firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 21:12:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Dzo8wMppSZAdxirUWR_V_kYxZIWSmZV1xAaYEZ5uXSp5CVlPNLXOPA==
Age: 1447
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8832
Expires: Mon, 19 Sep 2022 00:03:43 GMT
Date: Sun, 18 Sep 2022 21:36:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: y8nd4hrMb5p3lAkiCHthyf3wl57CHO5JrKpIbzksoHkiyxpgzWjkZg==
age: 61278
X-Firefox-Spdy: h2
szhqbg.com/
45.33.243.205301 Moved Permanently 0 B IP 45.33.243.205:0
ASN #26658 HENGTONG-IDC-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: szhqbg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 18 Sep 2022 21:36:31 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.szhqbg.com/index.php
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 21:36:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 18 Sep 2022 21:03:22 GMT
Expires: Sun, 18 Sep 2022 21:08:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Uf8Ick9rw36zUR0tS7rt-RygtCDwmLcnDA1ukBPfsHIjWMik2ZYIgg==
Age: 1989
www.szhqbg.com/index.php
45.33.243.205200 OK 684 B IP 45.33.243.205:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (1112), with CRLF line terminators
Hash a65889b96b3f742ddd4bdb96b99d4d8f
76b5e33f967520a9e79a2a9b9d7f8f008bf0075c
67ac4d620d4a6de758135082a8ce8a1277c9ad1ca72e8653d5d9d76ff6a54905
GET /index.php HTTP/1.1
Host: www.szhqbg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 21:36:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fd1174f35b25298fc44a6de1af3f3d6
d45a47995ec34c7df480b3efafb13f55d9df7eb8
f60573eff255ef3d7603ca813f410c30588931b4018ffa0e07fa0bb2653c47af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1684
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 21:36:32 GMT
Last-Modified: Sun, 18 Sep 2022 21:08:28 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.szhqbg.com/common.js
45.33.243.205200 OK 663 B IP 45.33.243.205:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 3ce0774d6dd2efc26bb713ef0cc57722
321a7cd0c4092392d5ebae5a77be6b9d0f08af21
6190a845f013d3681fcc10eb7b08bca01cb578334325e3e6669f87bcaac5c29d
GET /common.js HTTP/1.1
Host: www.szhqbg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szhqbg.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 21:36:31 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76f8f04f9160c727ed6dedd8ab2c3a6d
4dab7e44919eb73287035f5214e7c48cffa01123
90facdf870ca784c99ded0ade6b02b7adc42aa49e571d4511212733c71375c61
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "90FACDF870CA784C99DED0ADE6B02B7ADC42AA49E571D4511212733C71375C61"
Last-Modified: Sun, 18 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1974
Expires: Sun, 18 Sep 2022 22:09:26 GMT
Date: Sun, 18 Sep 2022 21:36:32 GMT
Connection: keep-alive
www.szhqbg.com/tj.js
45.33.243.205200 OK 102 B IP 45.33.243.205:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document, ASCII text, with no line terminators
Hash 870746823b7546b9b879bdd38b26851a
44bf319414ce17d9ec8e6f3f72574d11acee5ea3
6c0f135586b4ec76e05242c3d061508491d1310ce47a046583dc0c378ee702f9
GET /tj.js HTTP/1.1
Host: www.szhqbg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szhqbg.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 21:36:32 GMT
Content-Type: application/x-javascript
Content-Length: 102
Connection: keep-alive
push.services.mozilla.com/
34.210.107.213101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.107.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cVkac0K4yBSb7pv2B+5ruQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1nOEP1h7EUs+zc2Emk2RDnsZPaw=
www.69t105.com/static/images/logo.png
172.67.145.45200 OK 3.3 kB URL HTTP/2 www.69t105.com/static/images/logo.png
IP 172.67.145.45:0
File type PNG image data, 279 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f098ef0c93c9ba9b7d667af9253e410
60dde06763487a4d4e10f2363645732b0ae9b318
1af3884a3f9861b8d37f397930a487c63802b4a554bceba19161fefbf7ab96bb
GET /static/images/logo.png HTTP/1.1
Host: www.69t105.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/?65
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 21:36:32 GMT
content-type: image/png
content-length: 3272
last-modified: Wed, 19 Jan 2022 07:50:14 GMT
etag: "cc8-5d5eaa2cd9980"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5267
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvqTbt9ln6Jt%2B8O9WIchU2SanRGRVsAUqiwYBr5X7KOTxlKE9tz6ERywwQoJqmmYxtqlBaY5vkc2Bo1V%2FNHbSwfzQHZP%2BbUBUD8SRG5rBlPw4s6f0IOOm70sp9OnvzDE0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cd37bcac4dfac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76f8f04f9160c727ed6dedd8ab2c3a6d
4dab7e44919eb73287035f5214e7c48cffa01123
90facdf870ca784c99ded0ade6b02b7adc42aa49e571d4511212733c71375c61
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "90FACDF870CA784C99DED0ADE6B02B7ADC42AA49E571D4511212733C71375C61"
Last-Modified: Sun, 18 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Mon, 19 Sep 2022 03:35:40 GMT
Date: Sun, 18 Sep 2022 21:36:32 GMT
Connection: keep-alive
s7.addthis.com/js/250/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/250/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116325 bytes)
Hash ff4671f71c958029bbf6d9694284da70
7535744f2dbaf99902a54fc529e760b08a73f265
123f781673b2e45e18df36b64984674f489a5f3541c69e295f01f554b8d3c738
GET /js/250/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116325
date: Sun, 18 Sep 2022 21:36:32 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.z4a.net/images/2022/09/18/960-60.gif
104.21.234.234200 OK 769 kB URL HTTP/2 www.z4a.net/images/2022/09/18/960-60.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 769 kB (769371 bytes)
Hash 3a88a0ebbac408dc7bc77d5b8babacf9
059999ed790365c5869e153ff9e9e31b0e70e322
713e916daa7e2b7abf58a1d001a53c5b51335289a5131d56a81923085b459943
GET /images/2022/09/18/960-60.gif HTTP/1.1
Host: www.z4a.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 21:36:33 GMT
content-type: image/gif
content-length: 769371
expires: Mon, 18 Sep 2023 10:15:22 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 40870
last-modified: Sun, 18 Sep 2022 10:15:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YZx0H7uq8PfrFHy8pva%2BkZjrxvNhY9NVRPnnYi70hij8b%2Belowd8hszPATzR4z6hV%2BOd5Av9Jm6sO4uYHRJk5HfNWqiLkk12INkydr0L0JOgLGO8895csw%2FdJReNng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74cd37be3bee7321-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.z4a.net/images/2022/09/18/650x150.gif
104.21.234.234200 OK 579 kB URL HTTP/2 www.z4a.net/images/2022/09/18/650x150.gif
IP 104.21.234.234:0
File type GIF image data, version 89a, 650 x 150\012- data
Size 579 kB (579259 bytes)
Hash 4a55d7f1095770e5ffa701a2bfaa59a8
81b12cb2e135d386eb736e8aecad19c018548eb9
0650c315322ec02c8cdc0547364629296c9a8bbf4d1e10bdd9c9592a94b745e3
GET /images/2022/09/18/650x150.gif HTTP/1.1
Host: www.z4a.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 21:36:33 GMT
content-type: image/gif
content-length: 579259
expires: Mon, 18 Sep 2023 13:44:36 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 28317
last-modified: Sun, 18 Sep 2022 13:44:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H5QrmK8SBc%2BUfOXjshEx2qwIjfk0e3jwCNRa30wFNMRqbsyOKwY1%2F14IOq2yObYD5XO%2Fn6fvtMbegZSkP3yNjRslW0V42ExQX%2B1rcC%2BYwgrzfR0NsxOawudjl1cz9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74cd37be7c897321-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e976fa7d761a0c9baab919f87aa2971
df32cf5bf37e02a915f4f9719d1d6e56476fbddc
354f67197b7a144fa766d3659ebc6b16cbf17c362330b5723c642c121f7a7542
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "354F67197B7A144FA766D3659EBC6B16CBF17C362330B5723C642C121F7A7542"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7558
Expires: Sun, 18 Sep 2022 23:42:31 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sun, 18 Sep 2022 21:36:33 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e976fa7d761a0c9baab919f87aa2971
df32cf5bf37e02a915f4f9719d1d6e56476fbddc
354f67197b7a144fa766d3659ebc6b16cbf17c362330b5723c642c121f7a7542
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "354F67197B7A144FA766D3659EBC6B16CBF17C362330B5723C642C121F7A7542"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7558
Expires: Sun, 18 Sep 2022 23:42:31 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
www.69t105.com/static/styles/all-responsive-metal.css?v=7.0
172.67.145.45200 OK 390 kB URL HTTP/2 www.69t105.com/static/styles/all-responsive-metal.css?v=7.0
IP 172.67.145.45:0
File type ASCII text, with very long lines (15274)
Size 390 kB (390345 bytes)
Hash e2f813ad483794361e1d5cb835f9ee97
30d4cc5382b1ffd0273dbeddab9ec9c1897b11e1
f4462ac00937760e77b4bf07a6d66579271c9d02d95a2c32d9363a0644fca9b4
GET /static/styles/all-responsive-metal.css?v=7.0 HTTP/1.1
Host: www.69t105.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/?65
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 21:36:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 11 Jul 2022 12:33:17 GMT
etag: W/"25f57-5e386c19d7d40"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VDvR9m13bTsOuyKwPZbk94VLCwP7CgDUFYrlm%2FJ3HbnU7gOf9M0zGOI8ntxyd19xh303sNegHB%2FCXWKpzeCFJST9SuZUfVMCPbRQUC3y6%2B5ZhZ7KLvJExniNfGM2WdUnRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74cd37bc9c49fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 1648c8e0fa4f0fc5c3979a8cb87ad47a
e5ff2b1ce272e06e54624b31284adad5545d53cb
bd3c5835a7be20402beb255d527031dd6cec941b7060604c79b537a11e6fa1a5
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 18:56:30 GMT
ETag: "e5ff2b1ce272e06e54624b31284adad5545d53cb"
Last-Modified: Sun, 18 Sep 2022 18:56:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2707
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cd37bfde4e0af6-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff259ee1105297e8a5bae9d64dfdc935
d5132f629503cf154c1f8b35c82d6408eafdd684
b4de263d221cd1f2b749282bc738d53920bef72e795e5e3874d05dc7849449c4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4DE263D221CD1F2B749282BC738D53920BEF72E795E5E3874D05DC7849449C4"
Last-Modified: Sat, 17 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17273
Expires: Mon, 19 Sep 2022 02:24:26 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b6568453098701e739427f47f77424f
ca0a7dc07082246c9301ff22ec3457cfabdbd01c
999081941f96250b73213351bd030ebda41489b92af725055883604f063fd81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "999081941F96250B73213351BD030EBDA41489B92AF725055883604F063FD81C"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3993
Expires: Sun, 18 Sep 2022 22:43:06 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b6568453098701e739427f47f77424f
ca0a7dc07082246c9301ff22ec3457cfabdbd01c
999081941f96250b73213351bd030ebda41489b92af725055883604f063fd81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "999081941F96250B73213351BD030EBDA41489B92AF725055883604F063FD81C"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3993
Expires: Sun, 18 Sep 2022 22:43:06 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fa40601458e24db29b0d6a4c10eaf33e
0f9dc24d3b2a94615e492fa25358cf8883cdfd0c
e32fbef61e5055057c91bd006d36d07f1f583dbf23837c24dd937ba4e884d3fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E32FBEF61E5055057C91BD006D36D07F1F583DBF23837C24DD937BA4E884D3FD"
Last-Modified: Sat, 17 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16574
Expires: Mon, 19 Sep 2022 02:12:47 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff259ee1105297e8a5bae9d64dfdc935
d5132f629503cf154c1f8b35c82d6408eafdd684
b4de263d221cd1f2b749282bc738d53920bef72e795e5e3874d05dc7849449c4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4DE263D221CD1F2B749282BC738D53920BEF72E795E5E3874D05DC7849449C4"
Last-Modified: Sat, 17 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16636
Expires: Mon, 19 Sep 2022 02:13:49 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash a06260b4d0469c89e3177f60a45224fb
ca8f8b1b22502cbf1ffef9cf7ec2c2276a207afc
a921e9e7a76e48f0edc729af2bb3cd925ba326797044cdebd03d20fadaf59dbe
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 20:40:22 GMT
ETag: "ca8f8b1b22502cbf1ffef9cf7ec2c2276a207afc"
Last-Modified: Sun, 18 Sep 2022 20:40:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cd37c11f600af6-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash a06260b4d0469c89e3177f60a45224fb
ca8f8b1b22502cbf1ffef9cf7ec2c2276a207afc
a921e9e7a76e48f0edc729af2bb3cd925ba326797044cdebd03d20fadaf59dbe
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 20:40:22 GMT
ETag: "ca8f8b1b22502cbf1ffef9cf7ec2c2276a207afc"
Last-Modified: Sun, 18 Sep 2022 20:40:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1752
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cd37c11e42b52d-OSL
dimg04.c-ctrip.com/images/0103y120009xsz6k3DEC4.gif?proc=autoorient
104.110.17.24200 OK 566 kB URL HTTP/2 dimg04.c-ctrip.com/images/0103y120009xsz6k3DEC4.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 566 kB (566093 bytes)
Hash 0496912990fc953178f602a009619be1
7f33d3efccfe25a725d35538712ddf586e309583
7eb7a8746e4e622d69206c8a078c43f87930469b76e11e56b604866987578213
GET /images/0103y120009xsz6k3DEC4.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 566093
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=14747745
expires: Wed, 08 Mar 2023 14:12:18 GMT
date: Sun, 18 Sep 2022 21:36:33 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash cca90a013c591f9cf4eca2394d93029f
f0b79ef1fa3abc1ec96413d77f6a8040ac9e81b8
05d90f5de6075930af9359ab83e1724691e500e6c7e0d721ab2c7e417a23ef10
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 19:01:51 GMT
ETag: "f0b79ef1fa3abc1ec96413d77f6a8040ac9e81b8"
Last-Modified: Sun, 18 Sep 2022 19:01:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cd37c17fa90af6-OSL
kvezz.com/95ca29ec3907b3bf2d8a24b35e3eda22.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kvezz.com/95ca29ec3907b3bf2d8a24b35e3eda22.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /95ca29ec3907b3bf2d8a24b35e3eda22.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 18 Sep 2022 21:36:33 GMT
content-type: text/html
content-length: 162
location: https://acoossu.top/95ca29ec3907b3bf2d8a24b35e3eda22.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 9a7c3da602b6ffc08891d679c853cde1
db151a130a4f2e739034479177e617d442d2d0bf
552d25758a3bc2b22b3bba08ff8e4c3ca3f8396321f945f58c5b6493a1975b37
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 22 Sep 2022 18:36:25 GMT
ETag: "db151a130a4f2e739034479177e617d442d2d0bf"
Last-Modified: Sun, 18 Sep 2022 18:36:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2436
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cd37c1d9881c06-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6588
Expires: Sun, 18 Sep 2022 23:26:21 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6517
Expires: Sun, 18 Sep 2022 23:25:10 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6588
Expires: Sun, 18 Sep 2022 23:26:21 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6588
Expires: Sun, 18 Sep 2022 23:26:21 GMT
Date: Sun, 18 Sep 2022 21:36:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QgOb-hraq20XpHk_0Cyz2UMxaIEjP8ilIXt2VuhiRJWJAOG5EuAb5A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 05:49:05 GMT
age: 56848
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51d067e534c477ce996b3e806f6a132e
451c1f67948e45909e636828e3d2a3099de922f0
e13318949733eb7992695c61570cc8b2961d881a8343c677a77cd035e787bbaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a57f83-dfc8-4b82-ba40-2b21aa8c0f64.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6869
x-amzn-requestid: e4e424a6-6c79-405b-8d1b-d40749ae3f0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn5yLHi8oAMFpXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263cda-22f6dae17ded045177976eaf;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:32:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eSPLuSCIr6IOor8bQh1STKcy6i_bS6nPhndKrN_g7IrXl6U43TogYw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 22:29:35 GMT
etag: "451c1f67948e45909e636828e3d2a3099de922f0"
content-type: image/jpeg
age: 83218
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e47c10c-5801-4548-a632-1dcfbd043a60.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e47c10c-5801-4548-a632-1dcfbd043a60.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 354c71e744d302c316f492a8fb7642dc
cdf6caf4cd953e7b58bbb5f9a1512a4e3e06b792
f084331bd667f56556170c595391d888391284dbb7c18794d5033d5db1f07715
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e47c10c-5801-4548-a632-1dcfbd043a60.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7401
x-amzn-requestid: c59249dd-f9cb-4750-8287-65789c57fd77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6J-FaAoAMFZQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263d72-6a68d771099a6006717a547f;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gOh04gufveW2WFtszuiJPyX8mDykbsFMpBh8KWSRxQnPSRcZ2fMnHg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:45:30 GMT
age: 85863
etag: "cdf6caf4cd953e7b58bbb5f9a1512a4e3e06b792"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a22ab7dcdf50f4a297b8e117d336eae
e139a0974317212f094fdbe59e26ca5cf6b9e56d
9b4c23c1bb2e4fcd140ce34bf83f315f09b45202c569cb74113c2e65c4031dcd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd5675c7-5120-4f61-bd91-8c4d9af84130.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7788
x-amzn-requestid: 2cb48f87-8b72-4ff7-b041-a6e704b854a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIP2-HFHoAMFssA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319935f-693e2f2e5a0bcd9f690f21fa;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:01:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4-H_LbXRjS1PJkVz9OIhwsaPfu8ZlL98zTZG--hdmij9Tc6KtmNSFQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:51:29 GMT
age: 85504
etag: "e139a0974317212f094fdbe59e26ca5cf6b9e56d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29f4a52fb629dce4ef8038d4df7ea58a
4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0
32cee35b22110b83738f49f49edb6efcedb54fe793d5ccc900004e16e3fefda3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5827
x-amzn-requestid: a30d5a61-ccb2-4582-8298-1abb79830dda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7VSF21IAMFvGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63257288-5b79117f185617fb0f37a845;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:08:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2cYYmknnm5GHRMA69N-dqXXKHb1-tfN1PuRYB5xxtRJK5Gk3-PO0Bw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:16:15 GMT
age: 51618
etag: "4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
acoossu.top/95ca29ec3907b3bf2d8a24b35e3eda22.gif
172.67.151.21200 OK 400 kB URL HTTP/2 acoossu.top/95ca29ec3907b3bf2d8a24b35e3eda22.gif
IP 172.67.151.21:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 400 kB (400264 bytes)
Hash b722c3905b96f11823e04826aafdd50e
68b63b572a042d40ab210aa313b7ebbc372be5a1
630c6a955789d5bb6311db75ce52e57ff4c12074ef5a5a080cf5459f907e9dc1
GET /95ca29ec3907b3bf2d8a24b35e3eda22.gif HTTP/1.1
Host: acoossu.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.69t105.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 21:36:33 GMT
content-type: image/gif
content-length: 400264
last-modified: Mon, 02 May 2022 19:22:39 GMT
etag: "62702f7f-61b88"
expires: Tue, 04 Oct 2022 23:47:23 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1201750
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k7mRMwrvlXHMqXj7BXLHyClX7oC8r%2B25MJvrwUgyNw2Enbjh2tDqOShuk6Ja4qxIdSskBQHsGDN49vd5iXPgpNMbuCa9cseHfc0aQoXZOzJqVK3gej1Q95GSQvPG3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74cd37c2af29b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56ade9172e883c777dd974ca879bceba
b2aaf019e083443a6404c262206ee2e981d3165c
c8407ad191143d2d947464b357d8426efb334cb165c4fa5ca01573d8f7ca7b76
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5133
x-amzn-requestid: 01f39c0a-c86f-4057-a505-20200819203c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioKkFrFoAMFhMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420a9-5821f44144b61475180ec961;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:07:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mDe4BYbMkqkO3wq6onH6c_YOfWn32Z4L9t-QW_5mwez4bcrVkrQBuw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:38:13 GMT
age: 50300
etag: "b2aaf019e083443a6404c262206ee2e981d3165c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.szhqbg.com/favicon.ico
45.33.243.205200 OK 1.2 kB URL HTTP/1.1 www.szhqbg.com/favicon.ico
IP 45.33.243.205:0
ASN #26658 HENGTONG-IDC-LLC
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.szhqbg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.szhqbg.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Fri, 23 Sep 2022 21:36:33 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash d9d747aa5e0fa9f59e572fd16f7c719b
eb0a6cde84e80214c38bac3ed6ee9d9e478bed57
292e2d44f3830b1b875aa92a950d079e325e9f1733ce6bd411f8363d06480881
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 12:58:40 GMT
Expires: Sat, 24 Sep 2022 12:58:39 GMT
Etag: "eb0a6cde84e80214c38bac3ed6ee9d9e478bed57"
Cache-Control: max-age=486725,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cd37c2dc28fac8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 7a606101743f99b409ebb621d41d612e
383f7a5be905688e8afa5fb0a9497a7ecc026cf8
fc81ed775eb265265713546d584f486a0ce19fcd5b44bccf75cf94f03bd7f803
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 13:14:00 GMT
Expires: Fri, 23 Sep 2022 13:13:59 GMT
Etag: "383f7a5be905688e8afa5fb0a9497a7ecc026cf8"
Cache-Control: max-age=401245,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cd37c2dcd70b31-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 2.8 kB IP 104.18.32.68:0
Hash 81078a92f891569c92bdbf810add4977
00942f5bcc5b0af042dd42f9f8d034bb86bbbbcf
57058acd786f81454fbbdf8b687ce041fd7f5bb7a7ab767266f5e90671eb3dce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Sep 2022 07:20:02 GMT
Expires: Sun, 25 Sep 2022 07:20:01 GMT
Etag: "cae3e3acfe95bc8c0f60e06ad4447c3790fdc764"
Cache-Control: max-age=552807,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cd37c1ff48b500-OSL
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash cdd21939c6530b77a957b80bdac5d7cf
654e984e654ee0381c2f55423dd86a0c19232ca4
041f93c532b7c041a01a8143f12a38cc9f7b3c2624d9745ed9a4a78b65ec0145
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 521
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Sep 2022 21:36:33 GMT
Last-Modified: Sun, 18 Sep 2022 21:27:52 GMT
Server: ECS (amb/6B89)
X-Cache: HIT
Content-Length: 727
p3.douyinpic.com/obj/tos-cn-i-dy/ab54898ef8194212927a23f6ad4cfaef
47.246.44.228200 OK 562 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/ab54898ef8194212927a23f6ad4cfaef
IP 47.246.44.228:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 80\012- data
Size 562 kB (561802 bytes)
Hash 6992b4cd488bb4437ec954ab09a3fa00
e41fc5970be04ab5801e80ce785ff0832b305793
54d436cbf368311b0aa7bb497ac1b5a4330067953e11b4ad2da233e07e923d05
GET /obj/tos-cn-i-dy/ab54898ef8194212927a23f6ad4cfaef HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 561802
date: Sat, 17 Sep 2022 07:53:18 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Fri, 16 Sep 2022 16:46:06 GMT
nw-session-id: 202209170046060102020921564624CD7E58s8201dy
nw-session-trace: 2022-09-17T00:46:06.788367612+08:00 78
x-bdcdn-cache-status: TCP_HIT
x-length: 561802
x-powered-by: ImageX
x-response-date: Sat, 17 Sep 2022 00:46:06 GMT
x-tt-logid: 202209170046060102020921564624CD7E
via: n150-061-089, cache11.l2de2[0,0,206-0,H], cache1.l2de2[1,0], cache1.l2de2[1,0], cache1.se1[0,0,200-0,H], cache3.se1[2,0]
x-request-ip: fdbd:dc02:22:96::209
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01add4c5e392f32ab808886d76cc70b2b0f669284c6126b30a2ae310fe4c8fd67a05aa4507326544f737cdb43c8d4d390c5d9123805356968bd2422b4d1136ffd40ab68a933bf8abfab27d0132ebbc4502e3e06783029de6abaf51536130f28264
x-response-lb: image
ali-swift-global-savetime: 1663401198
age: 135795
x-cache: HIT TCP_MEM_HIT dirn:2:445435589 mlen:0
x-swift-savetime: Sat, 17 Sep 2022 18:08:04 GMT
x-swift-cachetime: 31499114
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9716635369938565898e
X-Firefox-Spdy: h2
ia.51.la/go1?id=20841003&rt=1663536974357&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=69%25E5%25A0%2582-%25E6%2588%2590%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%252C7%25E5%25B9%25B4%25E5%2585%258D%25E8%25B4%25B9%25E4%25B8%258B%25E8%25BD%25BD%25E5%259F%25BA%25E5%259C%25B0.&ing=1&ekc=&sid=1663536974357&tt=69%25E5%25A0%2582&kw=69%25E5%25A0%2582-%25E6%2588%2590%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%252C7%25E5%25B9%25B4%25E5%2585%258D%25E8%25B4%25B9%25E4%25B8%258B%25E8%25BD%25BD%25E5%259F%25BA%25E5%259C%25B0.&cu=https%253A%252F%252Fwww.69t105.com%252F%253F65&pu=http%253A%252F%252Fwww.szhqbg.com%252F
103.143.19.103200 0 B URL HTTP/1.1 ia.51.la/go1?id=20841003&rt=1663536974357&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=69%25E5%25A0%2582-%25E6%2588%2590%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%252C7%25E5%25B9%25B4%25E5%2585%258D%25E8%25B4%25B9%25E4%25B8%258B%25E8%25BD%25BD%25E5%259F%25BA%25E5%259C%25B0.&ing=1&ekc=&sid=1663536974357&tt=69%25E5%25A0%2582&kw=69%25E5%25A0%2582-%25E6%2588%2590%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%252C7%25E5%25B9%25B4%25E5%2585%258D%25E8%25B4%25B9%25E4%25B8%258B%25E8%25BD%25BD%25E5%259F%25BA%25E5%259C%25B0.&cu=https%253A%252F%252Fwww.69t105.com%252F%253F65&pu=http%253A%252F%252Fwww.szhqbg.com%252F
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=20841003&rt=1663536974357&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=69%25E5%25A0%2582-%25E6%2588%2590%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%252C7%25E5%25B9%25B4%25E5%2585%258D%25E8%25B4%25B9%25E4%25B8%258B%25E8%25BD%25BD%25E5%259F%25BA%25E5%259C%25B0.&ing=1&ekc=&sid=1663536974357&tt=69%25E5%25A0%2582&kw=69%25E5%25A0%2582-%25E6%2588%2590%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF%25E8%25A7%2586%25E9%25A2%2591%252C7%25E5%25B9%25B4%25E5%2585%258D%25E8%25B4%25B9%25E4%25B8%258B%25E8%25BD%25BD%25E5%259F%25BA%25E5%259C%25B0.&cu=https%253A%252F%252Fwww.69t105.com%252F%253F65&pu=http%253A%252F%252Fwww.szhqbg.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Sun, 18 Sep 2022 21:36:34 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=89623346ebcec7a304f; path=/
HWWAFSESTIME=1663536991063; path=/
taiwtp1.com/img/96080.gif
220.128.218.220200 OK 73 kB URL HTTP/2 taiwtp1.com/img/96080.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 80\012- data
Hash 3786e56d6d1ab748179b5cdcc97e0dc1
a1fabf9e794492452aeddae395618e245e892805
830e9e2171ca93ba4618970ee447880c54d99edc65aa4b26fa4e02c2fb963982
GET /img/96080.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 21:34:52 GMT
content-type: image/gif
content-length: 73157
last-modified: Thu, 07 Apr 2022 05:41:32 GMT
etag: "624e798c-11dc5"
expires: Tue, 18 Oct 2022 21:34:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f3c446999380b7b3cda86bd1179b383d
abdcda1be4e69ca4bfcc830cb4482b0b88340200
307d3eb6d7491b9238bfcf4ec8f625317392ba92bd7423ec1bb3d3414f7e4806
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Sep 2022 15:00:17 GMT
Expires: Sun, 25 Sep 2022 15:00:16 GMT
Etag: "abdcda1be4e69ca4bfcc830cb4482b0b88340200"
Cache-Control: max-age=580421,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cd37c51e0ffac8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f3c446999380b7b3cda86bd1179b383d
abdcda1be4e69ca4bfcc830cb4482b0b88340200
307d3eb6d7491b9238bfcf4ec8f625317392ba92bd7423ec1bb3d3414f7e4806
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Sep 2022 15:00:17 GMT
Expires: Sun, 25 Sep 2022 15:00:16 GMT
Etag: "abdcda1be4e69ca4bfcc830cb4482b0b88340200"
Cache-Control: max-age=580421,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cd37c51afeb500-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash d935b45e22538b33b8eb87bed18edf73
edda79a45c4928d77933c373f2e848450038c266
54aeeb9fb737b165b4539b08ab52a894f04d7308c3a89a6539312854fe035cb7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Sep 2022 11:31:03 GMT
Expires: Sun, 25 Sep 2022 11:31:02 GMT
Etag: "edda79a45c4928d77933c373f2e848450038c266"
Cache-Control: max-age=567867,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cd37c63ed7fac8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 16da5b6b8748dbf73de836e79eee61e7
916d9b70d4e93a12c10bd442ad266426dbec480c
3e346c0fef5be601035414f890e7afc4b8adde904921052c97f707ac5341829c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 07:05:03 GMT
Expires: Sat, 24 Sep 2022 07:05:02 GMT
Etag: "916d9b70d4e93a12c10bd442ad266426dbec480c"
Cache-Control: max-age=465507,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cd37c63f5a0b31-OSL
8feichai.com/i/2022/09/08/10ovw6j.gif
107.167.8.167200 OK 269 kB URL HTTP/2 8feichai.com/i/2022/09/08/10ovw6j.gif
IP 107.167.8.167:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 269 kB (268829 bytes)
Hash f5b5985f1917819da6a0b76a0daf9ff3
be9ddf6517151b3ca955e9597665347ac87da905
8e93c7840e27daca7875b58cc8ad91eddd6229bafc47847f6d4b00fba591bb54
GET /i/2022/09/08/10ovw6j.gif HTTP/1.1
Host: 8feichai.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 21:36:33 GMT
content-type: image/gif
content-length: 268829
last-modified: Thu, 08 Sep 2022 14:18:58 GMT
etag: "6319f9d2-41a1d"
expires: Tue, 18 Oct 2022 21:36:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
taiwtp1.com/img/960120.gif
220.128.218.220200 OK 121 kB URL HTTP/2 taiwtp1.com/img/960120.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 120\012- data
Size 121 kB (120952 bytes)
Hash 8b1ce22d19b73e71ec05f04491df7cae
101ed504920b13424231d6fb3540fb7dfdba69e3
5a7a72fa04186d44d08de8b590fcf1644ad8370bc65007e51ba9300af2541dce
GET /img/960120.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Sep 2022 21:34:52 GMT
content-type: image/gif
content-length: 120952
last-modified: Thu, 10 Mar 2022 10:55:56 GMT
etag: "6229d93c-1d878"
expires: Tue, 18 Oct 2022 21:34:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
bob4915.com/7cff6f8cf12442a28a54f3be82bbcd87.gif
103.170.15.105200 OK 168 kB URL HTTP/1.1 bob4915.com/7cff6f8cf12442a28a54f3be82bbcd87.gif
IP 103.170.15.105:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 168 kB (168182 bytes)
Hash 102de90a4e27cd879126e381ab758b8b
c25e9c9ef44badf7844619c34754880c781890b4
0d2ee996b8c707e04355ed5d6e561f53486908bb22c4e63d19760ddc78cf7aef
GET /7cff6f8cf12442a28a54f3be82bbcd87.gif HTTP/1.1
Host: bob4915.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62a361f3-290f6"
Date: Fri, 16 Sep 2022 11:39:03 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 10 Jun 2022 15:23:31 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-35
Content-Length: 168182
www.69t105.com/static/styles/jquery.fancybox-metal.css?v=7.0
172.67.145.45200 OK 638 kB URL HTTP/2 www.69t105.com/static/styles/jquery.fancybox-metal.css?v=7.0
IP 172.67.145.45:0
File type ASCII text, with CRLF line terminators
Size 638 kB (638005 bytes)
Hash 139a9dfd3f3ff58c1384b36383efacbd
18fc0bae23fbf51bf297b9f48144510e9323e23f
d3fece5c0bba9758e46559c3f6f524234cb89ef7f9e547fc35972bfc44530353
GET /static/styles/jquery.fancybox-metal.css?v=7.0 HTTP/1.1
Host: www.69t105.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/?65
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Sep 2022 21:36:32 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 25 Apr 2019 14:54:12 GMT
etag: W/"1506-5875bfdb7ad00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5267
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SoC4ve5mw4xZLp54FpP7j5QIYU9VoeVDVtXOTWsMtKiy9iQLKBzK5Y9typq7Xkjdaj3VqDKkFR4lC4WHmvbWHPEDVCYgMFANqpfhneoCsA93rMQDh6VaNjeG6ST0c8aQVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74cd37bcac4bfac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96080c.gif
47.110.177.104200 OK 583 kB URL HTTP/1.1 ggt999.oss-cn-hangzhou.aliyuncs.com/ky/ky96080c.gif
IP 47.110.177.104:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 583 kB (583062 bytes)
Hash 96ad401d59d1718860499f3d7fa5c036
41f43737b3862db5717b56847f2556b7b1481913
a9cade17dfb0575e6e21d7180bd17c03a67a530d283255454bbd96fb96dc21ab
GET /ky/ky96080c.gif HTTP/1.1
Host: ggt999.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: image/gif
Content-Length: 583062
Connection: keep-alive
x-oss-request-id: 63278F6153BCC633311662A1
Accept-Ranges: bytes
ETag: "96AD401D59D1718860499F3D7FA5C036"
Last-Modified: Sat, 17 Sep 2022 15:00:25 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 6566423440635606530
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: lq1AHVnRcYhgSZ89f6XANg==
x-oss-server-time: 3
xpj08.oss-cn-beijing.aliyuncs.com/vip80.gif
59.110.185.220200 OK 264 kB URL HTTP/1.1 xpj08.oss-cn-beijing.aliyuncs.com/vip80.gif
IP 59.110.185.220:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 264 kB (264494 bytes)
Hash 672b95e7b6ab24b5606b8287db85dbb4
98f1f1b06b3cb318d7f7a1bf7add76fa0a30c112
4203e1ae18bb06c6e719832987e87e838d8001fd6154e56a8b79c4c0678e7b54
GET /vip80.gif HTTP/1.1
Host: xpj08.oss-cn-beijing.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: image/gif
Content-Length: 264494
Connection: keep-alive
x-oss-request-id: 63278F61869939333740D731
Accept-Ranges: bytes
ETag: "672B95E7B6AB24B5606B8287DB85DBB4"
Last-Modified: Mon, 08 Aug 2022 07:28:40 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8762574589038276875
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: ZyuV57arJLVga4KH24XbtA==
x-oss-server-time: 2
veugcz8.com/1755129e9011448eab81031d0f369bdc.gif
103.170.15.115200 OK 553 kB URL HTTP/1.1 veugcz8.com/1755129e9011448eab81031d0f369bdc.gif
IP 103.170.15.115:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 553 kB (552818 bytes)
Hash 097e6fa9314192dc3dd55cb1c5023ee5
c30366c4c910616f1a3c1b773ffb4af967e20eb5
db020d7293807326453f5848c0bf219e2b835f2530468a9d816a3c1c7941023a
Analyzer Verdict Alert quad9 Sinkholed
GET /1755129e9011448eab81031d0f369bdc.gif HTTP/1.1
Host: veugcz8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62ee2fe6-86f72"
Date: Mon, 05 Sep 2022 01:54:38 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 06 Aug 2022 09:09:58 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-45
Content-Length: 552818
701.oss-cn-hongkong.aliyuncs.com/gg/950x60-2.gif
47.75.19.149200 OK 129 kB URL HTTP/1.1 701.oss-cn-hongkong.aliyuncs.com/gg/950x60-2.gif
IP 47.75.19.149:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 950 x 60\012- data
Size 129 kB (128655 bytes)
Hash 08c5bc37afeafacb0f4a418acefab289
9bb750cc968ef31a80269e6d2de57d83d56010b5
7322e21926f274b70082d2f64d8518e26794b6fcefaf381cee2e4d208b39f4dd
GET /gg/950x60-2.gif HTTP/1.1
Host: 701.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: image/gif
Content-Length: 128655
Connection: keep-alive
x-oss-request-id: 63278F617E084E3131B01BB6
Accept-Ranges: bytes
ETag: "08C5BC37AFEAFACB0F4A418ACEFAB289"
Last-Modified: Sat, 02 Jul 2022 01:53:24 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 14988960155364262856
x-oss-storage-class: Standard
Content-MD5: CMW8N6/q+ssPSkGKzvqyiQ==
x-oss-server-time: 0
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X60.gif
47.75.19.91200 OK 96 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X60.gif
IP 47.75.19.91:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Hash 57557d6b489d522d480d9b82ce29db65
da2d3b35f0c9534e84e50310aeafe73173037315
4b96548579c0d9b380b10ce78bdb3e8edfd35e180519b319c6b1181e7b325952
GET /gg/960X60.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: image/gif
Content-Length: 95856
Connection: keep-alive
x-oss-request-id: 63278F61D14BBC313834717D
Accept-Ranges: bytes
ETag: "57557D6B489D522D480D9B82CE29DB65"
Last-Modified: Sat, 09 Jul 2022 12:37:07 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15928828585404051914
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: V1V9a0idUi1IDZuCzinbZQ==
x-oss-server-time: 2
vcawmm.com/48f189737d6f462d835d907a6a789d48.gif
45.61.212.162200 OK 237 kB URL HTTP/2 vcawmm.com/48f189737d6f462d835d907a6a789d48.gif
IP 45.61.212.162:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 237 kB (236734 bytes)
Hash 04ae2506dd3ee8de6576603470617984
230dde6f7d8e2a26ecc3fe1595dc77aa81b36344
5eb34df8673dc91b31988b6099d25a2bad7f52183b37f053f55c4590443d9416
GET /48f189737d6f462d835d907a6a789d48.gif HTTP/1.1
Host: vcawmm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63075c21-39cbe"
server: nginx
date: Fri, 16 Sep 2022 06:23:09 GMT
content-type: image/gif
last-modified: Thu, 25 Aug 2022 11:25:21 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us5-cdnb-02
content-length: 236734
X-Firefox-Spdy: h2
vecukb.com/2f34a528489443dfaafcc581c4168599.gif
45.61.212.131200 OK 259 kB URL HTTP/2 vecukb.com/2f34a528489443dfaafcc581c4168599.gif
IP 45.61.212.131:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 259 kB (259280 bytes)
Hash 53d090335e8e78b28c5a51a7bcd9f866
42c109960113d98371ae8b95c216ffd7ef1a2fcd
66f9448c9ef2eb689df4f89ac297e2aaaf55e7b7f8d49aa646ff5569b4441bcc
GET /2f34a528489443dfaafcc581c4168599.gif HTTP/1.1
Host: vecukb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "632442b8-3f4d0"
server: nginx
date: Sat, 17 Sep 2022 13:44:16 GMT
content-type: image/gif
last-modified: Fri, 16 Sep 2022 09:32:40 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-01
content-length: 259280
X-Firefox-Spdy: h2
u0083.com/d004b021b6884084bf7d7c94686eeedd.gif
20.24.204.162200 OK 106 kB URL HTTP/1.1 u0083.com/d004b021b6884084bf7d7c94686eeedd.gif
IP 20.24.204.162:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 106 kB (105624 bytes)
Hash fed1644bf2ac138565e67fb6dc3201bd
3da83963c94b06617fcac1c33895a640f8652092
af629ac538d9a4e11f58e82873720825df4df836b683f4d42b69c97ac40f0038
GET /d004b021b6884084bf7d7c94686eeedd.gif HTTP/1.1
Host: u0083.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:34 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 25 Aug 2022 11:24:37 GMT
ETag: W/"63075bf5-3d745"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
u0083.com/560c36ffe75b43a8bc4c46959734be3b.gif
20.24.204.162200 OK 222 kB URL HTTP/1.1 u0083.com/560c36ffe75b43a8bc4c46959734be3b.gif
IP 20.24.204.162:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Size 222 kB (222438 bytes)
Hash 5b18aea64629bda87d5b316db669c1ee
dc1fe7dd292639ba5cf29754f9efc6def2ec07b0
a885231c6dd95806ac2b5963f3e46b1f4148a6eb3653f71cfddde992dcd11f61
GET /560c36ffe75b43a8bc4c46959734be3b.gif HTTP/1.1
Host: u0083.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:34 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 04 Jul 2022 14:50:07 GMT
ETag: W/"62c2fe1f-6cad4"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
884352.com/e004d44144994195923436e831fb2111.gif
47.75.19.14200 OK 584 kB URL HTTP/1.1 884352.com/e004d44144994195923436e831fb2111.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 584 kB (584025 bytes)
Hash ebf4ee75bbd43b703e1b1b861ba166e2
c241029604f77ad6b4f56894bc51decfededfde7
d6655adbfa7089435d168e9b1432e524f0bf11be8b80ddc499bef69bd5a376ea
GET /e004d44144994195923436e831fb2111.gif HTTP/1.1
Host: 884352.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: image/gif
Content-Length: 584025
Connection: keep-alive
x-oss-request-id: 63278F618A23F73836AEE461
Accept-Ranges: bytes
ETag: "EBF4EE75BBD43B703E1B1B861BA166E2"
Last-Modified: Wed, 06 Jul 2022 12:12:28 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9573701292697531384
x-oss-storage-class: Standard
Content-MD5: 6/TudbvUO3A+GxuGG6Fm4g==
x-oss-server-time: 1
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=9638
date: Sun, 18 Sep 2022 21:36:35 GMT
X-Firefox-Spdy: h2
s7.addthis.com/l10n/client.zh.min.json
23.38.200.123200 OK 1.5 kB URL HTTP/2 s7.addthis.com/l10n/client.zh.min.json
IP 23.38.200.123:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1553), with no line terminators
Hash 6a7c2439f63d550c4dcef8b6b57de08c
e4aa9e28cfafc58327965960634e174c71fa1973
acd75a6f90a7f47c3299b7dfdcebda3005876f6dd80c37160eec7c91e8b10e08
GET /l10n/client.zh.min.json HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.69t105.com
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/json
last-modified: Tue, 10 Sep 2019 15:15:17 GMT
etag: W/"5d77be05-a39"
cache-control: public, s-maxage=604800
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 1523
date: Sun, 18 Sep 2022 21:36:35 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63278f4e18ae67f8&bkl=0&bl=1&pdt=461&sid=63278f4e18ae67f8&pub=&rev=v8.28.8-wp&ln=zh&pc=men&cb=0&ab=-&dp=www.69t105.com&dr=www.szhqbg.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=4&gen=100&chr=UTF-8&mk=69%E5%A0%82-%E6%88%90%E4%BA%BA%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%2C7%E5%B9%B4%E5%85%8D%E8%B4%B9%E4%B8%8B%E8%BD%BD%E5%9F%BA%E5%9C%B0.&colc=1663536974503&jsl=1&skipb=1&callback=addthis.cbs.jsonp__0325910330291105940
23.38.200.123200 OK 91 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63278f4e18ae67f8&bkl=0&bl=1&pdt=461&sid=63278f4e18ae67f8&pub=&rev=v8.28.8-wp&ln=zh&pc=men&cb=0&ab=-&dp=www.69t105.com&dr=www.szhqbg.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=4&gen=100&chr=UTF-8&mk=69%E5%A0%82-%E6%88%90%E4%BA%BA%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%2C7%E5%B9%B4%E5%85%8D%E8%B4%B9%E4%B8%8B%E8%BD%BD%E5%9F%BA%E5%9C%B0.&colc=1663536974503&jsl=1&skipb=1&callback=addthis.cbs.jsonp__0325910330291105940
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash ed72f27d5c3d06e9f97beb696061d2ee
baf8f34506bf57e9e6ef29371de47ad531d4865f
36e50d9140d7e8a729b212778c13a57302fbf411afe5f492983b199c0955641b
GET /live/red_lojson/300lo.json?si=63278f4e18ae67f8&bkl=0&bl=1&pdt=461&sid=63278f4e18ae67f8&pub=&rev=v8.28.8-wp&ln=zh&pc=men&cb=0&ab=-&dp=www.69t105.com&dr=www.szhqbg.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=4&gen=100&chr=UTF-8&mk=69%E5%A0%82-%E6%88%90%E4%BA%BA%E5%9C%A8%E7%BA%BF%E8%A7%86%E9%A2%91%2C7%E5%B9%B4%E5%85%8D%E8%B4%B9%E4%B8%8B%E8%BD%BD%E5%9F%BA%E5%9C%B0.&colc=1663536974503&jsl=1&skipb=1&callback=addthis.cbs.jsonp__0325910330291105940 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 91
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Sun, 18 Sep 2022 21:36:35 GMT
X-Firefox-Spdy: h2
ads-6686.top/960-60.gif
47.75.19.18200 OK 179 kB IP 47.75.19.18:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 179 kB (179135 bytes)
Hash e66d01a700c00399b345a3f71477b98a
4cc3b5c09ce2e791e55fba866b8632816cf68d79
87bdc50d1208a7dc3d1819b9b9c33682ec1826c902b7cc7dd4635b188dcccb1e
GET /960-60.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sun, 18 Sep 2022 21:36:33 GMT
Content-Type: image/gif
Content-Length: 179135
Connection: keep-alive
x-oss-request-id: 63278F61E46B163539515F1E
Accept-Ranges: bytes
ETag: "E66D01A700C00399B345A3F71477B98A"
Last-Modified: Thu, 08 Sep 2022 13:40:14 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 3386658739579161366
x-oss-storage-class: Standard
Content-MD5: 5m0BpwDAA5mzRaP3FHe5ig==
x-oss-server-time: 1
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 77bc0b5a1b6715790fec4ae822ea2632
4d21a1d4d3b0f05b712a66e2869dd19fda1c56f0
a5dcb20f9ef3474501f259f570f3442307c793dd896e58f270baaeece03ef4da
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 18 Sep 2022 21:36:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Thu, 22 Sep 2022 20:32:29 GMT
ETag: "4d21a1d4d3b0f05b712a66e2869dd19fda1c56f0"
Last-Modified: Sun, 18 Sep 2022 20:32:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1902
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74cd37d998e5b52d-OSL
s7.addthis.com/static/82.513466d0781b3cc4fa57.js
23.38.200.123200 OK 544 B URL HTTP/2 s7.addthis.com/static/82.513466d0781b3cc4fa57.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (896), with no line terminators
Hash 7337fa895fe30ab0849e95c6b27284e5
18e5024929709c7d4d9bdaecdae34b17958b04ab
a7cdbebd837c5f00c67b9bfe443830eb66dfdad551bf20181798d43b2bc23675
GET /static/82.513466d0781b3cc4fa57.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-380"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 544
date: Sun, 18 Sep 2022 21:36:37 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
s7.addthis.com/static/156.83c5e374f5c22911d34a.js
23.38.200.123200 OK 785 B URL HTTP/2 s7.addthis.com/static/156.83c5e374f5c22911d34a.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (1440), with no line terminators
Hash be21fff01217868c772101fb38de5579
062a5845d114875a996de40a82b475aafea6d5a7
c7b8c99d9af99b34db6d0971da99040d206a5adb1b283fda60d8f37c3fe7979c
GET /static/156.83c5e374f5c22911d34a.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5a0"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 785
date: Sun, 18 Sep 2022 21:36:37 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
s7.addthis.com/static/184.73d337bbba7a90f88049.js
23.38.200.123200 OK 662 B URL HTTP/2 s7.addthis.com/static/184.73d337bbba7a90f88049.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (1157), with no line terminators
Hash b135a666cea06cfa59989b1d4f9655ad
1a1f04d55f356fbcf3977cd0da13225f4c34cf48
d04e5ad32851916c34d0ea02e7aa2d6d81868d42fe7af2592a693eaff3ec3a0e
GET /static/184.73d337bbba7a90f88049.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-485"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 662
date: Sun, 18 Sep 2022 21:36:37 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
s9.cnzz.com/z_stat.php?id=1279985848
220.185.164.250200 OK 20 B URL HTTP/2 s9.cnzz.com/z_stat.php?id=1279985848
IP 220.185.164.250:0
ASN #136190 JINHUA, ZHEJIANG Province, P.R.China.
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /z_stat.php?id=1279985848 HTTP/1.1
Host: s9.cnzz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 20
date: Sun, 18 Sep 2022 21:20:27 GMT
vary: Accept-Encoding
x-powered-by: PHP/5.5.25
last-modified: Sun, 18 Sep 2022 21:20:27 GMT
cache-control: max-age=1800,s-maxage=3600
content-encoding: gzip
ali-swift-global-savetime: 1663536027
via: cache26.l2cn1836[59,59,200-0,M], cache12.l2cn1836[60,0], cache9.cn4100[0,0,200-0,H], cache20.cn4100[5,0]
age: 970
x-cache: HIT TCP_MEM_HIT dirn:8:329818832
x-swift-savetime: Sun, 18 Sep 2022 21:20:27 GMT
x-swift-cachetime: 3600
timing-allow-origin: *
eagleid: dcb9a4a816635369977422478e
X-Firefox-Spdy: h2
www.69t105.com/?65
172.67.145.45200 OK 0 B IP 172.67.145.45:0
GET /?65 HTTP/1.1
Host: www.69t105.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.szhqbg.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Sep 2022 21:36:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.3.6
set-cookie: PHPSESSID=v44uhgs0mctb5gmj9c6cqbr5pi; path=/; domain=.69t105.com
kt_referer=http%3A%2F%2Fwww.szhqbg.com%2F; expires=Mon, 19-Sep-2022 21:36:32 GMT; Max-Age=86400; path=/; domain=.69t105.com
kt_qparams=65; expires=Mon, 19-Sep-2022 21:36:32 GMT; Max-Age=86400; path=/; domain=.69t105.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kMrqL1qPoiBxHpTwTMl3bR9K480%2Bkwu9P5Y07ETjlvKyC5%2B%2BkuW5BNMzQac1lwNiCpG3sRy4y61Kgk5JR6ekHa0Ya%2Bem0Boqst4hkgU6jAxdJawp6ZvZQdApcBbi6sVfgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74cd37b9fb23fac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.x967.xyz/images/632340c10b32f69ab372426f.gif
23.225.222.2302 Found 0 B URL HTTP/2 img.x967.xyz/images/632340c10b32f69ab372426f.gif
IP 23.225.222.2:0
GET /images/632340c10b32f69ab372426f.gif HTTP/1.1
Host: img.x967.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.69t105.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/ab54898ef8194212927a23f6ad4cfaef
cache-control: max-age=3600
X-Firefox-Spdy: h2