r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19701
Expires: Sun, 05 Feb 2023 03:00:07 GMT
Date: Sat, 04 Feb 2023 21:31:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4536
Expires: Sat, 04 Feb 2023 22:47:22 GMT
Date: Sat, 04 Feb 2023 21:31:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12239
Expires: Sun, 05 Feb 2023 00:55:45 GMT
Date: Sat, 04 Feb 2023 21:31:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 20:43:39 GMT
content-type: application/json
age: 2887
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qcijMFHOEcMVjA2eEH/NzjzfpFi3UMfYquhImEvCaWlCEukUfdQqscDN0eEl1ow02jBExwxCLiE=
x-amz-request-id: GZGHTGRDP3CA57S1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 21:24:11 GMT
age: 455
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
groupmillions.com/
104.164.239.190301 Moved Permanently 0 B IP 104.164.239.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 21:31:46 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.groupmillions.com/index.php
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 20:49:07 GMT
age: 2560
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.groupmillions.com/index.php
104.164.239.190200 OK 371 B URL HTTP/1.1 www.groupmillions.com/index.php
IP 104.164.239.190:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash e4941117a0698ed83c2e9385b93c4591
ac0caedc8d04b274521baeea3efac27dbc36d9a3
f1e714f3a8c829ecd645b148a146bb5014e4866e11e770a7c218769fb0c7d05f
GET /index.php HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:47 GMT
Content-Type: text/html
Content-Length: 371
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14667
Expires: Sun, 05 Feb 2023 01:36:14 GMT
Date: Sat, 04 Feb 2023 21:31:47 GMT
Connection: keep-alive
www.groupmillions.com/common.js
104.164.239.190200 OK 749 B URL HTTP/1.1 www.groupmillions.com/common.js
IP 104.164.239.190:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 15c3c0585995c7f58a1a79a0025d69e0
e5cd41244d801b1f13a2aa70fbb90a486f3f1fda
b81925961827073ce4c0edbe9d57c5a89f9563692cae1a2d0b61fc6b3b8248de
GET /common.js HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
52.26.112.186101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.26.112.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VYbRdalGiPLeGFWowfkJgg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0E7VFbc+JQRRhracSytuUg1LuNI=
www.groupmillions.com/tj.js
104.164.239.190200 OK 518 B URL HTTP/1.1 www.groupmillions.com/tj.js
IP 104.164.239.190:0
File type ASCII text, with CRLF line terminators
Hash 0833f95bd97634c20080bc6dc31ab52b
f37bf6a53a9eccfa14455375c8cb33a80f8c1197
c664fb53021b5e23ae2f9a0b24a1279bcca419cf12021064fe94aaddf46ac2f4
GET /tj.js HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:47 GMT
Content-Type: application/x-javascript
Content-Length: 518
Connection: keep-alive
www.groupmillions.com/favicon.ico
104.164.239.190200 OK 1.2 kB URL HTTP/1.1 www.groupmillions.com/favicon.ico
IP 104.164.239.190:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:22 GMT
Connection: keep-alive
ETag: "4e0d81de-47e"
Expires: Thu, 09 Feb 2023 21:31:48 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
app.gxfc567888.com/api/index.php
27.50.59.63200 OK 48 B URL HTTP/1.1 app.gxfc567888.com/api/index.php
IP 27.50.59.63:0
ASN #64050 BGPNET Global ASN
File type HTML document, ASCII text, with no line terminators
Hash 046691e8308c2adf72fc25247e2f9e80
a47d4ddf558d878140dd88a539159659e781345e
49f190d90d221b19e342cf6425fbb173e894ca0531935a3b08eaf83d980a6268
GET /api/index.php HTTP/1.1
Host: app.gxfc567888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash c920945f0b3e3426b74d9115214a1747
8e35f41039545692f24e0380c69def03878d7f91
8108a6e7ed37fe0d400a410d11d1bf76667eeeb9866d5b830f08b2a21fbf8a06
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 19:11:06 GMT
ETag: "8e35f41039545692f24e0380c69def03878d7f91"
Last-Modified: Sat, 04 Feb 2023 19:11:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 981
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794683eca836b4f4-OSL
app.gxfc567888.com/api/data.php
27.50.59.63200 OK 187 B URL HTTP/1.1 app.gxfc567888.com/api/data.php
IP 27.50.59.63:0
ASN #64050 BGPNET Global ASN
Hash a2f39e17225f709307f021c7f7b9c203
2a3c450315ff1394fe4a9e19f3e84ad25f4436f5
8a8d93090cc799a3f22cde072584163efdd76b05953274439c73a1d3c8d1c416
GET /api/data.php HTTP/1.1
Host: app.gxfc567888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://app.gxfc567888.com/api/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18327
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 21:31:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18327
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 21:31:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18327
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 21:31:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 84076
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 84075
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 85424
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 84087
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 03:08:59 GMT
age: 66169
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 83898
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4bb2c1505976b4eb19e0c66b7c1965c8
45ee4e46465a90a7c224abb55c01c3ffa093636d
e05961be43b60c5eb33d9f64743573c9c25d0002790a93fc109fe22d56cc6b91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E05961BE43B60C5EB33D9F64743573C9C25D0002790A93FC109FE22D56CC6B91"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7491
Expires: Sat, 04 Feb 2023 23:36:40 GMT
Date: Sat, 04 Feb 2023 21:31:49 GMT
Connection: keep-alive
hm.baidu.com/hm.js?ee9b92242bc6e8167aa9991d49453ae2
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ee9b92242bc6e8167aa9991d49453ae2
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 609382db2473c15d8a45c64fa5de73c3
d61f9076b6ba326598ada8d6c9460d23a5f07cca
0282ada095f7e0902f365c368252d342f3a2113bf84a6fadec948d480db1e834
GET /hm.js?ee9b92242bc6e8167aa9991d49453ae2 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Sat, 04 Feb 2023 21:31:49 GMT
Etag: 5bcfe6e1f33dd4189083794b3361e0c8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=29343349C8B293D7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?282ad46c18b6295a8bb8e1da991aa804
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?282ad46c18b6295a8bb8e1da991aa804
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash c72cfea95864998f74c7b09f96b1b7ea
5d8280794deeb2b4f9fc21c610db74a450c743d4
75c61a1ab1feb7f8ea273da2771a18725a27efb99a579022cb4dace2f420c1a4
GET /hm.js?282ad46c18b6295a8bb8e1da991aa804 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Sat, 04 Feb 2023 21:31:49 GMT
Etag: 41b1be41ca7cbec5229163eaadc4b274
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9C3E5F45BB9DED77; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.jz1007.xyz/template/m1938pc/static/css/footer.css
194.59.220.30200 OK 786 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/footer.css
IP 194.59.220.30:0
File type ASCII text, with CRLF line terminators
Hash 035c39627f489e6f8371e06f956c23c2
14ac806f3909e4b3d2120ba39936867d292376f1
551bb1c2ffb8a2e628101cedb256030b199a6e1276b6d53cc62f7baf02ead8c7
GET /template/m1938pc/static/css/footer.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
content-length: 786
last-modified: Thu, 14 Oct 2021 16:57:27 GMT
etag: "61686177-312"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/default.css
194.59.220.30200 OK 22 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/default.css
IP 194.59.220.30:0
File type ASCII text, with no line terminators
Hash 99bd951428de1a6dea7746c9db4face5
45a7071d97b407a28143bafb878477fbfbd5dd05
4d4e1af3c62dde233082e14491f7627f63e370721e38f8f411a26270e18f4c1b
GET /template/m1938pc/static/css/default.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
content-length: 22
last-modified: Mon, 13 Sep 2021 12:37:28 GMT
etag: "613f4608-16"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jz1007.xyz/upload/site/20211013-1/08f24df38294685d55744d75fa64dc33.png
194.59.220.30200 OK 14 kB URL HTTP/2 www.jz1007.xyz/upload/site/20211013-1/08f24df38294685d55744d75fa64dc33.png
IP 194.59.220.30:0
File type PNG image data, 180 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash b8549307d46342c96a4b1da5ba0b51e2
f3861dff285c7a5acad503c30a015cd629e341bb
72b949e9c60ad72560df7cbcc9f9e94d169992cf65377371441f7378ac30f193
GET /upload/site/20211013-1/08f24df38294685d55744d75fa64dc33.png HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: image/png
content-length: 13909
last-modified: Wed, 13 Oct 2021 11:54:13 GMT
etag: "6166c8e5-3655"
expires: Mon, 06 Mar 2023 21:31:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jz1007.xyz/static/images/go.gif
194.59.220.30200 OK 254 B URL HTTP/2 www.jz1007.xyz/static/images/go.gif
IP 194.59.220.30:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /static/images/go.gif HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/gif
content-length: 254
last-modified: Thu, 14 Oct 2021 06:39:43 GMT
etag: "6167d0af-fe"
expires: Mon, 06 Mar 2023 21:31:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1718740593&si=ee9b92242bc6e8167aa9991d49453ae2&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1718740593&si=ee9b92242bc6e8167aa9991d49453ae2&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1718740593&si=ee9b92242bc6e8167aa9991d49453ae2&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 21:31:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F800EFCBAE73EDDC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.jz1007.xyz/template/m1938pc/static/picture/favimg.png
194.59.220.30200 OK 172 kB URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/picture/favimg.png
IP 194.59.220.30:0
File type PNG image data, 1080 x 1918, 8-bit/color RGBA, non-interlaced\012- data
Size 172 kB (172027 bytes)
Hash c2cbbd773680667cb8dc7a0b88ee779c
fc158fcd1d5a3280923258eb783bd46428810af9
f72c5939d80e87ad72edf33f96b298c51bf1902e0603c18a4defee4c9c33576a
GET /template/m1938pc/static/picture/favimg.png HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/png
content-length: 172027
last-modified: Sun, 14 Mar 2021 06:39:32 GMT
etag: "604dafa4-29ffb"
expires: Mon, 06 Mar 2023 21:31:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1423586768&si=282ad46c18b6295a8bb8e1da991aa804&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1423586768&si=282ad46c18b6295a8bb8e1da991aa804&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1423586768&si=282ad46c18b6295a8bb8e1da991aa804&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 21:31:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=3433CBEF5A76171A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.jz1007.xyz/template/m1938pc/static/css/common.css
194.59.220.30200 OK 1.1 kB URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/common.css
IP 194.59.220.30:0
Hash dbfd1489c6370edcbe15228268d57449
6528ec880e8115b86bccff592b624e867f555e95
b1c31db9f1fcce8af020c51a1a29e642f730dc3d61b5b6330123a6f7541e75be
GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-691"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 13d635cc5546856d3a5ee3b8411a5296
24ec4d7ebbda1614881a2bbbcb3e9b101bfceed3
24f6babb6239347cc51e91c3117c33b589a04663d34b032e13004a5e2ad8761d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24F6BABB6239347CC51E91C3117C33B589A04663D34B032E13004A5E2AD8761D"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17368
Expires: Sun, 05 Feb 2023 02:21:18 GMT
Date: Sat, 04 Feb 2023 21:31:50 GMT
Connection: keep-alive
dimg04.c-ctrip.com/images/0100812000a0gbc4iF593.gif
104.110.17.24200 OK 212 kB URL HTTP/2 dimg04.c-ctrip.com/images/0100812000a0gbc4iF593.gif
IP 104.110.17.24:0
File type GIF image data, version 89a, 1140 x 100\012- data
Size 212 kB (212414 bytes)
Hash 70730bae184e481644c32bb7b632f611
498605c96e0a4b47c79e3ce0af02e111907e77d9
6fd07537bbc60b12f5708a94fb208b3afe0db2e1da1b7159956cb026ee5c535b
GET /images/0100812000a0gbc4iF593.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 212414
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=2096206
expires: Wed, 01 Mar 2023 03:48:36 GMT
date: Sat, 04 Feb 2023 21:31:50 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
104.110.17.24200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=5231043
expires: Thu, 06 Apr 2023 10:35:53 GMT
date: Sat, 04 Feb 2023 21:31:50 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0101u120009udrvgm786A.gif
104.110.17.24200 OK 248 kB URL HTTP/2 dimg04.c-ctrip.com/images/0101u120009udrvgm786A.gif
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 70\012- data
Size 248 kB (248461 bytes)
Hash aa6b9520d5a9b565794bdd46a2f72b2c
2c3fd7861aa54e3cefa6332c5bec2585fcce095c
356cb950ac303776b9faffc5c34e0e9a00b3f20f64cb02ad5f5d3fb399587a7d
GET /images/0101u120009udrvgm786A.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 248461
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
x-edgeconnect-midmile-rtt: 6
x-edgeconnect-origin-mex-latency: 114
cache-control: max-age=1603427
expires: Thu, 23 Feb 2023 10:55:37 GMT
date: Sat, 04 Feb 2023 21:31:50 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 23313b5c6d15012a5eee310b0158be85
a27a3d56e4c9a5a67a2dfa0c155872292454a781
2bf71869860ba159bede9e30c64c493dcf1f90880d25cdcce0e18be7b172e36d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BF71869860BA159BEDE9E30C64C493DCF1F90880D25CDCCE0E18BE7B172E36D"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17630
Expires: Sun, 05 Feb 2023 02:25:41 GMT
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 23313b5c6d15012a5eee310b0158be85
a27a3d56e4c9a5a67a2dfa0c155872292454a781
2bf71869860ba159bede9e30c64c493dcf1f90880d25cdcce0e18be7b172e36d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BF71869860BA159BEDE9E30C64C493DCF1F90880D25CDCCE0E18BE7B172E36D"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=946
Expires: Sat, 04 Feb 2023 21:47:37 GMT
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive
fengmian.fhfhtutu.com/upload/vod/2022/11/2vojd0ndec4.jpg
104.22.16.247200 OK 8.0 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/11/2vojd0ndec4.jpg
IP 104.22.16.247:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 13a3fd3ced775488557b99faa305e451
9404e563f3170d4d3136c21fc02367c70c354d71
129163321624df6dbd3f16079c4f10a6c21873f4738d49ea6715d5ddf85078dc
GET /upload/vod/2022/11/2vojd0ndec4.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 8012
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9084
content-disposition: inline; filename="2vojd0ndec4.webp"
etag: "637205ac-237c"
last-modified: Mon, 14 Nov 2022 09:09:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6056
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fca94a0b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/sbj2nwetsbv.jpg
104.22.16.247200 OK 10 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/sbj2nwetsbv.jpg
IP 104.22.16.247:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a3d8e77b8ad0be2f8cd867b71065e0dd
a763be24ff43fc84d14ed7d542c4750c3b81024d
ac5201dc8d46546a4ffed2fdbb389ff1b443ae677b6aeb98289f0bad0d10b139
GET /upload/vod/2022/12/sbj2nwetsbv.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 10114
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10969
content-disposition: inline; filename="sbj2nwetsbv.webp"
etag: "6394445d-2ad9"
last-modified: Sat, 10 Dec 2022 08:33:33 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1927
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fcb96b0b3d-OSL
X-Firefox-Spdy: h2
kvkaa.com/01dfa9bde54e701e29b1896a128d2cc1.gif
45.154.214.206301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/01dfa9bde54e701e29b1896a128d2cc1.gif
IP 45.154.214.206:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /01dfa9bde54e701e29b1896a128d2cc1.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/01dfa9bde54e701e29b1896a128d2cc1.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvkaa.com/153ac71e52df3d7d664bf0bb17905f12.gif
45.154.214.206301 Moved Permanently 162 B URL HTTP/2 kvkaa.com/153ac71e52df3d7d664bf0bb17905f12.gif
IP 45.154.214.206:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /153ac71e52df3d7d664bf0bb17905f12.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/153ac71e52df3d7d664bf0bb17905f12.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif
172.83.155.45200 OK 296 kB URL HTTP/2 kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 296 kB (295930 bytes)
Hash 298c2af98aa06470fcb80ad293146c0f
75be32a4c283cf249855e51c847d4f687d7436ec
e7060057157f5971d5b1031e9fe93528d70ad7bcf07d851bca10563594abae1e
GET /67a0474849f4ee10ccbe3b0d2cebf337.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/gif
content-length: 295930
last-modified: Mon, 30 Jan 2023 12:14:22 GMT
etag: "63d7b49e-483fa"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 3472
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BXGE7nLqfsYyp2TuyHviBQ%2BOa6MbA8HldOLcyYCZvSnIdXD%2Fy4NcO4O1PGF%2BmaNhNbBcIJetWuEAlFtQm5doNbcELror49D9WJlbtXwG4TPlP4fukNoiBK%2Bz%2F%2FBZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794032192fe42808-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.jz1007.xyz/pf.js
194.59.220.30404 Not Found 13 kB IP 194.59.220.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (621)
Hash a2189b40b00508e228611c06e90a1d67
90ce6fc7cdcc46729fb1149ffdae517350b806f9
2c81a4e65f64e2973cb743e4c24b6dc5d539477b903432d8ed2263e7eb52ced1
GET /pf.js HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
n18081.com/68a7807de3933bf7079116fa9df99e6f.gif
172.83.155.45200 OK 366 kB URL HTTP/2 n18081.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: n18081.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 2335045
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rNmKUpoQ83VUdphfP6uSdl7iGmtMfN5Gr%2Bg528dGKOZZlPYud23KqGrxVPKy8L9eFJqPHPB4RTZZuhhVjFVWCSHOvpIWyDoJ5%2BL8AWUW%2FutjNHEZ0Gxh8B0XUWjG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794106fe9bdc2844-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
IP 142.250.74.131:0
Hash a33f72967b9a84458bd5cc89a7d42176
ee79f3e52689b68ed385743e06a599d545e48c8b
d2cec375bfc538014980238050a9b11ab7876965f23cc6d099ae09385a516c6f
POST /s/gts1p5/IOl1ekfxYGk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fengmian.fhfhtutu.com/upload/vod/2022/12/ccxpgtfjj1s.jpg
104.22.16.247200 OK 5.3 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/ccxpgtfjj1s.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 76b08f792919687d28110df9b12de177
cc30772e022567f398b6b29cc9bf7640db4fcbaf
0bc494df133df60ef232a64851a9cefcbb7f62730b8a188089bb99c654c0ae2e
GET /upload/vod/2022/12/ccxpgtfjj1s.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 5294
last-modified: Fri, 16 Dec 2022 05:36:51 GMT
etag: "639c03f3-14ae"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9460b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/5dtk3c1tvo3.jpg
104.22.16.247200 OK 9.6 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/5dtk3c1tvo3.jpg
IP 104.22.16.247:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c9e34fc5e2cbb27d7c242f463f297880
86eb28f570a98215dfff531ebd206ef2a1175490
928abc56c09b7adde10d9b1d15d051994aafe1990b0d003bbf3128c752e26651
GET /upload/vod/2022/12/5dtk3c1tvo3.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 9632
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11137
content-disposition: inline; filename="5dtk3c1tvo3.webp"
etag: "639c03f9-2b81"
last-modified: Fri, 16 Dec 2022 05:36:57 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fca9480b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/fo1ykch4rhb.jpg
104.22.16.247200 OK 5.1 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/fo1ykch4rhb.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e8674eded851d229641d4fa093676a92
1c2df86d30a38733b2962c011e526e5ed10c3797
d596cc8ce36f828e8fdd2e151081dbdf7ac2136cc9573e35a01299176dbd8dbd
GET /upload/vod/2022/12/fo1ykch4rhb.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 5065
last-modified: Fri, 16 Dec 2022 05:33:37 GMT
etag: "639c0331-13c9"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca94d0b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/b0ikgw5d2zd.jpg
104.22.16.247200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/b0ikgw5d2zd.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 963027282aed9bfd82378e1b9db3fdd7
b0cf43e30d9f4450e5a44c689b0d15d29b803339
ba75d61c02a033548aa4aa1fa3c55d908eedb58f2f61e0ad2a1ff6935af4317f
GET /upload/vod/2022/12/b0ikgw5d2zd.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 10598
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11188, status=webp_bigger
etag: "639c03ca-2bb4"
last-modified: Fri, 16 Dec 2022 05:36:10 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9440b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/srj1mlyvboa.jpg
104.22.16.247200 OK 12 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/srj1mlyvboa.jpg
IP 104.22.16.247:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 43ca6d656b826ab1844ceac84afe334a
fa1d1f170077be5c6fbb133e1628ad84f8ee3d6c
e0d53785d84e352f00b0bb49b76f1fcf4430f518042fb0e8867ca0710d63b317
GET /upload/vod/2022/12/srj1mlyvboa.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 11524
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=12230
content-disposition: inline; filename="srj1mlyvboa.webp"
etag: "639c03ee-2fc6"
last-modified: Fri, 16 Dec 2022 05:36:46 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fca9510b3d-OSL
X-Firefox-Spdy: h2
www.tupku.top/lm/031815-80.gif
188.114.96.1200 OK 1.6 MB URL HTTP/2 www.tupku.top/lm/031815-80.gif
IP 188.114.96.1:0
File type GIF image data, version 89a, 500 x 281\012- data
Size 1.6 MB (1626999 bytes)
Hash 17244f3a8b60a0f7b291f5621c873713
c523f5d5b60d2eabc9084e9ba5803647ac08c2cd
4aed8c090aa7bff3de4c028efced6a87dd7645bc15d265cdddf106f3f5dd9435
GET /lm/031815-80.gif HTTP/1.1
Host: www.tupku.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 1626999
last-modified: Thu, 07 Jul 2022 15:13:11 GMT
etag: "62c6f807-18d377"
expires: Fri, 03 Mar 2023 18:21:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 270492
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bo9aqOT8leYr70xa66wo4xAGOUje49mGBYmhs%2FNWuxoRKuO3sjSnqslNB147197RIAGcsBq30Ho7h1N0u%2FirAZNrum4zaWuAx1dd22kd7loKcyWs6jOdIoM5cYKnaDiE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683febc05b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/3j2eylbu2yo.jpg
104.22.16.247200 OK 5.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/3j2eylbu2yo.jpg
IP 104.22.16.247:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ffcb5c0498d4b06a31af409a7878308e
f8dc8758e4ed560c11b94cd0132eac88bc8a4e5f
32ace819f819a57f57999334d3db35410e8e92d78c364c71df5ef92bccbacacb
GET /upload/vod/2022/12/3j2eylbu2yo.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 5370
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7687
content-disposition: inline; filename="3j2eylbu2yo.webp"
etag: "63944459-1e07"
last-modified: Sat, 10 Dec 2022 08:33:29 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fcc96c0b3d-OSL
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d9573e06d11e9b6100ba72682feeb51d
f18f84b6559ebe87345f2e41a271ca184708b78c
8ce73a353ef90c8050346772d57ace093c221f4f1ab35fc8760bfbdac0eb9398
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive
X-N: S
www.jz1007.xyz/template/m1938pc/static/css/menu.css
194.59.220.30200 OK 2.6 kB URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/menu.css
IP 194.59.220.30:0
Hash d97b499d73109a2bd3144e9c4f0a2fab
e89fdf8a2615fc75ccf421c3f7cfea87acdf42ef
7b260d40b236318e094011f40e3bfe3e08f1c14e6064a34685dd66d4b350cdee
GET /template/m1938pc/static/css/menu.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 06:03:46 GMT
vary: Accept-Encoding
etag: W/"6167c842-1e6c"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 1d675a7e710d50e285ada6908862c4f0
fb989cca29cd85d6001687fb1939f0d45df63189
943db88f8d4d96bfa36456716b126f658f81d91bc5da8887222b840468c3aaa2
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 07:03:57 GMT
Expires: Sat, 11 Feb 2023 07:03:56 GMT
Etag: "fb989cca29cd85d6001687fb1939f0d45df63189"
Cache-Control: max-age=552124,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683fe88c41bfe-OSL
fengmian.fhfhtutu.com/upload/vod/2022/12/uokxga22ifr.jpg
104.22.16.247200 OK 12 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/uokxga22ifr.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash a436596478a48e7a2d16bd013eea3fd4
ecb7781d589c6d35c859222db2866443d47e301d
1d039c59ff5ede8ab11a9fcad955e8d21fe2faf5ac76bb9e6e5f8eb2aa9f347b
GET /upload/vod/2022/12/uokxga22ifr.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11710
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12300, status=webp_bigger
etag: "63944455-300c"
last-modified: Sat, 10 Dec 2022 08:33:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9690b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/wizytn25tlx.jpg
104.22.16.247200 OK 9.2 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/wizytn25tlx.jpg
IP 104.22.16.247:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cf543af5608109ca717d7ef94e2d8f03
96e3f4120372fa414c437562e008c21fbf191aad
1279c81dbdcf88ec52d53698ad26eba62ae9aa97613d08917c3bf25c37ce89cd
GET /upload/vod/2022/12/wizytn25tlx.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 9174
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10382
content-disposition: inline; filename="wizytn25tlx.webp"
etag: "6394444e-288e"
last-modified: Sat, 10 Dec 2022 08:33:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fcb9680b3d-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 95ef286241e2e8f0e21b98561aefc5fb
3532ab1933aaa450f0027401fa0200a9a77f687b
d7b6bf61fa986c535178a0511aae2704a7c85d16ee7db11b95d6673f18b61073
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dd17b0-118"
Server: ECS (amb/6B99)
Content-Length: 280
fengmian.fhfhtutu.com/upload/vod/2022/12/tg1k401yc3v.jpg
104.22.16.247200 OK 9.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/tg1k401yc3v.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5c372dc9def055a7e572fbf7528c0c5d
647e36b380598d0f3b2a3256c54d0cafbb91daa7
420fd4d60c6df628027d14671f6bdc86bbfe2599586dbdc169ddea8921e22593
GET /upload/vod/2022/12/tg1k401yc3v.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9431
last-modified: Fri, 16 Dec 2022 05:37:01 GMT
etag: "639c03fd-24d7"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9450b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/yqg0ctowi0r.jpg
104.22.16.247200 OK 12 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/yqg0ctowi0r.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 92304e546bdf7b8a89407f95f8063107
62dbe0bedd8bddacadae0ba66041849cdceb2f99
7fe50ea71164dc7afd7802277c29d5acebc72e3b4ebb01bd1ad3266eae09bfbe
GET /upload/vod/2022/12/yqg0ctowi0r.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11629
last-modified: Fri, 16 Dec 2022 05:33:40 GMT
etag: "639c0334-2d6d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca94f0b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/wp3vd351vcq.jpg
104.22.16.247200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/wp3vd351vcq.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash fa4bce3c4fb9f5e802dabd6eecbee2c3
00237fb65273a4ce03cd9e28bda03f431a18b0fa
07c9dcf1bf02a091bd91848076305e38e78016a8eae73d651e6900d098f8aa0f
GET /upload/vod/2022/12/wp3vd351vcq.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11432
last-modified: Fri, 16 Dec 2022 05:33:43 GMT
etag: "639c0337-2ca8"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9500b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/p4dazimjm1z.jpg
104.22.16.247200 OK 7.8 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/p4dazimjm1z.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 308fb87b7e5b04a3a347f2b46fdae2d5
2f544975fc9eecfdab75920f636fc0fcb1b0968c
5f24d6a65fc95d1335fe7b79e03dc8ed1a360a14c24b82cff248b908eadea5f3
GET /upload/vod/2022/12/p4dazimjm1z.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 7780
last-modified: Fri, 16 Dec 2022 05:39:56 GMT
etag: "639c04ac-1e64"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb95b0b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/jwznrdx1rzt.jpg
104.22.16.247200 OK 9.3 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/jwznrdx1rzt.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 49abbcac28f3c71cad4ae8a67d8cac96
d2490b1ffedb6c07c66b0020d502ec41ab4aa89f
2c08e01edb20401cf51516968daa49e4fdc022dcc7102bd8330ff6790e0c5563
GET /upload/vod/2022/12/jwznrdx1rzt.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9281
last-modified: Fri, 16 Dec 2022 05:39:52 GMT
etag: "639c04a8-2441"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9590b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/11/k2v53j32wfq.jpg
104.22.16.247200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/11/k2v53j32wfq.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 317fb3f882aff19a70cbe3ebef4ea38d
ee2221ce5e325619c134dfe47b1950ddb624e9c4
26ec5e9faf7f2a221b55c14cdc6a7667ec3b359a803a29789c41c66a7ed6bec7
GET /upload/vod/2022/11/k2v53j32wfq.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11204
last-modified: Sun, 20 Nov 2022 09:02:04 GMT
etag: "6379ed0c-2bc4"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb96a0b3d-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 7ea5264cc3f667dc252472e44f2a20e0
e76d3fa080a337ae9762287027c37915b0676623
293033590cbb5150b0d6f9f975ae620ad6aba4b508b1aef627da5bb5d669589b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 13:22:16 GMT
Expires: Thu, 09 Feb 2023 13:22:15 GMT
Etag: "e76d3fa080a337ae9762287027c37915b0676623"
Cache-Control: max-age=402023,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ff7a3fb50f-OSL
fengmian.fhfhtutu.com/upload/vod/2022/11/e4xjv2sdpwt.jpg
104.22.16.247200 OK 9.9 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/11/e4xjv2sdpwt.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash bf3937314d96dae4b39df3eaf574b21f
f314d5891df0837a2d0b9b98e4068d1966cf9297
f32d7b59e917566925f3912158f15831f98f977e531ac1af95066286a44f9af7
GET /upload/vod/2022/11/e4xjv2sdpwt.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9922
last-modified: Sun, 20 Nov 2022 09:02:08 GMT
etag: "6379ed10-26c2"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9430b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/kbdsbr0vqol.jpg
104.22.16.247200 OK 9.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/kbdsbr0vqol.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5373e4bdd6e1cce6897fe5236d67e7c4
587f7b966c10fe26bc90f8fd02c77a2988b74804
9fd2481e9942656b2830bb79b5e26384b144a584f74bf6eaf4b629d16e1488da
GET /upload/vod/2022/12/kbdsbr0vqol.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9438
last-modified: Fri, 16 Dec 2022 05:39:47 GMT
etag: "639c04a3-24de"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9570b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/11/xagkpjvbpws.jpg
104.22.16.247200 OK 8.5 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/11/xagkpjvbpws.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8010fc11f91d6db48a82b7f12e54a89c
13a620eb3ec7eaeb77c4ef8da510ca6b1ae55098
728067ce164a7855ca4e958457cc6dcf5000ef74e5f3cf9fc74acbb33aa45f5d
GET /upload/vod/2022/11/xagkpjvbpws.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 8505
last-modified: Mon, 14 Nov 2022 09:09:07 GMT
etag: "637205b3-2139"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9600b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/11/bzfd51g00gj.jpg
104.22.16.247200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/11/bzfd51g00gj.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash dad61eeef0bb97895f182162a82f6bf2
ccdbea3f752c051384f3013e57136158e0eae02f
c8787bc248a0e7f434cb175c26b7979a78e8786f66467b70977837a32efd4845
GET /upload/vod/2022/11/bzfd51g00gj.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 10751
last-modified: Sun, 20 Nov 2022 09:55:23 GMT
etag: "6379f98b-29ff"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9490b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/vvzmzgwg4u0.jpg
104.22.16.247200 OK 7.6 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/vvzmzgwg4u0.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2eea6b485021ac2ad8f55abf6fa5f689
361e5b02c91ad95e554c242d469495236ad2e0f1
da79edb9d7d4be3b24266f343e7616da242811409ea164aeec8d36a0c799372e
GET /upload/vod/2022/12/vvzmzgwg4u0.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 7610
last-modified: Fri, 16 Dec 2022 05:33:33 GMT
etag: "639c032d-1dba"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca94c0b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/mwaq2vax3qh.jpg
104.22.16.247200 OK 7.6 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/mwaq2vax3qh.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 648292032d8e7cdb7bd557462b5d3442
7d272366a98d7f1b39ad392f66c6e335a9072853
a697cc8617c903bdaee8158ddf6e60e391dbe8ea66c60835f0d1cab968c067f6
GET /upload/vod/2023/01/mwaq2vax3qh.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 7587
last-modified: Mon, 23 Jan 2023 01:53:52 GMT
etag: "63cde8b0-1da3"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9650b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2023/01/bheho20r0om.jpg
104.22.16.247200 OK 12 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/bheho20r0om.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8506421d02634fbf0a8df1693088ac18
10346d0d29d769a19f1ab3d379b8577926d4d473
29d52309ddadae3884012d625a6c8b7a5da8f1923398eb1559c3633bbee3e876
GET /upload/vod/2023/01/bheho20r0om.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 12019
last-modified: Mon, 23 Jan 2023 01:54:00 GMT
etag: "63cde8b8-2ef3"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9670b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/5z5dzizfnql.jpg
104.22.16.247200 OK 9.2 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/5z5dzizfnql.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f63fe09eefab2b60d3693a24341a57c7
c041183235ebf9d8cd6f3a56e9f7ec7da2148a30
91517b268f9e8dcecceda8de161c8f3dd50c839de63c554482a567a58cdfc8e1
GET /upload/vod/2022/12/5z5dzizfnql.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9245
last-modified: Fri, 16 Dec 2022 05:39:38 GMT
etag: "639c049a-241d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9520b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/1fntcjklroe.jpg
104.22.16.247200 OK 13 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/1fntcjklroe.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d5b62eb281b8b4e7fe7dd1cfe18965b6
113d634aa05b8053e87e81f4a41de4ac94822665
be144586001036f8f3cf8953fb9aad33607606c8494a7da487b8b80dc4486cf4
GET /upload/vod/2022/12/1fntcjklroe.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 12853
last-modified: Fri, 16 Dec 2022 05:36:54 GMT
etag: "639c03f6-3235"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9470b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/11/dcrmi1ua02i.jpg
104.22.16.247200 OK 9.4 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/11/dcrmi1ua02i.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 96cc6ad2cf90c093a7ddac5630704244
5fd613da09e6e159d4edc905211f6bad658efdec
dcbdf1f0225f8643349b72c7822b6d969f56325db7d80b75b7ede521c85463e1
GET /upload/vod/2022/11/dcrmi1ua02i.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9389
last-modified: Mon, 14 Nov 2022 09:09:04 GMT
etag: "637205b0-24ad"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb95d0b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/12/hysyfitfegg.jpg
104.22.16.247200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/12/hysyfitfegg.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1322714494f6925473b5539fc91b2534
5f336e6e1c2a55c12c984b147d9f843a0a3daa54
ea64a0f7a54d42c1dbac4e2fcd041a5229d1134c72e1cab1c5dd4e7eb2bd660d
GET /upload/vod/2022/12/hysyfitfegg.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11346
last-modified: Fri, 16 Dec 2022 05:39:43 GMT
etag: "639c049f-2c52"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9540b3d-OSL
X-Firefox-Spdy: h2
fengmian.fhfhtutu.com/upload/vod/2022/11/sxvtlbhe0um.jpg
104.22.16.247200 OK 11 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2022/11/sxvtlbhe0um.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash df21d2755a52634f11aa544a85ff4ec0
ae91b2f4e03b6fd8726f4073d58289a6f0751d47
8258cfbadf9ec8e35b3c27a11ce9c073cbf0dedb61d167a4f4202b0fe0482a4d
GET /upload/vod/2022/11/sxvtlbhe0um.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 10896
last-modified: Mon, 14 Nov 2022 09:09:10 GMT
etag: "637205b6-2a90"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9640b3d-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0c2fd9e24e3d289e9f2debff52ba8817
a365c6ab942e90846875d7cee165852ff1bf59da
6ceb7cf57e11738a3863924aac43f2d6f75a9d9e974d7a07b82bb471d6c20630
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=95673
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dda180-117"
Expires: Mon, 06 Feb 2023 00:06:24 GMT
Last-Modified: Sat, 04 Feb 2023 00:06:24 GMT
Server: nginx
Content-Length: 279
fengmian.fhfhtutu.com/upload/vod/2023/01/woq2x5orei1.jpg
104.22.16.247200 OK 12 kB URL HTTP/2 fengmian.fhfhtutu.com/upload/vod/2023/01/woq2x5orei1.jpg
IP 104.22.16.247:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c3dc7f6f0559662889452edde2e105e6
eb3b34ebee643a9584097988a1d6552d34ad23cf
3a9fd5d241319c30e7bf7fda627cf1e6a9171a8f20acbbb126f4b5c15887daad
GET /upload/vod/2023/01/woq2x5orei1.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11498
last-modified: Mon, 23 Jan 2023 01:53:55 GMT
etag: "63cde8b3-2cea"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9660b3d-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0c2fd9e24e3d289e9f2debff52ba8817
a365c6ab942e90846875d7cee165852ff1bf59da
6ceb7cf57e11738a3863924aac43f2d6f75a9d9e974d7a07b82bb471d6c20630
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=95673
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dda180-117"
Expires: Mon, 06 Feb 2023 00:06:24 GMT
Last-Modified: Sat, 04 Feb 2023 00:06:24 GMT
Server: nginx
Content-Length: 279
kvtaaa.top/01dfa9bde54e701e29b1896a128d2cc1.gif
172.67.173.230200 OK 917 kB URL HTTP/2 kvtaaa.top/01dfa9bde54e701e29b1896a128d2cc1.gif
IP 172.67.173.230:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 917 kB (917343 bytes)
Hash 4c00e1159d5d1e950b0b9d0bf4ff89ea
ff4782d5b4f083af52757f7f74c524f17ad67a93
edb306fed3ef2015e2eb7a7d11d15f923367819b44e15d0650fdea692f50005e
GET /01dfa9bde54e701e29b1896a128d2cc1.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jz1007.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 917343
last-modified: Sun, 25 Dec 2022 10:36:11 GMT
etag: "63a8279b-dff5f"
expires: Fri, 24 Feb 2023 21:03:35 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 865696
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1MgYDgcH%2F%2FF195Z5dRIbLPi0sSgb9BD%2BAkjhQt2MhTODHiKgR8B6VLs75s1IW%2FlgpexnUwG0rFtESWFqr6wCkKhhtwt3wH3uhdjRB1ED0bZ%2F4Xe90MTLEKsDP8XV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794684000ce31c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 1eafd3eb212244e66d1f1415c988d2b5
05438410bda1b06ce5b1f2d8903a8af805a998dc
b99011f08bec941d4030f64b4292a377b1447db4ee62a4d128f9cbd4c0aa83f3
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=764
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive
X-N: S
ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
IP 142.250.74.131:0
Hash a33f72967b9a84458bd5cc89a7d42176
ee79f3e52689b68ed385743e06a599d545e48c8b
d2cec375bfc538014980238050a9b11ab7876965f23cc6d099ae09385a516c6f
POST /s/gts1p5/IOl1ekfxYGk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kvtaaa.top/153ac71e52df3d7d664bf0bb17905f12.gif
172.67.173.230200 OK 202 kB URL HTTP/2 kvtaaa.top/153ac71e52df3d7d664bf0bb17905f12.gif
IP 172.67.173.230:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 202 kB (202324 bytes)
Hash b3257a1280c7afd3cc952de2c91b1b68
9b1a4dc37ecaca40f22a6748542f8431a8c6d03d
6e09a9770baaf036b9d90d6826ac91de0246661c68d573064c774edd97047fd6
GET /153ac71e52df3d7d664bf0bb17905f12.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jz1007.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 202324
last-modified: Mon, 13 Jun 2022 10:12:34 GMT
etag: "62a70d92-31654"
expires: Sat, 04 Mar 2023 18:46:31 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 182720
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F0j4JdAxMY8JMio82Yi17M6JrBEctZhbDUkWg8na%2F0ugx8ChRWiByV440iwZsP3a2wp95lQmvuv3qZG6HJZQlmTHoOYRQNv14zDQXopVdr6MjZiPcv%2BsCczZU34Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794684002d0a1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=386908123&si=8a25af5bea94a7da8d20c689df4320a6&su=http%3A%2F%2Fapp.gxfc567888.com%2F&v=1.3.0&lv=1&sn=13004&r=0&ww=1268&u=https%3A%2F%2Fwww.jz1007.xyz%2F&tt=%E5%A6%9E%E5%A6%9E%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=386908123&si=8a25af5bea94a7da8d20c689df4320a6&su=http%3A%2F%2Fapp.gxfc567888.com%2F&v=1.3.0&lv=1&sn=13004&r=0&ww=1268&u=https%3A%2F%2Fwww.jz1007.xyz%2F&tt=%E5%A6%9E%E5%A6%9E%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=386908123&si=8a25af5bea94a7da8d20c689df4320a6&su=http%3A%2F%2Fapp.gxfc567888.com%2F&v=1.3.0&lv=1&sn=13004&r=0&ww=1268&u=https%3A%2F%2Fwww.jz1007.xyz%2F&tt=%E5%A6%9E%E5%A6%9E%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 21:31:51 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=8E8A9F757B512A92; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 62f51fe58e0450bb1e99532dc02a30a9
4c8d3d506f97d1db2919869f19c8ffc4e13d1ec6
75d1c4e55561606e15937eb33d32cd14695f30adb29a06d8275a076fbed53588
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 06:56:42 GMT
Expires: Fri, 10 Feb 2023 06:56:41 GMT
Etag: "4c8d3d506f97d1db2919869f19c8ffc4e13d1ec6"
Cache-Control: max-age=465289,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ff481a0b4d-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 94ae414ee20b4aa0622ee52b3c445ffc
4c46e93267549bc9b2b0325b866c97a9b5c29436
4a066f182b74467bff8208a3bce9ba3504266cd86e8a36af02e3ebfbb3db3793
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 21:49:37 GMT
Expires: Fri, 10 Feb 2023 21:49:36 GMT
Etag: "4c46e93267549bc9b2b0325b866c97a9b5c29436"
Cache-Control: max-age=518864,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ff496eb4f9-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 48899eef405d779f15dd94aeda4ff2f2
d0fec1d7b935849d0a29e47c843ed7e3afe36ef2
f9a8f6e97c645535fff70f7ed40d211e6252d229dd38242ab35a82bc2d5fd933
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 12:14:20 GMT
Expires: Fri, 10 Feb 2023 12:14:19 GMT
Etag: "d0fec1d7b935849d0a29e47c843ed7e3afe36ef2"
Cache-Control: max-age=484347,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ffca9bb50f-OSL
yhtuchuang.com/960x120.gif
183.255.106.33200 OK 55 B URL HTTP/1.1 yhtuchuang.com/960x120.gif
IP 183.255.106.33:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type HTML document, ASCII text, with no line terminators
Hash 26f51666f8eb543f2e3b36b753f2b854
2e370a609a131c989d7793d2c50550c06dad3897
5c9e276f8c376cc2fc6f480efd306581096d6f4c9efb5b339cf73221d4c84753
GET /960x120.gif HTTP/1.1
Host: yhtuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: guard=58cad3a21LKb0Cpp3DoPd68RylEpl8H+Xg==; path=/;Expires=Sat, 04-Feb-23 21:41:51 GMT
Cache-Control: no-cache, no-store, must-revalidate
Server: cdn
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0c2fd9e24e3d289e9f2debff52ba8817
a365c6ab942e90846875d7cee165852ff1bf59da
6ceb7cf57e11738a3863924aac43f2d6f75a9d9e974d7a07b82bb471d6c20630
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Server: ECS (amb/6B99)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 771181635d9c7fe1ddf5bb82d4bf2c12
b146bc4dee082bc0209b582e6fc2705a1ada6abb
fc3f89dd283c7a8ea1a0b75ee6962321fdadc102c0c4edb801038a4bd4590417
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3883
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dd82c4-2d7"
Last-Modified: Sat, 04 Feb 2023 20:27:09 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 727
fmtu.netfhtu.com/upload/vod/2021/05/f1zrg3bo3x0.jpg
172.247.77.90200 OK 14 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/2021/05/f1zrg3bo3x0.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4dd86c34a0cd3e53157cf1c1be95a0ae
b76bd237ef2f09b89b6febfa8b1fdeef07e1c251
dc6e496a397d736957eea2c5f6eacd8e68b0948f86ebba5bb8ad52894dc537b5
GET /upload/vod/2021/05/f1zrg3bo3x0.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 04 Feb 2023 21:32:46 GMT
Content-Type: image/jpeg
Content-Length: 13932
Connection: keep-alive
Last-Modified: Mon, 24 May 2021 22:01:39 GMT
ETag: "60ac2243-366c"
Accept-Ranges: bytes
p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
47.246.44.226200 OK 343 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
IP 47.246.44.226:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 343 kB (343002 bytes)
Hash ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b
GET /obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 343002
date: Sat, 17 Dec 2022 10:28:23 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 17 Dec 2022 10:00:43 GMT
nw-session-id: 2022121718004301013113605215982497p5k6801dy
nw-session-trace: 2022-12-17T18:00:43.827293149+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 343002
x-powered-by: ImageX
x-response-date: Sat, 17 Dec 2022 18:00:43 GMT
x-tt-logid: 2022121718004301013113605215982497
via: n128-134-083, cache14.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010ec35d8338a3c1341674e3d2464ee09a429c9c5af2fc930930b9ec60625c05f3b71a3d79f906afd2479681df4ec15d8b01af344e24d3e5df5584a5196f7e0400dfccab4c7d44dab881b7b096fd4eb23fa223bfc14da29e326a459a9a6aa15d8b
x-response-lb: image
ali-swift-global-savetime: 1671272903
age: 4273408
x-cache: HIT TCP_MEM_HIT dirn:9:164853675
x-swift-savetime: Sat, 17 Dec 2022 11:36:55 GMT
x-swift-cachetime: 31531888
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9616755463119903920e
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f127fe11e021870b95a25d444accce72
a2d7621ce6fc743e368a4f82c739539b81480fb5
48f9f5d1566f87e1ac2b4c8642ba23346431edae3fcac5c5932a75a38cd7551b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48F9F5D1566F87E1AC2B4C8642BA23346431EDAE3FCAC5C5932A75A38CD7551B"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4422
Expires: Sat, 04 Feb 2023 22:45:34 GMT
Date: Sat, 04 Feb 2023 21:31:52 GMT
Connection: keep-alive
66888aaa.com/6a7891198af94f218ccc6ac153fbe699.gif
45.61.212.227200 OK 177 kB URL HTTP/1.1 66888aaa.com/6a7891198af94f218ccc6ac153fbe699.gif
IP 45.61.212.227:0
File type GIF image data, version 89a, 750 x 100\012- data
Size 177 kB (177167 bytes)
Hash 65f3e7c7cb8287f8477fb705f58a7161
8e09c7d7dd79ff1119bda6fe3732df42c64b0b74
2b94d9ea2bf175666a90d69a766391c1b5475d88509121b7bd784fa37609a808
GET /6a7891198af94f218ccc6ac153fbe699.gif HTTP/1.1
Host: 66888aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "639ad059-2b40f"
Date: Fri, 13 Jan 2023 04:44:55 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 15 Dec 2022 07:44:25 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-27
Content-Length: 177167
8499159.com/8499/zzxx/960x60.gif
172.247.109.213200 OK 291 kB URL HTTP/2 8499159.com/8499/zzxx/960x60.gif
IP 172.247.109.213:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/zzxx/960x60.gif HTTP/1.1
Host: 8499159.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "46f0c-5f092cf097c3f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d45e57ecc6a1bda6b5da5a1c9cc81ead
48c6f217ef5fefa8bdbe52b16267db178c4e07e6
b3d86752de2791739096132640416b00a0369b32a5a9163650d30b469be9f7d9
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=402
Date: Sat, 04 Feb 2023 21:31:52 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 2577d21a7512681bd6498c1dcebd4a71
82c0a4181e2e66e8abc026f3068bb993fd2a4499
d9bd2c60355553732c64668df57a5bd698dbc403f5a379faa9e163210ea1fa6c
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=847
Date: Sat, 04 Feb 2023 21:31:52 GMT
Connection: keep-alive
X-N: S
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 8a6b75f8b88ed036870ee5634707c25f
b2c020dbc08089db2ec2c02bc89dd86fb67df039
160f7d479b7730fc4c71e7fef941759654288a00326d2ed2745f3f5ad10e2287
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5656
Cache-Control: max-age=148158
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:52 GMT
Etag: "63de586e-2d7"
Expires: Mon, 06 Feb 2023 14:41:10 GMT
Last-Modified: Sat, 04 Feb 2023 13:06:54 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 727
5951835ccc.com/1272565d7dac4e9aa3ed8725af8f9082.gif
103.170.15.77200 OK 857 kB URL HTTP/1.1 5951835ccc.com/1272565d7dac4e9aa3ed8725af8f9082.gif
IP 103.170.15.77:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 857 kB (857145 bytes)
Hash cf250ba4debf89cc57f49709d7cb73b0
ef7b4219780eedca6dde0a5b46278cd8120bf00f
952f1be23b3fc8df89b231db9a483f55ccd73486d8fe3e71c07e70405cbd4d4a
GET /1272565d7dac4e9aa3ed8725af8f9082.gif HTTP/1.1
Host: 5951835ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c7f2b5-d1439"
Date: Tue, 31 Jan 2023 15:43:42 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 18 Jan 2023 13:23:01 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-07
Content-Length: 857145
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 9e221b9bd3a914c6b8491375a285bd21
6b6a029014a3051fd76408da1ebd98243b59d0e4
c43c858542754acc1d2db483335566e19958577f0b44da183a12043bb95ce9db
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 08 Feb 2023 19:53:20 GMT
ETag: "6b6a029014a3051fd76408da1ebd98243b59d0e4"
Last-Modified: Sat, 04 Feb 2023 19:53:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468404ceb81c0e-OSL
638236rpn.com/d0245169c64c469c88717a1a417e40b4.gif
103.170.15.101200 OK 759 kB URL HTTP/1.1 638236rpn.com/d0245169c64c469c88717a1a417e40b4.gif
IP 103.170.15.101:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 100\012- data
Size 759 kB (758664 bytes)
Hash aba678cc899befb96d7234dc3087f2c0
72becd4ad309343a09159b1eaf66ea3c3b05585a
f4ee005ff278376111cf7430637a2be54c202f0ca62bd2afde5c8cff0e5f2c7c
Analyzer Verdict Alert quad9 Sinkholed
GET /d0245169c64c469c88717a1a417e40b4.gif HTTP/1.1
Host: 638236rpn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6370b612-b9388"
Date: Thu, 02 Feb 2023 00:17:46 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 13 Nov 2022 09:17:06 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-31
Content-Length: 758664
3761121ccc.com/025ebab711b94b6084690936525e9946.gif
103.170.15.97200 OK 910 kB URL HTTP/1.1 3761121ccc.com/025ebab711b94b6084690936525e9946.gif
IP 103.170.15.97:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 910 kB (910251 bytes)
Hash 7765dd886b3a8252706ac71a319898bc
bb1d99a7feeaae8a744e8bca7c4ead0d6da0a492
5b8c556af017878ef03cb2ad0a809ffcc3d8aaaf601361a22d990c0efa6fa6d1
GET /025ebab711b94b6084690936525e9946.gif HTTP/1.1
Host: 3761121ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a95b27-de3ab"
Date: Sun, 29 Jan 2023 15:14:28 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 26 Dec 2022 08:28:23 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-27
Content-Length: 910251
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 9e221b9bd3a914c6b8491375a285bd21
6b6a029014a3051fd76408da1ebd98243b59d0e4
c43c858542754acc1d2db483335566e19958577f0b44da183a12043bb95ce9db
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 08 Feb 2023 19:53:20 GMT
ETag: "6b6a029014a3051fd76408da1ebd98243b59d0e4"
Last-Modified: Sat, 04 Feb 2023 19:53:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794684061f451c12-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash b37e05e888337ab7752cec8a9bf67a36
d5e6393f3caf984e6d6e4b96067cf8285bf8bada
bdcf1090abfc6ee3c1116b67d06f42d9763feffe4fa1d11eb6f4c6edd0ea075e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 18:53:59 GMT
ETag: "d5e6393f3caf984e6d6e4b96067cf8285bf8bada"
Last-Modified: Sat, 04 Feb 2023 18:54:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468407cb6db4f4-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash b37e05e888337ab7752cec8a9bf67a36
d5e6393f3caf984e6d6e4b96067cf8285bf8bada
bdcf1090abfc6ee3c1116b67d06f42d9763feffe4fa1d11eb6f4c6edd0ea075e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 18:53:59 GMT
ETag: "d5e6393f3caf984e6d6e4b96067cf8285bf8bada"
Last-Modified: Sat, 04 Feb 2023 18:54:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468407edd0b4ed-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash b37e05e888337ab7752cec8a9bf67a36
d5e6393f3caf984e6d6e4b96067cf8285bf8bada
bdcf1090abfc6ee3c1116b67d06f42d9763feffe4fa1d11eb6f4c6edd0ea075e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 18:53:59 GMT
ETag: "d5e6393f3caf984e6d6e4b96067cf8285bf8bada"
Last-Modified: Sat, 04 Feb 2023 18:54:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468407fe2ab518-OSL
qp.ezfxpuo.cn/960X60.gif
218.66.171.78200 OK 254 kB IP 218.66.171.78:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 254 kB (253519 bytes)
Hash f744e995971941b6a95fcd2636f5a545
ac9c1230e04eab9e31512d2afe440fe5f0367dc5
59b1a138fa72df587e61916179965cbd819f91aec53ce6ab606949a7e06b3063
GET /960X60.gif HTTP/1.1
Host: qp.ezfxpuo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: NgxFence
date: Sat, 04 Feb 2023 21:31:52 GMT
content-type: image/gif
content-length: 253519
x-oss-request-id: 63DCC16D4C8B373832AC955A
etag: "F744E995971941B6A95FCD2636F5A545"
last-modified: Tue, 29 Nov 2022 08:27:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17987192695826819902
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
content-md5: 90TplZcZQbapX80mNvWlRQ==
x-oss-server-time: 1
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
120.52.95.236200 OK 678 kB URL HTTP/2 p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP 120.52.95.236:0
ASN #133119 China Unicom IP network
File type GIF image data, version 89a, 270 x 160\012- data
Size 678 kB (677521 bytes)
Hash 94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84
GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:52 GMT
content-type: image/gif
content-length: 677521
server: openresty
age: 19417967
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=2
via: CHN-HElangfang-AREACUCC1-CACHE2[2],CHN-HElangfang-AREACUCC1-CACHE35[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE60[39],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,36]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2
595tuchuang.com/960x80.gif
183.255.106.34200 OK 145 kB URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 183.255.106.34:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 145 kB (144990 bytes)
Hash 9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Wed, 01 Mar 2023 06:45:41 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
587tuchuang.com/587z80.gif
183.255.106.34200 OK 139 kB URL HTTP/1.1 587tuchuang.com/587z80.gif
IP 183.255.106.34:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 139 kB (139025 bytes)
Hash 4751af930c8c7b33a61958356ca554f0
c0cfc5b499211aa4f43c5815630738d36013c1aa
68f1f41464e84af0d6078d951d3a3f479e6865bb641a6eed4ba969bb7067bb18
GET /587z80.gif HTTP/1.1
Host: 587tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: image/gif
Content-Length: 139025
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:30:32 GMT
ETag: "63a30a78-21f11"
Expires: Thu, 02 Mar 2023 07:21:02 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
kjimg10.360buyimg.com/ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif
121.226.246.3200 OK 1.4 MB URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif
IP 121.226.246.3:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 1.4 MB (1411145 bytes)
Hash 3e2a08c45f216f23995e08dc45ed0e86
c9390027ee4885cb509d8b2ad37d6daa9698631e
ffdceb96ee4670386b85d0e2389496569d7e5e9f16844c2f26e9656482a8f12f
GET /ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:53 GMT
content-type: image/gif
content-length: 1411145
cache-control: max-age=15552000
expires: Tue, 01 Aug 2023 02:55:16 GMT
last-modified: Sat, 26 Nov 2022 04:47:42 GMT
age: 239797
via: http/1.1 ORI-CLOUD-HUZ-MIX-15 (jcs [cHs f ]), http/1.1 SQ-CT-1-MIX-25 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1675306516656-0-0-0-231-231;200;200-1675428628548-0-0-0-5-5;200-1675546313225-0-0-0-1-1
X-Firefox-Spdy: h2
www.jz1007.xyz/
194.59.220.30200 OK 1.2 MB IP 194.59.220.30:0
Size 1.2 MB (1208817 bytes)
Hash 908ae3a5cb37adabd30caa8fddc3e0e8
68c545fa6f50a5c0187625b14f5f57d67240ff8e
2a69254c2873b8dbd246efdda41d37ecaeed6d65b531db19ae9164d318907798
GET / HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://app.gxfc567888.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
kjimg10.360buyimg.com/ott/jfs/t1/48391/16/19388/893726/6380d3c5E0d000912/3cef13072ce017c1.gif
121.226.246.3200 OK 894 kB URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/48391/16/19388/893726/6380d3c5E0d000912/3cef13072ce017c1.gif
IP 121.226.246.3:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 894 kB (893726 bytes)
Hash 1e34697200f13da14c5bfabeba617325
9a18ed38d5d385f885c28a4280b4c61302745b65
b63a862a0f65ff9f685e9b67fd171a6df96878469b0a85d1da2f644399c0409f
GET /ott/jfs/t1/48391/16/19388/893726/6380d3c5E0d000912/3cef13072ce017c1.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:53 GMT
content-type: image/gif
content-length: 893726
cache-control: max-age=15552000
expires: Wed, 02 Aug 2023 21:01:36 GMT
last-modified: Fri, 25 Nov 2022 14:40:05 GMT
age: 88218
via: http/1.1 ORI-CLOUD-HUZ-MIX-29 (jcs [cHs f ]), http/1.1 SQ-CT-1-MIX-25 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1675458096006-0-0-14-75-75;200;200-1675508761134-0-0-0-5-5;200-1675546313262-0-0-0-1-1
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
43.154.254.32200 OK 1.6 MB URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 640 x 200\012- data
Size 1.6 MB (1607696 bytes)
Hash 9c26f4dcfdfa72ecdcbe3ea854547b4c
fed85b90734400d6810be2b07403f5c8a194a507
ebd842d015d6684a6995a73f1e81f0dea219815318f8993501da9ca79cca74d2
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 04 Feb 2023 21:31:53 GMT
content-type: image/gif
content-length: 1607696
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:45 GMT
cache-control: max-age=2592000
x-delay: 122454 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1607696
chid: 0
fid: 0
x-nws-log-uuid: 8396bfbd-85cb-497f-aea0-32c77c19917f
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/main.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/main.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/main.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 14:51:36 GMT
vary: Accept-Encoding
etag: W/"616843f8-85b"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/img_list.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/img_list.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/img_list.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 15:08:47 GMT
vary: Accept-Encoding
etag: W/"616847ff-9dd"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/style.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/style.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 17:25:59 GMT
vary: Accept-Encoding
etag: W/"61686827-5335"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/index.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/index.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/index.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Fri, 12 Nov 2021 13:36:57 GMT
vary: Accept-Encoding
etag: W/"618e6df9-1837"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/pagination.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/pagination.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/pagination.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-51e"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/pf.js
194.59.220.30404 Not Found 0 B IP 194.59.220.30:0
GET /pf.js HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/blue.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/blue.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/blue.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/default.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:28 GMT
vary: Accept-Encoding
etag: W/"613f4608-bf0"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/icon.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/icon.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/icon.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-62f"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/banner.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/banner.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/banner.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-49c"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/header.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/header.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/header.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Wed, 13 Oct 2021 13:35:12 GMT
vary: Accept-Encoding
etag: W/"6166e090-10db"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.jz1007.xyz/template/m1938pc/static/css/flickity.min.css
194.59.220.30200 OK 0 B URL HTTP/2 www.jz1007.xyz/template/m1938pc/static/css/flickity.min.css
IP 194.59.220.30:0
GET /template/m1938pc/static/css/flickity.min.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:28 GMT
vary: Accept-Encoding
etag: W/"613f4608-ab1"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
img.1201555.com/images/63d2101183b5991e572600e7.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.1201555.com/images/63d2101183b5991e572600e7.gif
IP 3.36.126.81:0
GET /images/63d2101183b5991e572600e7.gif HTTP/1.1
Host: img.1201555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2