r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6921
Expires: Sun, 22 Jan 2023 10:20:42 GMT
Date: Sun, 22 Jan 2023 08:25:21 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8997fa58a7262e8fd559d64b40511a1b
0aa1c4365c28f45e4d7a8a234fbcf51cd009e083
1580d1145f125c765e40e5983cb4bb4e2424010d2920a25ea7da992485da0dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580D1145F125C765E40E5983CB4BB4E2424010D2920A25EA7DA992485DA0DEA"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3023
Expires: Sun, 22 Jan 2023 09:15:44 GMT
Date: Sun, 22 Jan 2023 08:25:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 07:42:30 GMT
content-type: application/json
age: 2571
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17805
Expires: Sun, 22 Jan 2023 13:22:06 GMT
Date: Sun, 22 Jan 2023 08:25:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Y6yskyqbBgHc5h+Iso5J20I1q3ReB334GBI0rNW8KXtPkM1zJKR/T2wP0HQQLT7l+JriIl4GCxI=
x-amz-request-id: A2FZSM0CDAWBTBZY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 07:47:12 GMT
age: 2289
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 08:25:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
3721jj.com/
154.12.44.212301 Moved Permanently 0 B IP 154.12.44.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 08:25:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.3721jj.com/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 07:48:58 GMT
age: 2183
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 29
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 08:25:21 GMT
Last-Modified: Sun, 22 Jan 2023 08:24:52 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
50.112.247.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 50.112.247.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ABS6RTleQwzbCj8rkbZMQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: c/1Ca+66cO8zubnDt+i13YXazMg=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11173
Expires: Sun, 22 Jan 2023 11:31:36 GMT
Date: Sun, 22 Jan 2023 08:25:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11173
Expires: Sun, 22 Jan 2023 11:31:36 GMT
Date: Sun, 22 Jan 2023 08:25:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11173
Expires: Sun, 22 Jan 2023 11:31:36 GMT
Date: Sun, 22 Jan 2023 08:25:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc284e6ec-6c43-4a8d-a291-83519d5a4d4c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc284e6ec-6c43-4a8d-a291-83519d5a4d4c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f86ec004a2042b4030cd2cce2bf1e1d
e3c00dcc55f095f03a6f4505960ac1cee0b3877c
64b5084d4145d5931af05c335d21e31e75db30b1f9e8a2efd92fc4cd0aa7ac07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc284e6ec-6c43-4a8d-a291-83519d5a4d4c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8221
x-amzn-requestid: 02db02af-4f05-450d-9370-0e7a9dda6948
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHOEWGUMoAMF2QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5d4e-050e7cdf21878aa159f36d0b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:46:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VtzsQ7NI9ODiQfxm_EaSDsizPQhDOSH3O23UEaHg1KI9bg8imLdOnw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:16 GMT
age: 38227
etag: "e3c00dcc55f095f03a6f4505960ac1cee0b3877c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e5cb3e8d03fffcd307c5ebaef08167
1a813821d15afd416b82c3343a7920a0ffc909cb
84a81b6f63faa3f17a20222b8fa389761a0fb0512a1549b4848849c0425539c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff250419d-5512-4c6b-9460-69d68f74273d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7656
x-amzn-requestid: 6e1ebd9d-6ef0-48d0-a891-51bbf914ed42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNlYHaUoAMFr-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c88-479e8fb72b0b248d020d9e77;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DaWs0RT0IupgLoLeQZYbdYdvYFd02bXrdQBFYpqLxwmKf1bKhh_wgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
etag: "1a813821d15afd416b82c3343a7920a0ffc909cb"
content-type: image/jpeg
age: 38237
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb253a292-08cb-455a-bf4c-63bdca08af64.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb253a292-08cb-455a-bf4c-63bdca08af64.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ec85cf23f6ed6a70e62e17998dfcede
2a690f14cf97f33da2c4f4b21c737a7ca37665b4
ae3cedd8f51f9ed2d996f1d75e7288802d68fa3c27d928934311e4d8821940cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb253a292-08cb-455a-bf4c-63bdca08af64.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7609
x-amzn-requestid: 86dec496-ff1b-4db8-9bcb-12275f6feeb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNkBGiOIAMFaCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c7f-16c24501673bc2161c1e8a3b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EIRH5l-dSShdZbMvwSEE8jKooGny-prLtbXwx8ZNUi0Wfj4GItKV7g==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 22:08:36 GMT
age: 37007
etag: "2a690f14cf97f33da2c4f4b21c737a7ca37665b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54bb2c2439cbf0cefc3075f25576f161
e4e506d7acc877b266c18ae6da3b948e0d41bb1e
8cfef01c8eea67086fdea9865d760f9ed1ecc15dc42f3b2c94fc85d609a31aa2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b9c3b02-6a9e-471d-9d0c-2b50255f00f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9334
x-amzn-requestid: 23f9071b-5274-4c6a-9a4a-d63ea74c7483
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWQETCoAMFdjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-393e62854ba77f783f142985;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BWc9_KsIp1FH10PJZFoIteQrb0Q8cfqRN8RiynsqbHyFUHhDCxwqIw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:48:06 GMT
age: 38237
etag: "e4e506d7acc877b266c18ae6da3b948e0d41bb1e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45b3e2b-1687-4d15-8241-c1b5422b7597.png
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45b3e2b-1687-4d15-8241-c1b5422b7597.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc0cd46a7749f64fba19f6be5f2de43
67b9c7ba8702b695036e253a20ab7b86c1725143
afbb5f9024e0397977575099fdbfdb32f06521c20556cb0b03501d822d2cc8cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb45b3e2b-1687-4d15-8241-c1b5422b7597.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 17237
x-amzn-requestid: 6c4b292b-633d-4063-8342-5022165de1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFObNH_eIAMFb0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb9114-5bf2228c7286c7fc3fc5dda4;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:15:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fvJtn3hDeRfp-0EcaTKl3rlCUZNEX6Kx-aAlRXQTL5ezw-oPfg90kg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 07:48:10 GMT
age: 2233
etag: "67b9c7ba8702b695036e253a20ab7b86c1725143"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RlbJymJhU6Ti5RZCSIvPzloackAiBEBGapKI440u4ZIfB5FYBNugLw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 03:24:49 GMT
age: 18034
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.3721jj.com/
154.12.44.212200 OK 36 kB IP 154.12.44.212:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f5acf846dcda5b9a5568e8910bcd65fe
84ed08f5c3ab84f6e3d3fa139bda0fa0a72d93d7
c4c7ce2359b7ae4dcd05948c70441b660927dd64d2c3c479b04472ef20a60f62
GET / HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 36119
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
www.3721jj.com/systatic/js/business.js
154.12.44.212200 OK 337 B URL HTTP/1.1 www.3721jj.com/systatic/js/business.js
IP 154.12.44.212:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 33662808d7de378e4a500a46ffdea8a6
4f6f209f61b8f83f197a646a7e4138bb030fec9b
b1a4e045571f62717c4d5cbf2428df2e629d2d2409584dd2f0357118683b32d6
GET /systatic/js/business.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Content-Length: 337
Last-Modified: Fri, 16 Sep 2022 06:39:44 GMT
Connection: keep-alive
ETag: "63241a30-151"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.3721jj.com/systatic/css/seyuav-site.css
154.12.44.212200 OK 2.7 kB URL HTTP/1.1 www.3721jj.com/systatic/css/seyuav-site.css
IP 154.12.44.212:0
File type ASCII text, with CRLF line terminators
Hash b58157c032abec42778783b0fe7b1153
39331ea49df8266bb4d5c2b95f7ecf618948047b
c2dd063f94faf6bf79c8adee7eb2e6bb8c7d633e369049f72ea060be1ba79897
GET /systatic/css/seyuav-site.css HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: text/css
Last-Modified: Tue, 12 Jul 2022 10:05:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62cd475e-2935"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/css/seyuav-color.css
154.12.44.212200 OK 1.7 kB URL HTTP/1.1 www.3721jj.com/systatic/css/seyuav-color.css
IP 154.12.44.212:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 8215fc24a9c001a2c22b9c0420bbb6be
8d02e9b11a511234c2802e09d49595fab6f45cee
2c6be1541d2490c075204d3a85fd43383e1a071e5406518119798ae56e4468e7
GET /systatic/css/seyuav-color.css HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: text/css
Last-Modified: Wed, 19 Jan 2022 14:43:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61e82384-1560"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/css/main.css
154.12.44.212200 OK 954 B URL HTTP/1.1 www.3721jj.com/systatic/css/main.css
IP 154.12.44.212:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 5f1e9a97d965e36fe6fd9614348633ac
544e33cb44496a2a8e2899314b80228c83e161a9
1e6a005e7aca6d44de75b4541224026456b2bdf04ef6eae67357b62b805a888a
GET /systatic/css/main.css HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: text/css
Last-Modified: Thu, 20 Jan 2022 06:07:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61e8fc0f-bc7"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/seyuav-ui.js
154.12.44.212200 OK 5.3 kB URL HTTP/1.1 www.3721jj.com/systatic/js/seyuav-ui.js
IP 154.12.44.212:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash c862a0e994a1a8c237f05792471f0f8f
6af91f9c0dd1973d78b1c8f73f5248753c2385a9
38b49ed7745bd424341543a12be060801eff756851790a4d6fa957444b17ca0a
GET /systatic/js/seyuav-ui.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Last-Modified: Sun, 01 May 2022 04:35:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"626e0df4-4016"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/tj.js
154.12.44.212200 OK 252 B URL HTTP/1.1 www.3721jj.com/systatic/js/tj.js
IP 154.12.44.212:0
Hash e07b2258ae61f3ced6de6591c3e5f4de
c6d527fa7449538a51e4684fba6119415d0c0c42
56fb29c61ed6995eebcc4ea52ebcb382cad215706e123efb25d9ef3fbc73dc43
GET /systatic/js/tj.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Content-Length: 252
Last-Modified: Sun, 13 Nov 2022 07:44:05 GMT
Connection: keep-alive
ETag: "6370a045-fc"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.3721jj.com/systatic/js/jquery.autocomplete.js
154.12.44.212200 OK 6.4 kB URL HTTP/1.1 www.3721jj.com/systatic/js/jquery.autocomplete.js
IP 154.12.44.212:0
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text
Hash ab4e6698a8a7d810a8aab0d0dc641939
ef7a6ba2ed5c339c6684eb49a6e67c2dfce0b38e
ca54e84102f467653b49516960e4b41bb3b7a67de20afc64dad092fc5ce30e53
GET /systatic/js/jquery.autocomplete.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Last-Modified: Wed, 19 Jan 2022 09:33:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61e7dae3-6288"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/gg5166/float.js
154.12.44.212200 OK 0 B URL HTTP/1.1 www.3721jj.com/gg5166/float.js
IP 154.12.44.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gg5166/float.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Content-Length: 0
Last-Modified: Sat, 02 Jul 2022 13:53:48 GMT
Connection: keep-alive
ETag: "62c04dec-0"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.3721jj.com/systatic/js/jquery.min.js
154.12.44.212200 OK 34 kB URL HTTP/1.1 www.3721jj.com/systatic/js/jquery.min.js
IP 154.12.44.212:0
File type ASCII text, with very long lines (65451)
Hash bf13a6b8435f80e19d7827f205845b59
44dbd2aadc6e3ad655f88d469ad53268443bf781
ddc9353b24962d31baeffabe4aa408e001f282ab19d15b2e887a0243fdf358d0
GET /systatic/js/jquery.min.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Last-Modified: Wed, 19 Jan 2022 08:55:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61e7d20c-1538f"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/header.js
154.12.44.212200 OK 308 B URL HTTP/1.1 www.3721jj.com/systatic/js/header.js
IP 154.12.44.212:0
File type ASCII text, with CRLF line terminators
Hash dcd7a3297a55c854cd4be7ee35ef4db3
1c9fa596fbfb4ec86dccbee1e6aa328163b0c321
35fd2825f8059be5d14fe94521b281e246095f8a40c25de8a86f619278a5d369
GET /systatic/js/header.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Content-Length: 308
Last-Modified: Fri, 26 Aug 2022 07:44:29 GMT
Connection: keep-alive
ETag: "630879dd-134"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.3721jj.com/systatic/js/seyuav-site.js
154.12.44.212200 OK 41 kB URL HTTP/1.1 www.3721jj.com/systatic/js/seyuav-site.js
IP 154.12.44.212:0
File type ASCII text, with very long lines (8746)
Hash fd5571de47727ced04138c19c17854ff
ba66344c6375b3eccbff18aec87646bba4356527
031ab5316f441e8084621e2ae4c367c98ad5a3393f4bcfe58fbe7bff9064c3d2
GET /systatic/js/seyuav-site.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Last-Modified: Wed, 19 Jan 2022 08:58:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61e7d2b1-1f8cf"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/all-nav.js
154.12.44.212200 OK 559 B URL HTTP/1.1 www.3721jj.com/systatic/js/all-nav.js
IP 154.12.44.212:0
Hash da313057dfe50f2932a4ee81abc41e4e
9f8951dd2be1fb53c7db8df843db3dd1b929849a
64b0d3fdbe73cccdf9f0a54d51db6cf185536ce1978293063f39e402a813de57
GET /systatic/js/all-nav.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Last-Modified: Sun, 11 Dec 2022 05:43:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63956e05-1592"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/pc-nav.js
154.12.44.212200 OK 302 B URL HTTP/1.1 www.3721jj.com/systatic/js/pc-nav.js
IP 154.12.44.212:0
File type HTML document, Unicode text, UTF-8 text
Hash 1492efdf9c47d08094109d2617469305
b53be4d973145fd7a33ad2a43fea83dea0c31c5b
235efdd197e7626be25714218e179942ce884545100d252e3f3432ed45cdf43f
GET /systatic/js/pc-nav.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Last-Modified: Sun, 11 Dec 2022 05:43:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63956e11-502"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/search-dropdown.js
154.12.44.212200 OK 654 B URL HTTP/1.1 www.3721jj.com/systatic/js/search-dropdown.js
IP 154.12.44.212:0
Hash c2e4e856a7a8b2f8ff7bac5ec8198cdb
f8d58f9754e43417e84731bb22523a8ba5987e19
bad0e1fc8c2674f956c12915c92711c8077bb3390370765618ce6d05cefc520f
GET /systatic/js/search-dropdown.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:23 GMT
Content-Type: application/javascript
Last-Modified: Sun, 11 Dec 2022 05:43:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63956e0c-b2b"
Expires: Sun, 22 Jan 2023 20:25:23 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/gg5166/ggs16.js
154.12.44.212200 OK 1.1 kB URL HTTP/1.1 www.3721jj.com/gg5166/ggs16.js
IP 154.12.44.212:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (507)
Hash ad1b08e0a7459dafa40a547f636ac77d
27fd0441410cff7bd2753107ecfc7db298cfb685
91102df1d1682c3b25a889a5b39567bbbdfe1889ffd9b7a94edaacc5eb5d800d
GET /gg5166/ggs16.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: application/javascript
Last-Modified: Fri, 13 Jan 2023 12:01:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63c14804-11bd"
Expires: Sun, 22 Jan 2023 20:25:24 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/gg5166/ggshang.php
154.12.44.212200 OK 140 B URL HTTP/1.1 www.3721jj.com/gg5166/ggshang.php
IP 154.12.44.212:0
File type ASCII text, with no line terminators
Hash 66bc9a122ebf9b134af5214683e44e8c
5da0a9f1865381e8980da4ebfd09ebd461b1d37e
12b93af1b7b0a3857a757bf62f0d1cb510a0e9d21f47ff9e1410d10b716e77e1
GET /gg5166/ggshang.php HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.3721jj.com/gg5166/syad11.js
154.12.44.212200 OK 479 B URL HTTP/1.1 www.3721jj.com/gg5166/syad11.js
IP 154.12.44.212:0
File type HTML document, Unicode text, UTF-8 text
Hash 237ff099be63f1c60436d584734821ee
e82572675c9c33af4c7d90e5fe6fd7d84630fbbb
73de8485ff6100375bf27b4e8b3e25306dfb6b83b3e7c5d94f916c6ddc983c83
GET /gg5166/syad11.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: application/javascript
Last-Modified: Sun, 15 Jan 2023 12:10:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63c3ed46-721"
Expires: Sun, 22 Jan 2023 20:25:24 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/css/seyuav-font.css
154.12.44.212200 OK 7.8 kB URL HTTP/1.1 www.3721jj.com/systatic/css/seyuav-font.css
IP 154.12.44.212:0
File type ASCII text, with very long lines (30763)
Hash 3b636da603f5f7a4a0814f1b918f5e1e
00cb1201292b49c15788e1d8d89315b97fe599e7
ad639829f0392e2b65fce45984a6dfad9d31bd8e933323852569603f006ba34f
GET /systatic/css/seyuav-font.css HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: text/css
Last-Modified: Wed, 19 Jan 2022 10:05:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61e7e27a-78ce"
Expires: Sun, 22 Jan 2023 20:25:24 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/bottom-txt.js
154.12.44.212200 OK 481 B URL HTTP/1.1 www.3721jj.com/systatic/js/bottom-txt.js
IP 154.12.44.212:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash eaf82c4d28d185eeb20e8aa4692f7221
abf9c63beb780621308912e955ee834639f19e61
393c6845c9d6f7f29b3d141eae87b5a5798a7c31b7a9f30c370e656d79da7802
GET /systatic/js/bottom-txt.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: application/javascript
Content-Length: 481
Last-Modified: Fri, 11 Feb 2022 08:21:41 GMT
Connection: keep-alive
ETag: "62061c95-1e1"
Expires: Sun, 22 Jan 2023 20:25:24 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
www.3721jj.com/systatic/css/seyuav-ui.css
154.12.44.212200 OK 8.7 kB URL HTTP/1.1 www.3721jj.com/systatic/css/seyuav-ui.css
IP 154.12.44.212:0
File type assembler source, ASCII text, with very long lines (1893), with CRLF line terminators
Hash d5f5d792d5e9e1eaca3332e28b10d97a
b5491e9838b1f4e2ced4612b4acb8cf9d034bb10
4c6c22268904614e0eba9b8302c8ad4a3dcc37e1206effaed396879817190fab
GET /systatic/css/seyuav-ui.css HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: text/css
Last-Modified: Fri, 16 Sep 2022 06:42:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63241ac0-8a9e"
Expires: Sun, 22 Jan 2023 20:25:24 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/js/51tj.js
154.12.44.212200 OK 2.4 kB URL HTTP/1.1 www.3721jj.com/systatic/js/51tj.js
IP 154.12.44.212:0
File type ASCII text, with very long lines (4898), with no line terminators
Hash 5a01cf435c867a9c1f165789290f5366
a832b38e9e966cb7ef7d8d475c0c9fa332725cd0
da62fabc592f590a43c60f54d24f2ca6f15698daf4cfc6ad28f7301d80d309bc
GET /systatic/js/51tj.js HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: application/javascript
Last-Modified: Sun, 13 Nov 2022 07:43:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6370a036-1322"
Expires: Sun, 22 Jan 2023 20:25:24 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
www.3721jj.com/systatic/picture/sylogo_wap.gif
154.12.44.212200 OK 5.9 kB URL HTTP/1.1 www.3721jj.com/systatic/picture/sylogo_wap.gif
IP 154.12.44.212:0
File type GIF image data, version 89a, 200 x 60\012- data
Hash 96453c0cc14f8ddc5b7fd80965082f49
a43f957780abdc4df48f3d9ab7e850ed6f693abd
097bffe0269ed8b364eac68605d6b5314b211eaf4fca02896a51a6695a35b10b
GET /systatic/picture/sylogo_wap.gif HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: image/gif
Content-Length: 5881
Last-Modified: Wed, 19 Jan 2022 09:22:35 GMT
Connection: keep-alive
ETag: "61e7d85b-16f9"
Expires: Tue, 21 Feb 2023 08:25:24 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.3721jj.com/systatic/picture/sylogo.gif
154.12.44.212200 OK 5.9 kB URL HTTP/1.1 www.3721jj.com/systatic/picture/sylogo.gif
IP 154.12.44.212:0
File type GIF image data, version 89a, 200 x 60\012- data
Hash 96453c0cc14f8ddc5b7fd80965082f49
a43f957780abdc4df48f3d9ab7e850ed6f693abd
097bffe0269ed8b364eac68605d6b5314b211eaf4fca02896a51a6695a35b10b
GET /systatic/picture/sylogo.gif HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: image/gif
Content-Length: 5881
Last-Modified: Wed, 19 Jan 2022 09:22:34 GMT
Connection: keep-alive
ETag: "61e7d85a-16f9"
Expires: Tue, 21 Feb 2023 08:25:24 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.3721jj.com/gg5166/ggshang.html
154.12.44.212200 OK 3.9 kB URL HTTP/1.1 www.3721jj.com/gg5166/ggshang.html
IP 154.12.44.212:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 8a350fdde75a20e2a88383fa0bfc6ea9
17e57fbabbe3fafeaa4a2f4f44ddf5f00f2f6f8d
c67c5a529c524ecb3ff99519a651655e8d026107ca71ba4a59a02a803a13808c
GET /gg5166/ggshang.html HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: text/html
Last-Modified: Sun, 22 Jan 2023 05:52:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63cccf18-3d8b"
Content-Encoding: gzip
www.3721jj.com/systatic/images/play.png
154.12.44.212200 OK 2.5 kB URL HTTP/1.1 www.3721jj.com/systatic/images/play.png
IP 154.12.44.212:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 10a11cc31a1fe5126ae5f1e359679cbb
7d30dcc97bb4aed52948a5b040b4fa63149a405e
82b4aac50bdda11a5069442a4a6f593f4f3debbc2a4499b919d61691301c5537
GET /systatic/images/play.png HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/systatic/css/seyuav-ui.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: image/png
Content-Length: 2457
Last-Modified: Wed, 19 Jan 2022 10:10:04 GMT
Connection: keep-alive
ETag: "61e7e37c-999"
Expires: Tue, 21 Feb 2023 08:25:24 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.3721jj.com/systatic/images/load.png
154.12.44.212200 OK 12 kB URL HTTP/1.1 www.3721jj.com/systatic/images/load.png
IP 154.12.44.212:0
File type PNG image data, 300 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash a0f1673128fefcbdf0a7085df3a24bcf
ea55e317f2b629240f419cf84596030b8fe4cc9d
2859ca489ef87dca26cae5d522674a6b168849ff01ec7ee6cb23c3ccb89624dc
GET /systatic/images/load.png HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: image/png
Content-Length: 12013
Last-Modified: Wed, 19 Jan 2022 10:10:06 GMT
Connection: keep-alive
ETag: "61e7e37e-2eed"
Expires: Tue, 21 Feb 2023 08:25:24 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.3721jj.com/ads/syad.png
154.12.44.212200 OK 14 kB URL HTTP/1.1 www.3721jj.com/ads/syad.png
IP 154.12.44.212:0
File type PNG image data, 300 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 024dcce6d5a203a9c8b610a684fb48fe
524c9566163587532bcc0005c3fdc32f7d099038
1f91c1c9a5888abed5ee0ef5a701613b87358adf66b5bae94e5f31d1b192f111
GET /ads/syad.png HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: image/png
Content-Length: 13568
Last-Modified: Wed, 15 Jun 2022 10:00:50 GMT
Connection: keep-alive
ETag: "62a9add2-3500"
Expires: Tue, 21 Feb 2023 08:25:24 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
www.3721jj.com/systatic/fonts/fontawesome-webfont.woff2
154.12.44.212200 OK 77 kB URL HTTP/1.1 www.3721jj.com/systatic/fonts/fontawesome-webfont.woff2
IP 154.12.44.212:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /systatic/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.3721jj.com/systatic/css/seyuav-font.css
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:24 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Fri, 14 Jan 2022 11:48:04 GMT
Connection: keep-alive
ETag: "61e162f4-12d68"
Accept-Ranges: bytes
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 650c64ade3153f22b3b0884b7331671b
998b857d4c66bc4d1e44df0de7227579818e1e9c
d060c34774631a8bc864250313c9a7a8c1d4dc2880502a229a8a2f2c57af5080
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D060C34774631A8BC864250313C9A7A8C1D4DC2880502A229A8A2F2C57AF5080"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14710
Expires: Sun, 22 Jan 2023 12:30:35 GMT
Date: Sun, 22 Jan 2023 08:25:25 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d3b87cb379712ec40b7691ca1e0592ae
a31d2583c8f80185da0180181b18680a261c0f90
8f91788d5c506f471e5ad6bc55464e5b1532798f9f808cb30659a06dd070c643
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F91788D5C506F471E5AD6BC55464E5B1532798F9F808CB30659A06DD070C643"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2167
Expires: Sun, 22 Jan 2023 09:01:32 GMT
Date: Sun, 22 Jan 2023 08:25:25 GMT
Connection: keep-alive
s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
104.26.1.190200 OK 9.2 kB URL HTTP/2 s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
IP 104.26.1.190:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /2022/05/21/zAxwCKkLnFjlaQ8.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 08:25:25 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Sat, 21 May 2022 11:42:12 GMT
etag: "6288d014-23ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gNMkP0XvE4GgQCCwf1M8r%2F2XQReBYxaJhX%2B%2BrNHuQauLdxa33Ss%2FY6rFL8fHU1VkOBzTlsJ%2BkmH6TxecCEDjatbGi%2BDHc01RUd9OzM4rIldX53Bn7cGB255lbjZU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78d6e6178b7e1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ia.51.la/go1?id=21253425&rt=1674375923496&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&ing=1&ekc=&sid=1674375923496&tt=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF_99%25E8%25A7%2586%25E9%25A2%2591%25E5%259B%25BD%25E4%25BA%25A7%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E6%2592%25AD%25E6%2594%25BE&kw=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF_99%25E8%25A7%2586%25E9%25A2%2591%25E5%259B%25BD%25E4%25BA%25A7%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E6%2592%25AD%25E6%2594%25BE%252C%25E9%2587%258E%25E8%258A%25B1%25E8%25A7%2586%25E9%25A2%2591%25E9%25AB%2598%25E6%25B8%2585%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B1%252C%25E5%25A5%25B3%25E5%25A5%25B3%25E4%25BA%2592%25E7%25A3%25A8%25E4%25BA%2592%25E5%2596%25B7%25E6%25B0%25B4%25E9%25AB%2598%25E6%25BD%25AEles%25E5%2591%25BB%25E5%2590%259F%252C%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%25BA%25E5%25A6%25BBav%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E7%25AC%25AC%25E4%25B8%2580%252C%25E6%2588%2590%25E4%25BA%25BA%25E6%258B%258D%25E6%258B%258D%25E6%258B%258D%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591%25E7%25BD%2591%25E7%25AB%2599%252C%25E7%258B%25A0%25E7%258B%25A0&cu=http%253A%252F%252Fwww.3721jj.com%252F&pu=
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=21253425&rt=1674375923496&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&ing=1&ekc=&sid=1674375923496&tt=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF_99%25E8%25A7%2586%25E9%25A2%2591%25E5%259B%25BD%25E4%25BA%25A7%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E6%2592%25AD%25E6%2594%25BE&kw=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF_99%25E8%25A7%2586%25E9%25A2%2591%25E5%259B%25BD%25E4%25BA%25A7%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E6%2592%25AD%25E6%2594%25BE%252C%25E9%2587%258E%25E8%258A%25B1%25E8%25A7%2586%25E9%25A2%2591%25E9%25AB%2598%25E6%25B8%2585%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B1%252C%25E5%25A5%25B3%25E5%25A5%25B3%25E4%25BA%2592%25E7%25A3%25A8%25E4%25BA%2592%25E5%2596%25B7%25E6%25B0%25B4%25E9%25AB%2598%25E6%25BD%25AEles%25E5%2591%25BB%25E5%2590%259F%252C%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%25BA%25E5%25A6%25BBav%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E7%25AC%25AC%25E4%25B8%2580%252C%25E6%2588%2590%25E4%25BA%25BA%25E6%258B%258D%25E6%258B%258D%25E6%258B%258D%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591%25E7%25BD%2591%25E7%25AB%2599%252C%25E7%258B%25A0%25E7%258B%25A0&cu=http%253A%252F%252Fwww.3721jj.com%252F&pu=
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21253425&rt=1674375923496&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&ing=1&ekc=&sid=1674375923496&tt=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF_99%25E8%25A7%2586%25E9%25A2%2591%25E5%259B%25BD%25E4%25BA%25A7%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E6%2592%25AD%25E6%2594%25BE&kw=%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E7%25BB%25BC%25E5%2590%2588%25E8%2589%25B2%25E5%25A4%25A9%25E5%25A4%25A9%25E4%25B9%2585%25E4%25B9%2585%25E5%25A9%25B7%25E5%25A9%25B7_%25E6%2597%25A5%25E9%259F%25A9%25E7%25B6%259C%25E5%2590%2588%25E7%25BD%2591_%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF_99%25E8%25A7%2586%25E9%25A2%2591%25E5%259B%25BD%25E4%25BA%25A7%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2582%25E7%259C%258B%25E6%2592%25AD%25E6%2594%25BE%252C%25E9%2587%258E%25E8%258A%25B1%25E8%25A7%2586%25E9%25A2%2591%25E9%25AB%2598%25E6%25B8%2585%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2582%25E7%259C%258B1%252C%25E5%25A5%25B3%25E5%25A5%25B3%25E4%25BA%2592%25E7%25A3%25A8%25E4%25BA%2592%25E5%2596%25B7%25E6%25B0%25B4%25E9%25AB%2598%25E6%25BD%25AEles%25E5%2591%25BB%25E5%2590%259F%252C%25E4%25B9%2585%25E4%25B9%2585%25E4%25BA%25BA%25E5%25A6%25BBav%25E6%2597%25A0%25E7%25A0%2581%25E4%25B8%25AD%25E6%2596%2587%25E5%25AD%2597%25E5%25B9%2595%25E7%25AC%25AC%25E4%25B8%2580%252C%25E6%2588%2590%25E4%25BA%25BA%25E6%258B%258D%25E6%258B%258D%25E6%258B%258D%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591%25E7%25BD%2591%25E7%25AB%2599%252C%25E7%258B%25A0%25E7%258B%25A0&cu=http%253A%252F%252Fwww.3721jj.com%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
HTTP/1.1 200
Server: CloudWAF
Date: Sun, 22 Jan 2023 08:25:25 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=9fb82ded8d9a583c77e; path=/
HWWAFSESTIME=1674375920671; path=/
kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
172.83.155.45200 OK 99 kB URL HTTP/2 kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Hash 5057019842032cd72cc53fc9db8984cb
74c23172056bd1ad95120490f8b9a72c78d0bbfc
0b2c55edc45ae48aa65a39d3af468422e36476fab2a6c30e37d40bc9df0cba65
GET /241ffcf0a5007067dad148a90c317e01.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 08:25:25 GMT
content-type: image/gif
content-length: 99372
last-modified: Tue, 10 Jan 2023 09:17:01 GMT
etag: "63bd2d0d-1842c"
expires: Sun, 22 Jan 2023 20:25:25 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 16516
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=805qOdGly9PZv2yJnww7cBphigafsRz5TjFYMEKAITUGNEPDjMmpl9%2FbS%2FGY2NpxTW6w%2BT2CYYzi6PzGTkBOD%2FkWQjWFwsOEd2Gn2JOQJj1FQRX9HIcDAQ7iikix"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 7875e7c30b80841f-YVR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u22055.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
13.227.254.86200 OK 288 kB URL HTTP/2 u22055.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
IP 13.227.254.86:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 288 kB (288397 bytes)
Hash e17bb688cfdae836ea866c47e92a022a
d748bb7b13696141ba768280a21d3dac482e3a0c
cb9affdc029bd6deb908ab9786fad62113c4ba28d2e9a8926cbed0c5e2c2aa6a
GET /fee6dc0783e7085f6b3452a1155d4b4a.gif HTTP/1.1
Host: u22055.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 288397
date: Tue, 10 Jan 2023 07:52:07 GMT
last-modified: Sat, 24 Dec 2022 08:23:21 GMT
etag: "e17bb688cfdae836ea866c47e92a022a"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 003b6042285e886f3f4d6afd190f633c.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: EpLdOgEyT3eqZpPHkBbC7q18jPM9fKAMHVMS8LYPsQ7sDmlqYJsZRg==
age: 1038799
X-Firefox-Spdy: h2
www.3721jj.com/systatic/images/syavicon.png
154.12.44.212200 OK 5.4 kB URL HTTP/1.1 www.3721jj.com/systatic/images/syavicon.png
IP 154.12.44.212:0
File type PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 99706a3cbca811a3145f11871d0c922a
8b06ea43057c43a6b9fe3246e99828513a97f5d6
50919ccfcf335e67de511c98f57cd67fe1a37d6a1c9240a85766a4979ab8af8c
GET /systatic/images/syavicon.png HTTP/1.1
Host: www.3721jj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.3721jj.com/
Cookie: __tins__21253425=%7B%22sid%22%3A%201674375923496%2C%20%22vd%22%3A%201%2C%20%22expires%22%3A%201674377723496%7D; __51cke__=; __51laig__=1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Jan 2023 08:25:26 GMT
Content-Type: image/png
Content-Length: 5446
Last-Modified: Wed, 19 Jan 2022 09:26:18 GMT
Connection: keep-alive
ETag: "61e7d93a-1546"
Expires: Tue, 21 Feb 2023 08:25:26 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
u25011.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
13.227.254.116200 OK 864 kB URL HTTP/2 u25011.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 13.227.254.116:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: u25011.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 864004
last-modified: Mon, 19 Dec 2022 09:06:34 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 21 Jan 2023 22:37:19 GMT
etag: "d2c820747a9b9b8c3abaab0775436ab7"
x-cache: Hit from cloudfront
via: 1.1 ce37b125bad795f4918cd50b3f95260a.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BxmPL6LSPBbgOW-Ew0lZoheF8bBUZYi4p2_6bgJ5f2mxN330a2wyIQ==
age: 35287
X-Firefox-Spdy: h2
u22077.com/bb7f858c0dad171784517c02e7bff891.gif
13.227.254.96200 OK 391 kB URL HTTP/2 u22077.com/bb7f858c0dad171784517c02e7bff891.gif
IP 13.227.254.96:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 391 kB (390953 bytes)
Hash f849b3b0e9c6fdb31c56074c38c5123c
78200f076e1512a0f4b6f56f37d9f7ad355f0ad7
f9d4b673a595159370aa060f5d8b025842504116efc5b85269129a6c02110f6c
GET /bb7f858c0dad171784517c02e7bff891.gif HTTP/1.1
Host: u22077.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 390953
last-modified: Sat, 17 Dec 2022 12:33:46 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 21 Jan 2023 19:52:48 GMT
etag: "f849b3b0e9c6fdb31c56074c38c5123c"
x-cache: Hit from cloudfront
via: 1.1 0fa3b62de49c01129844acc24e390b56.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XKrwnfFW0Wuz_ZpK8rUTCObcNaOhtVGyEx7OwNzb0MF-sFLS1bCB3A==
age: 45158
X-Firefox-Spdy: h2
u23022.com/92f0c144d76dd785f7c04f84ae149b33.gif
13.227.254.54200 OK 354 kB URL HTTP/2 u23022.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP 13.227.254.54:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 354 kB (354278 bytes)
Hash c6442fd82dd00372e745f394887172f2
dc8ce1d9b050eb7b70c1e47e815169c8ffdc77b9
813a5a49ef0682cdb74754e84f7b5d0159392b1fef69ec06e2875388e97d8843
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: u23022.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 354278
last-modified: Mon, 19 Dec 2022 07:47:28 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 21 Jan 2023 17:18:07 GMT
etag: "c6442fd82dd00372e745f394887172f2"
x-cache: Hit from cloudfront
via: 1.1 20bb709a751569d186bca51c132b4c86.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: OdO457QY2qQ2z3vmffRoYC9Kw1oBBmqKtjW5aHPFOvJ6zRetg57RpA==
age: 54439
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?6cf73648427a4674fcc0e39980d5a1e3
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?6cf73648427a4674fcc0e39980d5a1e3
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash a7c4d4df7a7038e90c7bad8b46a0c9b0
63085dc1399508cc04bc51385be8633c4be5c6ab
211cd22d2b404e4622747718807b85911309d1b030cd3fde3ccae652e4019b1a
GET /hm.js?6cf73648427a4674fcc0e39980d5a1e3 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Sun, 22 Jan 2023 08:25:26 GMT
Etag: 720765daf870271e90389c30bea1d023
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=88D11AD4C9F7E144; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
taiwtp1.com/xin/200200sas.gif
220.128.218.220200 OK 694 kB URL HTTP/2 taiwtp1.com/xin/200200sas.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 200 x 200\012- data
Size 694 kB (693471 bytes)
Hash e6ff7b0afb00d39bca2032b100e871ec
f3da5b9bd4d1769ed482bf6f23c3b05ded824d63
41d7266ed35337d77b04bad32c7ec3c4b44e7a1707f6c6f21c8e6bc4c9f3f252
GET /xin/200200sas.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 08:18:31 GMT
content-type: image/gif
content-length: 693471
last-modified: Sat, 26 Nov 2022 10:45:28 GMT
etag: "6381ee48-a94df"
expires: Tue, 21 Feb 2023 08:18:31 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash e108c9ffd5ef412dca5914d62307b6e3
33c447217dd216bcad3241a8f00bdffd913df504
40e42d2e2fc92c4ebeaa5127d0b92fc483a54a9555deb78e5ff3f089fb833af1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=103288
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 08:25:27 GMT
Etag: "63cbe36f-2d7"
Expires: Mon, 23 Jan 2023 13:06:55 GMT
Last-Modified: Sat, 21 Jan 2023 13:06:55 GMT
Server: nginx
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash e108c9ffd5ef412dca5914d62307b6e3
33c447217dd216bcad3241a8f00bdffd913df504
40e42d2e2fc92c4ebeaa5127d0b92fc483a54a9555deb78e5ff3f089fb833af1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=103288
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 08:25:27 GMT
Etag: "63cbe36f-2d7"
Expires: Mon, 23 Jan 2023 13:06:55 GMT
Last-Modified: Sat, 21 Jan 2023 13:06:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 727
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1302060663&si=6cf73648427a4674fcc0e39980d5a1e3&v=1.3.0&lv=1&sn=22211&r=0&ww=1280&u=http%3A%2F%2Fwww.3721jj.com%2F&tt=%E8%89%B2%E5%A4%A9%E5%A4%A9%E7%BB%BC%E5%90%88%E8%89%B2%E5%A4%A9%E5%A4%A9%E4%B9%85%E4%B9%85%E5%A9%B7%E5%A9%B7_%E6%97%A5%E9%9F%A9%E7%B6%9C%E5%90%88%E7%BD%91_%E7%B2%BE%E5%93%81%E5%9B%BD%E4%BA%A7%E9%A6%99%E8%95%89%E4%BC%8A%E6%80%9D%E4%BA%BA%E5%9C%A8%E7%BA%BF_99%E8%A7%86%E9%A2%91%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%E6%92%AD%E6%94%BE
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1302060663&si=6cf73648427a4674fcc0e39980d5a1e3&v=1.3.0&lv=1&sn=22211&r=0&ww=1280&u=http%3A%2F%2Fwww.3721jj.com%2F&tt=%E8%89%B2%E5%A4%A9%E5%A4%A9%E7%BB%BC%E5%90%88%E8%89%B2%E5%A4%A9%E5%A4%A9%E4%B9%85%E4%B9%85%E5%A9%B7%E5%A9%B7_%E6%97%A5%E9%9F%A9%E7%B6%9C%E5%90%88%E7%BD%91_%E7%B2%BE%E5%93%81%E5%9B%BD%E4%BA%A7%E9%A6%99%E8%95%89%E4%BC%8A%E6%80%9D%E4%BA%BA%E5%9C%A8%E7%BA%BF_99%E8%A7%86%E9%A2%91%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%E6%92%AD%E6%94%BE
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1302060663&si=6cf73648427a4674fcc0e39980d5a1e3&v=1.3.0&lv=1&sn=22211&r=0&ww=1280&u=http%3A%2F%2Fwww.3721jj.com%2F&tt=%E8%89%B2%E5%A4%A9%E5%A4%A9%E7%BB%BC%E5%90%88%E8%89%B2%E5%A4%A9%E5%A4%A9%E4%B9%85%E4%B9%85%E5%A9%B7%E5%A9%B7_%E6%97%A5%E9%9F%A9%E7%B6%9C%E5%90%88%E7%BD%91_%E7%B2%BE%E5%93%81%E5%9B%BD%E4%BA%A7%E9%A6%99%E8%95%89%E4%BC%8A%E6%80%9D%E4%BA%BA%E5%9C%A8%E7%BA%BF_99%E8%A7%86%E9%A2%91%E5%9B%BD%E4%BA%A7%E5%9C%A8%E7%BA%BF%E8%A7%82%E7%9C%8B%E6%92%AD%E6%94%BE HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 22 Jan 2023 08:25:26 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6530FB69CACB459F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 54f7eafb4b4a202d620cbae7ed234b2e
492ee1ee253967b674ba432fd4e1fc2d9d5dbf2b
9cfc4f12bd6f6c3a86f3cab1033de613999d83853eae26dfeee739d30e8d93f7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9CFC4F12BD6F6C3A86F3CAB1033DE613999D83853EAE26DFEEE739D30E8D93F7"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8539
Expires: Sun, 22 Jan 2023 10:47:46 GMT
Date: Sun, 22 Jan 2023 08:25:27 GMT
Connection: keep-alive
n0544.com/cb556583b3484ca885ca9ea44113023f.gif
34.97.199.103200 OK 157 kB URL HTTP/1.1 n0544.com/cb556583b3484ca885ca9ea44113023f.gif
IP 34.97.199.103:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 960 x 200\012- data
Size 157 kB (157339 bytes)
Hash 66181241cd854f731b59bdf6b124458c
71c24268009ac98dabec27e2f6691bd3d9f51462
4f6920f281a3bfa9ebeac036aef88fa329c36b53eb504536ab05598a996e9854
GET /cb556583b3484ca885ca9ea44113023f.gif HTTP/1.1
Host: n0544.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:27 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 Jan 2023 10:41:27 GMT
ETag: W/"63b557d7-269c0"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
kvkaa.com/d816a0142aeb37814a5d77cfd510e67b.gif
45.154.214.206301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/d816a0142aeb37814a5d77cfd510e67b.gif
IP 45.154.214.206:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /d816a0142aeb37814a5d77cfd510e67b.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvkaa.com/c6a65988a83a7719b360a51b2954a216.gif
45.154.214.206301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/c6a65988a83a7719b360a51b2954a216.gif
IP 45.154.214.206:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /c6a65988a83a7719b360a51b2954a216.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/c6a65988a83a7719b360a51b2954a216.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
66guangggao.oss-cn-hangzhou.aliyuncs.com/212-960x80.gif
47.110.177.58200 OK 257 kB URL HTTP/1.1 66guangggao.oss-cn-hangzhou.aliyuncs.com/212-960x80.gif
IP 47.110.177.58:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 257 kB (257078 bytes)
Hash c435551569b3e0fdc43c95efc0026025
d0f42fd0d305e3104f571b3d8b13123b72246b65
b7091b20aa986d66c50b1fc6476ebd167a932ca2df9811eb23b07adeb94a2378
GET /212-960x80.gif HTTP/1.1
Host: 66guangggao.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jan 2023 08:25:27 GMT
Content-Type: image/gif
Content-Length: 257078
Connection: keep-alive
x-oss-request-id: 63CCF2F76F8C26343618BFE4
Accept-Ranges: bytes
ETag: "C435551569B3E0FDC43C95EFC0026025"
Last-Modified: Tue, 03 Jan 2023 11:29:43 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3481942926993597505
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: xDVVFWmz4P3EPJXvwAJgJQ==
x-oss-server-time: 1
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
120.52.95.238200 OK 678 kB URL HTTP/2 p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP 120.52.95.238:0
ASN #133119 China Unicom IP network
File type GIF image data, version 89a, 270 x 160\012- data
Size 678 kB (677521 bytes)
Hash 94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84
GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 08:25:27 GMT
content-type: image/gif
content-length: 677521
server: openresty
age: 18247582
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=3
via: CHN-HElangfang-AREACUCC1-CACHE28[3],CHN-HElangfang-AREACUCC1-CACHE35[0,TCP_HIT,0],CHN-TJ-GLOBAL1-CACHE60[39],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,36]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2
768guanggao.oss-cn-shenzhen.aliyuncs.com/vip80.gif
120.77.167.195200 OK 264 kB URL HTTP/1.1 768guanggao.oss-cn-shenzhen.aliyuncs.com/vip80.gif
IP 120.77.167.195:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 264 kB (264494 bytes)
Hash 672b95e7b6ab24b5606b8287db85dbb4
98f1f1b06b3cb318d7f7a1bf7add76fa0a30c112
4203e1ae18bb06c6e719832987e87e838d8001fd6154e56a8b79c4c0678e7b54
GET /vip80.gif HTTP/1.1
Host: 768guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jan 2023 08:25:27 GMT
Content-Type: image/gif
Content-Length: 264494
Connection: keep-alive
x-oss-request-id: 63CCF2F78AF0BE3133E94E3F
Accept-Ranges: bytes
ETag: "672B95E7B6AB24B5606B8287DB85DBB4"
Last-Modified: Thu, 08 Dec 2022 08:00:50 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8762574589038276875
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: ZyuV57arJLVga4KH24XbtA==
x-oss-server-time: 3
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash a8f392a671b95f1f94bd2c29e5ec2b83
10221998029bc673e241734ef51701541e0aed6c
d62245d46d7b1f292cd0d577d79b26af5d04d3368e54d93586f2918f282a7984
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:12:42 GMT
ETag: "10221998029bc673e241734ef51701541e0aed6c"
Last-Modified: Sun, 22 Jan 2023 05:12:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2048
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e6310c38b4f1-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash a8ef0346388fe1465f62d04abbf78420
105aaa7a4c79a68e4c5764057b26cb1514a1af6f
c9f9a8e117dc2c29b87d0d009d3b30e17a1ebaede65d27db268f87d7d127825d
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:38:16 GMT
ETag: "105aaa7a4c79a68e4c5764057b26cb1514a1af6f"
Last-Modified: Sun, 22 Jan 2023 05:38:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 604
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e6310a56b524-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash b099f712c8c0156eca02807cbc4bc82c
2c2cf4aa0eff91dfef6f0b97268b476fbf87c3d5
099db4a881e54dd095c032507fbd2b42d4a636e9db95bf839e55504577035913
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:34:53 GMT
ETag: "2c2cf4aa0eff91dfef6f0b97268b476fbf87c3d5"
Last-Modified: Sun, 22 Jan 2023 05:34:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1074
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e6310fdcb4ee-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash b099f712c8c0156eca02807cbc4bc82c
2c2cf4aa0eff91dfef6f0b97268b476fbf87c3d5
099db4a881e54dd095c032507fbd2b42d4a636e9db95bf839e55504577035913
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:34:53 GMT
ETag: "2c2cf4aa0eff91dfef6f0b97268b476fbf87c3d5"
Last-Modified: Sun, 22 Jan 2023 05:34:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1074
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e63109dffac4-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash b099f712c8c0156eca02807cbc4bc82c
2c2cf4aa0eff91dfef6f0b97268b476fbf87c3d5
099db4a881e54dd095c032507fbd2b42d4a636e9db95bf839e55504577035913
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:34:53 GMT
ETag: "2c2cf4aa0eff91dfef6f0b97268b476fbf87c3d5"
Last-Modified: Sun, 22 Jan 2023 05:34:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1074
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e6310e72b50f-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash a8ef0346388fe1465f62d04abbf78420
105aaa7a4c79a68e4c5764057b26cb1514a1af6f
c9f9a8e117dc2c29b87d0d009d3b30e17a1ebaede65d27db268f87d7d127825d
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:38:16 GMT
ETag: "105aaa7a4c79a68e4c5764057b26cb1514a1af6f"
Last-Modified: Sun, 22 Jan 2023 05:38:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 604
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e63109ecb51e-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c59b7999b3e1a449b0d92bdf590dd30e
f805a1bb63bbcf0148065ae324baeb5190f293e1
861dc9e40985e46faa5cc01f9967d2447ff060538dd9d535bb79841f39b6945f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 22 Jan 2023 04:41:26 GMT
Expires: Sun, 29 Jan 2023 04:41:25 GMT
Etag: "f805a1bb63bbcf0148065ae324baeb5190f293e1"
Cache-Control: max-age=590756,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e630f8d0b4ff-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash fda4e6de0ac6784da077612b734d1ff1
d69b75dd5d7c7e7b94b649ac73cbbf6f0032be14
a4a0a2dd10e258213aef73443223abc8ab6f945e91cc03392c9aec01fda4faae
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 20:52:36 GMT
Expires: Fri, 27 Jan 2023 20:52:35 GMT
Etag: "d69b75dd5d7c7e7b94b649ac73cbbf6f0032be14"
Cache-Control: max-age=476226,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e630fac90b55-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 640dcab0dfc1b3e500d5595dfd167b5d
13001f27608b348c4ce8e0aa18958e5d2de8cc91
4a42bf2c1378546dd01ebd611742270c74f8a04b6757ce7402ed7f9deb24404b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 06:56:41 GMT
Expires: Fri, 27 Jan 2023 06:56:40 GMT
Etag: "13001f27608b348c4ce8e0aa18958e5d2de8cc91"
Cache-Control: max-age=426071,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e630f8cfb4ff-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e41f29537ca60a6af95bb1d49403b296
b10156e40c1fbd82f6dba579691b0816f5132e13
2f8aeee02dee36047f1d5cb5b33f71709f4f3fd2a7b7c8f82fea9e16f9005938
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 13:54:28 GMT
Expires: Thu, 26 Jan 2023 13:54:27 GMT
Etag: "b10156e40c1fbd82f6dba579691b0816f5132e13"
Cache-Control: max-age=364738,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e630fd0cb509-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b597399067be882f4cc09542030d12e6
2607a89dd0c3c17fabbb0c1a732fd501799e34c5
97cdd795a32a8a67aa708a33313dbaf0efa6df5e1b98543143956785c4c7d992
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 12:53:48 GMT
Expires: Fri, 27 Jan 2023 12:53:47 GMT
Etag: "2607a89dd0c3c17fabbb0c1a732fd501799e34c5"
Cache-Control: max-age=447498,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e6315943b4ff-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0f275342346ad7be3cd13117b1ba43df
a8d4d801c74c226fc38cabb088c1677fc1fd1e8d
caa3236cb08ed95d0b25503e27eca8550869a09b9d0bf7be8b043186f2d2c48d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CAA3236CB08ED95D0B25503E27ECA8550869A09B9D0BF7BE8B043186F2D2C48D"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15146
Expires: Sun, 22 Jan 2023 12:37:54 GMT
Date: Sun, 22 Jan 2023 08:25:28 GMT
Connection: keep-alive
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
104.110.17.24200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=6401425
expires: Thu, 06 Apr 2023 10:35:53 GMT
date: Sun, 22 Jan 2023 08:25:28 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash cd55718b320d4ec3fdc13c90fef320e3
9f0e7b95fc2ee2d0db4e50f9f26a824537f83df1
fb2b8e6c1ed2de8d6e0e3bc38731a807889b25c4aee75e481ddec200d1de8b50
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 22 Jan 2023 08:25:28 GMT
Etag: "63cbe226-1d7"
Server: ECS (dcb/7F18)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0yFeK90NJ0w4z3nf2dycN1xYu-5JA-ObSuxewVp6XICJYeUK2YQCiA==
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 6c70b02d9025815fa8eac7af96d895d1
75da76f977cdd35c05334790514b3f599c0200e6
9205c07c5619ea4d2f95da8395d76ca498ce52bef722918d43d398811912fed7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 21 Jan 2023 11:55:12 GMT
Expires: Sat, 28 Jan 2023 11:55:11 GMT
Etag: "75da76f977cdd35c05334790514b3f599c0200e6"
Cache-Control: max-age=530382,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e630fcab1c02-OSL
sz88.oss-cn-shenzhen.aliyuncs.com/960x80x.gif
120.77.166.72200 OK 617 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/960x80x.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 617 kB (616551 bytes)
Hash c7d5af41a71e7915dd3c695f4d92cb8b
63f42eb3bce47701db934e60bc0dad360bb1b57b
a6b8233eceb265b139102f0f885627e3c7294ac640c2b83b80467e879d1f5679
GET /960x80x.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jan 2023 08:25:27 GMT
Content-Type: image/gif
Content-Length: 616551
Connection: keep-alive
x-oss-request-id: 63CCF2F71344D136356E794B
Accept-Ranges: bytes
ETag: "C7D5AF41A71E7915DD3C695F4D92CB8B"
Last-Modified: Wed, 01 Jun 2022 07:49:09 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2846388596987969293
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: x9WvQaceeRXdPGlfTZLLiw==
x-oss-server-time: 2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7d6dc696d1eed5929def314dd99edff0
f20a064d55ce15ca2319da256a300c87c7f8e1dc
f9d341f88b8de5da6eae351e624044439509422689e8fb81f6116aaabdbf7f0a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9D341F88B8DE5DA6EAE351E624044439509422689E8FB81F6116AAABDBF7F0A"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10944
Expires: Sun, 22 Jan 2023 11:27:52 GMT
Date: Sun, 22 Jan 2023 08:25:28 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e41f29537ca60a6af95bb1d49403b296
b10156e40c1fbd82f6dba579691b0816f5132e13
2f8aeee02dee36047f1d5cb5b33f71709f4f3fd2a7b7c8f82fea9e16f9005938
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 13:54:28 GMT
Expires: Thu, 26 Jan 2023 13:54:27 GMT
Etag: "b10156e40c1fbd82f6dba579691b0816f5132e13"
Cache-Control: max-age=364738,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e630f906b500-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c18913f9d96335485fb51f44e47a601c
0beed411d11fbd6d6f39958a3533e6b22af31062
3add9d9d0328fb5b28119e01cd6ed38bc085583022b0556a249e4db935257ae4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:56:34 GMT
ETag: "0beed411d11fbd6d6f39958a3533e6b22af31062"
Last-Modified: Sun, 22 Jan 2023 05:56:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e6310f3cb51d-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c18913f9d96335485fb51f44e47a601c
0beed411d11fbd6d6f39958a3533e6b22af31062
3add9d9d0328fb5b28119e01cd6ed38bc085583022b0556a249e4db935257ae4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 05:56:34 GMT
ETag: "0beed411d11fbd6d6f39958a3533e6b22af31062"
Last-Modified: Sun, 22 Jan 2023 05:56:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e6310881b517-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7d6dc696d1eed5929def314dd99edff0
f20a064d55ce15ca2319da256a300c87c7f8e1dc
f9d341f88b8de5da6eae351e624044439509422689e8fb81f6116aaabdbf7f0a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9D341F88B8DE5DA6EAE351E624044439509422689E8FB81F6116AAABDBF7F0A"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10944
Expires: Sun, 22 Jan 2023 11:27:52 GMT
Date: Sun, 22 Jan 2023 08:25:28 GMT
Connection: keep-alive
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash aa9ab34c8f3fd88239783accdb9a8cad
32f1e43a80419d4132eb280ddfac95d37931ecd2
a4d56c6d3a0bd184387c2bc06cb89240bc321017deb833fda46c5aeed6bf6a85
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sun, 22 Jan 2023 08:25:28 GMT
Connection: keep-alive
X-N: S
8881img.com/xcsj/960x60.gif
143.204.55.62200 OK 407 kB URL HTTP/2 8881img.com/xcsj/960x60.gif
IP 143.204.55.62:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 407 kB (407078 bytes)
Hash 679674700ddf4c200bbe9da8cd522c04
51f329eda5a2504a29006ae687e4976d8a6d5f99
3fc1c452f912bb72924cca62b85dc0d86131ad3a8785e061a8745ba721f23671
GET /xcsj/960x60.gif HTTP/1.1
Host: 8881img.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 407078
server: nginx
date: Sun, 08 Jan 2023 08:33:14 GMT
last-modified: Sat, 07 Jan 2023 12:58:09 GMT
etag: "63b96c61-63626"
expires: Tue, 07 Feb 2023 08:33:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: myUooiI579IC7PUzCZxRa5KI5ZbCLTM1Z5AmMfZjhWH7O5bN7WuYcQ==
age: 1209134
X-Firefox-Spdy: h2
kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
104.21.30.227200 OK 186 kB URL HTTP/2 kvtaaa.top/d816a0142aeb37814a5d77cfd510e67b.gif
IP 104.21.30.227:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 186 kB (185463 bytes)
Hash 07d436db9009e187330d91ffc5c77745
a7944de8f44192fe6bee6e6584d03966d0ffe8b8
75e2ad510799f05ddf20510e09f538233254217314fc7b301370407112eab0e2
GET /d816a0142aeb37814a5d77cfd510e67b.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.3721jj.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: image/gif
content-length: 185463
last-modified: Mon, 13 Jun 2022 10:10:31 GMT
etag: "62a70d17-2d477"
expires: Thu, 09 Feb 2023 17:26:31 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1004337
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vUBPJyFIsNmjE%2Fof6Te9bAxG7WQoHObUBkS5jO73RZfU4lzZ2Nk5LrAbfJekZDMobOSz7QSkXNrlamvOS%2FabsDcv2D62KS%2F%2FYjVIGUpFXvnKRLGydXJKg%2BzMPFeG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78d6e632ca91b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 59c8755e8b97226702b71f4f0a157218
c740a9f33273998b8cba2ecb37f684c8d8013d50
d17588fbbf87b235db121e02af0cb1cc05fc3d873617964a7c72c61dbf1bcef8
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 06:53:43 GMT
ETag: "c740a9f33273998b8cba2ecb37f684c8d8013d50"
Last-Modified: Sun, 22 Jan 2023 06:53:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1443
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e632cdf8b4f1-OSL
cdn.promotionsearchs.com/promote/images/ff-100x100.gif
172.67.215.31200 OK 198 kB URL HTTP/2 cdn.promotionsearchs.com/promote/images/ff-100x100.gif
IP 172.67.215.31:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 198 kB (198383 bytes)
Hash c499e3edad3f8d53521ad1ec507abac8
4512501c282d3a132d4dca9d8a8c3c3530dd86af
d23d1f39f54c95b97d047d860e66fc0a80b7eb4fe51850e0a78f48c7fb3d60a1
GET /promote/images/ff-100x100.gif HTTP/1.1
Host: cdn.promotionsearchs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: image/gif
content-length: 198383
last-modified: Wed, 04 Jan 2023 11:45:23 GMT
etag: "63b566d3-306ef"
expires: Mon, 20 Feb 2023 03:24:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS,PUT,DELETE,OPTION
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,Accept,Referer,Accept-Encoding,Accept-Language,Access-Control-Request-Headers,Access-Control-Request-Method,Connection,Host,Origin,Sec-Fetch-Mode
cf-cache-status: HIT
age: 104484
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xgNyyLQB6NZp4Cx9kiqEth4fT02%2BBBWKvEZiB8OWPzjdZDBoQiOlAOVouzII3MK%2BV88kFzPntMRmMTMq8c8GcYQIZoefCvAsI31TH0pNyhmi%2FI3LKeuDGn0aOuCpMNDEDTvlXd%2Bad3C6dXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78d6e632cd57fab8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvtaaa.top/c6a65988a83a7719b360a51b2954a216.gif
104.21.30.227200 OK 1.1 MB URL HTTP/2 kvtaaa.top/c6a65988a83a7719b360a51b2954a216.gif
IP 104.21.30.227:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.1 MB (1088124 bytes)
Hash 22b05fb7dd8dfb2c1c0f59a9b8b8b3b5
ff95ea37d9b7fee86072dd41b683c50eb7e456c7
9453485cf924296690fe4e0628ac08e9ec46fe423a4c2d6bc63d01d6bb1b3492
GET /c6a65988a83a7719b360a51b2954a216.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.3721jj.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: image/gif
content-length: 1088124
last-modified: Sun, 25 Dec 2022 10:35:56 GMT
etag: "63a8278c-109a7c"
expires: Sat, 18 Feb 2023 19:22:20 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 219788
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c8KbQlfsxt%2F7H2TmwbEaIdrYd6Bg07wokmdZZuXFQ2UsDHnd4YPs0iBH43NZaIDVlE%2FwtZNaDteKiKW4bfmBQP7NiTxShD6rQ29hs6Pr01Qau9fYyHCINljMeRJP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78d6e632da95b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 292363c6141e846e5c20c8a66ff89102
5b9f8343f898b6529b408a71b0f53f6e8619491c
0241403c7ae20a8c2830f6cb990ab3cb3ffa16bcf539f6b2859d882fdf5889a7
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 10:25:02 GMT
Expires: Thu, 26 Jan 2023 10:25:01 GMT
Etag: "5b9f8343f898b6529b408a71b0f53f6e8619491c"
Cache-Control: max-age=352172,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e631caadb50b-OSL
kzeqq.com/17a571f5114b7fe07f3a8a84c49731c3.gif
88.99.102.224200 OK 570 kB URL HTTP/2 kzeqq.com/17a571f5114b7fe07f3a8a84c49731c3.gif
IP 88.99.102.224:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 960 x 60\012- data
Size 570 kB (570411 bytes)
Hash b4ba386b410ed3c8e88edc7863378408
e231d90073dfead323dcc5c92d63a5d3df81e2c5
b92eb16a1b399b10c529bb71aecf0d1cf458cc5544469ffa75c47c5f422f86da
GET /17a571f5114b7fe07f3a8a84c49731c3.gif HTTP/1.1
Host: kzeqq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: image/gif
content-length: 570411
last-modified: Fri, 30 Dec 2022 02:48:10 GMT
etag: "63ae516a-8b42b"
expires: Sun, 22 Jan 2023 20:25:28 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 55401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ryY%2FdrZWEW%2Bh7DfokLPloMZXZtetV5w19FsXaACHQpSC07m6b%2BLU4SDAIbLIgbB56FNz7MLCfLE9zhcv6c9c54FPjr%2B%2F4K5ZqvN7qeGNFpGBITyBNxqW5ZhTV3xs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 781cbd5e4a7dc217-VIE
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 292363c6141e846e5c20c8a66ff89102
5b9f8343f898b6529b408a71b0f53f6e8619491c
0241403c7ae20a8c2830f6cb990ab3cb3ffa16bcf539f6b2859d882fdf5889a7
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 10:25:02 GMT
Expires: Thu, 26 Jan 2023 10:25:01 GMT
Etag: "5b9f8343f898b6529b408a71b0f53f6e8619491c"
Cache-Control: max-age=352172,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e6334c7ab50b-OSL
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash cd55718b320d4ec3fdc13c90fef320e3
9f0e7b95fc2ee2d0db4e50f9f26a824537f83df1
fb2b8e6c1ed2de8d6e0e3bc38731a807889b25c4aee75e481ddec200d1de8b50
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 22 Jan 2023 08:25:28 GMT
Etag: "63cbe226-1d7"
Last-Modified: Sun, 22 Jan 2023 06:37:07 GMT
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MXvFQZlHwZH6nkNQsBALhFTxKqoKJ3NCgO-HAWmS6HjoZI-CV27lFQ==
Age: 6501
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d030ca121bf90c7d356f6a7a718fb87d
53e3d79b046b6c62a23518fc57d5d845be210576
4efe8935eaed25a00e3a32e9865088f5c3923d71a5dd66200c6d6c52819d1016
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 11:18:41 GMT
Expires: Fri, 27 Jan 2023 11:18:40 GMT
Etag: "53e3d79b046b6c62a23518fc57d5d845be210576"
Cache-Control: max-age=441791,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e632daa5b4ff-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d030ca121bf90c7d356f6a7a718fb87d
53e3d79b046b6c62a23518fc57d5d845be210576
4efe8935eaed25a00e3a32e9865088f5c3923d71a5dd66200c6d6c52819d1016
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 11:18:41 GMT
Expires: Fri, 27 Jan 2023 11:18:40 GMT
Etag: "53e3d79b046b6c62a23518fc57d5d845be210576"
Cache-Control: max-age=441790,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e6337c6f0b55-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 7d6112f40e778fb6bde907967bf9338f
c3d027523bd21a70982a89a0e07ce963d76862d2
d47714d02f4657ecd8803ee038d4f455c2974579794add9d84c537e097ec76f6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 15:06:05 GMT
Expires: Fri, 27 Jan 2023 15:06:04 GMT
Etag: "c3d027523bd21a70982a89a0e07ce963d76862d2"
Cache-Control: max-age=455434,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e6339b6bb4ff-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 55d70ee755a5697d7cd3378f143586ed
c5c58d969da8ada388adce70241cfad3324871bc
071fc3d70eefd775c7b26ae2e1ea29d3e65589f651c2be66cdf87b0fdf66edc5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 01:27:02 GMT
Expires: Fri, 27 Jan 2023 01:27:01 GMT
Etag: "c5c58d969da8ada388adce70241cfad3324871bc"
Cache-Control: max-age=406291,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e6335e8a1c02-OSL
u1102.com/c3eff56a3a9d46bcad82e0324b761f11.gif
103.170.15.43200 OK 275 kB URL HTTP/2 u1102.com/c3eff56a3a9d46bcad82e0324b761f11.gif
IP 103.170.15.43:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 275 kB (275446 bytes)
Hash 70c0e3b780542b0ba8634822528674c1
18ff79341d6854d6c841618bc108233fb064b9c2
de2918f8ea0639a91d608b506207f16cc973559eb143eb711601ba50e14ef2bc
GET /c3eff56a3a9d46bcad82e0324b761f11.gif HTTP/1.1
Host: u1102.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63bac791-433f6"
server: nginx
date: Sat, 21 Jan 2023 17:25:10 GMT
content-type: image/gif
last-modified: Sun, 08 Jan 2023 13:39:29 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-33
content-length: 275446
X-Firefox-Spdy: h2
362728tdg.com/918dd986deeb4fa4be25e237af7499fd..gif
45.61.212.129200 OK 423 kB URL HTTP/1.1 362728tdg.com/918dd986deeb4fa4be25e237af7499fd..gif
IP 45.61.212.129:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 423 kB (422791 bytes)
Hash bdeb53a7d3c2f219a7ae903a7346cd91
e5349fa31f22ce3605b9256c0a6e37def92b13b6
316319f597bb6dd3d686c46a51e67693243868108b798fa8174f8a124b6422b4
GET /918dd986deeb4fa4be25e237af7499fd..gif HTTP/1.1
Host: 362728tdg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "635b9139-67387"
Date: Wed, 18 Jan 2023 21:10:37 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 28 Oct 2022 08:22:17 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-29
Content-Length: 422791
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash fc0d37b485a4a14dfe9ab97f7e9021b0
7f126d4fbb911f009421af036b33f50a6b8a8dec
8ccc6ff4d68e0ba14a281f6f7c084e3728a9ec678b40b09466bc956514e8b22e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163252
Date: Sun, 22 Jan 2023 08:25:29 GMT
Etag: "63ccccd5-1d7"
Expires: Tue, 24 Jan 2023 05:46:21 GMT
Last-Modified: Sun, 22 Jan 2023 05:42:45 GMT
Server: ECS (dcb/7F37)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BEgQ-ehB23r7_BTXtSx7EJTEqrlKZ69lAcwm8IipvGADMO4ByHFBMQ==
Age: 216
kvhee.com/66fa645068dcbf81335020cc587744bd.gif
172.83.155.45200 OK 145 kB URL HTTP/2 kvhee.com/66fa645068dcbf81335020cc587744bd.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 145 kB (144730 bytes)
Hash 883a2fb048e4d7cf785752d903f93dfe
68c9aa205533b13cb43a5c3a77a859cc30dc0c4e
793863118deded1d136740480114f2c87dc0893e04ace2730f4741e1d0a8030b
GET /66fa645068dcbf81335020cc587744bd.gif HTTP/1.1
Host: kvhee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: image/gif
content-length: 144730
last-modified: Thu, 29 Dec 2022 09:21:31 GMT
etag: "63ad5c1b-2355a"
expires: Sun, 22 Jan 2023 20:25:28 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 15161
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z2qlhwiHD1Wdj0fm2Qo9CAkko2gQiHUgM5guoe2LB0e65uCpeA57hA9AsNha4N3g2gD9%2BcbUIh33md4CDUEQEU2SOupO8rGiD3oxiq3HwnrrtxYFuj%2FYo84S20Oi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-ray: 7875d5b2ae1dec48-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
323823umv.com/cb8ebbb9d3074e6cb7fb7ecc76b1cab0.gif
103.170.15.109200 OK 553 kB URL HTTP/1.1 323823umv.com/cb8ebbb9d3074e6cb7fb7ecc76b1cab0.gif
IP 103.170.15.109:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 553 kB (552818 bytes)
Hash 097e6fa9314192dc3dd55cb1c5023ee5
c30366c4c910616f1a3c1b773ffb4af967e20eb5
db020d7293807326453f5848c0bf219e2b835f2530468a9d816a3c1c7941023a
Analyzer Verdict Alert quad9 Sinkholed
GET /cb8ebbb9d3074e6cb7fb7ecc76b1cab0.gif HTTP/1.1
Host: 323823umv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "635b938c-86f72"
Date: Mon, 16 Jan 2023 06:20:04 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 28 Oct 2022 08:32:12 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-39
Content-Length: 552818
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 90a1256c056110832275b565621d1dee
d1c0b28739a7b0e69ad632cb86e4d414ce280b76
8117b2321bd4c8bfa9db46ad357a11368ed3d24caf1d67beac741e102b5fd6bc
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 06:54:13 GMT
ETag: "d1c0b28739a7b0e69ad632cb86e4d414ce280b76"
Last-Modified: Sun, 22 Jan 2023 06:54:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e634bc4cb4ee-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 90a1256c056110832275b565621d1dee
d1c0b28739a7b0e69ad632cb86e4d414ce280b76
8117b2321bd4c8bfa9db46ad357a11368ed3d24caf1d67beac741e102b5fd6bc
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 06:54:13 GMT
ETag: "d1c0b28739a7b0e69ad632cb86e4d414ce280b76"
Last-Modified: Sun, 22 Jan 2023 06:54:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e636ecfbb51d-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 90a1256c056110832275b565621d1dee
d1c0b28739a7b0e69ad632cb86e4d414ce280b76
8117b2321bd4c8bfa9db46ad357a11368ed3d24caf1d67beac741e102b5fd6bc
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 06:54:13 GMT
ETag: "d1c0b28739a7b0e69ad632cb86e4d414ce280b76"
Last-Modified: Sun, 22 Jan 2023 06:54:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e6364c30b50f-OSL
5951835ccc.com/e62318989a08444ca8f21ba50b686596.gif
103.170.15.83200 OK 862 kB URL HTTP/1.1 5951835ccc.com/e62318989a08444ca8f21ba50b686596.gif
IP 103.170.15.83:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 120\012- data
Size 862 kB (862261 bytes)
Hash d92f40426079c3c017166cdda375656b
230753797b72462a07008aef214f92ca4cf03660
9bc579fc6388407631c68ae1ba3579c42bbb323bf56cea9230771c56db57f796
GET /e62318989a08444ca8f21ba50b686596.gif HTTP/1.1
Host: 5951835ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63b166cf-d2835"
Date: Tue, 17 Jan 2023 06:14:21 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 01 Jan 2023 10:56:15 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-13
Content-Length: 862261
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c77cdeffe0c82d495a6782f936aef7bb
78e1f5bede283b1bd122fd4a94310cd6ee92777b
d99ad8134a068cf65027c8db6c8fe6a711b1707314419e10a7668deb7b3f4bb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D99AD8134A068CF65027C8DB6C8FE6A711B1707314419E10A7668DEB7B3F4BB3"
Last-Modified: Sat, 21 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Sun, 22 Jan 2023 14:25:00 GMT
Date: Sun, 22 Jan 2023 08:25:29 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 90a1256c056110832275b565621d1dee
d1c0b28739a7b0e69ad632cb86e4d414ce280b76
8117b2321bd4c8bfa9db46ad357a11368ed3d24caf1d67beac741e102b5fd6bc
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 26 Jan 2023 06:54:13 GMT
ETag: "d1c0b28739a7b0e69ad632cb86e4d414ce280b76"
Last-Modified: Sun, 22 Jan 2023 06:54:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d6e634dc19fac4-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 565a043e2122b3d59959fee9d918e8cc
100898043990ed960505f2cb6e1a001bdf99d0d0
0ccef03f830f16e1d71510cdfae85561df1e389e27a3b7858de10c02707e44e9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 20:33:42 GMT
Expires: Thu, 26 Jan 2023 20:33:41 GMT
Etag: "100898043990ed960505f2cb6e1a001bdf99d0d0"
Cache-Control: max-age=388691,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78d6e63878afb4ff-OSL
kvhee.com/2b9ede2658f4fedd8c128a482f88589a.gif
172.83.155.45200 OK 374 kB URL HTTP/2 kvhee.com/2b9ede2658f4fedd8c128a482f88589a.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 374 kB (374013 bytes)
Hash 35cc86874fccc1cca9487fe1a9cd6861
b3d396b1a4e566798382bc3838f0791a856fd568
e91a075e3ef6a39b42b948ffa3e833a409f73965c0c3896b6ddd85d6a2614da6
GET /2b9ede2658f4fedd8c128a482f88589a.gif HTTP/1.1
Host: kvhee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: image/gif
content-length: 374013
last-modified: Sun, 25 Dec 2022 12:05:29 GMT
etag: "63a83c89-5b4fd"
expires: Sun, 22 Jan 2023 20:25:28 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20731
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PhR5%2Blx6Uqw7embOUct8H2%2BwJ1jmLGVObVX0BGXBJkl8NiInLHCWr9Q2PdddQdYgy8Kllmkm1x%2BdwLM9tnJoAqbW0iXRriZpWZSEAsIuWptZmBJk456Kl15jtfDJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 78764f305bbeeb97-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u22011.com/4bf88adf466b90cef3686374a27fc0e2.gif
13.227.254.19200 OK 507 kB URL HTTP/2 u22011.com/4bf88adf466b90cef3686374a27fc0e2.gif
IP 13.227.254.19:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 507 kB (506851 bytes)
Hash 720e80d2a7ff4cf1bbf0b1608c2f35de
bf0a987ac8d4c7728171fe41e5c45b61b45a2f73
e177aeb64efe8103f8af0afc0a768394d970bbe60edcf103a083d56b915c18b1
GET /4bf88adf466b90cef3686374a27fc0e2.gif HTTP/1.1
Host: u22011.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 506851
last-modified: Tue, 29 Nov 2022 08:08:10 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 21 Jan 2023 13:53:40 GMT
etag: "720e80d2a7ff4cf1bbf0b1608c2f35de"
x-cache: Hit from cloudfront
via: 1.1 900a893b03bf29fa958d4587d585157e.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ARYdiymkOHfEkthCr1gqVkTUvyyywynlb6nvzxIthvsMIZ1Xdvwdpw==
age: 66709
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0
43.129.255.47200 OK 206 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 206 kB (205622 bytes)
Hash 8a22a6888c325aa3acf83e7cedfe35e7
37da1ea976724d35c1c32ae18d7924192184ba32
2e90b20d4c2067ff68444790955d65d2745365cf025c486c8c2b685696faeeaa
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7KC5LIMic1KaTYwJYhDicnibqKbVUtzwk3vqBxlG2ZQYyjo/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sun, 22 Jan 2023 08:25:28 GMT
content-type: image/gif
content-length: 205622
vary: Accept,Origin
last-modified: Mon, 19 Dec 2022 06:54:31 GMT
cache-control: max-age=2592000
x-delay: 36463 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 9
x-reqgue: 0
size: 205622
chid: 0
fid: 0
x-nws-log-uuid: 634bf6bd-ebab-4f15-9db9-2e0e71dd26ce
X-Firefox-Spdy: h2
kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
47.75.19.147200 OK 0 B URL HTTP/1.1 kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com/960X60.gif
IP 47.75.19.147:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /960X60.gif HTTP/1.1
Host: kaiyuan-advertising.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: image/gif
Content-Length: 253519
Connection: keep-alive
x-oss-request-id: 63CCF2F91F8563363608AD48
Accept-Ranges: bytes
ETag: "F744E995971941B6A95FCD2636F5A545"
Last-Modified: Tue, 29 Nov 2022 08:27:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17987192695826819902
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: 90TplZcZQbapX80mNvWlRQ==
x-oss-server-time: 2
1865366ccc.com/df188c5053b44432ba44d41417c0df00.gif
103.170.15.78200 OK 0 B URL HTTP/1.1 1865366ccc.com/df188c5053b44432ba44d41417c0df00.gif
IP 103.170.15.78:0
ASN #7483 Skycloud Computing co., Ltd.
GET /df188c5053b44432ba44d41417c0df00.gif HTTP/1.1
Host: 1865366ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "632963f9-a6dd2"
Date: Fri, 20 Jan 2023 09:32:04 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 20 Sep 2022 06:55:53 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-08
Content-Length: 683474
3888537ccc.com/0c443e4928c246a7a0f9fe194e9fbe8c.gif
45.61.212.129200 OK 0 B URL HTTP/1.1 3888537ccc.com/0c443e4928c246a7a0f9fe194e9fbe8c.gif
IP 45.61.212.129:0
GET /0c443e4928c246a7a0f9fe194e9fbe8c.gif HTTP/1.1
Host: 3888537ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a3fa07-767a7"
Date: Fri, 20 Jan 2023 09:49:16 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 22 Dec 2022 06:32:39 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-29
Content-Length: 485287
n0522.com/51e74f2a4f3548eeb42adfd57a98db76.gif
52.140.219.178200 OK 0 B URL HTTP/2 n0522.com/51e74f2a4f3548eeb42adfd57a98db76.gif
IP 52.140.219.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /51e74f2a4f3548eeb42adfd57a98db76.gif HTTP/1.1
Host: n0522.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 08:25:27 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sun, 08 Jan 2023 14:26:03 GMT
etag: W/"63bad27b-2acb6"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
asd8900.oss-cn-heyuan.aliyuncs.com/100-9.gif
47.113.155.89200 OK 0 B URL HTTP/1.1 asd8900.oss-cn-heyuan.aliyuncs.com/100-9.gif
IP 47.113.155.89:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /100-9.gif HTTP/1.1
Host: asd8900.oss-cn-heyuan.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: image/gif
Content-Length: 203503
Connection: keep-alive
x-oss-request-id: 63CCF2F92A992C3132AD2213
Accept-Ranges: bytes
ETag: "5A641E21DFFAB0DFDFEEFF9D78862651"
Last-Modified: Sun, 25 Dec 2022 07:48:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5661019218051818272
x-oss-storage-class: Standard
Content-MD5: WmQeId/6sN/f7v+deIYmUQ==
x-oss-server-time: 1
asd8900.oss-cn-heyuan.aliyuncs.com/123/100.gif
47.113.155.89200 OK 0 B URL HTTP/1.1 asd8900.oss-cn-heyuan.aliyuncs.com/123/100.gif
IP 47.113.155.89:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /123/100.gif HTTP/1.1
Host: asd8900.oss-cn-heyuan.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: image/gif
Content-Length: 101951
Connection: keep-alive
x-oss-request-id: 63CCF2F9BBB7AD3738711059
Accept-Ranges: bytes
ETag: "C2ADD2DB14C17A945AF4EB9A81687E1D"
Last-Modified: Fri, 20 Jan 2023 12:14:27 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9248619639978332248
x-oss-storage-class: Standard
Content-MD5: wq3S2xTBepRa9OuagWh+HQ==
x-oss-server-time: 0
u1044.com/77c48c23d7754a498cd1eca2628c9b68.gif
103.188.121.27200 OK 0 B URL HTTP/2 u1044.com/77c48c23d7754a498cd1eca2628c9b68.gif
IP 103.188.121.27:0
GET /77c48c23d7754a498cd1eca2628c9b68.gif HTTP/1.1
Host: u1044.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63b54ddc-54d22"
server: nginx
date: Thu, 19 Jan 2023 06:54:28 GMT
content-type: image/gif
last-modified: Wed, 04 Jan 2023 09:58:52 GMT
accept-ranges: bytes
x-cache: HIT from megai-cdn121-017
content-length: 347426
X-Firefox-Spdy: h2
3p8801.co/xx/960-60.gif
107.148.202.17200 OK 0 B IP 107.148.202.17:0
GET /xx/960-60.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 08:25:29 GMT
content-type: image/gif
content-length: 244442
last-modified: Mon, 02 Jan 2023 08:23:23 GMT
etag: "63b2947b-3bada"
expires: Tue, 21 Feb 2023 08:25:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
120.77.166.67200 OK 0 B URL HTTP/1.1 383guanggao.oss-cn-shenzhen.aliyuncs.com/960x60.gif
IP 120.77.166.67:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /960x60.gif HTTP/1.1
Host: 383guanggao.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 22 Jan 2023 08:25:29 GMT
Content-Type: image/gif
Content-Length: 299398
Connection: keep-alive
x-oss-request-id: 63CCF2F99B92023836DA11B0
Accept-Ranges: bytes
ETag: "F4B7967855549E81F65598B93A43D9DB"
Last-Modified: Thu, 08 Dec 2022 07:20:39 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8810428828543929982
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 9LeWeFVUnoH2VZi5OkPZ2w==
x-oss-server-time: 3
yvzfgigpiwmofux.com/2022/12/21/984b1a59c81bb.gif
154.198.234.22200 OK 0 B URL HTTP/1.1 yvzfgigpiwmofux.com/2022/12/21/984b1a59c81bb.gif
IP 154.198.234.22:0
Analyzer Verdict Alert quad9 Sinkholed
GET /2022/12/21/984b1a59c81bb.gif HTTP/1.1
Host: yvzfgigpiwmofux.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 08:25:28 GMT
Content-Type: image/gif
Content-Length: 324748
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 08:23:06 GMT
ETag: "63a2c26a-4f48c"
Expires: Tue, 21 Feb 2023 07:25:09 GMT
Cache-Control: max-age=2592000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
88887aaa.com/5a05e4e978f64005b02df3cf858a0bc6.gif
45.61.212.218200 OK 0 B URL HTTP/1.1 88887aaa.com/5a05e4e978f64005b02df3cf858a0bc6.gif
IP 45.61.212.218:0
GET /5a05e4e978f64005b02df3cf858a0bc6.gif HTTP/1.1
Host: 88887aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.3721jj.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "639997a1-cc590"
Date: Mon, 16 Jan 2023 06:31:23 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 14 Dec 2022 09:30:09 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-18
Content-Length: 837008