firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 22:12:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8UoLlhftqfXPJJaCTQKs5KvCWgGtEEavOHT4Zd1r2ySCPdrzzv7CHw==
Age: 1851
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8552
Expires: Tue, 20 Sep 2022 01:06:19 GMT
Date: Mon, 19 Sep 2022 22:43:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: --I73ntLjET8jVEtF3N-3ftLbBFmi3MjeXtmputtK4IbcXwBwpBCKg==
age: 65314
X-Firefox-Spdy: h2
gg4l5.cn/
104.165.252.142301 Moved Permanently 0 B IP 104.165.252.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: gg4l5.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 19 Sep 2022 22:43:40 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.gg4l5.cn/index.php
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 22:43:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 22:03:22 GMT
Cache-Control: max-age=3600
Expires: Mon, 19 Sep 2022 22:45:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lHKR-k9RIjM7_ySu21amd90UolFOKJyjBm2euyQoUU5r-l2j6SpLVg==
Age: 2425
www.gg4l5.cn/index.php
104.165.252.142200 OK 473 B IP 104.165.252.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (598), with CRLF line terminators
Hash b1dae25e04901a8e0d0ea20afad86c01
2290ebe423c0fcea6b64e6685b1e0778bf472581
49637583c5c5f9886d5945693be0a8fd1b7b76aa40f36a7d2c120c58077caa53
Analyzer Verdict Alert fortinet Phishing
GET /index.php HTTP/1.1
Host: www.gg4l5.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6376
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 22:43:47 GMT
Last-Modified: Mon, 19 Sep 2022 20:57:31 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.gg4l5.cn/common.js
104.165.252.142200 OK 681 B IP 104.165.252.142:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash cf689db738f9a2cfa1460a7e0acc8dd6
922c8e9e1c676f179c6e423573e25c8b6442a636
521e30f71e889eb6071ba49ecaf6b82e51190da3cd5944da470df7553de94141
Analyzer Verdict Alert fortinet Phishing
GET /common.js HTTP/1.1
Host: www.gg4l5.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gg4l5.cn/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:41 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
54.148.148.62101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.148.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W6KhKnTmj5rkXir6eS1xkg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Fhtpt6CRyNlJfmoPbc6v7l9Xb7Y=
www.gg4l5.cn/tj.js
104.165.252.142200 OK 258 B IP 104.165.252.142:0
File type ASCII text, with CRLF line terminators
Hash 2bd4e7831c707546db0857137eb4faa9
c6b3eada5627fefa19f49d6a4837e722a42bbd0a
fbbd316feae129142ba5257a111d8ef347566886880298e971e9885890dd67c3
Analyzer Verdict Alert fortinet Phishing
GET /tj.js HTTP/1.1
Host: www.gg4l5.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gg4l5.cn/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:41 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.gg4l5.cn/favicon.ico
104.165.252.142200 OK 1.2 kB IP 104.165.252.142:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.gg4l5.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gg4l5.cn/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:41 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sat, 24 Sep 2022 22:43:41 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
dsaudb9.top/
67.21.89.92200 OK 5.1 kB IP 67.21.89.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (648), with CRLF line terminators
Hash 1a7f778715f5851393880d6ded7d084f
9d0c36270073383a2aaed70493cfc9fa4c04b213
c99ac4489a7fdfa8a1b1a7949bcc31b71c025f93efa27b96e96cb5d5c00b4049
GET / HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gg4l5.cn/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/common/style.css
67.21.89.92200 OK 3.5 kB URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/common/style.css
IP 67.21.89.92:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 66cb8aa56779e7bb6c8372deea7a9335
466dabea62174668da14a602dd5e4172df88c48a
8af809a347ae484242398ac680f5be8092da7a1ebc160792f81eaa7987190ab6
GET /template/xsmmsp/assets/css/common/style.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/css
Last-Modified: Wed, 29 Apr 2020 12:40:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5ea975b0-48a2"
Expires: Tue, 20 Sep 2022 10:43:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/custom/main.css
67.21.89.92200 OK 549 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/custom/main.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 08b2e4bfeba023ec56e6a5d661ee59a7
331d65e1c07c021ac57febff6cbb3b7b7eb48186
d3846565e87aab70c9c517e975f30237535c1e8ac662706b68390c2f6e1bd9b6
GET /template/xsmmsp/assets/css/custom/main.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:47:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a431c-7cd"
Expires: Tue, 20 Sep 2022 10:43:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/custom/header.css
67.21.89.92200 OK 517 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/custom/header.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 0bb0fa81ed0f205181328e7758425737
8b9c97fbd73a1ac33397bfa5c26aac27a0557bd1
17024888daa4bf01f5097c4fc9e3c6fcdf09293ac13cf588a60a0ce424fb8bd0
GET /template/xsmmsp/assets/css/custom/header.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:48:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a434a-5c8"
Expires: Tue, 20 Sep 2022 10:43:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/custom/menu.css
67.21.89.92200 OK 938 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/custom/menu.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 5e9b4ea54bc46458dfac766b78829488
4bddb65ff8ba79a92d746da36efa218027b77116
0ead24b794fe0231b7f445698e80911aa1774f6e9b499383d7e15f0fc8a8d6ad
GET /template/xsmmsp/assets/css/custom/menu.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:48:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a4370-1c3c"
Expires: Tue, 20 Sep 2022 10:43:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/custom/banner.css
67.21.89.92200 OK 321 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/custom/banner.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 66e2134420e87365212f3432572d53a7
5ddf9c38c9b25f615d57d9a48eae0807ff6c2958
8fd908d798c5bd16d0a0f9d0d7dfd24d0b360c1dd8ec0bc8b66c9b55f3014ac6
GET /template/xsmmsp/assets/css/custom/banner.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:47:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a4332-49c"
Expires: Tue, 20 Sep 2022 10:43:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/common/flickity.min.css
67.21.89.92200 OK 815 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/common/flickity.min.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash bc40d4e4a3fd99000dfcfe3d5f01bf1e
70630dc523095734c9975cbe9122c8598ec56275
05805a64e2b9412ca8cb1c2f13989a9db83761b62e7a074649fbba0f086e36c9
GET /template/xsmmsp/assets/css/common/flickity.min.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:49:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a43ae-ab1"
Expires: Tue, 20 Sep 2022 10:43:48 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/custom/footer.css
67.21.89.92200 OK 578 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/custom/footer.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 60bd5ffdbd5f7ab483d32ee5e04a6d90
a7be6dbaf277cda4d11334089d08274b88646534
6282f0873c7451e6c4f9c88c426381f540c2bbf1010df23249d7b3dbaa7d11c5
GET /template/xsmmsp/assets/css/custom/footer.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:48 GMT
Content-Type: text/css
Content-Length: 578
Last-Modified: Sat, 02 Mar 2019 08:49:08 GMT
Connection: keep-alive
ETag: "5c7a4384-242"
Expires: Tue, 20 Sep 2022 10:43:48 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
dsaudb9.top/template/xsmmsp/assets/css/theme/default.css
67.21.89.92200 OK 24 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/theme/default.css
IP 67.21.89.92:0
File type ASCII text, with no line terminators
Hash 45fdb73a80a833ea9b3a7707fcad0566
093d4fa40f57b35a96154fbe74fb5eb7376eda24
82871fdb8f75fa02a9f2a4c390da56fcdee1f4da212ebb27e345008c04530f7f
GET /template/xsmmsp/assets/css/theme/default.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: text/css
Content-Length: 24
Last-Modified: Sat, 02 Mar 2019 08:50:38 GMT
Connection: keep-alive
ETag: "5c7a43de-18"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
dsaudb9.top/template/xsmmsp/assets/js/common/juqery/jquery.js
67.21.89.92404 Not Found 146 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/js/common/juqery/jquery.js
IP 67.21.89.92:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/xsmmsp/assets/js/common/juqery/jquery.js HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
dsaudb9.top/template/xsmmsp/assets/css/custom/img_list.css
67.21.89.92200 OK 656 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/custom/img_list.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 813a474b419fb5460acae1b3b978951e
2587685b7bcdc8bfc992d91e41b5c1239455b5df
92b54eb33215edf0c63ac28f6d3d4d1a0294fc4bab9893a8a8f274c7e46b4a6c
GET /template/xsmmsp/assets/css/custom/img_list.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 11:24:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a67ec-cae"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash f0607334c9ad78679df671b949d59b9f
da9e477dea04f847c0bedea795e12c25e7a59467
88300577ef4867f2ea7fa8cbcacd22737e31887abbb4f6627d6e2b144703507c
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Fri, 23 Sep 2022 21:34:40 GMT
ETag: "da9e477dea04f847c0bedea795e12c25e7a59467"
Last-Modified: Mon, 19 Sep 2022 21:34:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1900
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74d5d7a84d2d0b39-OSL
dsaudb9.top/template/xsmmsp/ads/xx1.js
67.21.89.92200 OK 446 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/ads/xx1.js
IP 67.21.89.92:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash f2dd30d4597be52f95b20125fe3aa788
ca33ab7a70ed68b6710381c70791b200079cc90f
e20c0a44737bd88d3814acff9346d8ce408839906f32b7ee91797b5e145ca794
GET /template/xsmmsp/ads/xx1.js HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: application/javascript
Last-Modified: Fri, 16 Sep 2022 14:22:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632486b8-567"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/ads/xx2.js
67.21.89.92200 OK 14 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/ads/xx2.js
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 12e8bb973292afc89658c4149b2dbafb
0c96599adc808263996a2a9984ae813cc88dc3a1
ce46935f9271b0d7e317e7457846c77d4079f2f84f3239ba222ab1f478093ab6
GET /template/xsmmsp/ads/xx2.js HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: application/javascript
Content-Length: 14
Last-Modified: Sun, 10 Jul 2022 11:51:55 GMT
Connection: keep-alive
ETag: "62cabd5b-e"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
dsaudb9.top/template/xsmmsp/ads/xx3.js
67.21.89.92200 OK 445 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/ads/xx3.js
IP 67.21.89.92:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 48f2c41871d39e66d3142b8abf5777ec
3fbf277d083cb4dc7e0d3d2837794d296f345ba5
d0cf42a13863669ba27c55c92c0b533fd92444d7c0978faa8687a3c922bdd7f2
GET /template/xsmmsp/ads/xx3.js HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: application/javascript
Last-Modified: Fri, 16 Sep 2022 14:22:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"632486b8-569"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4643
Expires: Tue, 20 Sep 2022 00:01:12 GMT
Date: Mon, 19 Sep 2022 22:43:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4643
Expires: Tue, 20 Sep 2022 00:01:12 GMT
Date: Mon, 19 Sep 2022 22:43:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4643
Expires: Tue, 20 Sep 2022 00:01:12 GMT
Date: Mon, 19 Sep 2022 22:43:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4643
Expires: Tue, 20 Sep 2022 00:01:12 GMT
Date: Mon, 19 Sep 2022 22:43:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3463c46d2b7a87a91ff1a701a438d80e
92c78b27f4e31609c1b78670b26e68b4f991a8ed
b95b290832f12f97c7da51382fe92feba2fa93a5ec0470d48a533a58a13dc474
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5985
x-amzn-requestid: 6797727b-78c7-470f-bee8-7b55e64d36ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugzxH6qoAMF67w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e1b1-0d574a815d19636b21376c91;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RIRyR6BXSZrTZq2joFYjssEpZAqxuWYgdoU5um35md0Yt_m0UzZpiw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:51:37 GMT
age: 3132
etag: "92c78b27f4e31609c1b78670b26e68b4f991a8ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 2046
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f4438521bfdc6871ae384abcb7da547
a17fc7a7c30999b8789011c2064f5a8704b00eee
2e40ac154724af625c4858b09b90fa3f6a600b70c9e5e959598f0cdb05a78847
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d94aa1-e164-4f98-8fe2-beb3868db074.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5402
x-amzn-requestid: 0442580c-9024-46b1-8ad5-5c7e8d35371d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfMALHT2oAMFmgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322c067-254ecd9003455f090f7d5ef9;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:04:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Y4IeHZWMs_JdT2dG8d3BNqpxvU3lcYDsXub1CuCoVBxzTPsjuU_5Ww==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 18:11:38 GMT
age: 16331
etag: "a17fc7a7c30999b8789011c2064f5a8704b00eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb7ceffe-3c92-417f-bd64-15a9e9118a4a.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb7ceffe-3c92-417f-bd64-15a9e9118a4a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e8175cd370c35ad06cb2d009c3f7095
4f71cdda787ce98a58f2fe9ce8ba2e7ec7b150d2
649f5309448c163e4d379f02c4af8d9b6801935eea1939c61c010b7f76af1591
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb7ceffe-3c92-417f-bd64-15a9e9118a4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2951
x-amzn-requestid: 087a36dd-984f-49d1-8a37-b357967e67ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugIiH7KoAMF5uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09c-38b316cc31454446524f7b01;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eaJ3KQP30-QAP5UBuWX8BEjGmcp_cJgDVeIfQoU2c0U_WQzb1x-t5A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:27 GMT
age: 2062
etag: "4f71cdda787ce98a58f2fe9ce8ba2e7ec7b150d2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49ffb7cd4c40b37f5b61c1fd86ee36ec
4188174bf6e595335f784d2bf9c90db57294b2fc
5af29dbb676f5a38288e73e9ca4feada901ccfb06385110ca0a46a4970532d32
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F799803b1-7e6e-42da-84f6-3e45140e6ae6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7358
x-amzn-requestid: 88cc5413-2f66-4dc6-b20d-57dd16e77e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugqUHZIoAMFd3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e175-7357c2251f4434bc4686f9ed;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qL0OjiglHkC5171Q2CTvjoOnpkRsGs9I949IDf-PEYOg5S_hiPUpyA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "4188174bf6e595335f784d2bf9c90db57294b2fc"
content-type: image/jpeg
age: 2046
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c283017ec789693602177a2785177e21
ff8286c4d2cf87a1865d56d082bc5235dba60ad7
520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 2275
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dsaudb9.top/template/xsmmsp/assets/css/common/common.css
67.21.89.92200 OK 528 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/common/common.css
IP 67.21.89.92:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 20cb2d9dcda1d9384faff84dccc54b34
53415d1e6f671fdbd93608a26335d66aeddbf72b
b3e62e6ede81f54ed5c4621c96b47da7226499766278004c8ab7686771b45a31
GET /template/xsmmsp/assets/css/common/common.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/template/xsmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:45:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a42a8-5e2"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/common/pagination.css
67.21.89.92200 OK 411 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/common/pagination.css
IP 67.21.89.92:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 756f111ee343465ac3fdfcd6a7d56aac
72d2d9ae0b73197af2e343e54e469692a39e276d
d14d1e91f99c7287522285b812621b4003acc0ddd7e0098f30cd048a21699b7c
GET /template/xsmmsp/assets/css/common/pagination.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/template/xsmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:45:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a42c2-51e"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/common/icon.css
67.21.89.92200 OK 324 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/common/icon.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash 25b281150e31f0d158beace91ac17b74
25210828fcf7fe46fd841b531b20bb7f72301d02
5a4896037e25ce7def690326ad152f7b3cad3d5f3da392591ca0574e6708d79b
GET /template/xsmmsp/assets/css/common/icon.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/template/xsmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: text/css
Last-Modified: Sat, 02 Mar 2019 08:46:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c7a42ec-496"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
dsaudb9.top/template/xsmmsp/assets/css/theme/blue.css
67.21.89.92200 OK 696 B URL HTTP/1.1 dsaudb9.top/template/xsmmsp/assets/css/theme/blue.css
IP 67.21.89.92:0
File type ASCII text, with CRLF line terminators
Hash d1b6791f4679bcab3ab01381c2504a49
6625522320cbe2f9339cb2f1208fd7c52ce774ca
8d57cfc0b7f72f5cae88513d97110c2237908888a2fd47971feb9ac6a33b80ed
GET /template/xsmmsp/assets/css/theme/blue.css HTTP/1.1
Host: dsaudb9.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dsaudb9.top/template/xsmmsp/assets/css/theme/default.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: text/css
Last-Modified: Mon, 27 Jul 2020 14:19:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f1ee278-a2c"
Expires: Tue, 20 Sep 2022 10:43:49 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67851daeba41825e715a62463193ef08
2f300a6e024abcdcf7c196cc23710bbed83df317
6b0f60448cbd458305b9e51d46f14f8173249ca745ee32b30c2f1a8b68be7353
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5317
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 22:43:49 GMT
Last-Modified: Mon, 19 Sep 2022 21:15:12 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67851daeba41825e715a62463193ef08
2f300a6e024abcdcf7c196cc23710bbed83df317
6b0f60448cbd458305b9e51d46f14f8173249ca745ee32b30c2f1a8b68be7353
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5317
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 22:43:49 GMT
Last-Modified: Mon, 19 Sep 2022 21:15:12 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67851daeba41825e715a62463193ef08
2f300a6e024abcdcf7c196cc23710bbed83df317
6b0f60448cbd458305b9e51d46f14f8173249ca745ee32b30c2f1a8b68be7353
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4466
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 22:43:49 GMT
Last-Modified: Mon, 19 Sep 2022 21:29:23 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67851daeba41825e715a62463193ef08
2f300a6e024abcdcf7c196cc23710bbed83df317
6b0f60448cbd458305b9e51d46f14f8173249ca745ee32b30c2f1a8b68be7353
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6201
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 22:43:49 GMT
Last-Modified: Mon, 19 Sep 2022 21:00:28 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67851daeba41825e715a62463193ef08
2f300a6e024abcdcf7c196cc23710bbed83df317
6b0f60448cbd458305b9e51d46f14f8173249ca745ee32b30c2f1a8b68be7353
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 998
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 22:43:49 GMT
Last-Modified: Mon, 19 Sep 2022 22:27:11 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
fmlb.netlbtu.com/upload/vod/2022/08-29/09/3pcr0r4pova09523pcr0r4pova2722259.jpg
172.64.141.29200 OK 1.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/3pcr0r4pova09523pcr0r4pova2722259.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 061de02c0232b188419cd5e58e9b8e19
747520d16d07031f7792df3dd2730247c5feba53
187bcbf701b56ab13d7db0966e51278bc4d00dfbe84b0db640c49d5f938bdf26
GET /upload/vod/2022/08-29/09/3pcr0r4pova09523pcr0r4pova2722259.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 1764
cf-bgj: h2pri
etag: "39dcfe49bbd81:0"
last-modified: Mon, 29 Aug 2022 01:52:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1381
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37DHw0zvb4spf81ELaHxg41FH6dJyTGQAgdNocEDfqixttjmkEprXqitalz8pZMRHGd9J0o286R8Yu4ZKJy0fWRZWGgXZ0QK8ddUtNWXWtNhRnFJYRLZXl3%2F3lGhW818fHiD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ef65d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-29/09/rvunr5ppxzh0951rvunr5ppxzh5222251.jpg
172.64.141.29200 OK 7.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/rvunr5ppxzh0951rvunr5ppxzh5222251.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash dbdfec5523a22c1189d1fee7e0cc8c96
91b037f8af24b8d2ed5372993a6fa5994e25ebf9
3236a1245c080074c18e890f6e10c2f0275015bbab136ac5ffdf0f7df4b4c623
GET /upload/vod/2022/08-29/09/rvunr5ppxzh0951rvunr5ppxzh5222251.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 7601
cf-bgj: h2pri
etag: "936ee5e849bbd81:0"
last-modified: Mon, 29 Aug 2022 01:51:52 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1381
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FoLFK3WSiMneQhv%2B%2FxtDZzb%2BVkgZeBeqnlMC6wVc6biCYWTN0jZhKiji%2BgFtiUFbJ0wOCMR8GCoN%2B7KgViuntFENGR00XUXkoprJALrjP0jwoE%2BpoPAdKmGsMEsA%2FmeJhCgd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ef5dd184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-29/09/y4rernnmvj30951y4rernnmvj35422257.jpg
172.64.141.29200 OK 7.1 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/y4rernnmvj30951y4rernnmvj35422257.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8459ff3a810458d0e55044300f7314c8
d0b3b0e887600a51f910d99eb5e5d29622cb95ed
32ef5e6c4e8f80efe2052e44202d4e69f037b0a2d1f03a4ac756dc9ba33e23bb
GET /upload/vod/2022/08-29/09/y4rernnmvj30951y4rernnmvj35422257.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 7133
cf-bgj: h2pri
etag: "bd8111f749bbd81:0"
last-modified: Mon, 29 Aug 2022 01:52:15 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1381
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2BD2C7JNbzkvOdplSPjj775FoCb6FghgxOahyiBIFY0qGhqmwsx%2FQpW%2FxZuJp%2Fy5iAl1Mi0CM6N5x36klc9JpInqksYHjsFeVr3xlHl%2BfthRrwCVEfMBR6xJzJ9%2F44aORLwO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ef5ad184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-29/09/jfey0sfne5n0951jfey0sfne5n5322255.jpg
172.64.141.29200 OK 7.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/jfey0sfne5n0951jfey0sfne5n5322255.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f900e71bab0da494456f4c9db2bf04e5
981ec9b1b5c36f8fcb90923ee966ea56c1c5a87d
2af466f964dd7fef8382e8d6c176e10f602f1f34c339f3c8dae80109f60059ea
GET /upload/vod/2022/08-29/09/jfey0sfne5n0951jfey0sfne5n5322255.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 7787
cf-bgj: h2pri
etag: "28b53ea49bbd81:0"
last-modified: Mon, 29 Aug 2022 01:51:54 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1381
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jpb9awDZsXK8KbVR3MIde5tP%2BhRM7UDFheKVOxFLAj%2FM5MTaB%2FstGDsIxGmoTkdT%2FV%2BAy56xU7ZyKhFg%2BZlefO%2FZddIe3v7pCn0m9u%2B8DB10bG9MPumApoJzM23MKIUonfp1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ef5bd184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-29/09/id0debxf1la0951id0debxf1la5122249.jpg
172.64.141.29200 OK 9.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/id0debxf1la0951id0debxf1la5122249.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 661e5f911debaafae9ff772b7abd2974
b23420a31082b90f1c1c66ce12d9f30bf0fe8fbf
b5782b5f83916ef1d00f051fe2e23a93299b2aaff30d62233f8cdf0608636ee8
GET /upload/vod/2022/08-29/09/id0debxf1la0951id0debxf1la5122249.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 9897
cf-bgj: h2pri
etag: "143362e849bbd81:0"
last-modified: Mon, 29 Aug 2022 01:51:51 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1381
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GZrPSUq8ZYuNAklEhs4rBG3f6Jn%2FyKRRciVD46oYzU4DyeBIBvDVEMq6BNZYgENxETe7nlPOWZ%2F%2FL18lnJqV1eAhwp%2BYRkTgR6sMXkKbQUzeYa0rj2gC6SQtiq%2BRvEjXIrrN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ef6cd184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-29/09/42umjj1je4a095142umjj1je4a5322253.jpg
172.64.141.29200 OK 7.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/42umjj1je4a095142umjj1je4a5322253.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9e8db7d1f8fc49e9ebd8b91fba719ea5
8d068fe72df8329923e93ee923b7fed6c5719c65
b560f884fe946da1be5359530bda9b2917750bafd78ebd0ac4f4a02892f57058
GET /upload/vod/2022/08-29/09/42umjj1je4a095142umjj1je4a5322253.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 7925
cf-bgj: h2pri
etag: "5c566de949bbd81:0"
last-modified: Mon, 29 Aug 2022 01:51:53 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1381
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gu7zidfB5Nvnb2N%2BydX8J1gH1koPizTkqiKlEq7UAdWRzSs0qCKif1eLBIK8Udyx%2B7pGicnTgZll4wHH1EJNm2w7mpGPJyfSrZa%2BAEq1FGJE%2FN1uagMupyT43WaUfCm8efzK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ef5cd184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 67851daeba41825e715a62463193ef08
2f300a6e024abcdcf7c196cc23710bbed83df317
6b0f60448cbd458305b9e51d46f14f8173249ca745ee32b30c2f1a8b68be7353
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5317
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 22:43:49 GMT
Last-Modified: Mon, 19 Sep 2022 21:15:12 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
fmlb.netlbtu.com/upload/vod/2022/08-29/09/iuj34kuxids0952iuj34kuxids2922263.jpg
172.64.141.29200 OK 8.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/iuj34kuxids0952iuj34kuxids2922263.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9fb8c6381dd9c63bd2b43648e01456e1
39cd465fde3a884f16efb6b0f9c23c71c5e2de18
f172b4aba826eb8e82fd80bfe91492e7efe3d59966664da366e5d7dad7b21a0b
GET /upload/vod/2022/08-29/09/iuj34kuxids0952iuj34kuxids2922263.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 7964
cf-bgj: h2pri
etag: "dff1bff49bbd81:0"
last-modified: Mon, 29 Aug 2022 01:52:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rrk7%2FBHicwAJ9yQX97CnIdkhlH86ySjwABaRR4Nim6D6oMPuaoHNaogGH0HJiN%2BTYjGavGC%2F1MalDeAfDHZIjOE3SpjODbwf7pyvAVKM%2FuWqCqRFamKRULLZhUVdRJsGaVkC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ff7bd184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-29/09/x52iw3wu1ak0952x52iw3wu1ak3122267.jpg
172.64.141.29200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/x52iw3wu1ak0952x52iw3wu1ak3122267.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ab893cd20c4f8090bafd401882b3cae1
3886a0d0915c1c6082f05036c1c11eecff0dcabe
a49748e508bfd7d31bf9fed71736745b3c8828a5df3756c00bb46c9fae267ef0
GET /upload/vod/2022/08-29/09/x52iw3wu1ak0952x52iw3wu1ak3122267.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 9306
cf-bgj: h2pri
etag: "6182704abbd81:0"
last-modified: Mon, 29 Aug 2022 01:52:31 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mMpuk1qbUgPpco3VzWjJ4Rvd2nDRJ9pzbe5k2KyGFJxtGQoHXCJwXXk7Js%2BrBxJupYyqWUt2zsoc9fkOtfHUujeUj5ZQseUoLS7N1RcRonSQOZ1x0yXDNUTBbAJXWmopQ9y0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ff80d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.users.51.la/21197527.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21197527.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash b2de494b0f84917fb5efb7fdcc37919a
b420c3c7ecd6b80533a145592db644c0cfeee4b2
3990da91eca6525dd0334329c49c2754faec36347ec39a9658719545859935e2
GET /21197527.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=66a49244238fe0605b3; path=/
HWWAFSESTIME=1663627427034; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 54915b7f481e70c76e882b657a25850a
333a15dbd0710339245402f584c7b6f8cacf461d
0c9baf9f6766cfe041d0a2444dcb97fca7d018d9e42f0825fc90e203f2724cb5
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 22:43:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 23 Sep 2022 19:25:04 GMT
ETag: "333a15dbd0710339245402f584c7b6f8cacf461d"
Last-Modified: Mon, 19 Sep 2022 19:25:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3482
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74d5d7aaee7f0b39-OSL
fmlb.netlbtu.com/upload/vod/2022/08-29/09/ajcizzdf2ie0952ajcizzdf2ie3022265.jpg
172.64.141.29200 OK 7.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/ajcizzdf2ie0952ajcizzdf2ie3022265.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b392ac599ddc3c0a7dec15899479cfb7
dc6eff9f7513102006042ef92ba3b58fca438cfc
f6d818ba1d70506ebdb7465b709c078fa3aeed84718a29dc355e1d187671a083
GET /upload/vod/2022/08-29/09/ajcizzdf2ie0952ajcizzdf2ie3022265.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 7235
cf-bgj: h2pri
etag: "2b84a1ff49bbd81:0"
last-modified: Mon, 29 Aug 2022 01:52:30 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UWsR9WLO32vwUPu3h0SLPVydBwdOA635MA8J3dP82Pw4gqi7v6JTvjzlIp0MpMLnPMCeJJQ6TOoROTqbdZWU7gZ3WmZYfMrAqT%2Fl4sHNczqKVtw0%2Fp4mlA%2F%2Ba%2BAyU1RhAJ3k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ef59d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-29/09/fufslxcbo2g0952fufslxcbo2g2822261.jpg
172.64.141.29200 OK 8.0 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-29/09/fufslxcbo2g0952fufslxcbo2g2822261.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ecdfe203679a3ef03a398f1b564dc8df
fd602d1b40a985418deac4295ffa157fe67b2e36
706dd09c726a0d96a9da5f975ad6a440745e3b35beac0bbaf83b59571a4329d7
GET /upload/vod/2022/08-29/09/fufslxcbo2g0952fufslxcbo2g2822261.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dsaudb9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 22:43:49 GMT
content-type: image/jpeg
content-length: 8022
cf-bgj: h2pri
etag: "839191fe49bbd81:0"
last-modified: Mon, 29 Aug 2022 01:52:28 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UzcRqioM3C2KBppf%2FgH7AlsPm2Wu9VPrwJqwuMR7EXbhpN5%2BejJuQnvenaZOXrCGmy4npOILQOO4tdmxe%2Ff%2F4uLeg5gsrH%2FeixwNEngQd%2BtLSgbufV2k1JdDnnUKPuu2sVep"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74d5d7a9ff7ed184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?dead79fb6e9718926fc13a8f5ca0d53c
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?dead79fb6e9718926fc13a8f5ca0d53c
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (625)
Hash 04b37d185ddad39a32510abebaea54f1
61304a56dc2cf1e14d34119dae3cf8b6bcbcb066
8a3802b0209ab8810ce1f6deb198d266af87ba5360ec3c350ed35fe36cd548a9
GET /hm.js?dead79fb6e9718926fc13a8f5ca0d53c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gg4l5.cn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11338
Content-Type: application/javascript
Date: Mon, 19 Sep 2022 22:43:50 GMT
Etag: 36f4c92b4e2b4385093121522f1158fb
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8BC0B6C4543ADFF2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=71319397&si=dead79fb6e9718926fc13a8f5ca0d53c&v=1.2.97&lv=1&sn=21436&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gg4l5.cn%2Findex.php&tt=%E9%80%9A%E5%8C%96%E5%A2%A9%E7%BC%80%E5%B7%A5%E8%B4%B8%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=71319397&si=dead79fb6e9718926fc13a8f5ca0d53c&v=1.2.97&lv=1&sn=21436&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gg4l5.cn%2Findex.php&tt=%E9%80%9A%E5%8C%96%E5%A2%A9%E7%BC%80%E5%B7%A5%E8%B4%B8%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=71319397&si=dead79fb6e9718926fc13a8f5ca0d53c&v=1.2.97&lv=1&sn=21436&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gg4l5.cn%2Findex.php&tt=%E9%80%9A%E5%8C%96%E5%A2%A9%E7%BC%80%E5%B7%A5%E8%B4%B8%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gg4l5.cn/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 19 Sep 2022 22:43:51 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5F50E46398BDCBC1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff