            GET /3b519146003914bff4ecede8a7b76f26.gif HTTP/1.1 
Host: kvkaa.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         64.32.13.142
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
server: nginx
date: Wed, 14 Sep 2022 14:54:00 GMT
content-length: 162
location: https://kvtaaa.top/3b519146003914bff4ecede8a7b76f26.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
                                        
                                            GET /3b519146003914bff4ecede8a7b76f26.gif HTTP/1.1 
Host: kvtaaa.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://107.148.82.44/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.21.30.227
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 14 Sep 2022 14:54:00 GMT
content-length: 44685
last-modified: Wed, 29 Jun 2022 14:36:22 GMT
etag: "62bc6366-ae8d"
expires: Tue, 04 Oct 2022 17:32:03 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 854517
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f5QAIW282m9qP8bq%2BtD5CXmTHjdwnG3%2BtvPn9ZreDVh0FuWNtghWySIGKMtN1JKdKmRs%2FFd1HSllwi7rlvXUoEoVerPefs1aybKho3WOXAj3hSto3HBEYh2veXGu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f493186db4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 250\012- data
Size:   44685
Md5:    27a2817f52fee59d33a011663237afdc
Sha1:   e7d0b357438c2865cebc6c484e5d59bc1f048593
Sha256: 646c480e9b32d6623a25cb02951e9e2be603ff3926511754c6994f29857626fd

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /153ac71e52df3d7d664bf0bb17905f12.gif HTTP/1.1 
Host: kvtaaa.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://107.148.82.44/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.30.227
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 14 Sep 2022 14:54:00 GMT
content-length: 202324
last-modified: Mon, 13 Jun 2022 10:12:34 GMT
etag: "62a70d92-31654"
expires: Sun, 02 Oct 2022 15:48:00 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1033560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nBSdvdsXI4ylOxprfiSFnIsZP1XJmWRoA2%2BR3yB1C56y5QWskTUORl2dsUj5MD8JD%2FBPd003lhMHB70hMAlW6875%2F8YH4FoNTB9Ssn%2Ba3BDT3TK37mBj1pBtMZo8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f493085db4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   202324
Md5:    b3257a1280c7afd3cc952de2c91b1b68
Sha1:   9b1a4dc37ecaca40f22a6748542f8431a8c6d03d
Sha256: 6e09a9770baaf036b9d90d6826ac91de0246661c68d573064c774edd97047fd6

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /img/tos-cn-i-siecs4i2o7/2d4d08599b6a4800add1475ec6705825~noop.image HTTP/1.1 
Host: p3.toutiaoimg.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         47.246.44.224
HTTP/2 200 OK
content-type: image/gif
                                        
server: Tengine
content-length: 995861
date: Wed, 24 Aug 2022 04:34:07 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 24 Aug 2022 04:34:07 GMT
nw-session-id: 2022082412340701015816313035F11A15tz5w603tt
nw-session-trace: 2022-08-24T12:34:07.983884219+08:00 126
x-bdcdn-cache-status: TCP_MISS
x-length: 995861
x-powered-by: ImageX
x-response-date: Wed, 24 Aug 2022 12:34:07 GMT
x-tt-logid: 2022082412340701015816313035F11A15
via: n150-055-204, cache14.l2de2[0,0,200-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache5.se1[0,0,200-0,H], cache3.se1[3,0]
x-request-ip: fdbd:dc02:22:591::130
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 011a2ec4f7fc6fcf76f6f307b4bc693fb5d60bf481d7105a86c10ce29038bbd968053d2c490d6b46c22d25de97dff43ed2595c7bf013fe3af61a596a966153086cd21e5bc60400cc62b2c2bd26ba3059639a2d48155fbae5ae54a22cc1e0be44ce
x-response-lb: image
ali-swift-global-savetime: 1661315648
age: 1851592
x-cache: HIT TCP_HIT dirn:11:179136759
x-swift-savetime: Wed, 31 Aug 2022 16:29:16 GMT
x-swift-cachetime: 30888292
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716631672401028718e
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 200\012- data
Size:   995861
Md5:    7d7f71251ef17c905adc46b2f01d70c4
Sha1:   956aec998ce958442c2800c69dc2c4604c883a7a
Sha256: ad4d9d3cfaaa155dcbba2658a6bb1545fa4821dac6a6a542d2c6bbf38d9e14f8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Sep 2022 14:54:00 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 06:26:56 GMT
Expires: Tue, 20 Sep 2022 06:26:55 GMT
Etag: "76db713ea915813b8566dd0dff756d039e2ecf45"
Cache-Control: max-age=487374,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a9f492fbcffab4-OSL

                                        
                                            GET /js/5.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:00 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            GET /b4304dba9cab30c3fcd7fd1920abfd62.gif HTTP/1.1 
Host: kvtaaa.top
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://107.148.82.44/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.30.227
HTTP/2 200 OK
content-type: image/gif
                                        
date: Wed, 14 Sep 2022 14:54:00 GMT
content-length: 486900
last-modified: Thu, 07 Jul 2022 16:42:33 GMT
etag: "62c70cf9-76df4"
expires: Fri, 14 Oct 2022 14:54:00 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T2Y3fIcObkdfTLYsOdt6FxVJrUWVLFNXsZ8baunpNUeEcmcTKguayVPE0xnLsV8VsJN%2FX1f%2BMoQqL7HTUQyRTmajYcJ2l5Cy6HG3uVQxl%2Fjk0faUYUqdY2bYL69y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74a9f4931871b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   486900
Md5:    74d02513f3773d3b94765a1315157565
Sha1:   eccace184c4c8b0680d980d3be10d7eb0d1a2e93
Sha256: 37e407b33f89d82ed1e2e38a122150d522e16948daf9d2ba1ab40319dbb2912c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /js/duilian.js HTTP/1.1 
Host: 107.148.82.44
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.44
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:00 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   146
Md5:    8eec510e57f5f732fd2cce73df7b73ef
Sha1:   3c0af39ecb3753c5fee3b53d063c7286019eac3b
Sha256: 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Sep 2022 14:54:00 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 16:23:44 GMT
Expires: Mon, 19 Sep 2022 16:23:43 GMT
Etag: "ff94fd4d4ad85529451b5fc66c4c028d5fb5b444"
Cache-Control: max-age=436782,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a9f4951d88fab4-OSL

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C35CD54AE21851D8A25FFF0C0029A49BEE461F7A15EB7A76C8D2C6BCF5ED47C1"
Last-Modified: Wed, 14 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19622
Expires: Wed, 14 Sep 2022 20:21:02 GMT
Date: Wed, 14 Sep 2022 14:54:00 GMT
Connection: keep-alive

                                        
                                            GET /js/xuanfu.js HTTP/1.1 
Host: 107.148.82.2
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         107.148.82.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 14 Sep 2022 14:54:00 GMT
Last-Modified: Sun, 04 Sep 2022 13:56:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6314aeab-a62"
Expires: Thu, 15 Sep 2022 02:54:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (806), with CRLF line terminators
Size:   732
Md5:    2b70a39792359fb650291e18bb9e091a
Sha1:   c93aa6fe02e3e080f0adfec5dfd07ea15451ea1b
Sha256: d501e162359934a4d4bad371f4e880c23d3dbcbee7e8d6ad7f735c61f326d70e
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 14 Sep 2022 14:54:00 GMT
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 18 Sep 2022 13:23:46 GMT
ETag: "8c92cecce7fe25e803d9591052743afbbded4752"
Last-Modified: Wed, 14 Sep 2022 13:23:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 252
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a9f4972f5fb509-OSL


--- Additional Info ---
Magic:  data
Size:   1459
Md5:    86a3c2fbbc03c89302bbe0765245ca25
Sha1:   8c92cecce7fe25e803d9591052743afbbded4752
Sha256: cadb12eadf1ff6c3751ca36d84b421b28dadfa39816315876c02c713de395389
                                        
                                            GET /fa2dd3c090594b5d87b3e4f85c63145a.gif HTTP/1.1 
Host: vgvjkw.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.170.15.60
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: max-age=86400
etag: "63187a22-77cd5"
server: nginx
date: Wed, 07 Sep 2022 12:35:45 GMT
last-modified: Wed, 07 Sep 2022 11:01:54 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-50
content-length: 490709
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 960 x 80\012- data
Size:   490709
Md5:    12f48e3549c313b9d43138ccb5cfdff7
Sha1:   16e970dd02bd8cf1ab8aa8c674d46f1cd5d65a4d
Sha256: f2f83642abd46506fda7246affcea4809bce990baa2556effa9127edf1538883
                                        
                                            GET /f354576cc6374341ad1eb982f7a8cbd1.gif HTTP/1.1 
Host: vcawmm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         103.170.15.44
HTTP/2 200 OK
content-type: image/gif
                                        
cache-control: max-age=86400
etag: "63187c63-9105"
server: nginx
date: Wed, 14 Sep 2022 09:41:41 GMT
last-modified: Wed, 07 Sep 2022 11:11:31 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-34
content-length: 37125
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   37125
Md5:    51388321f542fdd65f1bf52ab2426429
Sha1:   da572d178368f7df2c491148d16462eece074435
Sha256: 3bf0add579004847e76daf82fef84fcfb3e745652380bf871b6766b6f1b5266a
                                        
                                            GET /push.js HTTP/1.1 
Host: push.zhanzhang.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         39.156.68.163
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Date: Wed, 14 Sep 2022 14:54:01 GMT
Etag: "4078521116"
Expires: Thu, 14 Sep 2023 14:54:01 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=38AF28284AF232EE3EA6EF592ADDE3DA:FG=1; max-age=31536000; expires=Thu, 14-Sep-23 14:54:01 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   227
Md5:    e548b6ce15bb616c2bfba36e9cfbf307
Sha1:   a348285d9928a6548a57569f1fb9d62bdd747f33
Sha256: 7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
                                        
                                            GET /06ebccf61bbf42cc877e5a5b000674ba.gif HTTP/1.1 
Host: n0300.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         20.239.190.150
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 14 Sep 2022 14:54:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 09:35:43 GMT
ETag: W/"62933e6f-33375"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip


--- Additional Info ---
Magic:  GIF image data, version 89a, 540 x 260\012- data
Size:   131776
Md5:    37311ffda777ef59fac8b79cc43fa5d8
Sha1:   0747312c0d32a74150bf3d9eb04ee8511e825685
Sha256: 9c0990a14833f34f4a02a9e243dacc17ac5a0b47a5b82abbaae0baa1cd6c300d
                                        
                                            GET /s.gif?r=http%3A%2F%2F107.148.82.21%2F&l=http://107.148.82.44/ HTTP/1.1 
Host: api.share.baidu.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://107.148.82.44/

                                         
                                         112.34.113.148
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Encoding: gzip
Content-Length: 23
Server: bfe
Date: Wed, 14 Sep 2022 14:54:01 GMT

                                        
                                            GET /844589934a864e83815cbd3df153acea.gif HTTP/1.1 
Host: 884329.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         47.75.19.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: AliyunOSS
Date: Wed, 14 Sep 2022 14:54:00 GMT
Content-Length: 668791
Connection: keep-alive
x-oss-request-id: 6321EB081F856335368BC307
Accept-Ranges: bytes
ETag: "889727A6917F1DE8FA50A7E27C981464"
Last-Modified: Thu, 28 Jul 2022 08:04:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18266282662055448798
x-oss-storage-class: Standard
Content-MD5: iJcnppF/Hej6UKfifJgUZA==
x-oss-server-time: 1


--- Additional Info ---
Magic:  GIF image data, version 89a, 750 x 100\012- data
Size:   668791
Md5:    889727a6917f1de8fa50a7e27c981464
Sha1:   383aed5e1575ced12b853072a826dcbb35215f8a
Sha256: 543e8a7e680605b09ed3c18b6520822be19c3420f76192d0aa7ee84cc97f235b
                                        
                                            GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b58a032ac4afb4e3c2b8b36dd7d3e56948/0.png HTTP/1.1 
Host: p.qlogo.cn
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://107.148.82.44/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         43.154.254.32
HTTP/2 200 OK
content-type: image/gif
                                        
server: Qnginx/1.4.4
date: Wed, 14 Sep 2022 14:54:01 GMT
content-length: 456390
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:11:26 GMT
cache-control: max-age=2592000
x-delay: 61127 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 456390
chid: 0
fid: 0
x-nws-log-uuid: f604f05d-0b48-433f-872b-fe2a96e635ee
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 650 x 350\012- data
Size:   456390
Md5:    24f8d711ff99c1b9e8eda597e520496d
Sha1:   0349e3b205f0e62dd5aa818e856efe8e7e1fe1d2
Sha256: 9079d8c7d39c6db6ab2e3421748cdfd1a55366b99304d2670fc3cfd48252f363