aaronzook.com/
172.241.122.50301 Moved Permanently 0 B IP 172.241.122.50:0
ASN #396190 LEASEWEB-USA-SEA-10
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: aaronzook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 29 Oct 2022 14:33:03 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.aaronzook.com/index.php
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 82788b8b26eeba7f492106ea47729bbb
823b2d3c336d11064a6b809057bed46bb65a7969
7671d088ba1420ffa01dbd63c5f7ab28d52d3591bc04c4cc182d1f9e64a7f2f8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7671D088BA1420FFA01DBD63C5F7AB28D52D3591BC04C4CC182D1F9E64A7F2F8"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8855
Expires: Sat, 29 Oct 2022 17:00:45 GMT
Date: Sat, 29 Oct 2022 14:33:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 856ee3167a1a6efa13187b6d726d61e4
30d121bebc8f164b38d929e94193ca0caa9ce708
c79ab5ce8d207664a2e0b63762e68f1a906d68c31c59139965201c870619063a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5934
Cache-Control: max-age=160606
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 14:33:10 GMT
Etag: "635cf2d6-1d7"
Expires: Mon, 31 Oct 2022 11:09:56 GMT
Last-Modified: Sat, 29 Oct 2022 09:31:02 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 42d84e61e6aa4d3cce623adccfafc3e2
0dba69e98be53c153a6726ff934b2d55feb20d75
2f53662c68c9ea7be85837310861c8007fd039e5e4d8eb8f0d8948d5d1571a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2F53662C68C9EA7BE85837310861C8007FD039E5E4D8EB8F0D8948D5D1571A03"
Last-Modified: Thu, 27 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13203
Expires: Sat, 29 Oct 2022 18:13:13 GMT
Date: Sat, 29 Oct 2022 14:33:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 856ee3167a1a6efa13187b6d726d61e4
30d121bebc8f164b38d929e94193ca0caa9ce708
c79ab5ce8d207664a2e0b63762e68f1a906d68c31c59139965201c870619063a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5934
Cache-Control: max-age=160606
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 14:33:10 GMT
Etag: "635cf2d6-1d7"
Expires: Mon, 31 Oct 2022 11:09:56 GMT
Last-Modified: Sat, 29 Oct 2022 09:31:02 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XCFwBU0KzUiTIlkgE5wqZT3+69YlObiSybRL3A4Rl0GNzfFNTrYEljvrM/qrXfCpGEFm3E+8BN4=
x-amz-request-id: J0E3Z1SB9TX32EWQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 29 Oct 2022 13:44:04 GMT
age: 2946
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.aaronzook.com/index.php
172.241.122.50200 OK 564 B URL HTTP/1.1 www.aaronzook.com/index.php
IP 172.241.122.50:0
ASN #396190 LEASEWEB-USA-SEA-10
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (673), with CRLF line terminators
Hash 0cfa2776d9a9c418f70bd5ea2a0f17f3
886d38155009f54f1f8b772bed41e70bfa55f234
87f848addd0f961ed68f1a0ca3e05614401643569a9d068eecdb1216e7b7b847
GET /index.php HTTP/1.1
Host: www.aaronzook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 14:33:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.aaronzook.com/common.js
172.241.122.50200 OK 675 B URL HTTP/1.1 www.aaronzook.com/common.js
IP 172.241.122.50:0
ASN #396190 LEASEWEB-USA-SEA-10
File type HTML document text\012- HTML document, ASCII text, with very long lines (1293), with no line terminators
Hash 7ecb6339b7e3be30053da29b475285d6
1cfdfebb5afcb6084ff8a17ca6e4f0650ffd4f48
4ecbf58a880c96d6df8e3006e07cb697921cfeec827da714215ae3ee4a14cd4d
GET /common.js HTTP/1.1
Host: www.aaronzook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aaronzook.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 14:33:04 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d23430a3322d9d62a11844dcb41e6b36
b3798f6bdf72e31d2bd38ee609bb8f5701a337b1
2e310b291a80f54bac4ddca876398ec04a17517464b17f8f290ee0a3d3f28156
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4906
Cache-Control: max-age=154519
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 14:33:11 GMT
Etag: "635cdf14-1d7"
Expires: Mon, 31 Oct 2022 09:28:30 GMT
Last-Modified: Sat, 29 Oct 2022 08:06:44 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
www.aaronzook.com/tj.js
172.241.122.50200 OK 258 B IP 172.241.122.50:0
ASN #396190 LEASEWEB-USA-SEA-10
File type ASCII text, with CRLF line terminators
Hash d87067a2e933019f75c9ccb60e9b68be
6649f8b4a305f4fe91ce57f6cdd9ae4a41f24596
6bf9825bfea5fd97106b21d0215f7e8b01b6925638d5fda6a56df1564fd89076
GET /tj.js HTTP/1.1
Host: www.aaronzook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aaronzook.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 14:33:04 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xyACmsZ9PTum9nwcizisJw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BGPBk9S9s3BfhWfvY42dtMYjkW0=
www.aaronzook.com/favicon.ico
172.241.122.50200 OK 1.2 kB URL HTTP/1.1 www.aaronzook.com/favicon.ico
IP 172.241.122.50:0
ASN #396190 LEASEWEB-USA-SEA-10
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.aaronzook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.aaronzook.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 14:33:04 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Thu, 03 Nov 2022 14:33:04 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8da3a218bc268cfae3072c01d91b5be4
f96b73b157f03fee899de4f0cb849f4b246f36db
bf4168e166876dd44cf33410e90fdb5ae0678bdf33611c0cf327652d6cdf13ab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF4168E166876DD44CF33410E90FDB5AE0678BDF33611C0CF327652D6CDF13AB"
Last-Modified: Thu, 27 Oct 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 29 Oct 2022 20:33:12 GMT
Date: Sat, 29 Oct 2022 14:33:12 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 1870cf511cccecc874938b90d80422f7
9a53679dbebebc27930453d5f92f82d83afceec4
38f255f33ae8784e0cbfaefae1094ff5be7accc009c2b8c720b010700a2c4366
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 02 Nov 2022 11:19:34 GMT
ETag: "9a53679dbebebc27930453d5f92f82d83afceec4"
Last-Modified: Sat, 29 Oct 2022 11:19:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2331
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 761c9ffadcd8fab4-OSL
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3076d3a2ecfd9a9206335f0e71144fb
89562e6845b61c103ebf0d8b7118d3388860e9a0
77dd7870bb830e873d96e7460d890285c19b586977f3e2e6b2438e133b3222a1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "77DD7870BB830E873D96E7460D890285C19B586977F3E2E6B2438E133B3222A1"
Last-Modified: Thu, 27 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3348
Expires: Sat, 29 Oct 2022 15:29:00 GMT
Date: Sat, 29 Oct 2022 14:33:12 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3076d3a2ecfd9a9206335f0e71144fb
89562e6845b61c103ebf0d8b7118d3388860e9a0
77dd7870bb830e873d96e7460d890285c19b586977f3e2e6b2438e133b3222a1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "77DD7870BB830E873D96E7460D890285C19B586977F3E2E6B2438E133B3222A1"
Last-Modified: Thu, 27 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3348
Expires: Sat, 29 Oct 2022 15:29:00 GMT
Date: Sat, 29 Oct 2022 14:33:12 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3076d3a2ecfd9a9206335f0e71144fb
89562e6845b61c103ebf0d8b7118d3388860e9a0
77dd7870bb830e873d96e7460d890285c19b586977f3e2e6b2438e133b3222a1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "77DD7870BB830E873D96E7460D890285C19B586977F3E2E6B2438E133B3222A1"
Last-Modified: Thu, 27 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3348
Expires: Sat, 29 Oct 2022 15:29:00 GMT
Date: Sat, 29 Oct 2022 14:33:12 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3076d3a2ecfd9a9206335f0e71144fb
89562e6845b61c103ebf0d8b7118d3388860e9a0
77dd7870bb830e873d96e7460d890285c19b586977f3e2e6b2438e133b3222a1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "77DD7870BB830E873D96E7460D890285C19B586977F3E2E6B2438E133B3222A1"
Last-Modified: Thu, 27 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3348
Expires: Sat, 29 Oct 2022 15:29:00 GMT
Date: Sat, 29 Oct 2022 14:33:12 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/stuhrl0cng31535stuhrl0cng3433427.jpg
104.22.13.214200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/stuhrl0cng31535stuhrl0cng3433427.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 4ba83eff1350d66735a9ba3ad6cc0ae4
2ad68788c978a1e745f73ec37737dcab7bf8b111
fe50e76a0e63f79fb58dd327fa5847a75f6f45ab3496049c1cfeb8bea8d5b63a
GET /upload/vod/2022/10-28/15/stuhrl0cng31535stuhrl0cng3433427.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/jpeg
content-length: 11448
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12151, status=webp_bigger
etag: "635b8665-2f77"
last-modified: Fri, 28 Oct 2022 07:36:05 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5821
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 761c9ffdcf0eb4f3-OSL
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3076d3a2ecfd9a9206335f0e71144fb
89562e6845b61c103ebf0d8b7118d3388860e9a0
77dd7870bb830e873d96e7460d890285c19b586977f3e2e6b2438e133b3222a1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "77DD7870BB830E873D96E7460D890285C19B586977F3E2E6B2438E133B3222A1"
Last-Modified: Thu, 27 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3348
Expires: Sat, 29 Oct 2022 15:29:00 GMT
Date: Sat, 29 Oct 2022 14:33:12 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/lzccrs5xh5w1531lzccrs5xh5w143219.jpg
104.22.13.214200 OK 7.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/lzccrs5xh5w1531lzccrs5xh5w143219.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8520ca187f383092a0a023df53c26a77
bb40146d838443c4b9ecfd319ff248f2310be13e
f55d51860994ba85840068140a05d47d57d16f72b0839030a4e37e211315f824
GET /upload/vod/2022/10-28/15/lzccrs5xh5w1531lzccrs5xh5w143219.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 7826
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9243
content-disposition: inline; filename="lzccrs5xh5w1531lzccrs5xh5w143219.webp"
etag: "635b8542-241b"
last-modified: Fri, 28 Oct 2022 07:31:14 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5817
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf1db4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/b3ufqd5y5qr1531b3ufqd5y5qr153221.jpg
104.22.13.214200 OK 8.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/b3ufqd5y5qr1531b3ufqd5y5qr153221.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d98939a91afaf0a37efc9bc5812893f4
bb96ee27951088678deba6d3eee289d843c26776
aeb5dede6ab632259dbeb5bb2bd58587ae126527f3282155d3d52b29bdbbeac9
GET /upload/vod/2022/10-28/15/b3ufqd5y5qr1531b3ufqd5y5qr153221.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 8168
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8918
content-disposition: inline; filename="b3ufqd5y5qr1531b3ufqd5y5qr153221.webp"
etag: "635b8543-22d6"
last-modified: Fri, 28 Oct 2022 07:31:15 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5815
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf1fb4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/0uyvog5pqj415360uyvog5pqj4063429.jpg
104.22.13.214200 OK 5.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/0uyvog5pqj415360uyvog5pqj4063429.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 079ca791e51c845c9d97a0e1db783c80
cc0119c0444e56b1850ac7f531e18240d2985019
bcbe7f75dedf8c6f339cb2e051357186bf8bfc7e409237e796562875eda785d9
GET /upload/vod/2022/10-28/15/0uyvog5pqj415360uyvog5pqj4063429.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 5424
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7783
content-disposition: inline; filename="0uyvog5pqj415360uyvog5pqj4063429.webp"
etag: "635b8666-1e67"
last-modified: Fri, 28 Oct 2022 07:36:06 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5820
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf15b4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/1k2yzuhenyp15311k2yzuhenyp163223.jpg
104.22.13.214200 OK 7.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/1k2yzuhenyp15311k2yzuhenyp163223.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7edbd4fc1728f1809961929c7c1e68c3
65dcaf8c1c7bf521d07b5f207ee60f7fa4d6be4a
b0dc296eb7e3489a957757b681394962681bb19eef87b987a64f96323f1933c7
GET /upload/vod/2022/10-28/15/1k2yzuhenyp15311k2yzuhenyp163223.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 7150
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8436
content-disposition: inline; filename="1k2yzuhenyp15311k2yzuhenyp163223.webp"
etag: "635b8544-20f4"
last-modified: Fri, 28 Oct 2022 07:31:16 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5815
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf21b4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/a32bnqgdahc1531a32bnqgdahc183227.jpg
104.22.13.214200 OK 7.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/a32bnqgdahc1531a32bnqgdahc183227.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 87574e7f0eb96d7d9bf55a3dd5a2a953
c140da094392d45949f9a683893a96863a3de44e
c9eed884808dcb05912f5603e6723f1fc2e89682c6710ec2fdb07541217c61cc
GET /upload/vod/2022/10-28/15/a32bnqgdahc1531a32bnqgdahc183227.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 7774
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8351
content-disposition: inline; filename="a32bnqgdahc1531a32bnqgdahc183227.webp"
etag: "635b8546-209f"
last-modified: Fri, 28 Oct 2022 07:31:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5814
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf24b4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/uap5hv1hzxx1531uap5hv1hzxx243239.jpg
104.22.13.214200 OK 8.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/uap5hv1hzxx1531uap5hv1hzxx243239.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f595903875dab3224125a87bf3328481
245b7df7d9227aaf7d38c94cd6344b376356a4d6
9c604a783b01f246f6dfd87deae6e0e33d6706b4e4ccfd18d44b071faf19968f
GET /upload/vod/2022/10-28/15/uap5hv1hzxx1531uap5hv1hzxx243239.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 8424
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9527
content-disposition: inline; filename="uap5hv1hzxx1531uap5hv1hzxx243239.webp"
etag: "635b854c-2537"
last-modified: Fri, 28 Oct 2022 07:31:24 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5809
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf2fb4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/uifzhhkhecd1531uifzhhkhecd233237.jpg
104.22.13.214200 OK 7.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/uifzhhkhecd1531uifzhhkhecd233237.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 112e8a783e23841a3027a414add50a2a
21992d0546a873592ea802616eb09167c2ad895f
7ac9fae5284905c2ae2a2a44a92607c0357260b5f39f14f64e1d6f7b5536ea82
GET /upload/vod/2022/10-28/15/uifzhhkhecd1531uifzhhkhecd233237.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 7288
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8541
content-disposition: inline; filename="uifzhhkhecd1531uifzhhkhecd233237.webp"
etag: "635b854b-215d"
last-modified: Fri, 28 Oct 2022 07:31:23 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5810
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf2eb4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/wajzdcun5yq1531wajzdcun5yq123217.jpg
104.22.13.214200 OK 6.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/wajzdcun5yq1531wajzdcun5yq123217.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e91404a890008fe0b2a69765e9357ff3
06748df07aff8a9e83b1cbbef42981ecbb957d99
4d3d987f8742763ef11bdb96220d5a6bd7a544264cbbc349399a26c95c979530
GET /upload/vod/2022/10-28/15/wajzdcun5yq1531wajzdcun5yq123217.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 6158
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7622
content-disposition: inline; filename="wajzdcun5yq1531wajzdcun5yq123217.webp"
etag: "635b8540-1dc6"
last-modified: Fri, 28 Oct 2022 07:31:12 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5819
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf1ab4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/gyt5c5suiz11531gyt5c5suiz1213233.jpg
104.22.13.214200 OK 7.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/gyt5c5suiz11531gyt5c5suiz1213233.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f1b5e31292efb8c41f89c3626239634c
0376fbd9a4a413461184a6a2308abe3f34b60974
4a7fdf26801f2e1f406c24a54302705d48079c9025d8b069e9c16ee4e42ecbdf
GET /upload/vod/2022/10-28/15/gyt5c5suiz11531gyt5c5suiz1213233.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 7518
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8558
content-disposition: inline; filename="gyt5c5suiz11531gyt5c5suiz1213233.webp"
etag: "635b8549-216e"
last-modified: Fri, 28 Oct 2022 07:31:21 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5811
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf29b4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/feaarxnqciv1531feaarxnqciv173225.jpg
104.22.13.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/feaarxnqciv1531feaarxnqciv173225.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 94fd42482195147db54985f845e64f59
feefab1a85b34c6a93809a3029d01d82a785afda
155c555abcfd8c7352c0f61f8adfe4a3e5d38a9db1623785deb463f6647f370f
GET /upload/vod/2022/10-28/15/feaarxnqciv1531feaarxnqciv173225.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/jpeg
content-length: 10083
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10539, status=webp_bigger
etag: "635b8545-292b"
last-modified: Fri, 28 Oct 2022 07:31:17 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5812
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 761c9ffdcf23b4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/jslcmg2lvnc1535jslcmg2lvnc423425.jpg
104.22.13.214200 OK 7.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/jslcmg2lvnc1535jslcmg2lvnc423425.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 197e77bb5e81db61854fe5b3465ed6ac
e6baddb322632207ca76fa89376e50ee6b01e5ca
fe97227b08e703e578c27ba0c919ccbbc8222dc611c5f1e702b6cc60bf232d38
GET /upload/vod/2022/10-28/15/jslcmg2lvnc1535jslcmg2lvnc423425.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 7482
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9018
content-disposition: inline; filename="jslcmg2lvnc1535jslcmg2lvnc423425.webp"
etag: "635b864e-233a"
last-modified: Fri, 28 Oct 2022 07:35:42 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5822
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdef5db4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/ozgrvvjxv4x1535ozgrvvjxv4x393419.jpg
104.22.13.214200 OK 5.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/ozgrvvjxv4x1535ozgrvvjxv4x393419.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65662001b6ca0167907a36403fac36b3
412527a987150f4cf453ddf3df8eee9fd487c694
45dfe76fe38734bc29e6c0a67975e5437caea8544da587bedf4416e2abde0a2c
GET /upload/vod/2022/10-28/15/ozgrvvjxv4x1535ozgrvvjxv4x393419.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 5046
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6315
content-disposition: inline; filename="ozgrvvjxv4x1535ozgrvvjxv4x393419.webp"
etag: "635b864b-18ab"
last-modified: Fri, 28 Oct 2022 07:35:39 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5817
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdef60b4f3-OSL
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/xx2.js
192.151.196.20200 OK 728 B URL HTTP/2 4c.jxry1.com/template/web/xx2.js
IP 192.151.196.20:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash a8f1be89ed5146cd0cbfc8b4c9659369
214c78c854fb00d8d2cb8ad399b97d0448751cc6
8141a0a5fb853dbeed74f2e316abd22bb09769b4250f377de18b284956d7783f
GET /template/web/xx2.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
content-length: 728
last-modified: Fri, 28 Oct 2022 07:35:37 GMT
etag: "635b8649-2d8"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/app1.js
192.151.196.20200 OK 919 B URL HTTP/2 4c.jxry1.com/template/web/app1.js
IP 192.151.196.20:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash c8670379bd0b2b9b8a1121fec8dbe7d7
b9d14b7731c0d6f81ae8b88cd4f6658a4467ec98
ce9d6ff34b34a7125edcd1c31fb83ec3b8306537407ded1554f33f57f0831a51
GET /template/web/app1.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
content-length: 919
last-modified: Fri, 28 Oct 2022 15:52:02 GMT
etag: "635bfaa2-397"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/app2.js
192.151.196.20200 OK 917 B URL HTTP/2 4c.jxry1.com/template/web/app2.js
IP 192.151.196.20:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 0e86cc5afde695ec3a2ea403b6f83df9
cef5f7aaabb2efb797fd36cdeae57e4db2d40ee4
49ec4a43681cae1d8d60b42e90bff4bb666bda9d696df0935c100be2d3d9bad5
GET /template/web/app2.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
content-length: 917
last-modified: Fri, 28 Oct 2022 15:52:22 GMT
etag: "635bfab6-395"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/app3.js
192.151.196.20200 OK 888 B URL HTTP/2 4c.jxry1.com/template/web/app3.js
IP 192.151.196.20:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash a1138a37d32fad76f171aefd639a05dc
686456425ac7498f2a76fc0963160fbad1c84c10
f8e8db58b55940d5bfada411c9181be7fef2e4e3e851596157ca4037f1daea82
GET /template/web/app3.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
content-length: 888
last-modified: Sun, 16 Oct 2022 14:39:39 GMT
etag: "634c17ab-378"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/udmrad0s1ao1531udmrad0s1ao203231.jpg
104.22.13.214200 OK 9.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/udmrad0s1ao1531udmrad0s1ao203231.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3d83f0219879ad8152982f40f8540da6
f953b1a0ec555a7962822f81f176dfd85e8215df
94794978f7f885bc842463a5e861429ed7fbbb74fea293b59c3677495435de65
GET /upload/vod/2022/10-28/15/udmrad0s1ao1531udmrad0s1ao203231.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/webp
content-length: 9252
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10224
content-disposition: inline; filename="udmrad0s1ao1531udmrad0s1ao203231.webp"
etag: "635b8548-27f0"
last-modified: Fri, 28 Oct 2022 07:31:20 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 761c9ffdcf28b4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/ukwbtdnsgiw1531ukwbtdnsgiw223235.jpg
104.22.13.214200 OK 2.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/ukwbtdnsgiw1531ukwbtdnsgiw223235.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 57f829e2e1ca496c3db9801851a1112b
0223c3c57b3ecebdcb8ae9229fe02958d2739db3
33f0ae66a9a160cb67b4894bf14359f6db8afdb8f36f3d83de76f8561ed25c6b
GET /upload/vod/2022/10-28/15/ukwbtdnsgiw1531ukwbtdnsgiw223235.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:12 GMT
content-type: image/jpeg
content-length: 2149
last-modified: Fri, 28 Oct 2022 07:31:22 GMT
etag: "635b854a-865"
cache-control: max-age=31536000
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 761c9ffdcf2ab4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/c52esvlfutk1535c52esvlfutk373415.jpg
104.22.13.214200 OK 7.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/c52esvlfutk1535c52esvlfutk373415.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e496c43238172b4f69c98f5b55850fce
ee0a5ebe8adc114aef7a60867f2b3a02e75c786f
51297b12162461273320397a684563bb388b3a31762875786e310f57cb417c22
GET /upload/vod/2022/10-28/15/c52esvlfutk1535c52esvlfutk373415.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:13 GMT
content-type: image/jpeg
content-length: 7652
last-modified: Fri, 28 Oct 2022 07:35:38 GMT
etag: "635b864a-1de4"
cache-control: max-age=31536000
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 761c9ffdef64b4f3-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-28/15/ovqd5of04bh1535ovqd5of04bh383417.jpg
104.22.13.214200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-28/15/ovqd5of04bh1535ovqd5of04bh383417.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 868fd75cef2284bbfef7a71e2090f53c
ab26a18f1abaa3e7de834ee75ad6bd3008c48159
df85d5d13539a2d4e72dc51f63f432006466cff7412f6b96f921ba52c757b20a
GET /upload/vod/2022/10-28/15/ovqd5of04bh1535ovqd5of04bh383417.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:13 GMT
content-type: image/jpeg
content-length: 10187
last-modified: Fri, 28 Oct 2022 07:35:38 GMT
etag: "635b864a-27cb"
cache-control: max-age=31536000
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 761c9ffdef5eb4f3-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?fe96e7f93b4c541dfc2e3c2678982414
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?fe96e7f93b4c541dfc2e3c2678982414
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash 24d831dea8dae0ad79883d7e73c69905
4af016498649a323b941eb06c9956d34b285a567
32ccf639acf119299a5b951ad41bb96270a3f545a75ae477f241420bb3b9e4ae
GET /hm.js?fe96e7f93b4c541dfc2e3c2678982414 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aaronzook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11337
Content-Type: application/javascript
Date: Sat, 29 Oct 2022 14:33:12 GMT
Etag: 8f0bff23e308d974e154d1417e83ea03
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FAD36C91B5F746F9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47feffd0a7bbd0c5c9117b63a8292f5b
60666f1d06916928d25709dc9e9b645e223c5b66
81b228fb720caddfa5a807e2ddd523b0d862f96ce2c0fff052d8375f65243a79
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "81B228FB720CADDFA5A807E2DDD523B0D862F96CE2C0FFF052D8375F65243A79"
Last-Modified: Fri, 28 Oct 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9260
Expires: Sat, 29 Oct 2022 17:07:33 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
9030a.cc/1008-960x60.gif
154.85.10.21301 Moved Permanently 0 B IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: Keep-Alive
X-NoCache: this
Date: Sat, 29 Oct 2022 23:10:27 GMT
Location: https://9030a.cc/1008-960x60.gif
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
4c.jxry1.com/template/web/GG/8499.gif
192.151.196.20200 OK 267 kB URL HTTP/2 4c.jxry1.com/template/web/GG/8499.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 1200 x 120\012- data
Size 267 kB (267046 bytes)
Hash 63f83bffa55fbf71d3cf948d2cb4468f
8153f924500163b0085bbaa03920ab1a3c963d11
be41bf9a1445a132be908b20d133288479d0f425ffb0ca52b4c7b12c679361e5
GET /template/web/GG/8499.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: image/gif
content-length: 267046
last-modified: Thu, 22 Sep 2022 06:13:58 GMT
etag: "632bfd26-41326"
expires: Mon, 28 Nov 2022 14:33:25 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5495
Expires: Sat, 29 Oct 2022 16:04:48 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5495
Expires: Sat, 29 Oct 2022 16:04:48 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5495
Expires: Sat, 29 Oct 2022 16:04:48 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5495
Expires: Sat, 29 Oct 2022 16:04:48 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 87186ae701297e4b6287f41f52358f45
20e6217d4f872ce6d2349520ffb7f4a10cd00676
1cca15281a9c34969e9adb019e195aeb0da835201a33b7bf2569f5fe3330c597
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 02 Nov 2022 12:32:25 GMT
ETag: "20e6217d4f872ce6d2349520ffb7f4a10cd00676"
Last-Modified: Sat, 29 Oct 2022 12:32:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 935
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 761ca0041e980b45-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd830c901-a7fd-448a-9a5c-b65235a10127.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd830c901-a7fd-448a-9a5c-b65235a10127.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ccb6be5f8a61354dfff4fa9d48852fe
33b4a66a9693ca4c327c13303cb4f1aa4354b261
aa48f106bdfd580cea5f691ddf2c7e0445a30d89526355953ae9d87881ad6495
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd830c901-a7fd-448a-9a5c-b65235a10127.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15494
x-amzn-requestid: 5c6a874b-b97e-44ba-93e2-ebc4517220d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apSLZGNGoAMFrgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359fd7b-0a756fdd554b64381bf74525;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:39:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IZrTbVtjoc8LALwjuxZKdHwsRJ6EOAPwdJgdAFxYcNKdIVtVV7mSsQ==
via: 1.1 c4e77f714a7aade06aaed8bdc8b66fca.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 29 Oct 2022 09:48:52 GMT
age: 17061
etag: "33b4a66a9693ca4c327c13303cb4f1aa4354b261"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c7269e7-b618-4700-9a4e-8dd88078670e.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c7269e7-b618-4700-9a4e-8dd88078670e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 810ba4a29aeb678e3a85cefce6ef81f6
af589048cc676d45060198d7fce3a338d681d201
3503f05f67b381aef650141a5ad2083890a197231cf6dfde99c2fb3ff4de57e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2c7269e7-b618-4700-9a4e-8dd88078670e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9718
x-amzn-requestid: e7339861-3974-4569-b282-502667c970fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCIxHPToAMFoLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a37-661fecca54b9a038565e0fcb;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 0Rwj6cW5bSmvUt1d92sn_CPelMoM0-VFSd7M9NeerwIiuUATUGpKqQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:59:11 GMT
etag: "af589048cc676d45060198d7fce3a338d681d201"
content-type: image/jpeg
age: 59642
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
4c.jxry1.com/template/xinheise/css/1.css
192.151.196.20200 OK 17 kB URL HTTP/2 4c.jxry1.com/template/xinheise/css/1.css
IP 192.151.196.20:0
Hash d2663c7635ec90e7ebb9e976f52b228a
5c0200afdae5a25f04e93f044cb37ba408c2b761
43c381367a6e65727024c200675f151d5dc6c38767e2b3e37167bbe9aedc2570
GET /template/xinheise/css/1.css HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: text/css
last-modified: Mon, 14 Mar 2022 11:30:18 GMT
vary: Accept-Encoding
etag: W/"622f274a-8319"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F036fdb83-72c9-40f5-9e16-f4502570667e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F036fdb83-72c9-40f5-9e16-f4502570667e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a37da3b0df2c3eb74825cdad7dff6d4
01125adb299608812ffca7fb3c0ad526803bd723
351fdadfc462aa0c8a38964217c40f085e62d65335152d0530233017f9fc0df6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F036fdb83-72c9-40f5-9e16-f4502570667e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11107
x-amzn-requestid: 6fc669c8-f46f-4f5a-a538-b4a49c43319e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amdsuE6GoAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dcb7-0c9461505096b7d92509e55e;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:07:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BzeW9D2DmkFVHVzWCV9ZZUx62NboDogcBvN96OikqnyImftEXu9RnQ==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sat, 29 Oct 2022 07:21:41 GMT
age: 25892
etag: "01125adb299608812ffca7fb3c0ad526803bd723"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ed0e856-e7a8-4b66-8b47-6376c7ef215f.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ed0e856-e7a8-4b66-8b47-6376c7ef215f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29f8a8bdab8c8b28242ea7227be2d471
aa097b7f69b5369277d405238bbbb19081c3c3da
ec9a37f12ce0fb63e907ac3e5cbba04f392dfe44432422a839fc9c6ea66ec176
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ed0e856-e7a8-4b66-8b47-6376c7ef215f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8239
x-amzn-requestid: 7dd9eebd-2c20-4e7c-ba5d-349dc15abe61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCGmH3eIAMFhcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a2a-3dfa40935763bd2641e7e53a;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:22 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9tjWGS2L9mjQHuhRpOmnR5jIxAys2om70GRzupGsQ4rZZPaz7uITog==
via: 1.1 fec77e486350d1bd33f526a760d8b5a4.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 22:02:40 GMT
age: 59433
etag: "aa097b7f69b5369277d405238bbbb19081c3c3da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8326b70116b95839cb92a20987ff62bf
e39efc9edc67abdbc8b67e56ea3aa3f169600055
9bb70165db081deb009c8da7f4fcafff66bf4f3ce68c88dd11b21ab1665f8a30
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8381
x-amzn-requestid: affd1381-e8d6-406e-bdfd-43095e110aa9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCJEHAUoAMFQPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a39-738547cc62556b0f6cc604cf;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FpVYEpuzxdqeInQrm5_-ZU4tLonMfDWY3D3DxRd0JD3uh4emzrgklA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 22:02:40 GMT
age: 59433
etag: "e39efc9edc67abdbc8b67e56ea3aa3f169600055"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22df28dba526699f403206c55a57499e
1d24c01a716fc1a3eeb8350ecf91d6ae8cc87a55
d220db3f898f88c654b738b10760e6080aea3b9824d15036bee4425e070b75a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D220DB3F898F88C654B738B10760E6080AEA3B9824D15036BEE4425E070B75A7"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10470
Expires: Sat, 29 Oct 2022 17:27:43 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b9456692756c21e530bf0485109adb6
bf322b39d1ae273b91419a4b0710df088eb9558c
63c7830bf87c882876fd88d5c2d1605449198438d34bca6bedb53577d969ee67
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C7830BF87C882876FD88D5C2D1605449198438D34BCA6BEDB53577D969EE67"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1814
Expires: Sat, 29 Oct 2022 15:03:27 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b9456692756c21e530bf0485109adb6
bf322b39d1ae273b91419a4b0710df088eb9558c
63c7830bf87c882876fd88d5c2d1605449198438d34bca6bedb53577d969ee67
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C7830BF87C882876FD88D5C2D1605449198438D34BCA6BEDB53577D969EE67"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1814
Expires: Sat, 29 Oct 2022 15:03:27 GMT
Date: Sat, 29 Oct 2022 14:33:13 GMT
Connection: keep-alive
kveff.com/68a7807de3933bf7079116fa9df99e6f.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kveff.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kveff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 29 Oct 2022 14:33:13 GMT
content-type: text/html
content-length: 162
location: https://kvteee.top/68a7807de3933bf7079116fa9df99e6f.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kveff.com/5acaa66e30e443214f59a6b31654a54e.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kveff.com/5acaa66e30e443214f59a6b31654a54e.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /5acaa66e30e443214f59a6b31654a54e.gif HTTP/1.1
Host: kveff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 29 Oct 2022 14:33:13 GMT
content-type: text/html
content-length: 162
location: https://kvteee.top/5acaa66e30e443214f59a6b31654a54e.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/227.gif
192.151.196.20200 OK 477 kB URL HTTP/2 4c.jxry1.com/template/web/GG/227.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 477 kB (477289 bytes)
Hash 760cc21f91ee02e848650627ffa47ae2
22df8e62d12977ffd032aba17e5fd7632032633f
2b36a60cb734e5ebcaa9ad4d93f914157e563da89c4e08231bd02b72678875bd
GET /template/web/GG/227.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 477289
last-modified: Fri, 14 Oct 2022 15:40:58 GMT
etag: "6349830a-74869"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1284905306&si=fe96e7f93b4c541dfc2e3c2678982414&v=1.2.97&lv=1&sn=40196&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.aaronzook.com%2Findex.php&tt=%E6%B5%B7%E5%AE%81%E5%87%B3%E7%94%B7%E4%BB%A3%E7%90%86%E8%AE%B0%E8%B4%A6%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1284905306&si=fe96e7f93b4c541dfc2e3c2678982414&v=1.2.97&lv=1&sn=40196&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.aaronzook.com%2Findex.php&tt=%E6%B5%B7%E5%AE%81%E5%87%B3%E7%94%B7%E4%BB%A3%E7%90%86%E8%AE%B0%E8%B4%A6%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1284905306&si=fe96e7f93b4c541dfc2e3c2678982414&v=1.2.97&lv=1&sn=40196&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.aaronzook.com%2Findex.php&tt=%E6%B5%B7%E5%AE%81%E5%87%B3%E7%94%B7%E4%BB%A3%E7%90%86%E8%AE%B0%E8%B4%A6%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aaronzook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 29 Oct 2022 14:33:13 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=215A05B63E42CE41; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
4c.jxry1.com/template/xinheise/fonts/iconfont.woff
192.151.196.20200 OK 525 B URL HTTP/2 4c.jxry1.com/template/xinheise/fonts/iconfont.woff
IP 192.151.196.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/xinheise/fonts/iconfont.woff HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://4c.jxry1.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: font/woff
content-length: 525
last-modified: Tue, 04 Jan 2022 15:13:46 GMT
etag: "61d4642a-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/xinheise/images/video-play.png
192.151.196.20200 OK 1.6 kB URL HTTP/2 4c.jxry1.com/template/xinheise/images/video-play.png
IP 192.151.196.20:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/xinheise/images/video-play.png HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/png
content-length: 1567
last-modified: Tue, 04 Jan 2022 15:14:22 GMT
etag: "61d4644e-61f"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/xinheise/images/video-mask.png
192.151.196.20200 OK 107 B URL HTTP/2 4c.jxry1.com/template/xinheise/images/video-mask.png
IP 192.151.196.20:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/xinheise/images/video-mask.png HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/png
content-length: 107
last-modified: Tue, 04 Jan 2022 15:14:24 GMT
etag: "61d46450-6b"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/k6.gif
192.151.196.20200 OK 53 kB URL HTTP/2 4c.jxry1.com/template/web/GG/k6.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 74d864001115d3b123c552156accfbef
11ae3aef174b8fab213faa40b1b985f77dada46f
9001f1548a09cf89715469dc8d009f7aebb1a459d261c73a2f35d252bf88b4c8
GET /template/web/GG/k6.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 53324
last-modified: Fri, 27 May 2022 05:31:42 GMT
etag: "6290623e-d04c"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 464cfb61b532134557f2c8a16f9cef39
b2cb5089f122ed2177d777bf656476179fbbe13c
b7b691ce283aaef32c6a2e5d7b234d229825a34cab1b4db251a1efd1fbd77cc4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 02 Nov 2022 13:21:00 GMT
ETag: "b2cb5089f122ed2177d777bf656476179fbbe13c"
Last-Modified: Sat, 29 Oct 2022 13:21:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 579
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 761ca0055f5a0b45-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1d325648dd4f405bffd53057604f8cbc
6efb6ec9fec34e408c8206eefce4298ff98e538a
857b7a6380e2954f8105d1a1b1b2a9c58e751fd7afa213f3855c039c968082dc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 14:59:52 GMT
Expires: Thu, 03 Nov 2022 14:59:51 GMT
Etag: "6efb6ec9fec34e408c8206eefce4298ff98e538a"
Cache-Control: max-age=432997,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ca0050c3fb515-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash b1d73120b6d83e06bad90736f4f58a86
8e59385f277c52930ce28eda86d7a5f86ebd188d
eb2bd2661394403783129f8de995717a3d795ebfc288196bb60041f6a6534ff0
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 02 Nov 2022 13:04:52 GMT
ETag: "8e59385f277c52930ce28eda86d7a5f86ebd188d"
Last-Modified: Sat, 29 Oct 2022 13:04:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3134
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 761ca0057f670b45-OSL
kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
45.154.214.239301 Moved Permanently 162 B URL HTTP/2 kvemm.com/ec9fcd758df74f805f29f72e8545d13b.gif
IP 45.154.214.239:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /ec9fcd758df74f805f29f72e8545d13b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 29 Oct 2022 14:33:13 GMT
content-type: text/html
content-length: 162
location: https://acoossf.top/ec9fcd758df74f805f29f72e8545d13b.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?63c3c487678e3b7f007b9f6d27b1517e
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?63c3c487678e3b7f007b9f6d27b1517e
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 42509d01cb64c3632365fb25a814fdbb
f977da0c3a2be654db2eabab614ea6f53029945d
fce9a6ac1a7104d6cbf85c133acab8f1efe8747cd485b11abc197ae01691f1af
GET /hm.js?63c3c487678e3b7f007b9f6d27b1517e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11332
Content-Type: application/javascript
Date: Sat, 29 Oct 2022 14:33:13 GMT
Etag: 2760fde5c40952005d5bc6c83452a478
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=221AD59B22D74BBB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f4b12a98fe5e1b35a77ff7277499bc6f
62bbc4f98d796520d83263f4a0b9b31a809c82f1
cbf654b96a4e20be64018beb41490f36a114300a961eaabb81784c99d7f1ad89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1693
Cache-Control: max-age=133315
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 14:33:13 GMT
Etag: "635c98cf-117"
Expires: Mon, 31 Oct 2022 03:35:08 GMT
Last-Modified: Sat, 29 Oct 2022 03:06:55 GMT
Server: ECS (amb/6B8E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f4b12a98fe5e1b35a77ff7277499bc6f
62bbc4f98d796520d83263f4a0b9b31a809c82f1
cbf654b96a4e20be64018beb41490f36a114300a961eaabb81784c99d7f1ad89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1693
Cache-Control: max-age=133315
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 14:33:13 GMT
Etag: "635c98cf-117"
Expires: Mon, 31 Oct 2022 03:35:08 GMT
Last-Modified: Sat, 29 Oct 2022 03:06:55 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
4c.jxry1.com/template/web/GG/k2.gif
192.151.196.20200 OK 32 kB URL HTTP/2 4c.jxry1.com/template/web/GG/k2.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 0dbd3863b60a1e8e0a507a6092e3acbd
81f0cfad3a7369aa95b1b507a5ce46149cd4e4fe
d3829461b69847e6df417e8eb4c4046ae45864fbb7d3646e7b1346a861bd893e
GET /template/web/GG/k2.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 32381
last-modified: Fri, 27 May 2022 05:31:39 GMT
etag: "6290623b-7e7d"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f4b12a98fe5e1b35a77ff7277499bc6f
62bbc4f98d796520d83263f4a0b9b31a809c82f1
cbf654b96a4e20be64018beb41490f36a114300a961eaabb81784c99d7f1ad89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1694
Cache-Control: max-age=133315
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 14:33:14 GMT
Etag: "635c98cf-117"
Expires: Mon, 31 Oct 2022 03:35:09 GMT
Last-Modified: Sat, 29 Oct 2022 03:06:55 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
kvteee.top/68a7807de3933bf7079116fa9df99e6f.gif
104.21.233.124200 OK 366 kB URL HTTP/2 kvteee.top/68a7807de3933bf7079116fa9df99e6f.gif
IP 104.21.233.124:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kvteee.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4c.jxry1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:13 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Sat, 26 Nov 2022 11:30:18 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 183775
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yf43ec%2BV82ygwbRdUg%2FGwpkLS6D%2BUbXX5NBD3olZ%2F7j5Gc0umQ%2F2EBLXjjdpLqz99%2BsPtIpQl2gEfmjZhb19IXgHYDOVGOoF7XJcXqc6u8HgwnhE5G4HLssKvCpq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 761ca0062d2a8868-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvteee.top/5acaa66e30e443214f59a6b31654a54e.gif
104.21.233.124200 OK 549 kB URL HTTP/2 kvteee.top/5acaa66e30e443214f59a6b31654a54e.gif
IP 104.21.233.124:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 549 kB (549098 bytes)
Hash 8152b7620963de2f18ebb2dff8c77d77
7f6bfaf47b4acf62e58581fa0fa690cc54e794df
496118e431af83c5a808c9e2181d6fe427ab6dcc6e8b4c0de298b46f09a5f654
GET /5acaa66e30e443214f59a6b31654a54e.gif HTTP/1.1
Host: kvteee.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:13 GMT
content-type: image/gif
content-length: 549098
last-modified: Tue, 16 Aug 2022 11:19:44 GMT
etag: "62fb7d50-860ea"
expires: Sat, 26 Nov 2022 11:49:38 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 182615
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QBshp7x093cS2bI%2BXaeX2QJv8YBxQN1dzHrvzs%2FChMLyA6o9neLLfKqGYDLhVTuJppXxrYckYLRHVvLkpyxmboUEc7VujmzRjUXCxsnOjkBE7XE5HKfWkweD8epF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 761ca0062d248868-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/31.gif
192.151.196.20200 OK 108 kB URL HTTP/2 4c.jxry1.com/template/web/GG/31.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 96 x 96\012- data
Size 108 kB (108160 bytes)
Hash 8765a4504945e44a16e9fe1c643802bf
a830d6cad304c1007e82fc742cc7855fff8d6a7c
d4ce24af068e48c2339af354f585f37940cc318d83110e313056ebc0d4058b4b
GET /template/web/GG/31.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 108160
last-modified: Wed, 09 Mar 2022 10:15:26 GMT
etag: "62287e3e-1a680"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 9a5ff13f6833db789b8875e3d6f02376
7885680e115f127381be10bb54b521c9fdc5c507
be876689a6ef9a9376a9790c62fb2abb905824f2b771990bf2ff6ec45d97b668
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 23:52:06 GMT
Expires: Thu, 03 Nov 2022 23:52:05 GMT
Etag: "7885680e115f127381be10bb54b521c9fdc5c507"
Cache-Control: max-age=464930,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ca006bab70b3d-OSL
4c.jxry1.com/template/web/GG/k4.gif
192.151.196.20200 OK 114 kB URL HTTP/2 4c.jxry1.com/template/web/GG/k4.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 114 kB (114030 bytes)
Hash 79cf722c45cb4e5b3e7da0cfff829c98
71558743109d39b3163e3e873111641615c6f80c
37336e1d469f511d19c69cd7e3576ef2665204c7304e0b8dd2ec051dd78309e3
GET /template/web/GG/k4.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 114030
last-modified: Fri, 27 May 2022 05:31:41 GMT
etag: "6290623d-1bd6e"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/d10.gif
192.151.196.20200 OK 119 kB URL HTTP/2 4c.jxry1.com/template/web/GG/d10.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 119 kB (119145 bytes)
Hash 03611dd134898d951bd6479076eee32b
4aef7215e5d6206ededff3fff78d735064e6fbb5
9c3ea4fa33413bfe2175b5e9eac750617538bafe475a84367d0c6d693c75c076
GET /template/web/GG/d10.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 119145
last-modified: Sat, 23 Apr 2022 04:49:11 GMT
etag: "62638547-1d169"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/k20.gif
192.151.196.20200 OK 102 kB URL HTTP/2 4c.jxry1.com/template/web/GG/k20.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 124 x 124\012- data
Size 102 kB (101861 bytes)
Hash da1fca07307a6c03cdcfb2d47313113a
f28a95877fad9e725a287466984d496ef7d53afb
9529e1f4226891780f02c558b7b75427b86eb8afa9e5667fd6e8527abf322209
GET /template/web/GG/k20.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 101861
last-modified: Sat, 04 Jun 2022 02:42:51 GMT
etag: "629ac6ab-18de5"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/k14.gif
192.151.196.20200 OK 73 kB URL HTTP/2 4c.jxry1.com/template/web/GG/k14.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 6ce732040d4d9750ef120f2a4221f362
f3114f09ed27718c62d54d6fbe08847421429a00
bf4e102a698f9d805b4d4209c8ca62ca20565344a8949d0efeedc6a720026c5b
GET /template/web/GG/k14.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 73223
last-modified: Sat, 28 May 2022 04:44:36 GMT
etag: "6291a8b4-11e07"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/k7.gif
192.151.196.20200 OK 104 kB URL HTTP/2 4c.jxry1.com/template/web/GG/k7.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 71 x 71\012- data
Size 104 kB (104461 bytes)
Hash 9e38a9cebde88f45563c4aae36723d3a
126439ba503fc1757864c12e086fd0f1a165a4bc
93054ef4224e847d308892f23ca8d0bf210d5ba26d8c39502eb7016efd97501d
GET /template/web/GG/k7.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 104461
last-modified: Fri, 27 May 2022 05:31:43 GMT
etag: "6290623f-1980d"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/11.gif
192.151.196.20200 OK 76 kB URL HTTP/2 4c.jxry1.com/template/web/GG/11.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 200 x 99\012- data
Hash b91a52dc89525aa53fa4cc9f51313fa5
04be88b70acd504b7bf5a9bb107b63da8c488639
91b59a9d450ebdc06502d1279ee2eef209a84a5d0434a46874a32c9bbc831ba9
GET /template/web/GG/11.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 76147
last-modified: Wed, 11 May 2022 08:23:40 GMT
etag: "627b728c-12973"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/xinheise/css/ate.css
192.151.196.20200 OK 117 kB URL HTTP/2 4c.jxry1.com/template/xinheise/css/ate.css
IP 192.151.196.20:0
Size 117 kB (116668 bytes)
Hash 04fa3c4d2b82e7f58c020d36de5dc19f
9ce4bd77dc7a8bbc19bed847e08c582f71020868
7aee7c5f16cd28177a6d0a9d90e8011c9c2ab844d15aae8ace7d328f1976264d
GET /template/xinheise/css/ate.css HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: text/css
last-modified: Tue, 04 Jan 2022 15:13:26 GMT
vary: Accept-Encoding
etag: W/"61d46416-126e4"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
4c.jxry1.com/template/xinheise/fonts/iconfont.ttf
192.151.196.20200 OK 525 B URL HTTP/2 4c.jxry1.com/template/xinheise/fonts/iconfont.ttf
IP 192.151.196.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/xinheise/fonts/iconfont.ttf HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/template/xinheise/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: application/octet-stream
content-length: 525
last-modified: Tue, 04 Jan 2022 15:13:38 GMT
etag: "61d46422-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/app.js
192.151.196.20200 OK 101 kB URL HTTP/2 4c.jxry1.com/template/web/app.js
IP 192.151.196.20:0
Size 101 kB (101171 bytes)
Hash 881a186931c2e24b13cd04aea5f5d1cf
3f7d5010a23ab8e677b21eb97edbb68e47aea8a5
d00b7b92cb2eb96454e27c74cd6437beb1c9a28032ec3efb94c5cd7e56b750a0
GET /template/web/app.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 15:51:45 GMT
vary: Accept-Encoding
etag: W/"635bfa91-2f40"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 74f68293c68ea7299fc8dcce2d69f01f
a69f073ebcaec24ee5df4d8204769ad4e822670a
c213e585524dddfe098147dd14abf86d049d3a3f5f533ead3181317d08d96213
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "C213E585524DDDFE098147DD14ABF86D049D3A3F5F533EAD3181317D08D96213"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13512
Expires: Sat, 29 Oct 2022 18:18:26 GMT
Date: Sat, 29 Oct 2022 14:33:14 GMT
Connection: keep-alive
72agg.com/gg/960x60-2.gif
137.175.12.178200 OK 257 kB URL HTTP/2 72agg.com/gg/960x60-2.gif
IP 137.175.12.178:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 257 kB (256929 bytes)
Hash 75c3af521e9c7e7192dc08b42a916599
d6c65632f52bcfbb73ca07b66213dce11ee70736
fd66af2c55cfcaed91fdf6b3ae8faf03b72bb0912608f7f368aa3440a2412953
GET /gg/960x60-2.gif HTTP/1.1
Host: 72agg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:35:09 GMT
content-type: image/gif
content-length: 256929
last-modified: Tue, 11 Oct 2022 11:16:11 GMT
etag: "6345507b-3eba1"
expires: Mon, 28 Nov 2022 14:35:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d691f6336c990d6f8385c82bd3f4d9b6
e358c353d0e953e14d42add295d00bb786936979
063b89909f0c6a9e9351a35562279f9b5b4848e0c7fb77fbc6c820e19a86e7ca
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 05:12:51 GMT
Expires: Thu, 03 Nov 2022 05:12:50 GMT
Etag: "e358c353d0e953e14d42add295d00bb786936979"
Cache-Control: max-age=397775,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ca0064de8b515-OSL
4c.jxry1.com/template/web/zxbf.js
192.151.196.20200 OK 168 kB URL HTTP/2 4c.jxry1.com/template/web/zxbf.js
IP 192.151.196.20:0
Size 168 kB (168156 bytes)
Hash 22f23a265f789646f55058bf4f6e2c17
b4419beaa6d204257b61ac8fb04496561b807b7f
98102a3e31ac9616149e064d621143a8e2e30d6ac38b884e0d8456ae7a682611
GET /template/web/zxbf.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 15:53:39 GMT
vary: Accept-Encoding
etag: W/"635bfb03-13f9"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/d2.gif
192.151.196.20200 OK 162 kB URL HTTP/2 4c.jxry1.com/template/web/GG/d2.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 162 kB (161572 bytes)
Hash 64c0f3edc7b3bfd2a2c009f3b93ebd7d
70dee1bf54047d14220328f8ab47d299a679a519
ca5ada5bab699078f3ecdb2a2b569bcef9b8b34f6773d2197c0658a55fad5d25
GET /template/web/GG/d2.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 161572
last-modified: Wed, 16 Mar 2022 16:12:17 GMT
etag: "62320c61-27724"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/
192.151.196.20200 OK 150 kB IP 192.151.196.20:0
Size 150 kB (149784 bytes)
Hash c8bf2cc91b981ecf797d20b6bc77e5fc
726625894d14b7b69c4eead3e510cb306815772b
3a7fb939ea9f3a79a2eb23c3ebaa8696428034f8960afd337e9add6d76e310aa
GET / HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.aaronzook.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/xx1.js
192.151.196.20200 OK 160 kB URL HTTP/2 4c.jxry1.com/template/web/xx1.js
IP 192.151.196.20:0
Size 160 kB (160445 bytes)
Hash 4b07ae3296cf75136b691929f632845e
19ebbec7d55fd53e8e61e554e429f157b636f379
9d5ff6466bbc4cd4cf4ab919affde25ff5d74aca25ac1a6e26c3ed61aa85124e
GET /template/web/xx1.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 09:51:33 GMT
vary: Accept-Encoding
etag: W/"635cf7a5-d9c"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/dh1.js
192.151.196.20200 OK 173 kB URL HTTP/2 4c.jxry1.com/template/web/dh1.js
IP 192.151.196.20:0
Size 173 kB (172603 bytes)
Hash 9a12ae8568ed1334eb54fe227248d2ae
007739fbd567100d79d7cce01acb3b390eb353fb
28240400dd3feae4a3bcf8c4a743ba7c0fed30e0106a20e902a311b74b8aa459
GET /template/web/dh1.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 15:52:43 GMT
vary: Accept-Encoding
etag: W/"635bfacb-2c1c"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
rootnetworksdv.ocsp-certum.com/
23.36.79.17200 OK 1.5 kB URL HTTP/1.1 rootnetworksdv.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d32e1bf455f5fa9f6be922c404a5f922
332a587463a3cbbedf67ec2bbbc085619f38a846
81a1401234b1924629ca28fc1bc0bc34fcd40be5aa086f589eb452c94e9a3e8e
POST / HTTP/1.1
Host: rootnetworksdv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1490
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sat, 29 Oct 2022 14:33:14 GMT
Connection: keep-alive
X-N: S
4c.jxry1.com/template/web/GG/dp1.gif
192.151.196.20200 OK 141 kB URL HTTP/2 4c.jxry1.com/template/web/GG/dp1.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 141 kB (141174 bytes)
Hash 2846430b1663c942a9d2a92c559667cd
2b7d07a004fa13af572b8d5d6317594c1eee9eec
b1357936607e4478fa840a29b58e6714f0063f4a90e28571bd8c8be4e175d74e
GET /template/web/GG/dp1.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 141174
last-modified: Mon, 25 Apr 2022 12:29:49 GMT
etag: "6266943d-22776"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 92fa688a64132d55734b62d1e144bc9d
f9e58170356059b5cc8b350023156bf7d12f9c7c
fa2d835eafd4cab64c27928a6dd23b8ebcd8946edaf1b72b87f65d0b46ebc1be
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 26 Oct 2022 18:28:36 GMT
Expires: Wed, 02 Nov 2022 18:28:35 GMT
Etag: "f9e58170356059b5cc8b350023156bf7d12f9c7c"
Cache-Control: max-age=359120,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ca0081c580b3d-OSL
4c.jxry1.com/template/web/GG/t1.gif
192.151.196.20200 OK 221 kB URL HTTP/2 4c.jxry1.com/template/web/GG/t1.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 221 kB (221303 bytes)
Hash 633e79a4d76e09af28eb7617340a6330
0aaef1ed9eed51ca839c4b8e88ca4988e27ec6cb
7363c1c913be071eb6240c6600c17b65e81b092944bb5f14c7013b5f96190fb3
GET /template/web/GG/t1.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 221303
last-modified: Tue, 10 May 2022 09:20:00 GMT
etag: "627a2e40-36077"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/y4.gif
192.151.196.20200 OK 258 kB URL HTTP/2 4c.jxry1.com/template/web/GG/y4.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 258 kB (257689 bytes)
Hash bbdd0bdf651352117671a182ae649b36
0913dc12c9378d9d5bc6aeefdba042fad4f95e8a
c808633ff4d4c025ae4151460a6ab81b58837bc03584b7037b4ef2034cc8676c
GET /template/web/GG/y4.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 257689
last-modified: Tue, 10 May 2022 09:20:09 GMT
etag: "627a2e49-3ee99"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/t2.gif
192.151.196.20200 OK 254 kB URL HTTP/2 4c.jxry1.com/template/web/GG/t2.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 254 kB (253670 bytes)
Hash bace60a0adc9bdd54f7c83058456a847
4867fd68497b7db5c4e5bbdde781cf098dbabd22
17a4f7b3d5caf413211515976326969951cc1bb9a3e32a9caa885fd6e3109368
GET /template/web/GG/t2.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 253670
last-modified: Tue, 10 May 2022 09:20:01 GMT
etag: "627a2e41-3dee6"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/3.gif
192.151.196.20200 OK 417 kB URL HTTP/2 4c.jxry1.com/template/web/GG/3.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 270 x 160\012- data
Size 417 kB (416995 bytes)
Hash 802a103bf67846996296827828346a47
4d4973ef15363f68f8bc9b25c6d78601da3d0d58
d327afcacd1595362aad0358b3fceb8f80e87ec08dc799945e80a9e50c859147
GET /template/web/GG/3.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 416995
last-modified: Wed, 11 May 2022 08:12:40 GMT
etag: "627b6ff8-65ce3"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash bdf1d9473e8329685d59b1c3f9d15d63
bdfd5802fb11af8e0ef21c51a5bad588d9c3234b
78400f150ce7e1d67415b8b89d5c46c487a83f91685fc0c8f325c99a76ea41c3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 08:41:17 GMT
Expires: Sat, 05 Nov 2022 08:41:16 GMT
Etag: "bdfd5802fb11af8e0ef21c51a5bad588d9c3234b"
Cache-Control: max-age=583081,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ca0082fedb515-OSL
4c.jxry1.com/template/web/dh2.js
192.151.196.20200 OK 322 kB URL HTTP/2 4c.jxry1.com/template/web/dh2.js
IP 192.151.196.20:0
Size 322 kB (322194 bytes)
Hash ccd39dfcc20f6249ed6c8ed6effc7b79
cde0c6b2384f256cff9eb3f368d6ba3a3f02ab24
3a36e7d47bb71db4ee179dbc38133a526e2b0bdca3db04c4f9c305837a51e281
GET /template/web/dh2.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 15:53:09 GMT
vary: Accept-Encoding
etag: W/"635bfae5-3b31"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=808879326&si=63c3c487678e3b7f007b9f6d27b1517e&su=http%3A%2F%2Fwww.aaronzook.com%2F&v=1.2.97&lv=1&sn=40197&r=0&ww=1268&ct=!!&u=https%3A%2F%2F4c.jxry1.com%2F&tt=%E9%9B%AA%E8%8A%B1%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=808879326&si=63c3c487678e3b7f007b9f6d27b1517e&su=http%3A%2F%2Fwww.aaronzook.com%2F&v=1.2.97&lv=1&sn=40197&r=0&ww=1268&ct=!!&u=https%3A%2F%2F4c.jxry1.com%2F&tt=%E9%9B%AA%E8%8A%B1%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=808879326&si=63c3c487678e3b7f007b9f6d27b1517e&su=http%3A%2F%2Fwww.aaronzook.com%2F&v=1.2.97&lv=1&sn=40197&r=0&ww=1268&ct=!!&u=https%3A%2F%2F4c.jxry1.com%2F&tt=%E9%9B%AA%E8%8A%B1%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 29 Oct 2022 14:33:14 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=EB65AB4E2E7B9B41; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
4c.jxry1.com/template/web/GG/2.gif
192.151.196.20200 OK 620 kB URL HTTP/2 4c.jxry1.com/template/web/GG/2.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 300 x 200\012- data
Size 620 kB (620010 bytes)
Hash 8171edd386b6abd105c0ff0e740330d9
7914e2b95f29d65b0ffb8e6daf7f54dc14da0ae0
5044971fcc4e0c4837e7e586b858fba8257feeed88812253aa9ee2396915c40a
GET /template/web/GG/2.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 620010
last-modified: Wed, 11 May 2022 08:12:37 GMT
etag: "627b6ff5-975ea"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/4.gif
192.151.196.20200 OK 279 kB URL HTTP/2 4c.jxry1.com/template/web/GG/4.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 200 x 113\012- data
Size 279 kB (279026 bytes)
Hash 42809e0a73309f01de7651ab3b712cb4
19a1658a10d4e8ca6831a824d4bccbb35dcbf113
da7e1e1332d196cde6cc3a7b9c758abb4493e9708799e7836551823dd399b13d
GET /template/web/GG/4.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 279026
last-modified: Wed, 11 May 2022 08:12:44 GMT
etag: "627b6ffc-441f2"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/122.gif
192.151.196.20200 OK 301 kB URL HTTP/2 4c.jxry1.com/template/web/GG/122.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 301 kB (301024 bytes)
Hash 924fb352713ee10f6f4bce3167ccce13
127a437f7a5020f7e7c08b6c6465be55dcb32e0c
6e04c7ee887495ce8805d38b200ca217c28b5e83655f4e7f4e8f8f8e28b872bf
GET /template/web/GG/122.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 301024
last-modified: Wed, 09 Mar 2022 10:04:32 GMT
etag: "62287bb0-497e0"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/d4.gif
192.151.196.20200 OK 940 kB URL HTTP/2 4c.jxry1.com/template/web/GG/d4.gif
IP 192.151.196.20:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 940 kB (940292 bytes)
Hash 9498c0ec00cdde8442bd47b00ff9b275
986b9b94882dd703fee1a8f9b49421196585ac5b
5024715e8bc78d17793d4c0b2c3ec877f564dcbe782490477babffaee734ec7e
GET /template/web/GG/d4.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 940292
last-modified: Wed, 16 Mar 2022 16:12:20 GMT
etag: "62320c64-e5904"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/a07.gif
192.151.196.20200 OK 356 kB URL HTTP/2 4c.jxry1.com/template/web/GG/a07.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 344 x 292\012- data
Size 356 kB (355956 bytes)
Hash 7fcc1b0bc144505a6445039f16e7ae84
c102af587f677b89bb65f7e850a4ca4b41a45456
409d94d159f6c851b76881b6937460458b25a246e45bf6ab98f34efd9474ede8
GET /template/web/GG/a07.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 355956
last-modified: Sat, 18 Jun 2022 04:11:07 GMT
etag: "62ad505b-56e74"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4914eaf4e8c7288140ecef609aa3b19a
c35c15625dbcc6454f2e75f75730ecf8f794e41c
4a4201a1776aa76abde0311c167314e085b2718487c6864f50d4aa444ca1444d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 18:36:29 GMT
Expires: Thu, 03 Nov 2022 18:36:28 GMT
Etag: "c35c15625dbcc6454f2e75f75730ecf8f794e41c"
Cache-Control: max-age=445993,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ca0081fdeb515-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0230526a960d007cd4a7f3b1c092f31e
c35e325a131c41fcae696a7fdbfb850814bade15
50ff99d141cb5ec8e554b46898795fa462530ef3d4fafb1df4bd0b992fa4877d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 27 Oct 2022 12:02:24 GMT
Expires: Thu, 03 Nov 2022 12:02:23 GMT
Etag: "c35e325a131c41fcae696a7fdbfb850814bade15"
Cache-Control: max-age=422348,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 761ca0082db8b509-OSL
4c.jxry1.com/template/web/GG/dp2.gif
192.151.196.20200 OK 767 kB URL HTTP/2 4c.jxry1.com/template/web/GG/dp2.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 766938
last-modified: Mon, 25 Apr 2022 12:29:50 GMT
etag: "6266943e-bb3da"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/dp4.gif
192.151.196.20200 OK 747 kB URL HTTP/2 4c.jxry1.com/template/web/GG/dp4.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 746571
last-modified: Mon, 25 Apr 2022 12:29:52 GMT
etag: "62669440-b644b"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
acoossf.top/ec9fcd758df74f805f29f72e8545d13b.gif
104.21.235.170200 OK 902 kB URL HTTP/2 acoossf.top/ec9fcd758df74f805f29f72e8545d13b.gif
IP 104.21.235.170:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 902 kB (902313 bytes)
Hash 8b4a95ea7cfbb7fb4d2b18efca5145f3
d2966ecbeb7369620cce5dbcd15d0fe591d79648
dd5ff25f4d6931bd3d2ef86c1a8901853ee2503fd2d6edb264a61abb37c2b002
GET /ec9fcd758df74f805f29f72e8545d13b.gif HTTP/1.1
Host: acoossf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4c.jxry1.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:14 GMT
content-type: image/gif
content-length: 902313
last-modified: Sat, 12 Mar 2022 15:17:28 GMT
etag: "622cb988-dc4a9"
expires: Fri, 25 Nov 2022 04:13:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 296371
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ocsEYzruFcxh7DWrOume3QmgPSCa%2BHeoapn9oDu3Ej294L0%2BoRLA3uIvX5%2FJsXHD9F%2BhfD3U7X4ONLq9zTHWIjUfGBSiTJmIf1QSRG8edyAljWApFQnlJeHQPEmndw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 761ca0084ab4dd7c-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/01.gif
192.151.196.20200 OK 562 kB URL HTTP/2 4c.jxry1.com/template/web/GG/01.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 380 x 570\012- data
Size 562 kB (561983 bytes)
Hash 311afec7a9e7d370b46adf41a45905e7
5460c5036e11ecf12f30d921e4dc811ad56f8b30
39da990b80811f9e29f4b4c1b9a0e7fc4f4b60a42c1f5d949b1ae1a9bbe80eb9
GET /template/web/GG/01.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 561983
last-modified: Wed, 11 May 2022 08:12:48 GMT
etag: "627b7000-8933f"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/GG/55.gif
192.151.196.20200 OK 834 kB URL HTTP/2 4c.jxry1.com/template/web/GG/55.gif
IP 192.151.196.20:0
File type GIF image data, version 89a, 140 x 206\012- data
Size 834 kB (834244 bytes)
Hash 3965598665b057b276ed86263c36f334
f8374496c56ad6cd140a9bd009b0637c8ce91a35
5efcea93fd0c2cb8059ea79144c6bfb6b094b5810e21cf6e2168ef51ac2fd36a
GET /template/web/GG/55.gif HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:26 GMT
content-type: image/gif
content-length: 834244
last-modified: Wed, 11 May 2022 08:28:17 GMT
etag: "627b73a1-cbac4"
expires: Mon, 28 Nov 2022 14:33:26 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 74f68293c68ea7299fc8dcce2d69f01f
a69f073ebcaec24ee5df4d8204769ad4e822670a
c213e585524dddfe098147dd14abf86d049d3a3f5f533ead3181317d08d96213
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "C213E585524DDDFE098147DD14ABF86D049D3A3F5F533EAD3181317D08D96213"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13512
Expires: Sat, 29 Oct 2022 18:18:26 GMT
Date: Sat, 29 Oct 2022 14:33:14 GMT
Connection: keep-alive
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 797a915f1bd65a72a509cf1029cbe233
718757482f3fc2a7138a1c2c44a8ddbdef4028fa
3b06cf48f9fe5cb6d0e0b754ee8f8e56a6bc3863bb3744d3755504a0abfea06d
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sat, 29 Oct 2022 14:33:14 GMT
Connection: keep-alive
X-N: S
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 59a78ecda166745653fa37a4491e6ca4
bfb581e6df88c4c980c250740e3ee6b9d0749afa
3fac50eea6c2318b2cd5f8874cbcd8ccf882e74aa3bd84152dae517bafff749f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4576
Cache-Control: max-age=113880
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 14:33:14 GMT
Etag: "635c41a2-2d7"
Expires: Sun, 30 Oct 2022 22:11:14 GMT
Last-Modified: Fri, 28 Oct 2022 20:54:58 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 727
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 6659a00351dcc878b852a7cf01e29c45
a930c6279e532116cc8a4a7c478ace78105595cd
2bad1339a2ea8a10d941da5b79c461009d3741512662b6de2ff768af6f92cf91
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 02 Nov 2022 11:57:22 GMT
ETag: "a930c6279e532116cc8a4a7c478ace78105595cd"
Last-Modified: Sat, 29 Oct 2022 11:57:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2484
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 761ca00a9ba80b45-OSL
p3.douyinpic.com/obj/tos-cn-i-dy/284e39cdba62439497b3e5374a4caff7
47.246.44.231200 OK 562 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/284e39cdba62439497b3e5374a4caff7
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 80\012- data
Size 562 kB (561802 bytes)
Hash 6992b4cd488bb4437ec954ab09a3fa00
e41fc5970be04ab5801e80ce785ff0832b305793
54d436cbf368311b0aa7bb497ac1b5a4330067953e11b4ad2da233e07e923d05
GET /obj/tos-cn-i-dy/284e39cdba62439497b3e5374a4caff7 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 561802
date: Sat, 29 Oct 2022 09:57:13 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 29 Oct 2022 09:57:13 GMT
nw-session-id: 2022102917571301021207508835AEE978fv6xg03dy
nw-session-trace: 2022-10-29T17:57:13.32135669+08:00 43
x-bdcdn-cache-status: TCP_MISS
x-length: 561802
x-powered-by: ImageX
x-response-date: Sat, 29 Oct 2022 17:57:13 GMT
x-tt-logid: 2022102917571301021207508835AEE978
via: n204-100-101, cache4.l2de2[0,0,206-0,H], cache25.l2de2[1,0], cache25.l2de2[1,0], cache5.se1[0,0,200-0,H], cache7.se1[1,0]
x-request-ip: fdbd:dc01:29:238::88
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 014712b41561398a05b6d6d4f41c082fd19ac38f337fa65b885feae8665dc71dce4a551abc7318fd1480a08c6a4744db2c4b283c49e53f5b38fdedd0bd4a612de5536894bba03e0097bf27516d3f28573e7f26b861318e44d9eccda992e85fdfac
x-response-lb: image
ali-swift-global-savetime: 1667037433
age: 16561
x-cache: HIT TCP_MEM_HIT dirn:4:387304393 mlen:0
x-swift-savetime: Sat, 29 Oct 2022 14:31:48 GMT
x-swift-cachetime: 31519525
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9b16670539946132089e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4
47.246.44.231200 OK 236 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4
IP 47.246.44.231:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 200 x 200\012- data
Size 236 kB (236219 bytes)
Hash 6aeca56d55e0186078e5d6fb327a23e2
91ac9bbcfeed76fb6f6b01ebefc9ead597d657b4
c5038b21dbd03c29515dbf018a6e7e5644b4c4d33e1020059328ff4c52b004e6
GET /obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 236219
date: Wed, 07 Sep 2022 07:38:18 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 07 Sep 2022 07:37:22 GMT
nw-session-id: 202209071537220101501072272B808FA4jw4pq03dy
nw-session-trace: 2022-09-07T15:37:22.828046379+08:00 46
x-bdcdn-cache-status: TCP_HIT
x-length: 236219
x-powered-by: ImageX
x-response-date: Wed, 07 Sep 2022 15:37:22 GMT
x-tt-logid: 202209071537220101501072272B808FA4
via: n150-059-226, cache9.l2de2[0,0,206-0,H], cache9.l2de2[1,0], cache9.l2de2[2,0], cache5.se1[0,0,200-0,H], cache7.se1[1,0]
x-request-ip: fdbd:dc02:22:46::67
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 019c1b5790decad19a8d1f49909a86c09b86ded5c77e0f7fb181b5daa8edf761de6ff1239c164cae6bf54f6944fd81e87f0acefb8c1b1dd33bb78e31a9a6efe1e73f3959289e3f8a5aec467fa9cae1aa5bab539a8a508f20009066a45aa879236e
x-response-lb: image
ali-swift-global-savetime: 1662536298
age: 4517696
x-cache: HIT TCP_MEM_HIT dirn:4:355310276
x-swift-savetime: Wed, 07 Sep 2022 08:32:51 GMT
x-swift-cachetime: 31532727
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9b16670539946282104e
X-Firefox-Spdy: h2
84998085.com/8499/100X100.gif
172.247.80.142200 OK 8.5 kB URL HTTP/2 84998085.com/8499/100X100.gif
IP 172.247.80.142:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash d2d7cacd82b632a4a36e2ae00f296bfa
5668d3b12dff73635e68a80f824f59d8a3d171a4
c75c2c75fb495a18eaa158fb6690b9f38b3d57757fc15e6a2fe74e285a38e256
GET /8499/100X100.gif HTTP/1.1
Host: 84998085.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 14:33:14 GMT
content-type: image/gif
content-length: 8489
last-modified: Wed, 19 Oct 2022 13:33:52 GMT
etag: "634ffcc0-2129"
expires: Mon, 28 Nov 2022 12:28:43 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/120x120.gif
47.75.19.16200 OK 37 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/120x120.gif
IP 47.75.19.16:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 120 x 120\012- data
Hash e1483cb58b351df158268bdc4849e1b7
2da640458aa8f291b37b728cd17b7503d474755b
b6ce1d21cbf120517235bf517e86faa5dc0d8daa5078f6984930296d4971d434
GET /gg/120x120.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: image/gif
Content-Length: 37216
Connection: keep-alive
x-oss-request-id: 635D39AAD0409B313000AB12
Accept-Ranges: bytes
ETag: "E1483CB58B351DF158268BDC4849E1B7"
Last-Modified: Thu, 21 Jul 2022 01:19:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7284670312886197610
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: 4Ug8tYs1HfFYJovcSEnhtw==
x-oss-server-time: 1
ntvxbf7.com/7a4bba1f2d494d268e4e3d01f7b02f09.gif
103.170.15.95200 OK 73 kB URL HTTP/1.1 ntvxbf7.com/7a4bba1f2d494d268e4e3d01f7b02f09.gif
IP 103.170.15.95:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 120 x 120\012- data
Hash 68b499187d4013f220129a499602b1f9
80f5fbd2ff84d9e55159bbb5d7871415391cf382
e5bc92b24d0ecf1febf05f08c0787be05413a6bf82bb950505e6a34c492af6ae
Analyzer Verdict Alert quad9 Sinkholed
GET /7a4bba1f2d494d268e4e3d01f7b02f09.gif HTTP/1.1
Host: ntvxbf7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6294b7c2-11daf"
Date: Wed, 31 Aug 2022 13:24:08 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 30 May 2022 12:25:38 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-25
Content-Length: 73135
u0082.com/2ec673b46d614c64b162f74fde5d74ff.gif
20.255.19.235200 OK 196 kB URL HTTP/1.1 u0082.com/2ec673b46d614c64b162f74fde5d74ff.gif
IP 20.255.19.235:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 196 kB (195791 bytes)
Hash cb604a11825ee223a85693aa7b078ba5
ea1a002e36be7a7de5e5dc112a10e2b3ba8b9af9
56d40151006d41c3a7ddf1791811531e1ac9ab3bb6c01d6859ad01e12c80395f
GET /2ec673b46d614c64b162f74fde5d74ff.gif HTTP/1.1
Host: u0082.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 30 Sep 2022 12:16:15 GMT
ETag: W/"6336de0f-54ee0"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
267827wnc.com/2b519efbad8943a8aeb14cc05fef9fce.gif
103.170.15.115200 OK 669 kB URL HTTP/1.1 267827wnc.com/2b519efbad8943a8aeb14cc05fef9fce.gif
IP 103.170.15.115:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 750 x 100\012- data
Size 669 kB (668791 bytes)
Hash 889727a6917f1de8fa50a7e27c981464
383aed5e1575ced12b853072a826dcbb35215f8a
543e8a7e680605b09ed3c18b6520822be19c3420f76192d0aa7ee84cc97f235b
GET /2b519efbad8943a8aeb14cc05fef9fce.gif HTTP/1.1
Host: 267827wnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6326e073-a3477"
Date: Sat, 29 Oct 2022 09:50:25 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 18 Sep 2022 09:10:11 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-45
Content-Length: 668791
1088hg01.oss-cn-hongkong.aliyuncs.com/960-60.gif
47.75.19.69200 OK 238 kB URL HTTP/1.1 1088hg01.oss-cn-hongkong.aliyuncs.com/960-60.gif
IP 47.75.19.69:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 238 kB (238190 bytes)
Hash 8e02a5fb5d1695c4b75d759067d79142
da4ceed76b0a1e11183f5a2d534a2c8392d13bf9
605ebb74f729e081da2e7d3fe8e1a3815b9fbf69e4360bccdc5f6c3280d90582
GET /960-60.gif HTTP/1.1
Host: 1088hg01.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 29 Oct 2022 14:33:13 GMT
Content-Type: image/gif
Content-Length: 238190
Connection: keep-alive
x-oss-request-id: 635D39A922AAFC37379AB91D
Accept-Ranges: bytes
ETag: "8E02A5FB5D1695C4B75D759067D79142"
Last-Modified: Sun, 23 Oct 2022 09:38:53 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12678139065042683636
x-oss-storage-class: Standard
Content-MD5: jgKl+10WlcS3XXWQZ9eRQg==
x-oss-server-time: 1
vjnhby.com/b7789cf5d31c42b8a1aef8e2b40479c7.gif
45.61.212.171200 OK 259 kB URL HTTP/2 vjnhby.com/b7789cf5d31c42b8a1aef8e2b40479c7.gif
IP 45.61.212.171:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 259 kB (259280 bytes)
Hash 53d090335e8e78b28c5a51a7bcd9f866
42c109960113d98371ae8b95c216ffd7ef1a2fcd
66f9448c9ef2eb689df4f89ac297e2aaaf55e7b7f8d49aa646ff5569b4441bcc
GET /b7789cf5d31c42b8a1aef8e2b40479c7.gif HTTP/1.1
Host: vjnhby.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63245a3a-3f4d0"
server: nginx
date: Fri, 21 Oct 2022 06:10:24 GMT
content-type: image/gif
last-modified: Fri, 16 Sep 2022 11:12:58 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us5-cdnb-11
content-length: 259280
X-Firefox-Spdy: h2
n0399.com/0fddc6f67b3e446c890e273ba01a3278.gif
45.61.212.131200 OK 445 kB URL HTTP/2 n0399.com/0fddc6f67b3e446c890e273ba01a3278.gif
IP 45.61.212.131:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 445 kB (445140 bytes)
Hash 8dc9eeb6e2f698ff336e098bf7c002a6
5be86ef65976a88e36ad3f30fe64d700f1883e0d
0de22c84ec1ac628f800ba4c39c5967868975d2cfc7d00d9244a6431925b9454
GET /0fddc6f67b3e446c890e273ba01a3278.gif HTTP/1.1
Host: n0399.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "62f4b0b4-6cad4"
server: nginx
date: Sat, 29 Oct 2022 09:59:31 GMT
content-type: image/gif
last-modified: Thu, 11 Aug 2022 07:33:08 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-01
content-length: 445140
X-Firefox-Spdy: h2
ggt999.oss-cn-hangzhou.aliyuncs.com/xpj/xpj96060b.gif
47.110.23.69200 OK 339 kB URL HTTP/1.1 ggt999.oss-cn-hangzhou.aliyuncs.com/xpj/xpj96060b.gif
IP 47.110.23.69:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 339 kB (338737 bytes)
Hash 5ad650168381761587e881115ddf381f
feaef7fc43a3ad892a19e1aa6acfc566e6243c9c
df415b5e9e6d9b318294b26d2128a64c7c45fa673f26540288aa14b65199a8d4
GET /xpj/xpj96060b.gif HTTP/1.1
Host: ggt999.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: image/gif
Content-Length: 338737
Connection: keep-alive
x-oss-request-id: 635D39AA53726E3236C738F7
Accept-Ranges: bytes
ETag: "5AD650168381761587E881115DDF381F"
Last-Modified: Sun, 16 Oct 2022 15:45:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10948447221979006143
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: WtZQFoOBdhWH6IERXd84Hw==
x-oss-server-time: 3
38qptu4.oss-cn-hangzhou.aliyuncs.com/150.gif
47.110.177.123200 OK 137 kB URL HTTP/1.1 38qptu4.oss-cn-hangzhou.aliyuncs.com/150.gif
IP 47.110.177.123:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Size 137 kB (136945 bytes)
Hash 77e56e44521598151bbc814814005448
204207c707cae73d562c4c8fcb1e8467eeabf2eb
a1275ab8c911c61150c5f68b2da51d30a146929e2c9478ab1a68db88a086ff6f
GET /150.gif HTTP/1.1
Host: 38qptu4.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: image/gif
Content-Length: 136945
Connection: keep-alive
x-oss-request-id: 635D39AAA966993137DF1762
Accept-Ranges: bytes
ETag: "77E56E44521598151BBC814814005448"
Last-Modified: Thu, 04 Aug 2022 13:25:21 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6164053056264850434
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: d+VuRFIVmBUbvIFIFABUSA==
x-oss-server-time: 2
616182863.com/c8094d15d10f4b6ca20aa8d549eaa221.gif
47.75.19.145200 OK 733 kB URL HTTP/1.1 616182863.com/c8094d15d10f4b6ca20aa8d549eaa221.gif
IP 47.75.19.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 700 x 100\012- data
Size 733 kB (732853 bytes)
Hash 9f176975b93ecfebdbc94bc4b9ebfa85
937e84d865eac2279432b513b1566e4e4612d8f1
532b19eb50369d79c93216e025d45212db6adf59f8ff39f2ed98e9e0ab95c11c
GET /c8094d15d10f4b6ca20aa8d549eaa221.gif HTTP/1.1
Host: 616182863.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: image/gif
Content-Length: 732853
Connection: keep-alive
x-oss-request-id: 635D39AAFDBA0C3139AF2900
Accept-Ranges: bytes
ETag: "9F176975B93ECFEBDBC94BC4B9EBFA85"
Last-Modified: Thu, 27 Oct 2022 05:12:56 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16508974058181463055
x-oss-storage-class: Standard
Content-MD5: nxdpdbk+z+vbyUvEuev6hQ==
x-oss-server-time: 2
9030a.cc/1008-960x60.gif
154.85.10.21200 OK 245 kB IP 154.85.10.21:0
ASN #211392 Dream Cloud Innovation Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (245135 bytes)
Hash b6eb4d9fd04fe63a7687677a8036e237
eac3cedc645a39478dc6ad3ec6ea97db621174b8
6b61596ae15b088b70b49d17c7b47eaffaa5f235c9215459334b85039af7f008
GET /1008-960x60.gif HTTP/1.1
Host: 9030a.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Tue, 04 Oct 2022 14:45:04 GMT
Accept-Ranges: bytes
ETag: "5c7ab8e3ffd7d81:0"
Server: Microsoft-IIS/8.5
Date: Sat, 29 Oct 2022 14:33:13 GMT
Content-Length: 245135
X-Via: 1.1 localhost.localdomain (random:85111 Fikker/Webcache/3.7.8)
Set-Cookie: fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Sun, 30 Oct 2022 01:10:28 GMT; max-age=7200; path=/
fikker-tkjk-8I2E=6AJN4WT7BW0g0mIaVuK7h92mbGRsXQjs; expires=Sun, 30 Oct 2022 01:10:28 GMT; domain=.cc; max-age=7200; path=/
513575528.com/111e0519e12b4d8ca35473dd40ab6320.gif
47.75.19.145200 OK 200 kB URL HTTP/1.1 513575528.com/111e0519e12b4d8ca35473dd40ab6320.gif
IP 47.75.19.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 125 x 125\012- data
Size 200 kB (200511 bytes)
Hash f64efa5cf5c281f0771fd375523a71e9
a1e3bef4d172d02f8412e63b12e3795d03c8da3c
6df0802e529451ad6dbc02d60d626ccb43fded0aa5f093901229e52e809b844b
GET /111e0519e12b4d8ca35473dd40ab6320.gif HTTP/1.1
Host: 513575528.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: image/gif
Content-Length: 200511
Connection: keep-alive
x-oss-request-id: 635D39AAD14BBC393120EF14
Accept-Ranges: bytes
ETag: "F64EFA5CF5C281F0771FD375523A71E9"
Last-Modified: Thu, 27 Oct 2022 05:13:32 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16034985892227948232
x-oss-storage-class: Standard
Content-MD5: 9k76XPXCgfB3H9N1Ujpx6Q==
x-oss-server-time: 1
383tupian.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.80200 OK 299 kB URL HTTP/1.1 383tupian.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.80:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 299 kB (299398 bytes)
Hash f4b7967855549e81f65598b93a43d9db
6ab53e8a9af687c1dddad236af323080a04499cf
2e95dc2082af7cc833e0aef825efc261c04b69e3ec4350203854008cc4a12dc6
GET /960x60.gif HTTP/1.1
Host: 383tupian.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 29 Oct 2022 14:33:14 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 635D39AAD17D3434399A0368
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Sun, 23 Oct 2022 07:06:26 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 2
4c.jxry1.com/template/web/xx3.js
192.151.196.20200 OK 398 kB URL HTTP/2 4c.jxry1.com/template/web/xx3.js
IP 192.151.196.20:0
Size 398 kB (398211 bytes)
Hash 4d5c67478c639281175fd55d26fb2fc4
51548359346f6da33319da412c841bd3f3368bc2
17aa3d1aac1d8e7d42b3a72ce80280b451b4979ffa8dc1285ecb724de310783b
GET /template/web/xx3.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 09:51:49 GMT
vary: Accept-Encoding
etag: W/"635cf7b5-cf1"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7xHewExic0gnkb8ycBV8hScWAsnRQWRAJGLgqEqfiaFfFU/0
43.129.255.47200 OK 231 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7xHewExic0gnkb8ycBV8hScWAsnRQWRAJGLgqEqfiaFfFU/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 231 kB (231270 bytes)
Hash 2f2c8ec52149276d3ef1c493494dcdd9
f6f8e0965653c402469862d8cdc7e57df1ddc846
a1274ed00e690cfe012e394ca855570f6ebb32e625385597f8ecb5110e444a08
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7xHewExic0gnkb8ycBV8hScWAsnRQWRAJGLgqEqfiaFfFU/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 29 Oct 2022 14:33:15 GMT
content-type: image/gif
content-length: 231270
vary: Accept,Origin
last-modified: Mon, 26 Sep 2022 14:50:11 GMT
cache-control: max-age=2592000
x-delay: 129 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 231270
chid: 0
fid: 0
x-nws-log-uuid: a1c655c9-77ee-477c-9398-c657bbf79bd9
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 8407eb4a5fa1ce123a6d1523054fbf3a
2a30891cb75c5aaffd0ff9ee270b1391110a7832
536e1f0a6ab6def4f04044545cc64526d486b8cb9b2a09679d591a081d8b0c23
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 14:33:17 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 02 Nov 2022 11:38:16 GMT
ETag: "2a30891cb75c5aaffd0ff9ee270b1391110a7832"
Last-Modified: Sat, 29 Oct 2022 11:38:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 66
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 761ca01f3a0efab4-OSL
img.9275x.com/images/635290733ce47c907dcb1496.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.9275x.com/images/635290733ce47c907dcb1496.gif
IP 3.36.126.81:0
GET /images/635290733ce47c907dcb1496.gif HTTP/1.1
Host: img.9275x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/284e39cdba62439497b3e5374a4caff7
cache-control: max-age=3600
X-Firefox-Spdy: h2
img.999977.co/images/6316de02a49d5bdc1f72e316.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.999977.co/images/6316de02a49d5bdc1f72e316.gif
IP 3.36.126.81:0
GET /images/6316de02a49d5bdc1f72e316.gif HTTP/1.1
Host: img.999977.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/5d536823ffda4f8e935d315d5f62ddc4
cache-control: max-age=3600
X-Firefox-Spdy: h2
4c.jxry1.com/template/xinheise/css/zui.css
192.151.196.20200 OK 0 B URL HTTP/2 4c.jxry1.com/template/xinheise/css/zui.css
IP 192.151.196.20:0
GET /template/xinheise/css/zui.css HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: text/css
last-modified: Sat, 10 Sep 2022 05:23:35 GMT
vary: Accept-Encoding
etag: W/"631c1f57-16c4e"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
4c.jxry1.com/template/web/dipiao.js
192.151.196.20200 OK 0 B URL HTTP/2 4c.jxry1.com/template/web/dipiao.js
IP 192.151.196.20:0
GET /template/web/dipiao.js HTTP/1.1
Host: 4c.jxry1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4c.jxry1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 14:33:25 GMT
content-type: application/javascript
last-modified: Sun, 15 May 2022 14:24:56 GMT
vary: Accept-Encoding
etag: W/"62810d38-81a"
expires: Sun, 30 Oct 2022 02:33:25 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2