r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4cbb89840b57466fcbc0b31305c9dc47
c2c08a7a243a3f7972e8068c448488cac6d2519f
5f871ffd142470f132fed1c93f5f1a7fe6a5ecc3b4311d3d47555fce1d9a35f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F871FFD142470F132FED1C93F5F1A7FE6A5ECC3B4311D3D47555FCE1D9A35F1"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2606
Expires: Mon, 19 Dec 2022 04:49:46 GMT
Date: Mon, 19 Dec 2022 04:06:20 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 460af93786e1eaa666f135e6c3fdc634
bc8aeba36225c79718f5de73d79928fe817c5490
471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12389
Expires: Mon, 19 Dec 2022 07:32:49 GMT
Date: Mon, 19 Dec 2022 04:06:20 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2542
Expires: Mon, 19 Dec 2022 04:48:42 GMT
Date: Mon, 19 Dec 2022 04:06:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 19 Dec 2022 03:45:35 GMT
content-type: application/json
age: 1245
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
nils-holgerson.com/
172.121.89.17301 Moved Permanently 0 B IP 172.121.89.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: nils-holgerson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 19 Dec 2022 04:06:19 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.nils-holgerson.com/index.php
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xqvHu23WvDTTbgNShDXsDFI0tl7oKIU8n0D1qEGksDHM1DDCzs8kc1yT7fA4zExjMt50tFors2vQzIOsPNBb6w==
x-amz-request-id: BXD05NVKM84QV2TN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 19 Dec 2022 03:54:24 GMT
age: 716
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:20 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 19 Dec 2022 03:33:24 GMT
age: 1976
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.nils-holgerson.com/index.php
172.121.89.17200 OK 785 B URL HTTP/1.1 www.nils-holgerson.com/index.php
IP 172.121.89.17:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash 449979d226b4709e707902a1275adecd
bc5083da744f7892a81e1a630855e6250b5f3959
235f81865fe0e97383deb1b88df3ba218d51bfc6cedb0ecbf0ad24f7029f1c0c
GET /index.php HTTP/1.1
Host: www.nils-holgerson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Dec 2022 04:06:20 GMT
Content-Type: text/html
Content-Length: 785
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bc27cdcd6c42d7f8eece6c074bc452f
ff1234b58f7381f51f9082c1ef4894b1ac5700ff
672fc3b7ba7ee7a8b376c73a86a5bab00b1a1aead54c3ca64c0bff83d831348e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3807
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:20 GMT
Last-Modified: Mon, 19 Dec 2022 03:02:53 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.nils-holgerson.com/tj.js
172.121.89.17200 OK 520 B URL HTTP/1.1 www.nils-holgerson.com/tj.js
IP 172.121.89.17:0
File type ASCII text, with CRLF line terminators
Hash c641843bbee2dbe645c9de13d8f953ed
1a93b5d7b8540d5acbaae9c8bc00c16926a23588
4604c89ab81e21b0a8e7e762b60c0190dd44643056504ae5c28ebd2b4e739ed7
GET /tj.js HTTP/1.1
Host: www.nils-holgerson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nils-holgerson.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Dec 2022 04:06:20 GMT
Content-Type: application/x-javascript
Content-Length: 520
Connection: keep-alive
push.services.mozilla.com/
52.34.4.233101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.34.4.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eltT7ifybFbrBU7Byfm07g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3kPbBFL5eIsOGndejHT5ZiWlnuI=
www.nils-holgerson.com/common.js
172.121.89.17200 OK 753 B URL HTTP/1.1 www.nils-holgerson.com/common.js
IP 172.121.89.17:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 422fd880589a7fc1a2f9b43c88c64fbe
cd02b22cba108051097edd967d9b4e937386a05f
51ceb85b881f6f3a9a9deea0265b4960a9fd3d7fe698b72c0329332dc91585b9
GET /common.js HTTP/1.1
Host: www.nils-holgerson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nils-holgerson.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Dec 2022 04:06:20 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.nils-holgerson.com/favicon.ico
172.121.89.17200 OK 1.2 kB URL HTTP/1.1 www.nils-holgerson.com/favicon.ico
IP 172.121.89.17:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.nils-holgerson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nils-holgerson.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Dec 2022 04:06:21 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sat, 24 Dec 2022 04:06:21 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash d2c31bdf5e55539b5307fda2c794e919
eefc765ece8342f62a29c45a2d7a30686a354ca5
e265198f61a26dd58d9f0ece3bb77c29b5dbae30fa2079df4e3a72f40ac0c04c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 23 Dec 2022 02:25:51 GMT
ETag: "eefc765ece8342f62a29c45a2d7a30686a354ca5"
Last-Modified: Mon, 19 Dec 2022 02:25:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 676
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd43e35c7fb4f3-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 4d8be6e2998e731c24fe91c24d17fa1a
73a712be19411a7614586e1f4bddbe836ea0f88a
caf5bc4569b3c396d6ac505b86f98a52ab40bda62122fd4312c7e5b80eddc509
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:22 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 18:23:34 GMT
Expires: Sun, 25 Dec 2022 18:23:33 GMT
Etag: "73a712be19411a7614586e1f4bddbe836ea0f88a"
Cache-Control: max-age=569230,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd43e37d26b4e8-OSL
push.zhanzhang.baidu.com/push.js
39.156.68.163200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 39.156.68.163:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nils-holgerson.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Mon, 19 Dec 2022 04:06:22 GMT
Etag: "4078521116"
Expires: Tue, 19 Dec 2023 04:06:22 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=7F543EB7714E2CFDE1D6733F47857E28:FG=1; max-age=31536000; expires=Tue, 19-Dec-23 04:06:22 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
jx.tongdoumaoyi.com/news/index.php
20.205.110.169200 OK 1.1 kB URL HTTP/2 jx.tongdoumaoyi.com/news/index.php
IP 20.205.110.169:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 821922e4030bfa99b7b28f64e004f0db
fe5d4a43ab861bb7b901c34f88d41b40d9a9b907
bcd9244ff3e4acf52bb8ec1c85f547bf8f49a7598c55e2a2f5f21eeae62707ea
GET /news/index.php HTTP/1.1
Host: jx.tongdoumaoyi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.nils-holgerson.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.1
date: Mon, 19 Dec 2022 04:06:22 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
x-country: NO
x-cache: HIT@hk-32-az
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5810
Expires: Mon, 19 Dec 2022 05:43:12 GMT
Date: Mon, 19 Dec 2022 04:06:22 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5810
Expires: Mon, 19 Dec 2022 05:43:12 GMT
Date: Mon, 19 Dec 2022 04:06:22 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5810
Expires: Mon, 19 Dec 2022 05:43:12 GMT
Date: Mon, 19 Dec 2022 04:06:22 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5810
Expires: Mon, 19 Dec 2022 05:43:12 GMT
Date: Mon, 19 Dec 2022 04:06:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5029f8fb-29cf-4de0-b8e7-d6f183712d1c.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5029f8fb-29cf-4de0-b8e7-d6f183712d1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3aba060983b21c03fd43a14b313fa70e
005128984586fbfa35db5e75e38c43603cae24e1
805ee8bc4be00bc288a082083281984c54cd802138636b9df01f40f22a860897
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5029f8fb-29cf-4de0-b8e7-d6f183712d1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12172
x-amzn-requestid: 26e2fb4f-5bc5-4bc8-9e44-08461977187a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVIjgHuiIAMFhYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebae3-79e72e6522d1c0016e46668f;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:01:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rtAWDomNd7jCyemJptNJajRruNjBVSNAAbDoUra8_3xhVQmNJIj53w==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 09:18:09 GMT
age: 67693
etag: "005128984586fbfa35db5e75e38c43603cae24e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f8b260b0cc287f1b66c97f552b2a3c21
7efa342abc52a36cd3fa2dd4b3e85cec1def58c0
7263d7176d5879c550158fee5259605dc298a99902cb8a2c340ab2b92f92bc90
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7432
x-amzn-requestid: 3254bdde-1e56-4423-a87b-5955c64f52ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dHbA6FUVIAMF2gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63993ed2-09a330722c1eec79103d9b9e;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 03:11:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: W2HZAazNTP-6o2Vyr2jrOTutIt4ed3Fs0L_TgUEH8dM9RtqBiBSdAw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 09:40:13 GMT
age: 66369
etag: "7efa342abc52a36cd3fa2dd4b3e85cec1def58c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dce7a87ac0852f838007018af2e83cb5
379f7844a18284958ec0250cc45f2c91ac1ddfcf
31a5191700b9d5c2e471c0e6db15d43f1804b61c6a0867340e8001c32a0dabb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: f8f1832c-4269-4c4b-83c0-4c2d8c2fdd8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC7GLSIAMFd4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-4c54f9704a32da245a90ab0d;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sg4SOln-mB63kOrv2oVmW25o92Sxw7bW4QA78iT5eq3Tpbk_SYUEdw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 00:09:11 GMT
age: 14231
etag: "379f7844a18284958ec0250cc45f2c91ac1ddfcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe426aa98-61a0-4fb6-9e2a-8295c764a39b.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe426aa98-61a0-4fb6-9e2a-8295c764a39b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da7f54bc8961e24cce4c3910d7657b9e
95f9529aa321d707eac3e133db97c6b641648bdf
ae58b97cc6f584713fbd73bc210ecfcfafd9c5c997008e7e79d59a6e45949846
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe426aa98-61a0-4fb6-9e2a-8295c764a39b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9266
x-amzn-requestid: 24005bea-65b5-41af-9281-b95ac7e5f945
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dLRC3E_UIAMFsMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ac878-0369a03043a1ccd31f2d7243;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cF5viZkDzq98kxBlMVDLxkbWy8x0Dip1H-jLNqqsYutHG9FwMt8T0w==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 09:06:40 GMT
age: 68382
etag: "95f9529aa321d707eac3e133db97c6b641648bdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F098a9ffa-a930-493a-86d2-96d21a07d7ae.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F098a9ffa-a930-493a-86d2-96d21a07d7ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 945d09b8aa956ddee667614c08687f76
0db0497203df4f2ec5da40cd0ab89383479e5d9b
a0953dafcf933d120941f84b60d2884b3df33fa01dfbc5bfe62fc4910b392a83
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F098a9ffa-a930-493a-86d2-96d21a07d7ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9824
x-amzn-requestid: 921ea0f0-7d7d-467e-b3f8-2eb47a62747c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dURWQGoXIAMF_OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e628e-6e4016837f2b38615bff371e;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 00:45:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DgMx1NDqKgwNAIUP-itlH4d6NP5yvSMv8JYpgxo5rdMoPraPrwLzqw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 05:59:13 GMT
age: 79629
etag: "0db0497203df4f2ec5da40cd0ab89383479e5d9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff17f5cdf-f263-46fc-b0f6-fb0fa1945efd.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff17f5cdf-f263-46fc-b0f6-fb0fa1945efd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c990c360fd972821af876119dd8555b
458555bf2ac16225da8adfc9fbe75aed89526287
beae8e1d373cbe333272e54db93f44e18f063e93f12f005e793ba64e4f7696a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff17f5cdf-f263-46fc-b0f6-fb0fa1945efd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7760
x-amzn-requestid: a0b96eff-245a-48ab-b09b-013861bbad27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKwhKFTtIAMF6TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a946d-513964bc657a326217d85e42;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V4q1avv0fLvIQNz1dek4qxd2Yen1EJfKBhbvtK3W8AkfBJ775JhZBQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:52:15 GMT
age: 22447
etag: "458555bf2ac16225da8adfc9fbe75aed89526287"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?fec0eaa8fc52795617f18f518d42aaab
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?fec0eaa8fc52795617f18f518d42aaab
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash 9147dd01ee21bc57c54d70e4831d7a27
a3841151e8051c68e7d7a8a271200065d6ae6753
b94967d2bd0de919268d7c91a689ded570f00a4980adc53b87188645004c73c7
GET /hm.js?fec0eaa8fc52795617f18f518d42aaab HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.nils-holgerson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11254
Content-Type: application/javascript
Date: Mon, 19 Dec 2022 04:06:22 GMT
Etag: 9295132c6f6663cf3dea32f1176fbb15
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B6F1153AC907EA24; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash d3e3b69a8d82e1ccf6239052ac677959
1049e93bcf2129085a311c1ec1898de181195a19
6d1d4303632b1ec810525c9d39cb3abaddaef76367a48afd385f32468cfcbd5f
GET /hm.js?ac926d0332f02f4f5a734812940af824 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.nils-holgerson.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Mon, 19 Dec 2022 04:06:22 GMT
Etag: 5019ceacfeafbf6392ac2d61c4391214
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6430A768AA72419A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
api.share.baidu.com/s.gif?l=http://www.nils-holgerson.com/index.php
182.61.201.94200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.nils-holgerson.com/index.php
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.nils-holgerson.com/index.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.nils-holgerson.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Mon, 19 Dec 2022 04:06:22 GMT
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=687231361&si=fec0eaa8fc52795617f18f518d42aaab&v=1.3.0&lv=1&sn=18143&r=0&ww=1280&u=http%3A%2F%2Fwww.nils-holgerson.com%2Findex.php&tt=%E4%B8%B9%E9%98%B3%E6%9D%80%E5%A7%A8%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=687231361&si=fec0eaa8fc52795617f18f518d42aaab&v=1.3.0&lv=1&sn=18143&r=0&ww=1280&u=http%3A%2F%2Fwww.nils-holgerson.com%2Findex.php&tt=%E4%B8%B9%E9%98%B3%E6%9D%80%E5%A7%A8%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=687231361&si=fec0eaa8fc52795617f18f518d42aaab&v=1.3.0&lv=1&sn=18143&r=0&ww=1280&u=http%3A%2F%2Fwww.nils-holgerson.com%2Findex.php&tt=%E4%B8%B9%E9%98%B3%E6%9D%80%E5%A7%A8%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.nils-holgerson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 19 Dec 2022 04:06:23 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=8549D54DCE9611AB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1177134606&si=ac926d0332f02f4f5a734812940af824&v=1.3.0&lv=1&sn=18143&r=0&ww=1280&u=http%3A%2F%2Fwww.nils-holgerson.com%2Findex.php&tt=%E4%B8%B9%E9%98%B3%E6%9D%80%E5%A7%A8%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1177134606&si=ac926d0332f02f4f5a734812940af824&v=1.3.0&lv=1&sn=18143&r=0&ww=1280&u=http%3A%2F%2Fwww.nils-holgerson.com%2Findex.php&tt=%E4%B8%B9%E9%98%B3%E6%9D%80%E5%A7%A8%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1177134606&si=ac926d0332f02f4f5a734812940af824&v=1.3.0&lv=1&sn=18143&r=0&ww=1280&u=http%3A%2F%2Fwww.nils-holgerson.com%2Findex.php&tt=%E4%B8%B9%E9%98%B3%E6%9D%80%E5%A7%A8%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.nils-holgerson.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 19 Dec 2022 04:06:23 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=2F996EEE6427ACAA; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
jx.tongdoumaoyi.com/news/data.php
20.205.110.169200 OK 703 B URL HTTP/2 jx.tongdoumaoyi.com/news/data.php
IP 20.205.110.169:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 120d23fa2a8247d392d2eef7e254d812
6297dd212da92eb25de4355c6ae56a1721194e12
c0dd37f53021c9d8438413fa1d94f94f77d04029faaae674618330ff4e99541f
GET /news/data.php HTTP/1.1
Host: jx.tongdoumaoyi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jx.tongdoumaoyi.com/news/list.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.1
date: Mon, 19 Dec 2022 04:06:23 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
x-country: NO
x-cache: HIT@hk-32-az
X-Firefox-Spdy: h2
www.jxys10.xyz/template/m1938pc/html9/ads/1.gif
173.231.38.6200 OK 254 B URL HTTP/2 www.jxys10.xyz/template/m1938pc/html9/ads/1.gif
IP 173.231.38.6:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/html9/ads/1.gif HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:24 GMT
content-type: image/gif
content-length: 254
last-modified: Sat, 02 Apr 2022 12:20:12 GMT
etag: "62483f7c-fe"
expires: Wed, 18 Jan 2023 04:06:24 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jxys10.xyz/template/m1938pc/static/images/pic.png
173.231.38.6200 OK 90 B URL HTTP/2 www.jxys10.xyz/template/m1938pc/static/images/pic.png
IP 173.231.38.6:0
File type HTML document, ASCII text
Hash 5341dd3aa19c0eb3bc809f9150e3e833
7beaba24a698410e4ffc93357d82c6f683cbaba1
f4ea9875d59d8391034d2c230808d5812fd183e2c83751288cea542747f5ef53
GET /template/m1938pc/static/images/pic.png HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:25 GMT
content-type: image/png
content-length: 90
last-modified: Fri, 14 Jan 2022 04:46:48 GMT
etag: "61e10038-5a"
expires: Wed, 18 Jan 2023 04:06:25 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jxys10.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
173.231.38.6200 OK 13 kB URL HTTP/2 www.jxys10.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
IP 173.231.38.6:0
File type Web Open Font Format, TrueType, length 13408, version 1.0\012- data
Hash 99af6debcdaba3e7ffe01b4c3cbccacb
4efda64b06cd7c294f6214623bcb634f3def3bd1
1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72
GET /template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.jxys10.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:25 GMT
content-type: font/woff
content-length: 13408
last-modified: Fri, 14 Jan 2022 04:47:30 GMT
etag: "61e10062-3460"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jxys10.xyz/template/m1938pc/static/css/bootstrap.min.css
173.231.38.6200 OK 39 kB URL HTTP/2 www.jxys10.xyz/template/m1938pc/static/css/bootstrap.min.css
IP 173.231.38.6:0
File type ASCII text, with very long lines (493), with CRLF line terminators
Hash 3ee3406235016ae51e1e51815e9c0514
0fdad01c9eee57cef5a6bc2ceb7f0d9315db346d
cb42923f77cffc26e69536442e52beee164d05ed5e6a3ed1595424034398049f
GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:24 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:04 GMT
vary: Accept-Encoding
etag: W/"61e1000c-23816"
expires: Mon, 19 Dec 2022 16:06:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1229595593&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fjx.tongdoumaoyi.com%2F&v=1.3.0&lv=1&sn=18145&r=0&ww=1268&u=https%3A%2F%2Fwww.jxys10.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1229595593&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fjx.tongdoumaoyi.com%2F&v=1.3.0&lv=1&sn=18145&r=0&ww=1268&u=https%3A%2F%2Fwww.jxys10.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1229595593&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fjx.tongdoumaoyi.com%2F&v=1.3.0&lv=1&sn=18145&r=0&ww=1268&u=https%3A%2F%2Fwww.jxys10.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 19 Dec 2022 04:06:25 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D47517D68AAF8182; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e77c514863262451dba557057f017270
ba0c60d6cffc6ef7e009b926fb075a3295d26f96
e44b200ebb0753e2ce5169bb337cd19e989b6fa6d314b3882c6ebfe8474ee41f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E44B200EBB0753E2CE5169BB337CD19E989B6FA6D314B3882C6EBFE8474EE41F"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=368
Expires: Mon, 19 Dec 2022 04:12:34 GMT
Date: Mon, 19 Dec 2022 04:06:26 GMT
Connection: keep-alive
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash af78f1603ca3fa6d409950da7571f1d1
d5daaf48ac9bef5eb46c1931d320f9993c8a1a7b
4a1a991a7a39f9e846ad2b8cc66a68946a8001f4c420730a91f386edeecef402
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:26 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 04:39:32 GMT
Expires: Sat, 24 Dec 2022 04:39:31 GMT
Etag: "d5daaf48ac9bef5eb46c1931d320f9993c8a1a7b"
Cache-Control: max-age=433384,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd44004f03b4e8-OSL
kvmaa.com/2ef8f38182c5058d1904e6ab845a827a.gif
64.32.6.122200 OK 48 kB URL HTTP/2 kvmaa.com/2ef8f38182c5058d1904e6ab845a827a.gif
IP 64.32.6.122:0
File type GIF image data, version 89a, 960 x 120\012- data
Hash 6ac5bc0475727bcb21a2ea1223a4af8f
9c8c94a3914d5af120f9dfed2ca609a5da5747a3
eb30308b6d4775c9d7671c5c606558400a360a1a06c0c828634d4eaef8846c4c
GET /2ef8f38182c5058d1904e6ab845a827a.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:26 GMT
content-type: image/gif
content-length: 48447
last-modified: Wed, 10 Aug 2022 09:44:14 GMT
etag: "62f37dee-bd3f"
expires: Mon, 19 Dec 2022 16:06:26 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 13335
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MngmQcVIxabaRKUZ6DqYfjwykIjNJJaA%2BTrJomIbEghoC5QJjXxZvWDoHdqG%2F8mKclWfM%2Bjbcf2DUA01qg%2Fxp1UYmmZdOhTBoxhZnjktVt3fge1kuBrRASQiJGMa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-ray: 77a84c03dcb47e71-LAX
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0ac9e9404e6896bd820bbf775d998b32
6d69037df0ee6a52442ff3efe7d51f4491c5c082
0c45abf978fa7f961697f8a9a1dffbaa7690aaf93e115a66092f634fc7a03c42
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=168524
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:27 GMT
Etag: "639fd28f-118"
Expires: Wed, 21 Dec 2022 02:55:11 GMT
Last-Modified: Mon, 19 Dec 2022 02:55:11 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0ac9e9404e6896bd820bbf775d998b32
6d69037df0ee6a52442ff3efe7d51f4491c5c082
0c45abf978fa7f961697f8a9a1dffbaa7690aaf93e115a66092f634fc7a03c42
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=168524
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:27 GMT
Etag: "639fd28f-118"
Expires: Wed, 21 Dec 2022 02:55:11 GMT
Last-Modified: Mon, 19 Dec 2022 02:55:11 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0ac9e9404e6896bd820bbf775d998b32
6d69037df0ee6a52442ff3efe7d51f4491c5c082
0c45abf978fa7f961697f8a9a1dffbaa7690aaf93e115a66092f634fc7a03c42
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=168524
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:27 GMT
Etag: "639fd28f-118"
Expires: Wed, 21 Dec 2022 02:55:11 GMT
Last-Modified: Mon, 19 Dec 2022 02:55:11 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
z4a.net/images/2022/12/11/960x60.gif
104.21.234.234200 OK 169 kB URL HTTP/2 z4a.net/images/2022/12/11/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 169 kB (168777 bytes)
Hash 729a348b918f6435c5a38c8938a81587
f82b088813167cd5396bf74feedb4d8e35612dcf
cd580979947876de1d553e460e57bd4d7b432c682097f67c6249b667eb3c6726
GET /images/2022/12/11/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 168777
expires: Mon, 11 Dec 2023 14:12:40 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 654827
last-modified: Sun, 11 Dec 2022 14:12:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dzyr3x7mld7URUoYmAWkGmUYraOWyRZC9v8a4uDOQIMIFuf1DQyR%2FltGwUokZQxY098L93SeHXFEFuhK43OfDzAzW5xWboS1DlA9uCsaQkzcocOHML6fdQKa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77bd4404bb282405-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2022/12/11/960x603d5ab8438267da4d.gif
104.21.234.234200 OK 176 kB URL HTTP/2 z4a.net/images/2022/12/11/960x603d5ab8438267da4d.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 176 kB (176400 bytes)
Hash 790f7ce169b014489226f2bc54fcebdb
8c728b76de39bd04e942af210a6742a2727eedd5
111153d903587269530c51cc32126f82d51a9461b42be47237db3f289f6483c6
GET /images/2022/12/11/960x603d5ab8438267da4d.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 176400
expires: Sat, 16 Dec 2023 08:08:42 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 244665
last-modified: Fri, 16 Dec 2022 08:08:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=amBPkjBEzI3edJ9c%2B%2B%2BEzAy0uzwJgMv1XOCQweaMaAHv2L%2Fc3baKm3%2FLPq2P96ZwfcbiHH1LG0aisyd5Vu9GsVLto7ZGCWw1aadqFy%2FOjhzJpbhq2b4SRiwj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77bd4404cb2e2405-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2022/12/11/960-60-0.gif
104.21.234.234200 OK 198 kB URL HTTP/2 z4a.net/images/2022/12/11/960-60-0.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 198 kB (198523 bytes)
Hash 785b488cd18db17252bbc6e2e90d15fb
733a0183c583aaac34ffd5b1019d4a6ca25434c6
01982c41cd3165a9490c613aee197531461568a26d6691509076dfcb7c5438a4
GET /images/2022/12/11/960-60-0.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 198523
expires: Mon, 11 Dec 2023 14:13:22 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 654785
last-modified: Sun, 11 Dec 2022 14:13:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4AvaZJGVIQJgPFe344MHYbgVYw2BpjoURNcxhaslfNi7qoKV68opKIwpV8qVbsP%2Fn1ZFl%2FNOMLQ1%2FIOk%2BJBMn%2BMPMCOn546UAe2%2BxA2uNWD5KM4KflFAcgXL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77bd4404ab1e2405-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tvax3.sinaimg.cn/large/008bLEJGgy1h976j009pvg306903rjx1.gif
23.36.76.217200 OK 219 kB URL HTTP/2 tvax3.sinaimg.cn/large/008bLEJGgy1h976j009pvg306903rjx1.gif
IP 23.36.76.217:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 225 x 135\012- data
Size 219 kB (218709 bytes)
Hash d338d7bc7cb727e63bab94fe1b02928c
75c78d8a9c0b34ad158aed7d5c3797745b6c389a
136343e8b57fdbe13fd02db09cd4679078f1b5f1b3f5f687759219e01b20f828
GET /large/008bLEJGgy1h976j009pvg306903rjx1.gif HTTP/1.1
Host: tvax3.sinaimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/gif
content-length: 218709
x-ban: MISS,18565
x-debug-hit: ic(218709,0.001)
pragma: public
last-modified: Mon, 08 Jul 2013 18:06:40 GMT
x-request-id: g81.125-1671287554.291000-3196182618
etag: 1-d338d7bc7cb727e63bab94fe1b02928c
edge-copy-time: 1671287554297
x-via-cdn: f=Akamai,s=23.36.76.213,c=91.90.42.154;f=edge,s=cmcc.guangzhou.union.64.nb.sinaedge.com,c=23.32.248.85;f=Edge,s=cmcc.guangzhou.union.100,c=172.16.174.64
x-via-edge: 167128755885155f8201740ae10ac12c8eb8b
access-control-allow-credentials: true
cache-control: max-age=728782
expires: Tue, 27 Dec 2022 14:32:49 GMT
date: Mon, 19 Dec 2022 04:06:27 GMT
x-cache: TCP_MISS from a23-36-76-213.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_HIT from a95-101-142-37.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
network_info: NO_OSLO_50304
served-from: ?:95.101.142.41
X-Firefox-Spdy: h2
z4a.net/images/2022/12/10/960x60.gif
104.21.234.234200 OK 245 kB URL HTTP/2 z4a.net/images/2022/12/10/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (245207 bytes)
Hash 0b25bc78e72da9cce4df6f8b35a75247
26e8c59347f9489d5922e92660d3fc2d44c44cbb
8ff60c94afa37237e7746c8095addb9476b20739a25163536a2cd89217089a88
GET /images/2022/12/10/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 245207
expires: Mon, 11 Dec 2023 14:13:06 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 654801
last-modified: Sun, 11 Dec 2022 14:13:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BtVktp3fWomdKoz2NwU6MY77Fia6WQTDFV8XvM7%2F9OVeZNnFLM6i74tOgRw56N2LhXiLgBhbg%2FVmyD3WfXKhMJSh%2FGavIx9LQNHjuoIlohGGT9ct%2BdoydQNL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77bd4404ab1d2405-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
8499225.com/8499/zzxx/960x60.gif
172.247.50.229200 OK 290 kB URL HTTP/2 8499225.com/8499/zzxx/960x60.gif
IP 172.247.50.229:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 290 kB (289608 bytes)
Hash 87256eb017c1eb52501b2e09d550c592
4edb857469b329f3a2afe57a78db0f51e8a532e9
0a4c7e1219d127459f64f59d65dcc37668f58d55da2a4654b3134c5d9bfcbedd
GET /8499/zzxx/960x60.gif HTTP/1.1
Host: 8499225.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:26 GMT
content-type: image/gif
content-length: 289608
last-modified: Sat, 17 Dec 2022 10:44:45 GMT
etag: "46b48-5f003c6452387"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
z4a.net/images/2022/11/20/960x60.gif
104.21.234.234200 OK 578 kB URL HTTP/2 z4a.net/images/2022/11/20/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 578 kB (577945 bytes)
Hash 6ae710163cd11c12a73a693024c46410
43041b87b2040371a052bf1f83d401c263a32178
42da405262416c9fbaa04b2718406d4ea93501bfb99774fae4956b6eab7c1831
GET /images/2022/11/20/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 577945
expires: Sat, 16 Dec 2023 00:41:34 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 271493
last-modified: Fri, 16 Dec 2022 00:41:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N40SzJF5GLla7DKhdcUOxpmxIvacrt3nUmxEmuPCcIC74qe85mqzYa89%2BHiTNGoLzu5UhKpXn5mw1D0qBQAXHMsDGWlO%2FBWCpYdDYwy0v90Z4ptsuMMwYFZJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77bd4404ab162405-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2022/12/08/960x60.gif
104.21.234.234200 OK 520 kB URL HTTP/2 z4a.net/images/2022/12/08/960x60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 520 kB (520166 bytes)
Hash bb7821f4cd19defe3ab1a58275fe76f7
c64f50d1bd56087a3c8ae8c99290c85b4b15917f
10fcd94cf3afbb586d43a37109f5f9d42f0493f1d43e0730f552e5878857f746
GET /images/2022/12/08/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 520166
expires: Fri, 08 Dec 2023 09:34:57 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 930690
last-modified: Thu, 08 Dec 2022 09:34:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2yg8mOnO108x5UmC%2BEke7bZhbBip3QbNssRJzgDXM85BR57vJyb8pAaHnNS6KcWhohWbSAPHMeSjiDYcfVHf5INEDU%2Bv0gXvb0VaVockNzmETD2Am8glsPC%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77bd44049b112405-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash bffefd5b7549ffbc58fd70fa774cd412
0015cf5e01bef4de33e094f813fdbe5ccb0dd245
1630be27d2c568028898460056dcbf71ee210b75ac6d8688819fe5abbf37385b
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 23 Dec 2022 02:18:06 GMT
ETag: "0015cf5e01bef4de33e094f813fdbe5ccb0dd245"
Last-Modified: Mon, 19 Dec 2022 02:18:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1069
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd44074a561c16-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash bffefd5b7549ffbc58fd70fa774cd412
0015cf5e01bef4de33e094f813fdbe5ccb0dd245
1630be27d2c568028898460056dcbf71ee210b75ac6d8688819fe5abbf37385b
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 23 Dec 2022 02:18:06 GMT
ETag: "0015cf5e01bef4de33e094f813fdbe5ccb0dd245"
Last-Modified: Mon, 19 Dec 2022 02:18:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1069
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd44074e7db515-OSL
tvax3.sinaimg.cn/large/008bLEJGgy1h9773rrx7hg30j601e7c6.gif
23.36.76.217200 OK 301 kB URL HTTP/2 tvax3.sinaimg.cn/large/008bLEJGgy1h9773rrx7hg30j601e7c6.gif
IP 23.36.76.217:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 690 x 50\012- data
Size 301 kB (301247 bytes)
Hash 7ddb9183ff1cafd41c3e384ea9882fcc
c1133a753e2f929c3fdd2ead2604cd2e8198f22a
f8e2810ccb3d1c2b25ba0d1ad357ab84bb6fa50a949581b40e2ac34464f13bf3
GET /large/008bLEJGgy1h9773rrx7hg30j601e7c6.gif HTTP/1.1
Host: tvax3.sinaimg.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/gif
content-length: 301247
x-ban: MISS,18565
x-debug-hit: ic(301247,0.002)
pragma: public
last-modified: Mon, 08 Jul 2013 18:06:40 GMT
x-request-id: g54.99-1671288755.509000-4019335143
etag: 1-7ddb9183ff1cafd41c3e384ea9882fcc
edge-copy-time: 1671288755519
x-via-cdn: f=Akamai,s=23.36.76.213,c=91.90.42.154;f=edge,s=ctc.guangzhou.union.56.nb.sinaedge.com,c=23.32.248.93;f=Edge,s=cmcc.guangzhou.union.100,c=10.31.54.56
x-via-edge: 16712887555065df8201738361f0a1bafd0b3
access-control-allow-credentials: true
cache-control: max-age=729946
expires: Tue, 27 Dec 2022 14:52:13 GMT
date: Mon, 19 Dec 2022 04:06:27 GMT
x-cache: TCP_MISS from a23-36-76-213.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
x-cache-remote: TCP_HIT from a95-101-142-14.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
network_info: US_DALLAS_36183, NO_OSLO_50304
served-from: e:23.32.248.93
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 08d6b43495e128e9f64c50d0b41af70f
436d4f39f4df4a2f338c888742379b96120a650f
d253028854e0609085b095a3c8fef0833a4d2c3e1257d36044b511f30f169ca0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 21:14:28 GMT
Expires: Sun, 25 Dec 2022 21:14:27 GMT
Etag: "436d4f39f4df4a2f338c888742379b96120a650f"
Cache-Control: max-age=579479,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd44074e59b521-OSL
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ff731bf679e50f13c2f04170807035d9
8100faa7c14b4328d5f6054b12d28949c12fd823
addfe8f201a0760665e77a9dfa5edb282367cdaebdf4838df057759636838937
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "ADDFE8F201A0760665E77A9DFA5EDB282367CDAEBDF4838DF057759636838937"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21573
Expires: Mon, 19 Dec 2022 10:06:00 GMT
Date: Mon, 19 Dec 2022 04:06:27 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5947e58bb7d2c2c8f668162764d3edb9
182711cc51e4573a508648d83b8e6ab8bb7e4d4f
e3e6b60ac6c340427380bf150be9fc69f51683860b6348f35c4181ddd40985c0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E3E6B60AC6C340427380BF150BE9FC69F51683860B6348F35C4181DDD40985C0"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Mon, 19 Dec 2022 10:05:44 GMT
Date: Mon, 19 Dec 2022 04:06:27 GMT
Connection: keep-alive
img2.njxmd.com/2226/80.gif
104.21.20.152200 OK 477 kB URL HTTP/2 img2.njxmd.com/2226/80.gif
IP 104.21.20.152:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 477 kB (476792 bytes)
Hash 16a25996d9b78d6a2747533fbd4da89d
fb710cb0096cfe70624046e809a4f011c70fc722
9b6a8d1f51b3df478186546fa1fe3b563583772f5766f214d0c705f0ec19e32c
GET /2226/80.gif HTTP/1.1
Host: img2.njxmd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 476792
last-modified: Thu, 08 Dec 2022 07:57:17 GMT
etag: "639198dd-74678"
expires: Sat, 07 Jan 2023 12:16:33 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 920994
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F7V%2BciZjs7XvvTUUOBHsH914bOs%2BX3EuLIxG33%2FhB5cVwzSFevg4p7vblQi4XFaHhfVpa7lDWj6XZXFkDdk1vRdZcaNL1tzZY11f9YhkOc7kaRonFgHSfkwYCiwzAevgIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440879d6b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img4.211sun.com/hg1111/ad/60.gif
188.114.97.1200 OK 563 kB URL HTTP/2 img4.211sun.com/hg1111/ad/60.gif
IP 188.114.97.1:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 563 kB (562779 bytes)
Hash cf6443f95df375f4aa4f7967c1167348
592a195ee9aee54409654e26ea00deb540ea08f1
0b5567e3b133fc29e155fd8924b17d82711c4523c70af5e382d89dbe7bf91ed9
GET /hg1111/ad/60.gif HTTP/1.1
Host: img4.211sun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 562779
last-modified: Tue, 29 Nov 2022 08:53:21 GMT
etag: "6385c881-8965b"
expires: Sat, 14 Jan 2023 09:28:11 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 326296
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9vIQRxuGzPuE5dD58g0MrJmaVH7qaOMFWl9CsrDwvCxd3baGGCgJ8TzS4oDHrgtlT5pgBWHcUxSRBCsLMHi7uuqO3R%2BVrTI0%2BpA6E7w5ZPO9lI7SK7s0%2BcBAZqnQHwk1IjE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd44087a52b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 6bab544dd38da5f84af122100bcf5100
27067cd2955ab8decbcdf3b0cdc6441133a06df7
506b368d6eb6406764ebe28e2ee0101947e7331605bc45e28f25e52cbc1de3c5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 23:37:57 GMT
Expires: Sat, 24 Dec 2022 23:37:56 GMT
Etag: "27067cd2955ab8decbcdf3b0cdc6441133a06df7"
Cache-Control: max-age=501688,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd44075847b4ed-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1bb37a97b71a825d47fe11c85dcbaccf
66119507e0443cdee15abe75123c69ce9a47cd1c
5ed8a3683adb34be13109000aa47708c874911121f86f804fe9b32509da9c705
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ED8A3683ADB34BE13109000AA47708C874911121F86F804FE9B32509DA9C705"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3068
Expires: Mon, 19 Dec 2022 04:57:36 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash adc7649e3368e7079cc8055c054c6beb
ad115b4fa8c90fe59c44a94a53dc4c3c28906b93
70c5de8c6b3fe042702e9d7ac38431046a914eaa687cf12f90b35ca5998e6c07
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "70C5DE8C6B3FE042702E9D7AC38431046A914EAA687CF12F90B35CA5998E6C07"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 19 Dec 2022 10:06:28 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 0148b726f14406fc3aac3af600293a10
e0a0fbcdce43a44500218a49cc3bd59e99c8741e
545bc1ea5cb74fb12fe6bfa34d86a4a639299550e2e3fe4f0e2120eb5ef53389
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Mon, 19 Dec 2022 04:06:28 GMT
Last-Modified: Sun, 18 Dec 2022 21:24:55 GMT
ETag: "639f8527-1d7"
Expires: Tue, 20 Dec 2022 21:24:55 GMT
Cache-Control: max-age=148707
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1671422788
Via: cache23.l2de2[189,188,200-0,M], cache23.l2de2[189,0], cache4.se1[211,210,200-0,M], cache4.se1[212,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 19 Dec 2022 04:06:28 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816714227878646252e
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 08d6b43495e128e9f64c50d0b41af70f
436d4f39f4df4a2f338c888742379b96120a650f
d253028854e0609085b095a3c8fef0833a4d2c3e1257d36044b511f30f169ca0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 21:14:28 GMT
Expires: Sun, 25 Dec 2022 21:14:27 GMT
Etag: "436d4f39f4df4a2f338c888742379b96120a650f"
Cache-Control: max-age=579478,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd44074a571c16-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash f9c811cc8ef7c5693b70c34a3a832307
32fd7f0538eec64eca28c1f65e2d4fb3dd012cc1
1ce1d795a1dea95aab24e92b91a8d0e1b4c22fe1e89f20832832599cc3d4ada7
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Dec 2022 23:33:36 GMT
ETag: "32fd7f0538eec64eca28c1f65e2d4fb3dd012cc1"
Last-Modified: Sun, 18 Dec 2022 23:33:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2891
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd4409eab11c16-OSL
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 569d489b2569c12ffbaa557b0a995602
1b7b6f39bda7399b508474c4139815dcdb5b58dc
cc7edb677fb18603899dbddc518cffd0318af7cff5a92e95778df134f52da6ce
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=867
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
X-N: S
kvezz.com/95ca29ec3907b3bf2d8a24b35e3eda22.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kvezz.com/95ca29ec3907b3bf2d8a24b35e3eda22.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /95ca29ec3907b3bf2d8a24b35e3eda22.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: text/html
content-length: 162
location: https://acoozzh.top/95ca29ec3907b3bf2d8a24b35e3eda22.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2efffa9ec0c0a1167426666ee5eed0b2
f983e33e97dd86d98ccc1c4ee5d2ef72f359f8f3
832321e756e12d33c203ea3d51d3cd52adbc0bca5e5d2f5be67cf7fbcd1985cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "832321E756E12D33C203EA3D51D3CD52ADBC0BCA5E5D2F5BE67CF7FBCD1985CC"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 19 Dec 2022 10:06:28 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 50f5b0f93dd2430fc301abab49fca9f9
c8c1af5d53de53dd77bb06079e0d72ed789bc8fd
8197e73b9cf0abf38b302d475e62e248664765891286ff4d050d40487d9ad8d3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "8197E73B9CF0ABF38B302D475E62E248664765891286FF4D050D40487D9AD8D3"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14117
Expires: Mon, 19 Dec 2022 08:01:45 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b22f3dfffc112d9d408d818b920b16db
43a365251264e5440f2746f86e62bbbd9ba59c91
30fe21584cdfaa6feef01f06dd1a434565a36563732c5ab28ef7994b84004f8e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "30FE21584CDFAA6FEEF01F06DD1A434565A36563732C5AB28EF7994B84004F8E"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Mon, 19 Dec 2022 10:06:20 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b22f3dfffc112d9d408d818b920b16db
43a365251264e5440f2746f86e62bbbd9ba59c91
30fe21584cdfaa6feef01f06dd1a434565a36563732c5ab28ef7994b84004f8e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "30FE21584CDFAA6FEEF01F06DD1A434565A36563732C5AB28EF7994B84004F8E"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3568
Expires: Mon, 19 Dec 2022 05:05:56 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: text/html
content-length: 162
location: https://max004.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/tedqfnlyoyp.jpg
172.67.28.138200 OK 9.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/tedqfnlyoyp.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 23fdc785a2c387a8921008b7aef07cbd
b97e64bea59d8efd1341a6b139a9023c951a19da
a30cc3d5cb4ad095190a9af6961a7a567a29ffbc395735d4be2c99f69f523a7f
GET /upload/vod/2022/12/tedqfnlyoyp.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9858
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10702
content-disposition: inline; filename="tedqfnlyoyp.webp"
etag: "63903e33-29ce"
last-modified: Wed, 07 Dec 2022 07:18:11 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fc3b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-25/14/3ntqevhmcwr14003ntqevhmcwr245572.jpg
172.67.28.138200 OK 7.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-25/14/3ntqevhmcwr14003ntqevhmcwr245572.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3b0851d25dfdaf4453018d6ba6fcfb09
81778cc41bc16f83a5dffd2a1df0f10b236cd50c
ac260695a86f4ac2ba5e744f0f87b1e67c62b490474aa0a2d1880545283b07af
GET /upload/vod/2022/11-25/14/3ntqevhmcwr14003ntqevhmcwr245572.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 7496
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8924
content-disposition: inline; filename="3ntqevhmcwr14003ntqevhmcwr245572.webp"
etag: "638059f8-22dc"
last-modified: Fri, 25 Nov 2022 06:00:24 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fc4b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-19/16/znmtdtg3fn11619znmtdtg3fn1263009.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-19/16/znmtdtg3fn11619znmtdtg3fn1263009.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bd3fd037debb3b7ec9057e2f026c59d7
3fc2d3c0eddced427f460e12651685311ae0af29
b19b455ca9ef3725566c6908217391bf72bee54ece8f40504cebc593ebcc9b76
GET /upload/vod/2022/11-19/16/znmtdtg3fn11619znmtdtg3fn1263009.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 10870
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11415
content-disposition: inline; filename="znmtdtg3fn11619znmtdtg3fn1263009.webp"
etag: "6378918e-2c97"
last-modified: Sat, 19 Nov 2022 08:19:26 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fc5b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-16/13/qtzuufrjhye1318qtzuufrjhye592235.jpg
172.67.28.138200 OK 9.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-16/13/qtzuufrjhye1318qtzuufrjhye592235.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7d425f7bea4f48366f31883ea613ed55
6e282d4bfa59cc087ac52130fcb393301b6316bb
a9286fa4027b04fbfd0427fc19745a5eccf931b2e998d52e9e7e63d3ca4c3183
GET /upload/vod/2022/11-16/13/qtzuufrjhye1318qtzuufrjhye592235.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9176
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10099
content-disposition: inline; filename="qtzuufrjhye1318qtzuufrjhye592235.webp"
etag: "637472c3-2773"
last-modified: Wed, 16 Nov 2022 05:18:59 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fc6b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-06/13/1rsw1lqafze13331rsw1lqafze476221.jpg
172.67.28.138200 OK 16 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-06/13/1rsw1lqafze13331rsw1lqafze476221.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash fb8299566d6ea78f401c58aa1aed76b0
06b3ca9b2bee69473d2348c67feb9c598a1f3605
ea13b22c9d50069700778e892496aec8930d0aefd3180a8eb47e56452d55a22b
GET /upload/vod/2022/11-06/13/1rsw1lqafze13331rsw1lqafze476221.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/jpeg
content-length: 16544
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=16984, status=webp_bigger
etag: "6367473b-4258"
last-modified: Sun, 06 Nov 2022 05:33:47 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440a6fc8b521-OSL
X-Firefox-Spdy: h2
image.mui1ohr.cn/oms.1511122.com/1671282034041-960x60.gif
47.246.44.205200 OK 109 kB URL HTTP/1.1 image.mui1ohr.cn/oms.1511122.com/1671282034041-960x60.gif
IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 109 kB (109246 bytes)
Hash e573c37ce1ba8b57e8dfb8fcd43368c9
f5da3a1479bfd18c820893899b5b478df5d02d3c
d9f97dfc186d336e8a5da72bffc7b70378bf87f68de9af20d59a8b88ff271d53
GET /oms.1511122.com/1671282034041-960x60.gif HTTP/1.1
Host: image.mui1ohr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 109246
Connection: keep-alive
Date: Mon, 19 Dec 2022 01:01:45 GMT
x-oss-request-id: 639FB7F9C1979835305CE4BA
x-oss-cdn-auth: success
Accept-Ranges: bytes
ETag: "E573C37CE1BA8B57E8DFB8FCD43368C9"
Last-Modified: Sat, 17 Dec 2022 13:00:38 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5454499210466108819
x-oss-storage-class: Standard
Content-MD5: 5XPDfOG6i1fo37j81DNoyQ==
x-oss-server-time: 3
Ali-Swift-Global-Savetime: 1671411705
Via: cache15.l2de2[0,0,304-0,H], cache5.l2de2[0,0], cache3.se1[0,0,200-0,H], cache7.se1[1,0]
Age: 11083
X-Cache: HIT TCP_MEM_HIT dirn:2:312100908
X-Swift-SaveTime: Mon, 19 Dec 2022 01:13:53 GMT
X-Swift-CacheTime: 42472
Timing-Allow-Origin: *
EagleId: 2ff62c9b16714227881748571e
www.jxys10.xyz/template/m1938pc/static/css/style.css
173.231.38.6200 OK 95 kB URL HTTP/2 www.jxys10.xyz/template/m1938pc/static/css/style.css
IP 173.231.38.6:0
Hash 5c5c26ab9220b02d80fa2d4a8021b249
cc424d901df8036dc774c76a0a34b117e560e6b6
74a771c372a37fa67c4d4ea9e0c8e62f775ca677b2d92f61545999f339ff4c3c
GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:24 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-10aff"
expires: Mon, 19 Dec 2022 16:06:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash c7ad20a112166d35148fb5dd6b76622c
9453fd4acddef84474414c40a035fdbac61335b2
7eab720a0f25b6ebcba638eaf8c55de014384bb576f70447ee2b71ca60b58f3b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Dec 2022 04:06:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Dec 2022 13:30:49 GMT
Expires: Mon, 19 Dec 2022 13:30:49 GMT
ETag: "9453fd4acddef84474414c40a035fdbac61335b2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
lbfm.lbpictupian.com/upload/vod/2020/03-28/06/l1r4aieysv10604l1r4aieysv1481238.jpg
172.67.28.138200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-28/06/l1r4aieysv10604l1r4aieysv1481238.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash a0cb9340efc817b54c1ae7c2b8a8d76f
b2935e4d68381b0b1fe715bc7eb22ac137e7866a
0af101cffa3fc5bb2c3ea258a7295ee93e66034a7e5cbebda26052c0ba4376c9
GET /upload/vod/2020/03-28/06/l1r4aieysv10604l1r4aieysv1481238.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/jpeg
content-length: 9960
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10409, status=webp_bigger
etag: "5e7e7880-28a9"
last-modified: Fri, 27 Mar 2020 22:04:48 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440a6fcab521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/10-27/13/yhnw02dkioo1342yhnw02dkioo132649.jpg
172.67.28.138200 OK 9.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-27/13/yhnw02dkioo1342yhnw02dkioo132649.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6db6e065a2513b03e453cc933697321c
f23a72437919498c6b44f9596b4119e1b160df8a
6ebcfb862d051036bd7154bb6602dbcd24a353efe1ceb73ab5cf3e908ca91087
GET /upload/vod/2022/10-27/13/yhnw02dkioo1342yhnw02dkioo132649.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9100
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9698
content-disposition: inline; filename="yhnw02dkioo1342yhnw02dkioo132649.webp"
etag: "635a1a35-25e2"
last-modified: Thu, 27 Oct 2022 05:42:13 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fcbb521-OSL
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 2766a89114fa0220c5f52b6d8031a7dd
19f026c6b1ec37dfcef776cb7d518b9184ff496b
10f6d0bf681dc4ac21732ff2842228ed3d4e48d8e596d204072f9b0d92db1319
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Fri, 16 Dec 2022 02:12:37 GMT
Expires: Fri, 23 Dec 2022 02:12:36 GMT
Etag: "19f026c6b1ec37dfcef776cb7d518b9184ff496b"
Cache-Control: max-age=338167,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440aeac5b4e8-OSL
lbfm.lbpictupian.com/upload/vod/2022/11-07/11/ti4dbnmfwc01152ti4dbnmfwc0156571.jpg
172.67.28.138200 OK 4.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-07/11/ti4dbnmfwc01152ti4dbnmfwc0156571.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cf7a5eeca4da86ff2ddbdd9a77de5107
e905e417383ac44c6e7f1c4cce421c9695c711db
c326632d34b02c1c070119eba2fd4e7b0877599d691960c0b9ce7ad4e05aae47
GET /upload/vod/2022/11-07/11/ti4dbnmfwc01152ti4dbnmfwc0156571.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 4482
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6651
content-disposition: inline; filename="ti4dbnmfwc01152ti4dbnmfwc0156571.webp"
etag: "636880ef-19fb"
last-modified: Mon, 07 Nov 2022 03:52:15 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fc7b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-03/11/wuvpypjmdke1112wuvpypjmdke515303.jpg
172.67.28.138200 OK 8.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-03/11/wuvpypjmdke1112wuvpypjmdke515303.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54564f6fe5d24c3be0fb0abdcfc93ac0
33d65dadfacfb6b0c805a743af9666141f887c07
67bca5dc3ef300578aba244dcb069b8b835f8e0eeee20f4b624d415224b84771
GET /upload/vod/2022/11-03/11/wuvpypjmdke1112wuvpypjmdke515303.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 8384
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9055
content-disposition: inline; filename="wuvpypjmdke1112wuvpypjmdke515303.webp"
etag: "636331b3-235f"
last-modified: Thu, 03 Nov 2022 03:12:51 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fc9b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/x3n24lrlwyd.jpg
172.67.28.138200 OK 7.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/x3n24lrlwyd.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ede21dfae524797447e19f1f0d3c6a61
15bd322666c1a14694ff47a9ff0c13d6bae4ebaa
76ee11c7b45541c97cfab0bfb46b9844548471d26a129032720b4bb76fc5d3bd
GET /upload/vod/2022/12/x3n24lrlwyd.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 7322
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8150
content-disposition: inline; filename="x3n24lrlwyd.webp"
etag: "639ec198-1fd6"
last-modified: Sun, 18 Dec 2022 07:30:32 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fcfb521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/x5pw1tda1xm.jpg
172.67.28.138200 OK 9.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/x5pw1tda1xm.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 266baf67595fc802cb5d6f3990e032c2
6ea1cbbf8e6750060e0e1398068ea63d1f52163a
d3d84b533fa15f2e6399e8735a6134786a9e9f96b9f07f52c04073bbe86720e7
GET /upload/vod/2022/12/x5pw1tda1xm.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9820
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10599
content-disposition: inline; filename="x5pw1tda1xm.webp"
etag: "639ec194-2967"
last-modified: Sun, 18 Dec 2022 07:30:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fceb521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/c4xlbs4w5m4.jpg
172.67.28.138200 OK 9.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/c4xlbs4w5m4.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash af1407ea011f6230473913ab08b95740
da99ad5364ac3e8978ba5f0c26ab984ad36dba07
57b601a81faa7ccd03eb29b376fd6eecd70f69ff4716431823afdbcdead5cb9a
GET /upload/vod/2022/12/c4xlbs4w5m4.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9810
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10454
content-disposition: inline; filename="c4xlbs4w5m4.webp"
etag: "639ec19c-28d6"
last-modified: Sun, 18 Dec 2022 07:30:36 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fd1b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/yzinlmbfles.jpg
172.67.28.138200 OK 9.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/yzinlmbfles.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fb93391d05f756f8d3c5e8f0aac3cf30
38271fc6dc3a2c6003a61c6e070b4c84ee37191b
f85963adbe7133600676a32eda343ad9144f231262a0ca24800967e377cafb24
GET /upload/vod/2022/12/yzinlmbfles.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9646
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10400
content-disposition: inline; filename="yzinlmbfles.webp"
etag: "639ec1a0-28a0"
last-modified: Sun, 18 Dec 2022 07:30:40 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fd3b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/3y542410wmz.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/3y542410wmz.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 553369ad15dd59cd97ad6906b68af21b
f09cfaf14639a640e6df9a0390e3d3759aa0ea6f
10fa95b42886bb01b086116149129ba40d003e4647bbe4e2b154aabfe04efbf8
GET /upload/vod/2022/12/3y542410wmz.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 11058
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=12015
content-disposition: inline; filename="3y542410wmz.webp"
etag: "639ec1a5-2eef"
last-modified: Sun, 18 Dec 2022 07:30:45 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a7fd4b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/rqrswbi0lys.jpg
172.67.28.138200 OK 9.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/rqrswbi0lys.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 98f500294fc4e1034f544cd26887c9a8
b24deff8f214c9cbd49503276975525d15b3b5a8
0d7d366fc8fa00834db676aa3db3061697e794d215cd7e5e09c4cb23898818bb
GET /upload/vod/2022/12/rqrswbi0lys.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/jpeg
content-length: 9404
cf-bgj: imgq:85,h2pri
cf-polished: origSize=9824, status=webp_bigger
etag: "639ec190-2660"
last-modified: Sun, 18 Dec 2022 07:30:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440a6fcdb521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/w3xcdchgwnc.jpg
172.67.28.138200 OK 9.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/w3xcdchgwnc.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 9cd60d643e848258f7ea5ddd1bb8ef3a
7d50e34d3d4bf3f4cd03360d436d00aed15ee786
0bcc9e83f7350ef902213eb45e6b19e960703409e2a52e6d00f89c506fc5d22d
GET /upload/vod/2022/12/w3xcdchgwnc.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/jpeg
content-length: 9872
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10345, status=webp_bigger
etag: "639ec1a9-2869"
last-modified: Sun, 18 Dec 2022 07:30:49 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440abff4b521-OSL
X-Firefox-Spdy: h2
jx.tongdoumaoyi.com/news/list.php
20.205.110.169200 OK 28 kB URL HTTP/2 jx.tongdoumaoyi.com/news/list.php
IP 20.205.110.169:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 31d7ee13203a3fe22a6a969466c6d06f
877db3ec4aaf89b9b51fbfe968701b9995829f1f
64adcc66d25b75b1b419a483463f3c187b971d11f604962ec4ef454af89159b9
GET /news/list.php HTTP/1.1
Host: jx.tongdoumaoyi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jx.tongdoumaoyi.com/news/index.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.1
date: Mon, 19 Dec 2022 04:06:23 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
x-country: NO
x-cache: HIT@hk-32-az
X-Firefox-Spdy: h2
www.jxys10.xyz/template/m1938pc/static/css/mm-content.css
173.231.38.6200 OK 12 kB URL HTTP/2 www.jxys10.xyz/template/m1938pc/static/css/mm-content.css
IP 173.231.38.6:0
Hash ab35771d6b3d7eda65c02bf17b47e73a
c69cc735f813cce2d8fc68816091bd980c945bd9
2648d3025045a2e03f0422e963595ecb3c3d953cf37de310ebeaf071afd80a42
GET /template/m1938pc/static/css/mm-content.css HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:24 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-1ccb"
expires: Mon, 19 Dec 2022 16:06:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jxys10.xyz/template/m1938pc/static/css/white.css
173.231.38.6200 OK 10 kB URL HTTP/2 www.jxys10.xyz/template/m1938pc/static/css/white.css
IP 173.231.38.6:0
Hash 73349a5f0aacd5d8db29ffe28f819d48
1cc7d7b294a9b0f5b7ac04aee7d457dfb138cdc7
bd7385719d1aa4e4911e72a8940209948a05ad54ca08e9aafb41706ef44a61f6
GET /template/m1938pc/static/css/white.css HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:24 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-29d9"
expires: Mon, 19 Dec 2022 16:06:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/yujma514hqv.jpg
172.67.28.138200 OK 9.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/yujma514hqv.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 59d4fe78b54ea68982aa0bae76360df6
1cc0fdaa3f69904eb6a3d65eb3ed6d1b3ca07f87
47d3f9ac252b4eeb049835785af11f58d87b18921fca53365507eae04fab10d9
GET /upload/vod/2022/12/yujma514hqv.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9802
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10645
content-disposition: inline; filename="yujma514hqv.webp"
etag: "639ec1c0-2995"
last-modified: Sun, 18 Dec 2022 07:31:12 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440b2811b521-OSL
X-Firefox-Spdy: h2
www.jxys10.xyz/template/m1938pc/static/css/1.css
173.231.38.6200 OK 11 kB URL HTTP/2 www.jxys10.xyz/template/m1938pc/static/css/1.css
IP 173.231.38.6:0
Hash 99fd52d9a44e2b672ef8b26493bf894e
aabd03a87f58847074f02460cd4c4c5c5c2d59be
0f34cb0cd56151aade184157b7b10914410f368438cafb72fe9090f758014eab
GET /template/m1938pc/static/css/1.css HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:24 GMT
content-type: text/css
last-modified: Sun, 16 Jan 2022 07:31:51 GMT
vary: Accept-Encoding
etag: W/"61e3c9e7-50e"
expires: Mon, 19 Dec 2022 16:06:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/ttrdzjnk4sk.jpg
172.67.28.138200 OK 9.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/ttrdzjnk4sk.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e8819295f90723369b85d95505046b6e
4351dd9d2fa6ddd2e706d37b196b1ef90cb06bfd
9ba97958cef05a4027b668c681cf0abe65d5daac31f3c38ae9d0cdee51cf20f6
GET /upload/vod/2022/12/ttrdzjnk4sk.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9646
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10603
content-disposition: inline; filename="ttrdzjnk4sk.webp"
etag: "639ec1c5-296b"
last-modified: Sun, 18 Dec 2022 07:31:17 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440b6824b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/egbdtroov2b.jpg
172.67.28.138200 OK 9.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/egbdtroov2b.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9d0250182b431f90783300c214257a61
e7e8c3d39259bb8acae068ae73961be76c977a19
95245f4325360f9f58a7cfd8e665d62187657b103aa4a13e3c2e66f5f0099eb9
GET /upload/vod/2022/12/egbdtroov2b.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9848
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11561
content-disposition: inline; filename="egbdtroov2b.webp"
etag: "639ec1ce-2d29"
last-modified: Sun, 18 Dec 2022 07:31:26 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440b882bb521-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d0dd3afc0bcc2cadee52be54ad8326e
2e03f69d5799526b0f3dcae1bcd1b0935a3c5457
3ae5ef6136baa1c27a0aa92764ffea226673987aefdb72a9d6d1c711867132af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3AE5EF6136BAA1C27A0AA92764FFEA226673987AEFDB72A9D6D1C711867132AF"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14107
Expires: Mon, 19 Dec 2022 08:01:35 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2022/12/ivhosuz1cks.jpg
172.67.28.138200 OK 9.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/ivhosuz1cks.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9f7dfd5bdb958340bf983791d985a6bf
4c15496520942651ecf8bf2fcb3a4b059d2492f0
7280f29357e1c499fb8c62ab9206ae8aa0c17827c0ea7a6de250e2dd645eb00e
GET /upload/vod/2022/12/ivhosuz1cks.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 9150
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10013
content-disposition: inline; filename="ivhosuz1cks.webp"
etag: "639ec1ca-271d"
last-modified: Sun, 18 Dec 2022 07:31:22 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5636
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440b882ab521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/ioyhtumulof.jpg
172.67.28.138200 OK 5.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/ioyhtumulof.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7166b8828b383416635552a4e7d934ce
87a7b007c91b402ac837ae8e266418ff7c2b3e6f
0d4d40ee2c8f25be22915ed40f628147f3c428bf48f54d5fc71a81bf91581919
GET /upload/vod/2022/12/ioyhtumulof.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 5408
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6438
content-disposition: inline; filename="ioyhtumulof.webp"
etag: "63919883-1926"
last-modified: Thu, 08 Dec 2022 07:55:47 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440b9834b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/p33uukek2g5.jpg
172.67.28.138200 OK 17 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/p33uukek2g5.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash bcbfc37f4cfa30666e3c596b1a37746b
b0baeb44b937e5dbebbc2b3afaf59fb61e8f6682
d7e33db44d7bb6484c2424f04cb2d7f15c527e68390d5f6585b89c926369887f
GET /upload/vod/2022/12/p33uukek2g5.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/jpeg
content-length: 17124
cf-bgj: imgq:85,h2pri
cf-polished: origSize=18053, status=webp_bigger
etag: "638da58f-4685"
last-modified: Mon, 05 Dec 2022 08:02:23 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440bb83ab521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/ykvbryflu2v.jpg
172.67.28.138200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/ykvbryflu2v.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 47d37a5faeb9b9e9711d5f0d4144dd0f
904fdd70ddb03fc80cdb4ba832ca602b07e21824
c9cad32a7bfcd3216222ebdc1c2a7707715da1cdfc54edfe0b4c73cd7fd2a4ba
GET /upload/vod/2022/12/ykvbryflu2v.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/jpeg
content-length: 11451
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12037, status=webp_bigger
etag: "6395898e-2f05"
last-modified: Sun, 11 Dec 2022 07:41:02 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440bb839b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/wsjcnxu5mfc.jpg
172.67.28.138200 OK 4.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/wsjcnxu5mfc.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a1e3b01fee0f819cf66b3a87d4cf2ac3
258aa12dc1c2bcb5ae43456ff474815cb7d925c5
c1a366d694caeb11be2024da4a41c8c1df1f33414363ca7aeadd55683739cbeb
GET /upload/vod/2022/12/wsjcnxu5mfc.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 4700
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7557
content-disposition: inline; filename="wsjcnxu5mfc.webp"
etag: "6396b759-1d85"
last-modified: Mon, 12 Dec 2022 05:08:41 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440bb840b521-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/12/wu0pgmyswv1.jpg
172.67.28.138200 OK 8.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/12/wu0pgmyswv1.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 53a8cd043a389cc5b7c9728278cf3560
6767a51338c26b2691760b121fab0936ba35fbfc
d3a24ca26f5e2aaf1418fcb032962bd79b3e059521935b0f43f67ce9901b1b18
GET /upload/vod/2022/12/wu0pgmyswv1.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 8218
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9558
content-disposition: inline; filename="wu0pgmyswv1.webp"
etag: "63942e7f-2556"
last-modified: Sat, 10 Dec 2022 07:00:15 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3444
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440bb83fb521-OSL
X-Firefox-Spdy: h2
66668aaa.com/137dd6d87688482eb020c1c774325059.185.gif
103.170.15.74200 OK 149 kB URL HTTP/1.1 66668aaa.com/137dd6d87688482eb020c1c774325059.185.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 320 x 185\012- data
Size 149 kB (149081 bytes)
Hash ca110f84ebcc10dd498b26dc6c90087b
cfaf975d43693cfc7c2e05305068b0d933748d98
04dff307dc6fdc4da149bad386613e102c1f0e6d2b26974c5666505c7d97ef2e
GET /137dd6d87688482eb020c1c774325059.185.gif HTTP/1.1
Host: 66668aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62f2795c-24659"
Date: Wed, 14 Dec 2022 13:05:50 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 09 Aug 2022 15:12:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 149081
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash d3fcf86882162420fbc5020649eab595
533d898247063b0172143c69196f158f1ed833d7
7df372ff63639186e31e7832943a43dc3d0d9852c79e5c45176e0183a1b192b7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 23:46:46 GMT
Expires: Sat, 24 Dec 2022 23:46:45 GMT
Etag: "533d898247063b0172143c69196f158f1ed833d7"
Cache-Control: max-age=502216,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440adff9b521-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 2766a89114fa0220c5f52b6d8031a7dd
19f026c6b1ec37dfcef776cb7d518b9184ff496b
10f6d0bf681dc4ac21732ff2842228ed3d4e48d8e596d204072f9b0d92db1319
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Fri, 16 Dec 2022 02:12:37 GMT
Expires: Fri, 23 Dec 2022 02:12:36 GMT
Etag: "19f026c6b1ec37dfcef776cb7d518b9184ff496b"
Cache-Control: max-age=338167,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440b9fe3b50c-OSL
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ff731bf679e50f13c2f04170807035d9
8100faa7c14b4328d5f6054b12d28949c12fd823
addfe8f201a0760665e77a9dfa5edb282367cdaebdf4838df057759636838937
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "ADDFE8F201A0760665E77A9DFA5EDB282367CDAEBDF4838DF057759636838937"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21572
Expires: Mon, 19 Dec 2022 10:06:00 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5947e58bb7d2c2c8f668162764d3edb9
182711cc51e4573a508648d83b8e6ab8bb7e4d4f
e3e6b60ac6c340427380bf150be9fc69f51683860b6348f35c4181ddd40985c0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E3E6B60AC6C340427380BF150BE9FC69F51683860B6348F35C4181DDD40985C0"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Mon, 19 Dec 2022 10:05:44 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 2766a89114fa0220c5f52b6d8031a7dd
19f026c6b1ec37dfcef776cb7d518b9184ff496b
10f6d0bf681dc4ac21732ff2842228ed3d4e48d8e596d204072f9b0d92db1319
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Fri, 16 Dec 2022 02:12:37 GMT
Expires: Fri, 23 Dec 2022 02:12:36 GMT
Etag: "19f026c6b1ec37dfcef776cb7d518b9184ff496b"
Cache-Control: max-age=338167,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440b7af1b4e8-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e7ae2647f957d9e24c2b25597853c4bd
e614e280dc9510ad339063a710b335e76220cfd0
3867251368fcd8520b627407770e81953d1d5541bdfc43447081269b40e20a78
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 23:33:08 GMT
Expires: Sat, 24 Dec 2022 23:33:07 GMT
Etag: "e614e280dc9510ad339063a710b335e76220cfd0"
Cache-Control: max-age=501398,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440b7b81b4ed-OSL
lbfm.lbpictupian.com/upload/vod/2022/10-22/15/gbe01acskgc1536gbe01acskgc001255.jpg
172.67.28.138200 OK 2.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/10-22/15/gbe01acskgc1536gbe01acskgc001255.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4102154235bdfbcd293f663fe3c2b160
3daf389709bdecc7f092658709e3724d917971e2
e9cf648344aec4656ad9cfcdbb12afbfdd96752af431e800fd309fb40454f857
GET /upload/vod/2022/10-22/15/gbe01acskgc1536gbe01acskgc001255.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/webp
content-length: 2584
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=4317
content-disposition: inline; filename="gbe01acskgc1536gbe01acskgc001255.webp"
etag: "63539d60-10dd"
last-modified: Sat, 22 Oct 2022 07:36:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 77bd440a6fccb521-OSL
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 34b7043d95a01958b65b466bcc00a318
8e0fdd7876826addaceaaa33947e77aae3991379
308bcb4ed75929ec5e36ac28f8af08cf488686f071e07d1ec6a4077f82f50813
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 11:06:57 GMT
Expires: Sat, 24 Dec 2022 11:06:56 GMT
Etag: "8e0fdd7876826addaceaaa33947e77aae3991379"
Cache-Control: max-age=456627,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440c9827b50c-OSL
58tu.1468tu.com/58tu/960x100.gif
20.249.88.42200 OK 166 kB URL HTTP/1.1 58tu.1468tu.com/58tu/960x100.gif
IP 20.249.88.42:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 100\012- data
Size 166 kB (165870 bytes)
Hash ac63ac5a8f69ce5bd9f5c6dbcbe5e449
ea0e3a5a67615ba236262770bfbf9aacaaf59ef8
c509935cc565a4e97603bb9ae7ed879b22b0ac048e825cd771be70b69ce0842d
GET /58tu/960x100.gif HTTP/1.1
Host: 58tu.1468tu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:27 GMT
Content-Type: image/gif
Content-Length: 165870
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 08:09:12 GMT
ETag: "b6ce236cffd6d81:0"
X-Powered-By: ASP.NET
Server: X-Y
X-Cache-Status: HIT
Accept-Ranges: bytes
3p8801.co/a-960x60.gif
107.148.202.17200 OK 49 kB IP 107.148.202.17:0
File type GIF image data, version 89a, 960 x 60\012- data
Hash bc918df261620170b7115cc2c1627bb9
59b4f2c3b1ae6fcc19becc440d212fa40cf3c15b
08f4f93ccef77488dbea402164b42335212bb9ecc09250f2d40d26f9dfe427db
GET /a-960x60.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/gif
content-length: 49174
last-modified: Sat, 12 Nov 2022 07:32:42 GMT
etag: "636f4c1a-c016"
expires: Wed, 18 Jan 2023 04:06:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
66668aaa.com/8bd58f51917d43c98efb7264da3e6a09.gif
103.170.15.74200 OK 640 kB URL HTTP/1.1 66668aaa.com/8bd58f51917d43c98efb7264da3e6a09.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 640 kB (640115 bytes)
Hash e63b36dadbdaeaf26f8cddd8e077d3dc
eff646d025224911b00e4a648493c7dbec6feb10
a123045e26313bf1be34d1f3d94a7e20f9f0db8a92f1e23f458fbc862ee278b9
GET /8bd58f51917d43c98efb7264da3e6a09.gif HTTP/1.1
Host: 66668aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63510b81-9c473"
Date: Wed, 14 Dec 2022 13:22:53 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 20 Oct 2022 08:49:05 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 640115
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 81f35d7d4b7b8c649b35c43e9c10c16a
abc8fc9442ba1851acd272be87d3544e056940cc
209a72d6d93a7f315ea0aa4da2bc097d6a158313f5c9d8d3a638c1be37ae3c0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A72D6D93A7F315EA0AA4DA2BC097D6A158313F5C9D8D3A638C1BE37AE3C0E"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 19 Dec 2022 10:06:28 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
66668aaa.com/03f4c91859e345fd8955d5640194ce6e.gif
103.170.15.74200 OK 161 kB URL HTTP/1.1 66668aaa.com/03f4c91859e345fd8955d5640194ce6e.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 320 x 185\012- data
Size 161 kB (160599 bytes)
Hash 1e6146135f463f9dd5a91b6ec27e6dc6
b4871d778c720ce51a7c0e9fef07230b6ac0935a
ee63a02abc03ac35bb66a8010518568351f9215b346ffdc244f6b8926ff08519
GET /03f4c91859e345fd8955d5640194ce6e.gif HTTP/1.1
Host: 66668aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63427f5e-27357"
Date: Wed, 14 Dec 2022 13:09:49 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 09 Oct 2022 07:59:26 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 160599
66668aaa.com/ddc7ee998e5442059a05a76f45a279b8.gif
103.170.15.74200 OK 359 kB URL HTTP/1.1 66668aaa.com/ddc7ee998e5442059a05a76f45a279b8.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 359 kB (358672 bytes)
Hash 668143938c3bb811847d83330decd423
f86300da5d773b84bc65d3c901a4767fd8566c48
a06c47f458fdbd01ba8ba0202fb615e94e2353d65098b480ede52a13a645f859
GET /ddc7ee998e5442059a05a76f45a279b8.gif HTTP/1.1
Host: 66668aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63665362-57910"
Date: Wed, 14 Dec 2022 12:54:20 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 05 Nov 2022 12:13:22 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 358672
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1af47f241be52f3ebd20cda199317b2d
af0b9d7937f91d12bc9f44c3acf6711c3c130427
8386411d2ef14767b1059951a0fbadd5a07498b3c2b427499f5618be66c0a469
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8386411D2EF14767B1059951A0FBADD5A07498B3C2B427499F5618BE66C0A469"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21283
Expires: Mon, 19 Dec 2022 10:01:11 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
ocsp.buypass.com/
23.36.76.129200 OK 1.7 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash 9f55ee9a5e38989cda40784420fab156
4434b9703f612c190554838c67eb3a4b1d4e91a3
908695959e74f88a9de7ef2e11c405767268573215a5bf58c9f4051252bff1eb
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 24e03b6e-2875-48e4-a1ca-e553778a5602
Content-Length: 1701
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 97abcb464cb0b518da5dafc781d66921
d8be06576f06749098b801ce2c0b5e947b22cccb
317b338168ecbe016fca6deb902033f6679b3bef142781fd2116272fa4305cfe
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "317B338168ECBE016FCA6DEB902033F6679B3BEF142781FD2116272FA4305CFE"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 19 Dec 2022 10:06:28 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 1fb8b38265fbb06961f006c858ff9e92
046b3e4314bed366553470a46297b391268172b6
47ab64ac260e2bfb23b494c3cd22e71037337e3102c87951aa85b88a60298edc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1972
Cache-Control: max-age=152486
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:28 GMT
Etag: "639f8c36-2d7"
Expires: Tue, 20 Dec 2022 22:27:54 GMT
Last-Modified: Sun, 18 Dec 2022 21:55:02 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 1fb8b38265fbb06961f006c858ff9e92
046b3e4314bed366553470a46297b391268172b6
47ab64ac260e2bfb23b494c3cd22e71037337e3102c87951aa85b88a60298edc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1972
Cache-Control: max-age=152486
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:28 GMT
Etag: "639f8c36-2d7"
Expires: Tue, 20 Dec 2022 22:27:54 GMT
Last-Modified: Sun, 18 Dec 2022 21:55:02 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 1fb8b38265fbb06961f006c858ff9e92
046b3e4314bed366553470a46297b391268172b6
47ab64ac260e2bfb23b494c3cd22e71037337e3102c87951aa85b88a60298edc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 629
Cache-Control: max-age=151143
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:28 GMT
Etag: "639f8c36-2d7"
Expires: Tue, 20 Dec 2022 22:05:31 GMT
Last-Modified: Sun, 18 Dec 2022 21:55:02 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 727
www.jxys10.xyz/template/m1938pc/html9/ads/zxf.js
173.231.38.6200 OK 22 kB URL HTTP/2 www.jxys10.xyz/template/m1938pc/html9/ads/zxf.js
IP 173.231.38.6:0
Hash 9dd863944204a4fce024ceb4f2c3d61a
ba5ce85a7b3622828f43abf745b76a1acee8f290
9087fb01c467ff571e4ecea77f90de4a0db2263fe0a517992e9efc1c6c484655
GET /template/m1938pc/html9/ads/zxf.js HTTP/1.1
Host: www.jxys10.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:24 GMT
content-type: application/javascript
last-modified: Fri, 16 Dec 2022 15:46:37 GMT
vary: Accept-Encoding
etag: W/"639c92dd-703"
expires: Mon, 19 Dec 2022 16:06:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
3p8801.co/yy-960x60.gif
107.148.202.17200 OK 37 kB IP 107.148.202.17:0
File type GIF image data, version 89a, 960 x 60\012- data
Hash 95ec3b09499f1a1828b7e7921f7fa2f5
ceff74a70c81395fcd3704fc94929968dc5d3a63
4cd52a6e9acb566d7bb83c792f04df294ac22c11645bdc0d8a6c9e19c5625644
GET /yy-960x60.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/gif
content-length: 37300
last-modified: Sat, 12 Nov 2022 07:15:04 GMT
etag: "636f47f8-91b4"
expires: Wed, 18 Jan 2023 04:06:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
max004.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
188.114.96.1200 OK 864 kB URL HTTP/2 max004.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 188.114.96.1:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
Analyzer Verdict Alert quad9 Sinkholed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: max004.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jxys10.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/gif
content-length: 864004
last-modified: Sun, 04 Sep 2022 09:11:53 GMT
etag: "63146bd9-d2f04"
expires: Mon, 26 Dec 2022 12:02:46 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1958622
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jdt9C5Sw49cbELRUBIKV1yR2%2B%2FD4idD7ELl0T9qkfjwb%2FwmMDBTHRQMU86EINpYI6zyEHP5%2F%2B%2F04ASuyKWcGF63fSffRWXBoimXFvLQynZ54pkQXlSJklOJOgqC3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77bd440e28b0b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f71a373e9057a3848930fb3bbd91a7b9
8e6553b88cb058b98f3ede280315f88d05d57cc7
394e643723bbd81db4cd0b3a10e79091aaeeb44d24bb144b1783585f21520c63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "394E643723BBD81DB4CD0B3A10E79091AAEEB44D24BB144B1783585F21520C63"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 19 Dec 2022 10:06:28 GMT
Date: Mon, 19 Dec 2022 04:06:28 GMT
Connection: keep-alive
58tu.1468tu.com/58tu/405x204.gif
20.249.88.42200 OK 222 kB URL HTTP/1.1 58tu.1468tu.com/58tu/405x204.gif
IP 20.249.88.42:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 405 x 204\012- data
Size 222 kB (222181 bytes)
Hash 3e2120a8283fb7bb0e6cb0b1769e0ede
57d85718ab738fe73f0f78427a2ba3a8a9e54a9d
3931375ce8770220cb194343a39db6dec579038cdefaeccf3e143e31a334e42c
GET /58tu/405x204.gif HTTP/1.1
Host: 58tu.1468tu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:27 GMT
Content-Type: image/gif
Content-Length: 222181
Connection: keep-alive
Last-Modified: Wed, 05 Oct 2022 03:44:12 GMT
ETag: "661ffdbb6cd8d81:0"
X-Powered-By: ASP.NET
Server: X-Y
X-Cache-Status: HIT
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 09360efa2c9d7eda75426de9435b277c
1700bb94b2eb41e9ae2a590e46b01ce347a3bcb2
23ac915928f8925cdb902afb5c40be9bb4aa070e502ee8c6738dfea3a1dbccb3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 15 Dec 2022 17:58:39 GMT
Expires: Thu, 22 Dec 2022 17:58:38 GMT
Etag: "1700bb94b2eb41e9ae2a590e46b01ce347a3bcb2"
Cache-Control: max-age=308529,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440e2b8a1c16-OSL
ocsp.pki.goog/s/gts1p5/75Gjg0DFLPQ
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/75Gjg0DFLPQ
IP 142.250.74.131:0
Hash f8e577441f2f97930edd3a574feec9b2
8055a44968cbf77fdfbcde78d27b82d2da0c1a55
561589783b521a04c5783badb2c522c8cb5217960e338c2c09b64a4fac293d33
POST /s/gts1p5/75Gjg0DFLPQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 04:06:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3p8801.co/11-960x60.gif
107.148.202.17200 OK 242 kB IP 107.148.202.17:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 242 kB (242091 bytes)
Hash b9072e166e9ab28d08854aab05882d3b
a88df27293f6525b000cc1112084fe4f2cdd0e8c
1ad655eb5ad6ce6d519f757b4e78afc39cd41e892897faadf5610e11e3d437b2
GET /11-960x60.gif HTTP/1.1
Host: 3p8801.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 04:06:28 GMT
content-type: image/gif
content-length: 242091
last-modified: Sat, 19 Nov 2022 11:26:07 GMT
etag: "6378bd4f-3b1ab"
expires: Wed, 18 Jan 2023 04:06:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560
47.246.44.229200 OK 415 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 750 x 80\012- data
Size 415 kB (414979 bytes)
Hash ecd0f421a231299ffaa9117a67c1e38a
6dd0678ee6c2a91eca8db2428d8743f607360d3a
dbd0423b88c8d785dd015e2e80105d0bcd41e677c3588acbf34cf1ca542565c9
GET /obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 414979
date: Mon, 05 Dec 2022 07:16:52 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 05 Dec 2022 07:09:21 GMT
nw-session-id: 2022120515092101015013207630C082CC7t5wt01dy
nw-session-trace: 2022-12-05T15:09:21.716293741+08:00 48
x-bdcdn-cache-status: TCP_HIT
x-length: 414979
x-powered-by: ImageX
x-response-date: Mon, 05 Dec 2022 15:09:21 GMT
x-tt-logid: 2022120515092101015013207630C082CC
via: n204-100-053, cache12.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[2,0], cache2.se1[0,0,200-0,H], cache3.se1[2,0]
x-request-ip: fdbd:dc01:27:681::36
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01c70dab46e58f2ac949ece2051ac89e2dd2773be35d3e5369524bf1f9f46f4ea066e23b5378fe9943c2f968c40c38ced9fa128ef7bf579b1467b9a779eb22ac0c37e53b062293a8a1e8061f8daaf0ff7b4e0f99e8da2482833909c1ebdc2d578e
x-response-lb: image
ali-swift-global-savetime: 1670224612
age: 1198176
x-cache: HIT TCP_MEM_HIT dirn:11:333709724
x-swift-savetime: Mon, 05 Dec 2022 10:48:27 GMT
x-swift-cachetime: 31523305
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716714227887976715e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/5f20e8f5c682499b8eb059dd144345a9
47.246.44.229200 OK 460 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/5f20e8f5c682499b8eb059dd144345a9
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 460 kB (459882 bytes)
Hash 9755d798f1df0ff90ff281daf889c27e
6684c546dc5b1e65c84786cf929562e4bf5a4854
86943358042194179070f2e3fa41e8296cd53999c5d025fdcaf6ddff98714f87
GET /obj/tos-cn-i-dy/5f20e8f5c682499b8eb059dd144345a9 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 459882
date: Mon, 05 Dec 2022 11:57:37 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 05 Dec 2022 11:29:24 GMT
nw-session-id: 202212051929240102090950660FC6D0DCgkhk903dy
nw-session-trace: 2022-12-05T19:29:24.652328753+08:00 35
x-bdcdn-cache-status: TCP_HIT
x-length: 459882
x-powered-by: ImageX
x-response-date: Mon, 05 Dec 2022 19:29:24 GMT
x-tt-logid: 202212051929240102090950660FC6D0DC
via: n132-078-099, cache9.l2de2[0,0,206-0,H], cache3.l2de2[1,0], cache3.l2de2[1,0], cache4.se1[0,0,200-0,H], cache3.se1[2,0]
x-request-ip: fdbd:dc03:4:481::12
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01e53d331f021ee346a4a71cd251f620c397b4785e133000e4fcc6a1414827e76105afaf9318ee148ff06afa2468c0c77cf2a1905b0e38acce52cf9db0363cd74a65d3a109f76bc5c653c18372cd8b87f98cdbbed705c989cbdb2708cf3e5eac60
x-response-lb: image
ali-swift-global-savetime: 1670241457
age: 1181331
x-cache: HIT TCP_MEM_HIT dirn:3:539423346
x-swift-savetime: Mon, 05 Dec 2022 12:00:14 GMT
x-swift-cachetime: 31535843
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716714227887986717e
X-Firefox-Spdy: h2
kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif
143.204.86.80200 OK 1.6 MB URL HTTP/2 kvemm.com/c70f7dd4a4c94432f7e7dfd8886c435b.gif
IP 143.204.86.80:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.6 MB (1590489 bytes)
Hash 59648e1a4d52551c26255ff6bc625648
165fbacafad21065e9faa33c5e3752cd463549ad
eb53352fe423b9358ba49249e57fe3d55746d854c681f6c45baedb23eb2196e5
GET /c70f7dd4a4c94432f7e7dfd8886c435b.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 1590489
last-modified: Thu, 15 Dec 2022 01:50:16 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Dec 2022 12:37:21 GMT
etag: "59648e1a4d52551c26255ff6bc625648"
x-cache: Hit from cloudfront
via: 1.1 0b0fd1e326ceb88593e799c95732c626.cloudfront.net (CloudFront)
x-amz-cf-pop: NRT12-C2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8yyTIqGOLzcsXUqrMW8CdiN00RckGCGfIvQXU7Jz57AWswGV8HZFQQ==
age: 55747
X-Firefox-Spdy: h2
66668aaa.com/be06739ff6904a9fbf7359e89406aa37.gif
103.170.15.74200 OK 1.1 MB URL HTTP/1.1 66668aaa.com/be06739ff6904a9fbf7359e89406aa37.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 980 x 80\012- data
Size 1.1 MB (1128817 bytes)
Hash 662e405736661ad9632ddf0c6538731a
5fcbab5d40c3372be48cb4fa9dc01ff58b5cb24e
993bb3ccc922975fa87b4ee2f646297b7cb4e10c862388db721cdeffb7e95edf
GET /be06739ff6904a9fbf7359e89406aa37.gif HTTP/1.1
Host: 66668aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6399d351-113971"
Date: Wed, 14 Dec 2022 15:38:38 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 14 Dec 2022 13:44:49 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 1128817
66668aaa.com/73f23e1f7ead40baa32cf579a4bb735b.gif
103.170.15.74200 OK 553 kB URL HTTP/1.1 66668aaa.com/73f23e1f7ead40baa32cf579a4bb735b.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 553 kB (552818 bytes)
Hash 097e6fa9314192dc3dd55cb1c5023ee5
c30366c4c910616f1a3c1b773ffb4af967e20eb5
db020d7293807326453f5848c0bf219e2b835f2530468a9d816a3c1c7941023a
GET /73f23e1f7ead40baa32cf579a4bb735b.gif HTTP/1.1
Host: 66668aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62f27ac4-86f72"
Date: Wed, 14 Dec 2022 12:57:59 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 09 Aug 2022 15:18:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 552818
99998aaa.com/4aa44d1866a149878b6b79cadb7ab527.gif
103.170.15.80200 OK 748 kB URL HTTP/1.1 99998aaa.com/4aa44d1866a149878b6b79cadb7ab527.gif
IP 103.170.15.80:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 750 x 120\012- data
Size 748 kB (748166 bytes)
Hash dc16c165d9da37bf4a9e9596a765425c
824e5729161352cd5f7b57faea8a32c54d35b410
4abb336ff1a1a08dc2963b708638359da654fadaf843669e4406d6ab348b4608
GET /4aa44d1866a149878b6b79cadb7ab527.gif HTTP/1.1
Host: 99998aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63032a8a-b6a86"
Date: Wed, 14 Dec 2022 15:34:00 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 22 Aug 2022 07:04:42 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-10
Content-Length: 748166
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7b8e242906561bb3f9d521b7528b55bc
0e1373a86eabcfdabe96a1a45e713343298c7466
4f3b548c441cbaada485ea09e7e750b8ac945ed5dcd57dafb9c8692c625df53e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 03:39:03 GMT
Expires: Sun, 25 Dec 2022 03:39:02 GMT
Etag: "0e1373a86eabcfdabe96a1a45e713343298c7466"
Cache-Control: max-age=516153,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440e5904b521-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 5af8826d690defaf7ac491b4e1f48e7d
85869538b71052db6b091647a2b357fb1003d377
e7b37bb27185fdb5e040a26678617c332c2b188ee00599cb5c20b97d452ef596
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 04:06:29 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 16 Dec 2022 01:11:47 GMT
Expires: Fri, 23 Dec 2022 01:11:46 GMT
Etag: "85869538b71052db6b091647a2b357fb1003d377"
Cache-Control: max-age=334517,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77bd440e5d87b4ed-OSL
kvemm.com/0eddc09b941df608c7dbb65fd7344c05.gif
143.204.86.80200 OK 0 B URL HTTP/2 kvemm.com/0eddc09b941df608c7dbb65fd7344c05.gif
IP 143.204.86.80:0
GET /0eddc09b941df608c7dbb65fd7344c05.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 500709
last-modified: Thu, 15 Dec 2022 01:50:33 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Dec 2022 06:00:14 GMT
etag: "034336a5237349a60154dea96de80b58"
x-cache: Hit from cloudfront
via: 1.1 0b0fd1e326ceb88593e799c95732c626.cloudfront.net (CloudFront)
x-amz-cf-pop: NRT12-C2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: tJhTKwujxuvNgRq0DKlKONf5AIvf8qw9plViMbPQ2-dWDeXBp5Cxig==
age: 79574
X-Firefox-Spdy: h2
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894417817771.gif
118.107.10.173200 OK 0 B URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894417817771.gif
IP 118.107.10.173:0
ASN #64050 BGPNET Global ASN
GET /static/uploads/image/x22/20221004/1664894417817771.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 30 Nov 2022 04:48:55 GMT
ETag: "1669783735"
Expires: Fri, 30 Dec 2022 04:48:55 GMT
Last-Modified: Wed, 30 Nov 2022 04:48:55 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7Eplz8ttes6N1rzCHupKUIqwPqCxFgm81icSmocldWcBI/0
43.154.254.32200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7Eplz8ttes6N1rzCHupKUIqwPqCxFgm81icSmocldWcBI/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/PiajxSqBRaELwR4xf94eWENgvxiczrusib7Eplz8ttes6N1rzCHupKUIqwPqCxFgm81icSmocldWcBI/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 19 Dec 2022 04:06:27 GMT
content-type: image/gif
content-length: 231270
vary: Accept,Origin
last-modified: Sat, 19 Nov 2022 16:28:33 GMT
cache-control: max-age=2592000
x-delay: 39503 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 231270
chid: 0
fid: 0
x-nws-log-uuid: c59ae9e7-8e03-42c5-a1fe-51e1f0bb7a22
X-Firefox-Spdy: h2
sszhan.oss-cn-shenzhen.aliyuncs.com/tycsz.gif
120.77.166.119200 OK 0 B URL HTTP/1.1 sszhan.oss-cn-shenzhen.aliyuncs.com/tycsz.gif
IP 120.77.166.119:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /tycsz.gif HTTP/1.1
Host: sszhan.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: image/gif
Content-Length: 612998
Connection: keep-alive
x-oss-request-id: 639FE3442612B037302D809D
Accept-Ranges: bytes
ETag: "D0A3B1894E95D3084F4C5CD638E23322"
Last-Modified: Wed, 14 Dec 2022 11:12:07 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10528938875398525642
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 0KOxiU6V0whPTFzWOOIzIg==
x-oss-server-time: 1
8499163.com/8499/224x134.gif
23.224.101.35200 OK 0 B URL HTTP/2 8499163.com/8499/224x134.gif
IP 23.224.101.35:0
GET /8499/224x134.gif HTTP/1.1
Host: 8499163.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 04:06:52 GMT
content-type: image/gif
content-length: 262918
last-modified: Sun, 18 Dec 2022 06:27:12 GMT
etag: "40306-5f0144b102468"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
kvevv.com/7546c860e55fa3bf22e5cd95994dd097.gif
13.227.254.70200 OK 0 B URL HTTP/1.1 kvevv.com/7546c860e55fa3bf22e5cd95994dd097.gif
IP 13.227.254.70:0
GET /7546c860e55fa3bf22e5cd95994dd097.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 684992
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:07:09 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 18 Dec 2022 06:01:10 GMT
ETag: "6f531c957ea61da41ab38ccc064ac606"
X-Cache: Hit from cloudfront
Via: 1.1 bf37a08a8e52d3968f35ae1bb4eaae78.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN52-C3
X-Amz-Cf-Id: j9GZ6qCe09lS4yPZjhYmScG5ZoowaqjXoiRgbnR6eqtvZpa60Orw5g==
Age: 79519
img.9376x.com/images/6399c27b56eec67c33ea8921.gif
38.54.81.125302 Found 0 B URL HTTP/2 img.9376x.com/images/6399c27b56eec67c33ea8921.gif
IP 38.54.81.125:0
GET /images/6399c27b56eec67c33ea8921.gif HTTP/1.1
Host: img.9376x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/26c4bd83c03e4572a0da94a24edacb39
X-Firefox-Spdy: h2
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894322248517.gif
118.107.10.173200 OK 0 B URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894322248517.gif
IP 118.107.10.173:0
ASN #64050 BGPNET Global ASN
GET /static/uploads/image/x22/20221004/1664894322248517.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 30 Nov 2022 04:48:55 GMT
ETag: "1669783735"
Expires: Fri, 30 Dec 2022 04:48:55 GMT
Last-Modified: Wed, 30 Nov 2022 04:48:55 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894189710457.gif
118.107.10.173200 OK 0 B URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894189710457.gif
IP 118.107.10.173:0
ASN #64050 BGPNET Global ASN
GET /static/uploads/image/x26/20221004/1664894189710457.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 30 Nov 2022 04:48:39 GMT
ETag: "1669783720"
Expires: Fri, 30 Dec 2022 04:48:39 GMT
Last-Modified: Wed, 30 Nov 2022 04:48:40 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
66669aaa.com/2d7b4166a63c4e48bb523d07d45069fb.gif
45.61.212.224200 OK 0 B URL HTTP/1.1 66669aaa.com/2d7b4166a63c4e48bb523d07d45069fb.gif
IP 45.61.212.224:0
Analyzer Verdict Alert quad9 Sinkholed
GET /2d7b4166a63c4e48bb523d07d45069fb.gif HTTP/1.1
Host: 66669aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6399cb60-3e19b"
Date: Thu, 15 Dec 2022 05:20:45 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 14 Dec 2022 13:10:56 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-24
Content-Length: 254363
p3.douyinpic.com/obj/tos-cn-i-dy/6eda3a9b5a154380acc9e720e96a792e
47.246.44.229200 OK 0 B URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/6eda3a9b5a154380acc9e720e96a792e
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
GET /obj/tos-cn-i-dy/6eda3a9b5a154380acc9e720e96a792e HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 450161
date: Wed, 14 Dec 2022 09:01:37 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 14 Dec 2022 08:25:39 GMT
nw-session-id: 202212141625390101511082082661C142z29c401dy
nw-session-trace: 2022-12-14T16:25:39.277463902+08:00 36
x-bdcdn-cache-status: TCP_HIT
x-length: 450161
x-powered-by: ImageX
x-response-date: Wed, 14 Dec 2022 16:25:39 GMT
x-tt-logid: 202212141625390101511082082661C142
via: n150-056-076, cache15.l2de2[10154,10154,206-0,M], cache1.l2de2[10156,0], cache1.l2de2[10156,0], cache7.se1[0,0,200-0,H], cache3.se1[1,0]
x-request-ip: fdbd:dc02:20:306::101
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 015753073c6eb795804c878ce4635158b01bdefd2c5b5974b413bb50699a04a64d9ceeb005a571f1f7b00ffcb64bf835d3f1a2e791820bfbfa02267c209221df47b07cc71abdc85a8e524796b8a1b6e2cab3d08700cda30682882df3270b6df41d
x-response-lb: image
ali-swift-global-savetime: 1671008497
age: 414291
x-cache: HIT TCP_MEM_HIT dirn:3:403832462
x-swift-savetime: Wed, 14 Dec 2022 09:01:37 GMT
x-swift-cachetime: 31536000
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716714227888346731e
X-Firefox-Spdy: h2
sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x120-6.gif
120.77.166.72200 OK 0 B URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x120-6.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /af/q960x120-6.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 19 Dec 2022 04:06:28 GMT
Content-Type: image/gif
Content-Length: 478685
Connection: keep-alive
x-oss-request-id: 639FE3442C2A8037381400F7
Accept-Ranges: bytes
ETag: "5BF732E915BAF1D960C69A7DFEB3EF7C"
Last-Modified: Tue, 27 Sep 2022 07:43:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8402549840524505905
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: W/cy6RW68dlgxpp9/rPvfA==
x-oss-server-time: 1
p3.douyinpic.com/obj/tos-cn-i-dy/26c4bd83c03e4572a0da94a24edacb39
47.246.44.229200 OK 0 B URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/26c4bd83c03e4572a0da94a24edacb39
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
GET /obj/tos-cn-i-dy/26c4bd83c03e4572a0da94a24edacb39 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 384491
date: Sun, 13 Nov 2022 13:26:06 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sun, 13 Nov 2022 12:38:36 GMT
nw-session-id: 20221113203836010175073134252D40ED7nb4v02dy
nw-session-trace: 2022-11-13T20:38:36.893240111+08:00 45
x-bdcdn-cache-status: TCP_HIT
x-length: 384491
x-powered-by: ImageX
x-response-date: Sun, 13 Nov 2022 20:38:36 GMT
x-tt-logid: 20221113203836010175073134252D40ED
via: n150-056-026, cache12.l2de2[0,0,206-0,H], cache19.l2de2[2,0], cache19.l2de2[3,0], cache5.se1[0,0,200-0,H], cache3.se1[3,0]
x-request-ip: fdbd:dc02:22:46::67
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01fc3ea37d9c1ed5b7d2c200df23bf81d3980363a474adcbcdabe23efbe44349c9ded5894820052b9f65e8b67807703e46e752587a445df11739963b0fc31b09984170a333fed525dbd3f2408a1a3198fd79e91de509e1f853539053e961754b16
x-response-lb: image
ali-swift-global-savetime: 1668345966
age: 3076822
x-cache: HIT TCP_MEM_HIT dirn:11:114928034
x-swift-savetime: Sun, 13 Nov 2022 14:21:50 GMT
x-swift-cachetime: 31532656
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716714227888716739e
X-Firefox-Spdy: h2
img.9367x.com/images/6399c32956eec67c33ea8925.gif
38.54.81.125302 Found 0 B URL HTTP/2 img.9367x.com/images/6399c32956eec67c33ea8925.gif
IP 38.54.81.125:0
GET /images/6399c32956eec67c33ea8925.gif HTTP/1.1
Host: img.9367x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560
X-Firefox-Spdy: h2
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894599409102.gif
118.107.10.173200 OK 0 B URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894599409102.gif
IP 118.107.10.173:0
ASN #64050 BGPNET Global ASN
GET /static/uploads/image/x22/20221004/1664894599409102.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 30 Nov 2022 04:48:54 GMT
ETag: "1669783735"
Expires: Fri, 30 Dec 2022 04:48:54 GMT
Last-Modified: Wed, 30 Nov 2022 04:48:55 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x51/20221111/1668166428315380.gif
118.107.10.173200 OK 0 B URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x51/20221111/1668166428315380.gif
IP 118.107.10.173:0
ASN #64050 BGPNET Global ASN
GET /static/uploads/image/x51/20221111/1668166428315380.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 30 Nov 2022 04:48:42 GMT
ETag: "1669783723"
Expires: Fri, 30 Dec 2022 04:48:42 GMT
Last-Modified: Wed, 30 Nov 2022 04:48:43 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894380503898.gif
118.107.10.173200 OK 0 B URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894380503898.gif
IP 118.107.10.173:0
ASN #64050 BGPNET Global ASN
GET /static/uploads/image/x22/20221004/1664894380503898.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Wed, 30 Nov 2022 04:48:54 GMT
ETag: "1669783735"
Expires: Fri, 30 Dec 2022 04:48:54 GMT
Last-Modified: Wed, 30 Nov 2022 04:48:55 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
img.1190555.com/images/638f442f93f8ec5e6b5c07d0.gif
38.54.81.125302 Found 0 B URL HTTP/2 img.1190555.com/images/638f442f93f8ec5e6b5c07d0.gif
IP 38.54.81.125:0
GET /images/638f442f93f8ec5e6b5c07d0.gif HTTP/1.1
Host: img.1190555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/5f20e8f5c682499b8eb059dd144345a9
X-Firefox-Spdy: h2
img.u2267.com/images/6399c2d856eec67c33ea8923.gif
38.54.81.125302 Found 0 B URL HTTP/2 img.u2267.com/images/6399c2d856eec67c33ea8923.gif
IP 38.54.81.125:0
GET /images/6399c2d856eec67c33ea8923.gif HTTP/1.1
Host: img.u2267.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/6eda3a9b5a154380acc9e720e96a792e
X-Firefox-Spdy: h2
kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif
13.227.254.70200 OK 0 B URL HTTP/1.1 kvevv.com/4bf88adf466b90cef3686374a27fc0e2.gif
IP 13.227.254.70:0
GET /4bf88adf466b90cef3686374a27fc0e2.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys10.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 506851
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:08:10 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 18 Dec 2022 07:02:24 GMT
ETag: "720e80d2a7ff4cf1bbf0b1608c2f35de"
X-Cache: Hit from cloudfront
Via: 1.1 5157dedfe33ef5a309f236599901abe2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN52-C3
X-Amz-Cf-Id: Nz_11MDNC6STiQ1sT9hrryDmEW-ymdhNm6gzRQHA7EySYjBdNhg15w==
Age: 75845