Report - groupmillions.com/

Report Overview

Submitted URL
groupmillions.com/
IP
104.164.239.190
ASN
#18779 EGIHOSTING
Submitted
2023-02-04 21:31:59
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
66888aaa.com	unknown	2022-11-25T13:50:17Z	2023-03-08T02:13:44Z	404 B	177 kB	45.61.212.227
638236rpn.com	unknown	2022-10-29T17:25:48Z	2023-03-12T05:24:21Z	405 B	759 kB	103.170.15.101
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
p26.toutiaoimg.com	75286	2021-01-20T18:21:02Z	2023-03-13T07:26:22Z	441 B	679 kB	120.52.95.236
p.qlogo.cn	48578	2014-01-15T12:11:45Z	2023-03-13T07:26:22Z	455 B	1.6 MB	43.154.254.32
kjimg10.360buyimg.com	unknown	2022-11-25T23:08:29Z	2023-03-13T05:55:46Z	896 B	2.3 MB	121.226.246.3
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
kvkaa.com	unknown	2022-05-19T11:47:10Z	2023-03-13T05:37:25Z	802 B	844 B	45.154.214.206
kvegg.com	unknown	2022-11-17T08:04:49Z	2023-03-12T09:10:10Z	401 B	297 kB	172.83.155.45
kvtaaa.top	unknown	2022-05-19T11:36:19Z	2023-03-13T05:37:26Z	804 B	1.1 MB	172.67.173.230
dvcasha2.ocsp-certum.com	71753	2014-11-27T09:04:42Z	2023-03-13T08:02:07Z	1.4 kB	7.5 kB	23.36.79.17
ocsp2.globalsign.com	1544	2012-05-23T20:10:04Z	2023-03-13T05:14:17Z	734 B	3.9 kB	104.18.20.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	2.0 kB	4.1 kB	93.184.220.29
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	1.4 kB	3.9 kB	104.18.32.68
3761121ccc.com	unknown	2022-12-24T11:40:23Z	2023-03-12T16:39:56Z	406 B	910 kB	103.170.15.97
595tuchuang.com	unknown	2022-12-21T13:40:45Z	2023-03-13T05:36:49Z	381 B	145 kB	183.255.106.34
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	4.1 kB	11 kB	23.36.76.226
groupmillions.com	unknown	2015-05-29T13:38:00Z	2023-03-13T06:01:01Z	349 B	202 B	104.164.239.190
app.gxfc567888.com	unknown	2022-10-18T13:36:02Z	2023-03-09T14:53:09Z	703 B	651 B	27.50.59.63
fengmian.fhfhtutu.com	unknown	2022-12-21T23:54:03Z	2023-03-12T16:48:11Z	12 kB	289 kB	104.22.16.247
img.1201555.com	unknown	2022-11-11T16:01:13Z	2023-03-12T17:26:39Z	406 B	182 B	3.36.126.81
qp.ezfxpuo.cn	unknown	2022-12-14T10:35:04Z	2023-03-13T05:36:49Z	379 B	254 kB	218.66.171.78
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.26.112.186
n18081.com	unknown	2023-01-09T09:27:10Z	2023-03-13T07:20:08Z	402 B	367 kB	172.83.155.45
yhtuchuang.com	unknown	2023-01-18T12:24:00Z	2023-03-13T08:45:56Z	381 B	413 B	183.255.106.33
8499159.com	unknown	2022-11-03T16:05:56Z	2023-03-13T08:24:38Z	387 B	291 kB	172.247.109.213
www.groupmillions.com	unknown	2022-06-20T07:41:23Z	2023-03-08T11:01:15Z	1.3 kB	3.6 kB	104.164.239.190
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	59 kB	34.120.237.76
zerossl.ocsp.sectigo.com	4049	2020-05-09T21:05:29Z	2023-03-13T05:14:15Z	348 B	1.2 kB	172.64.155.188
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	714 B	1.4 kB	142.250.74.131
www.tupku.top	unknown	2022-06-30T23:26:11Z	2023-03-13T00:53:50Z	385 B	1.6 MB	188.114.96.1
fmtu.netfhtu.com	244457	2021-12-27T15:39:45Z	2023-03-09T11:09:17Z	406 B	14 kB	172.247.77.90
p3.douyinpic.com	23536	2020-12-18T12:20:50Z	2023-03-13T08:24:37Z	386 B	344 kB	47.246.44.226
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	1.4 kB	7.6 kB	104.18.21.226
hm.baidu.com	8254	2012-05-26T10:38:45Z	2023-03-13T05:32:36Z	2.8 kB	25 kB	103.235.46.191
www.jz1007.xyz	unknown	2022-06-06T09:41:09Z	2023-02-07T03:01:05Z	8.5 kB	1.4 MB	194.59.220.30
dimg04.c-ctrip.com	139731	2014-05-08T18:11:10Z	2023-03-13T05:37:25Z	1.2 kB	951 kB	104.110.17.24
5951835ccc.com	unknown	2022-12-24T11:41:23Z	2023-03-13T00:58:24Z	406 B	857 kB	103.170.15.77
587tuchuang.com	unknown	2022-12-25T02:13:41Z	2023-03-13T05:37:25Z	381 B	139 kB	183.255.106.34

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-04 21:32:27	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile
2023-02-04 21:32:28	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-04 21:32:28	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-04 21:32:28	low	172.247.109.213	Client IP	ET INFO Observed ZeroSSL SSL/TLS Certificate

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-04	medium	638236rpn.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	www.groupmillions.com/index.php	38 B	2023-03-07	2023-04-05
Pretty URL www.groupmillions.com/index.php IP 104.164.239.190 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2023-04-05 01:43:46 Times Seen11 Hash 0f49cea0a4ba2c249226f98b9584aeb1 35d4aadc5321925135653aa254439daf99936a68 b2c47d4be75932bb0aba4e0ab71503832f1efdcbfaefb4d3681a3c4894ffd70f Loading...

	hm.baidu.com/hm.js?ee9b92242bc6e8167aa9991d49453ae2	30 kB	2023-03-13	2023-03-13
Pretty URL hm.baidu.com/hm.js?ee9b92242bc6e8167aa9991d49453ae2 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:03:58 Last Seen2023-03-13 17:03:58 Times Seen1 Hash 89dbb8c5a294f6b72f1ba15c7a9e35d8 138fb56374bfc90444532d69672cd28f856b16b3 6955dd7926ade136e85a74aa8574ef615a0231a014a597033ef5267e6f25af39 Loading...

	hm.baidu.com/hm.js?282ad46c18b6295a8bb8e1da991aa804	30 kB	2023-03-13	2023-03-13
Pretty URL hm.baidu.com/hm.js?282ad46c18b6295a8bb8e1da991aa804 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:03:58 Last Seen2023-03-13 17:03:58 Times Seen1 Hash 5700660886c73b27db5c8890a645407e 20622a09b33cfcdc178bc9a79994db0068bfbdef 21ce0f47f2a42c4d2141be69741918e9cb37665957dbd9c1f160f3e6154ed43d Loading...

	hm.baidu.com/hm.js?8a25af5bea94a7da8d20c689df4320a6	30 kB	2023-03-13	2023-03-13
Pretty URL hm.baidu.com/hm.js?8a25af5bea94a7da8d20c689df4320a6 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:03:58 Last Seen2023-03-13 17:03:58 Times Seen1 Hash a9aaecf45c1babf54fd71295cd24beca ca0e1df302730e2b182de7d2905ae9d60f2d75de 845a9baac1ec43c16d3f7e04a871131e314ddede4425f18859cd6889c1d2f9f3 Loading...

	www.groupmillions.com/common.js	1.5 kB	2023-03-08	2023-04-21
Pretty URL www.groupmillions.com/common.js IP 104.164.239.190 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:34:16 Last Seen2023-04-21 13:59:57 Times Seen24 Hash 3e081194ac87a85286f524d6effdba6f a2c4606a09bd3c90510946c1d91fb26170d17a47 24c9e59e2fd989db8c57af2ef4061b0563b58349f869ed68621b4d4142d89452 Loading...

	www.groupmillions.com/tj.js	518 B	2023-03-07	2023-08-22
Pretty URL www.groupmillions.com/tj.js IP 104.164.239.190 ASN #18779 EGIHOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2023-08-22 04:29:55 Times Seen21 Hash 0833f95bd97634c20080bc6dc31ab52b f37bf6a53a9eccfa14455375c8cb33a80f8c1197 c664fb53021b5e23ae2f9a0b24a1279bcca419cf12021064fe94aaddf46ac2f4 Loading...

	app.gxfc567888.com/api/data.php	248 B	2023-03-13	2023-03-13
Pretty URL app.gxfc567888.com/api/data.php IP 27.50.59.63 ASN #64050 BGPNET Global ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:03:58 Last Seen2023-03-13 17:27:05 Times Seen1 Hash 3891d3574088e57f6da1441a7a8c41ae e38edd61c1090a4595ee3c18d6edb68ed7d7c453 08594245ffc2defe124b1730056047dc41384b4e45a958f63859253926abdee8 Loading...

	www.jz1007.xyz/	463 B	2023-03-07	2023-06-19
Pretty URL www.jz1007.xyz/ IP 194.59.220.30 ASN #18978 ENZUINC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2023-06-19 00:29:41 Times Seen29 Hash 3a4193d6600f622eabc904da78bb4893 05a360d8d24be27da70940b656c1158f68e22923 fce95d7f105887d82094294c37d111707d443914332e0299b5a8d2f2eca8b0b5 Loading...

	www.jz1007.xyz/	254 B	2023-03-07	2023-04-21
Pretty URL www.jz1007.xyz/ IP 194.59.220.30 ASN #18978 ENZUINC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2023-04-21 13:59:56 Times Seen28 Hash 298ee42e9232694083a97fda7e132322 af5d8b2e1d6b1df5cd36b7e5f413fff9430098a6 4a18a4dbc15636fc685eedbf1021d563ade56dc646d717f30f49b753b5fe7afe Loading...

		Size	First Seen	Last Seen
	#1 Eval - 7bb38a52e963e041390c661e60ad1b11	478 B	2023-03-08	2023-04-17
Pretty Observations First Seen2023-03-08 15:57:46 Last Seen2023-04-17 13:01:24 Times Seen15 Hash 7bb38a52e963e041390c661e60ad1b11 624fc483f57142901a27a70fcf3ef90779f06c7d 6216817580f6e3f23b99811585a0974567108da22695dbb4de878787c2315c9a Loading...

		Size	First Seen	Last Seen
	#1 Write - f241c846fb208e4b549451d346851502	459 B	2023-03-08	2023-04-17
Pretty Observations First Seen2023-03-08 15:57:46 Last Seen2023-04-17 13:01:24 Times Seen15 Hash f241c846fb208e4b549451d346851502 4902d3e11e38809c1d802502712e8693779e5344 eb7129b50205569545291847fced4bbad1c2f765503b87b4ef786a084f013ab9 Loading...

HTTP Transactions (133)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19701
Expires: Sun, 05 Feb 2023 03:00:07 GMT
Date: Sat, 04 Feb 2023 21:31:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4536
Expires: Sat, 04 Feb 2023 22:47:22 GMT
Date: Sat, 04 Feb 2023 21:31:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12239
Expires: Sun, 05 Feb 2023 00:55:45 GMT
Date: Sat, 04 Feb 2023 21:31:46 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 20:43:39 GMT
content-type: application/json
age: 2887
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: qcijMFHOEcMVjA2eEH/NzjzfpFi3UMfYquhImEvCaWlCEukUfdQqscDN0eEl1ow02jBExwxCLiE=
x-amz-request-id: GZGHTGRDP3CA57S1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 21:24:11 GMT
age: 455
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

groupmillions.com/

104.164.239.190

301 Moved Permanently

0 B

URL HTTP/1.1
groupmillions.com/
IP
104.164.239.190:0
ASN
#18779 EGIHOSTING

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 21:31:46 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.groupmillions.com/index.php

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 20:49:07 GMT
age: 2560
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.groupmillions.com/index.php

104.164.239.190

200 OK

371 B

URL HTTP/1.1
www.groupmillions.com/index.php
IP
104.164.239.190:0
ASN
#18779 EGIHOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Size
371 B (371 bytes)
Hash
e4941117a0698ed83c2e9385b93c4591
ac0caedc8d04b274521baeea3efac27dbc36d9a3
f1e714f3a8c829ecd645b148a146bb5014e4866e11e770a7c218769fb0c7d05f

HTTP Headers

GET /index.php HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:47 GMT
Content-Type: text/html
Content-Length: 371
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14667
Expires: Sun, 05 Feb 2023 01:36:14 GMT
Date: Sat, 04 Feb 2023 21:31:47 GMT
Connection: keep-alive

www.groupmillions.com/common.js

104.164.239.190

200 OK

749 B

URL HTTP/1.1
www.groupmillions.com/common.js
IP
104.164.239.190:0
ASN
#18779 EGIHOSTING

File type
HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Size
749 B (749 bytes)
Hash
15c3c0585995c7f58a1a79a0025d69e0
e5cd41244d801b1f13a2aa70fbb90a486f3f1fda
b81925961827073ce4c0edbe9d57c5a89f9563692cae1a2d0b61fc6b3b8248de

HTTP Headers

GET /common.js HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

push.services.mozilla.com/

52.26.112.186

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.26.112.186:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VYbRdalGiPLeGFWowfkJgg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0E7VFbc+JQRRhracSytuUg1LuNI=

www.groupmillions.com/tj.js

104.164.239.190

200 OK

518 B

URL HTTP/1.1
www.groupmillions.com/tj.js
IP
104.164.239.190:0
ASN
#18779 EGIHOSTING

File type
ASCII text, with CRLF line terminators
Size
518 B (518 bytes)
Hash
0833f95bd97634c20080bc6dc31ab52b
f37bf6a53a9eccfa14455375c8cb33a80f8c1197
c664fb53021b5e23ae2f9a0b24a1279bcca419cf12021064fe94aaddf46ac2f4

HTTP Headers

GET /tj.js HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:47 GMT
Content-Type: application/x-javascript
Content-Length: 518
Connection: keep-alive

www.groupmillions.com/favicon.ico

104.164.239.190

200 OK

1.2 kB

URL HTTP/1.1
www.groupmillions.com/favicon.ico
IP
104.164.239.190:0
ASN
#18779 EGIHOSTING

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.groupmillions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:22 GMT
Connection: keep-alive
ETag: "4e0d81de-47e"
Expires: Thu, 09 Feb 2023 21:31:48 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes

app.gxfc567888.com/api/index.php

27.50.59.63

200 OK

48 B

URL HTTP/1.1
app.gxfc567888.com/api/index.php
IP
27.50.59.63:0
ASN
#64050 BGPNET Global ASN

File type
HTML document, ASCII text, with no line terminators
Size
48 B (48 bytes)
Hash
046691e8308c2adf72fc25247e2f9e80
a47d4ddf558d878140dd88a539159659e781345e
49f190d90d221b19e342cf6425fbb173e894ca0531935a3b08eaf83d980a6268

HTTP Headers

GET /api/index.php HTTP/1.1
Host: app.gxfc567888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.groupmillions.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
c920945f0b3e3426b74d9115214a1747
8e35f41039545692f24e0380c69def03878d7f91
8108a6e7ed37fe0d400a410d11d1bf76667eeeb9866d5b830f08b2a21fbf8a06

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 19:11:06 GMT
ETag: "8e35f41039545692f24e0380c69def03878d7f91"
Last-Modified: Sat, 04 Feb 2023 19:11:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 981
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794683eca836b4f4-OSL

app.gxfc567888.com/api/data.php

27.50.59.63

200 OK

187 B

URL HTTP/1.1
app.gxfc567888.com/api/data.php
IP
27.50.59.63:0
ASN
#64050 BGPNET Global ASN

File type
Unicode text, UTF-8 text
Size
187 B (187 bytes)
Hash
a2f39e17225f709307f021c7f7b9c203
2a3c450315ff1394fe4a9e19f3e84ad25f4436f5
8a8d93090cc799a3f22cde072584163efdd76b05953274439c73a1d3c8d1c416

HTTP Headers

GET /api/data.php HTTP/1.1
Host: app.gxfc567888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://app.gxfc567888.com/api/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 21:31:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18327
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 21:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18327
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 21:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18327
Expires: Sun, 05 Feb 2023 02:37:15 GMT
Date: Sat, 04 Feb 2023 21:31:48 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10253 bytes)
Hash
392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 84076
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 84075
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11565 bytes)
Hash
e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 85424
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5174 bytes)
Hash
e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 84087
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8211 bytes)
Hash
114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 03:08:59 GMT
age: 66169
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9141 bytes)
Hash
f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 83898
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4bb2c1505976b4eb19e0c66b7c1965c8
45ee4e46465a90a7c224abb55c01c3ffa093636d
e05961be43b60c5eb33d9f64743573c9c25d0002790a93fc109fe22d56cc6b91

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E05961BE43B60C5EB33D9F64743573C9C25D0002790A93FC109FE22D56CC6B91"
Last-Modified: Thu, 02 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7491
Expires: Sat, 04 Feb 2023 23:36:40 GMT
Date: Sat, 04 Feb 2023 21:31:49 GMT
Connection: keep-alive

hm.baidu.com/hm.js?ee9b92242bc6e8167aa9991d49453ae2

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?ee9b92242bc6e8167aa9991d49453ae2
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (620)
Size
11 kB (11258 bytes)
Hash
609382db2473c15d8a45c64fa5de73c3
d61f9076b6ba326598ada8d6c9460d23a5f07cca
0282ada095f7e0902f365c368252d342f3a2113bf84a6fadec948d480db1e834

HTTP Headers

GET /hm.js?ee9b92242bc6e8167aa9991d49453ae2 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Sat, 04 Feb 2023 21:31:49 GMT
Etag: 5bcfe6e1f33dd4189083794b3361e0c8
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=29343349C8B293D7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?282ad46c18b6295a8bb8e1da991aa804

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?282ad46c18b6295a8bb8e1da991aa804
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (618)
Size
11 kB (11256 bytes)
Hash
c72cfea95864998f74c7b09f96b1b7ea
5d8280794deeb2b4f9fc21c610db74a450c743d4
75c61a1ab1feb7f8ea273da2771a18725a27efb99a579022cb4dace2f420c1a4

HTTP Headers

GET /hm.js?282ad46c18b6295a8bb8e1da991aa804 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Sat, 04 Feb 2023 21:31:49 GMT
Etag: 41b1be41ca7cbec5229163eaadc4b274
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9C3E5F45BB9DED77; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

www.jz1007.xyz/template/m1938pc/static/css/footer.css

194.59.220.30

200 OK

786 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/footer.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
ASCII text, with CRLF line terminators
Size
786 B (786 bytes)
Hash
035c39627f489e6f8371e06f956c23c2
14ac806f3909e4b3d2120ba39936867d292376f1
551bb1c2ffb8a2e628101cedb256030b199a6e1276b6d53cc62f7baf02ead8c7

HTTP Headers

GET /template/m1938pc/static/css/footer.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
content-length: 786
last-modified: Thu, 14 Oct 2021 16:57:27 GMT
etag: "61686177-312"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/default.css

194.59.220.30

200 OK

22 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/default.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
99bd951428de1a6dea7746c9db4face5
45a7071d97b407a28143bafb878477fbfbd5dd05
4d4e1af3c62dde233082e14491f7627f63e370721e38f8f411a26270e18f4c1b

HTTP Headers

GET /template/m1938pc/static/css/default.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
content-length: 22
last-modified: Mon, 13 Sep 2021 12:37:28 GMT
etag: "613f4608-16"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jz1007.xyz/upload/site/20211013-1/08f24df38294685d55744d75fa64dc33.png

194.59.220.30

200 OK

14 kB

URL HTTP/2
www.jz1007.xyz/upload/site/20211013-1/08f24df38294685d55744d75fa64dc33.png
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
PNG image data, 180 x 52, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13909 bytes)
Hash
b8549307d46342c96a4b1da5ba0b51e2
f3861dff285c7a5acad503c30a015cd629e341bb
72b949e9c60ad72560df7cbcc9f9e94d169992cf65377371441f7378ac30f193

HTTP Headers

GET /upload/site/20211013-1/08f24df38294685d55744d75fa64dc33.png HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: image/png
content-length: 13909
last-modified: Wed, 13 Oct 2021 11:54:13 GMT
etag: "6166c8e5-3655"
expires: Mon, 06 Mar 2023 21:31:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jz1007.xyz/static/images/go.gif

194.59.220.30

200 OK

254 B

URL HTTP/2
www.jz1007.xyz/static/images/go.gif
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
GIF image data, version 89a, 16 x 17\012- data
Size
254 B (254 bytes)
Hash
b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef

HTTP Headers

GET /static/images/go.gif HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/gif
content-length: 254
last-modified: Thu, 14 Oct 2021 06:39:43 GMT
etag: "6167d0af-fe"
expires: Mon, 06 Mar 2023 21:31:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1718740593&si=ee9b92242bc6e8167aa9991d49453ae2&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1718740593&si=ee9b92242bc6e8167aa9991d49453ae2&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1718740593&si=ee9b92242bc6e8167aa9991d49453ae2&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 21:31:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=F800EFCBAE73EDDC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

www.jz1007.xyz/template/m1938pc/static/picture/favimg.png

194.59.220.30

200 OK

172 kB

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/picture/favimg.png
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
PNG image data, 1080 x 1918, 8-bit/color RGBA, non-interlaced\012- data
Size
172 kB (172027 bytes)
Hash
c2cbbd773680667cb8dc7a0b88ee779c
fc158fcd1d5a3280923258eb783bd46428810af9
f72c5939d80e87ad72edf33f96b298c51bf1902e0603c18a4defee4c9c33576a

HTTP Headers

GET /template/m1938pc/static/picture/favimg.png HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/png
content-length: 172027
last-modified: Sun, 14 Mar 2021 06:39:32 GMT
etag: "604dafa4-29ffb"
expires: Mon, 06 Mar 2023 21:31:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1423586768&si=282ad46c18b6295a8bb8e1da991aa804&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1423586768&si=282ad46c18b6295a8bb8e1da991aa804&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1423586768&si=282ad46c18b6295a8bb8e1da991aa804&v=1.3.0&lv=1&sn=13002&r=0&ww=1280&u=http%3A%2F%2Fwww.groupmillions.com%2Findex.php&tt=%E6%9E%9C%E6%B4%9B%E9%85%9D%E6%B2%A6%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.groupmillions.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 21:31:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=3433CBEF5A76171A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

www.jz1007.xyz/template/m1938pc/static/css/common.css

194.59.220.30

200 OK

1.1 kB

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/common.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
data
Size
1.1 kB (1064 bytes)
Hash
dbfd1489c6370edcbe15228268d57449
6528ec880e8115b86bccff592b624e867f555e95
b1c31db9f1fcce8af020c51a1a29e642f730dc3d61b5b6330123a6f7541e75be

HTTP Headers

GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-691"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
13d635cc5546856d3a5ee3b8411a5296
24ec4d7ebbda1614881a2bbbcb3e9b101bfceed3
24f6babb6239347cc51e91c3117c33b589a04663d34b032e13004a5e2ad8761d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24F6BABB6239347CC51E91C3117C33B589A04663D34B032E13004A5E2AD8761D"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17368
Expires: Sun, 05 Feb 2023 02:21:18 GMT
Date: Sat, 04 Feb 2023 21:31:50 GMT
Connection: keep-alive

dimg04.c-ctrip.com/images/0100812000a0gbc4iF593.gif

104.110.17.24

200 OK

212 kB

URL HTTP/2
dimg04.c-ctrip.com/images/0100812000a0gbc4iF593.gif
IP
104.110.17.24:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1140 x 100\012- data
Size
212 kB (212414 bytes)
Hash
70730bae184e481644c32bb7b632f611
498605c96e0a4b47c79e3ce0af02e111907e77d9
6fd07537bbc60b12f5708a94fb208b3afe0db2e1da1b7159956cb026ee5c535b

HTTP Headers

GET /images/0100812000a0gbc4iF593.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 212414
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=2096206
expires: Wed, 01 Mar 2023 03:48:36 GMT
date: Sat, 04 Feb 2023 21:31:50 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2

dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient

104.110.17.24

200 OK

489 kB

URL HTTP/2
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP
104.110.17.24:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 960 x 80\012- data
Size
489 kB (488987 bytes)
Hash
6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8

HTTP Headers

GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=5231043
expires: Thu, 06 Apr 2023 10:35:53 GMT
date: Sat, 04 Feb 2023 21:31:50 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2

dimg04.c-ctrip.com/images/0101u120009udrvgm786A.gif

104.110.17.24

200 OK

248 kB

URL HTTP/2
dimg04.c-ctrip.com/images/0101u120009udrvgm786A.gif
IP
104.110.17.24:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 960 x 70\012- data
Size
248 kB (248461 bytes)
Hash
aa6b9520d5a9b565794bdd46a2f72b2c
2c3fd7861aa54e3cefa6332c5bec2585fcce095c
356cb950ac303776b9faffc5c34e0e9a00b3f20f64cb02ad5f5d3fb399587a7d

HTTP Headers

GET /images/0101u120009udrvgm786A.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 248461
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
x-edgeconnect-midmile-rtt: 6
x-edgeconnect-origin-mex-latency: 114
cache-control: max-age=1603427
expires: Thu, 23 Feb 2023 10:55:37 GMT
date: Sat, 04 Feb 2023 21:31:50 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
23313b5c6d15012a5eee310b0158be85
a27a3d56e4c9a5a67a2dfa0c155872292454a781
2bf71869860ba159bede9e30c64c493dcf1f90880d25cdcce0e18be7b172e36d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BF71869860BA159BEDE9E30C64C493DCF1F90880D25CDCCE0E18BE7B172E36D"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17630
Expires: Sun, 05 Feb 2023 02:25:41 GMT
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
23313b5c6d15012a5eee310b0158be85
a27a3d56e4c9a5a67a2dfa0c155872292454a781
2bf71869860ba159bede9e30c64c493dcf1f90880d25cdcce0e18be7b172e36d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BF71869860BA159BEDE9E30C64C493DCF1F90880D25CDCCE0E18BE7B172E36D"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=946
Expires: Sat, 04 Feb 2023 21:47:37 GMT
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive

fengmian.fhfhtutu.com/upload/vod/2022/11/2vojd0ndec4.jpg

104.22.16.247

200 OK

8.0 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/11/2vojd0ndec4.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
8.0 kB (8012 bytes)
Hash
13a3fd3ced775488557b99faa305e451
9404e563f3170d4d3136c21fc02367c70c354d71
129163321624df6dbd3f16079c4f10a6c21873f4738d49ea6715d5ddf85078dc

HTTP Headers

GET /upload/vod/2022/11/2vojd0ndec4.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 8012
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9084
content-disposition: inline; filename="2vojd0ndec4.webp"
etag: "637205ac-237c"
last-modified: Mon, 14 Nov 2022 09:09:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6056
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fca94a0b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/sbj2nwetsbv.jpg

104.22.16.247

200 OK

10 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/sbj2nwetsbv.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
10 kB (10114 bytes)
Hash
a3d8e77b8ad0be2f8cd867b71065e0dd
a763be24ff43fc84d14ed7d542c4750c3b81024d
ac5201dc8d46546a4ffed2fdbb389ff1b443ae677b6aeb98289f0bad0d10b139

HTTP Headers

GET /upload/vod/2022/12/sbj2nwetsbv.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 10114
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10969
content-disposition: inline; filename="sbj2nwetsbv.webp"
etag: "6394445d-2ad9"
last-modified: Sat, 10 Dec 2022 08:33:33 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1927
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fcb96b0b3d-OSL
X-Firefox-Spdy: h2

kvkaa.com/01dfa9bde54e701e29b1896a128d2cc1.gif

45.154.214.206

301 Moved Permanently

162 B

URL HTTP/2
kvkaa.com/01dfa9bde54e701e29b1896a128d2cc1.gif
IP
45.154.214.206:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /01dfa9bde54e701e29b1896a128d2cc1.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/01dfa9bde54e701e29b1896a128d2cc1.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

kvkaa.com/153ac71e52df3d7d664bf0bb17905f12.gif

45.154.214.206

301 Moved Permanently

162 B

URL HTTP/2
kvkaa.com/153ac71e52df3d7d664bf0bb17905f12.gif
IP
45.154.214.206:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /153ac71e52df3d7d664bf0bb17905f12.gif HTTP/1.1
Host: kvkaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: text/html
content-length: 162
location: https://kvtaaa.top/153ac71e52df3d7d664bf0bb17905f12.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif

172.83.155.45

200 OK

296 kB

URL HTTP/2
kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif
IP
172.83.155.45:0
ASN
#201106 Spartan Host Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
296 kB (295930 bytes)
Hash
298c2af98aa06470fcb80ad293146c0f
75be32a4c283cf249855e51c847d4f687d7436ec
e7060057157f5971d5b1031e9fe93528d70ad7bcf07d851bca10563594abae1e

HTTP Headers

GET /67a0474849f4ee10ccbe3b0d2cebf337.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/gif
content-length: 295930
last-modified: Mon, 30 Jan 2023 12:14:22 GMT
etag: "63d7b49e-483fa"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 3472
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BXGE7nLqfsYyp2TuyHviBQ%2BOa6MbA8HldOLcyYCZvSnIdXD%2Fy4NcO4O1PGF%2BmaNhNbBcIJetWuEAlFtQm5doNbcELror49D9WJlbtXwG4TPlP4fukNoiBK%2Bz%2F%2FBZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794032192fe42808-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.jz1007.xyz/pf.js

194.59.220.30

404 Not Found

13 kB

URL HTTP/2
www.jz1007.xyz/pf.js
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (621)
Size
13 kB (13289 bytes)
Hash
a2189b40b00508e228611c06e90a1d67
90ce6fc7cdcc46729fb1149ffdae517350b806f9
2c81a4e65f64e2973cb743e4c24b6dc5d539477b903432d8ed2263e7eb52ced1

HTTP Headers

GET /pf.js HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

n18081.com/68a7807de3933bf7079116fa9df99e6f.gif

172.83.155.45

200 OK

366 kB

URL HTTP/2
n18081.com/68a7807de3933bf7079116fa9df99e6f.gif
IP
172.83.155.45:0
ASN
#201106 Spartan Host Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
366 kB (366444 bytes)
Hash
86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf

HTTP Headers

GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: n18081.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 2335045
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rNmKUpoQ83VUdphfP6uSdl7iGmtMfN5Gr%2Bg528dGKOZZlPYud23KqGrxVPKy8L9eFJqPHPB4RTZZuhhVjFVWCSHOvpIWyDoJ5%2BL8AWUW%2FutjNHEZ0Gxh8B0XUWjG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794106fe9bdc2844-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a33f72967b9a84458bd5cc89a7d42176
ee79f3e52689b68ed385743e06a599d545e48c8b
d2cec375bfc538014980238050a9b11ab7876965f23cc6d099ae09385a516c6f

HTTP Headers

POST /s/gts1p5/IOl1ekfxYGk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fengmian.fhfhtutu.com/upload/vod/2022/12/ccxpgtfjj1s.jpg

104.22.16.247

200 OK

5.3 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/ccxpgtfjj1s.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
5.3 kB (5294 bytes)
Hash
76b08f792919687d28110df9b12de177
cc30772e022567f398b6b29cc9bf7640db4fcbaf
0bc494df133df60ef232a64851a9cefcbb7f62730b8a188089bb99c654c0ae2e

HTTP Headers

GET /upload/vod/2022/12/ccxpgtfjj1s.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 5294
last-modified: Fri, 16 Dec 2022 05:36:51 GMT
etag: "639c03f3-14ae"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9460b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/5dtk3c1tvo3.jpg

104.22.16.247

200 OK

9.6 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/5dtk3c1tvo3.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.6 kB (9632 bytes)
Hash
c9e34fc5e2cbb27d7c242f463f297880
86eb28f570a98215dfff531ebd206ef2a1175490
928abc56c09b7adde10d9b1d15d051994aafe1990b0d003bbf3128c752e26651

HTTP Headers

GET /upload/vod/2022/12/5dtk3c1tvo3.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 9632
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11137
content-disposition: inline; filename="5dtk3c1tvo3.webp"
etag: "639c03f9-2b81"
last-modified: Fri, 16 Dec 2022 05:36:57 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fca9480b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/fo1ykch4rhb.jpg

104.22.16.247

200 OK

5.1 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/fo1ykch4rhb.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
5.1 kB (5065 bytes)
Hash
e8674eded851d229641d4fa093676a92
1c2df86d30a38733b2962c011e526e5ed10c3797
d596cc8ce36f828e8fdd2e151081dbdf7ac2136cc9573e35a01299176dbd8dbd

HTTP Headers

GET /upload/vod/2022/12/fo1ykch4rhb.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 5065
last-modified: Fri, 16 Dec 2022 05:33:37 GMT
etag: "639c0331-13c9"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca94d0b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/b0ikgw5d2zd.jpg

104.22.16.247

200 OK

11 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/b0ikgw5d2zd.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
11 kB (10598 bytes)
Hash
963027282aed9bfd82378e1b9db3fdd7
b0cf43e30d9f4450e5a44c689b0d15d29b803339
ba75d61c02a033548aa4aa1fa3c55d908eedb58f2f61e0ad2a1ff6935af4317f

HTTP Headers

GET /upload/vod/2022/12/b0ikgw5d2zd.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 10598
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11188, status=webp_bigger
etag: "639c03ca-2bb4"
last-modified: Fri, 16 Dec 2022 05:36:10 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9440b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/srj1mlyvboa.jpg

104.22.16.247

200 OK

12 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/srj1mlyvboa.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
12 kB (11524 bytes)
Hash
43ca6d656b826ab1844ceac84afe334a
fa1d1f170077be5c6fbb133e1628ad84f8ee3d6c
e0d53785d84e352f00b0bb49b76f1fcf4430f518042fb0e8867ca0710d63b317

HTTP Headers

GET /upload/vod/2022/12/srj1mlyvboa.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 11524
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=12230
content-disposition: inline; filename="srj1mlyvboa.webp"
etag: "639c03ee-2fc6"
last-modified: Fri, 16 Dec 2022 05:36:46 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fca9510b3d-OSL
X-Firefox-Spdy: h2

www.tupku.top/lm/031815-80.gif

188.114.96.1

200 OK

1.6 MB

URL HTTP/2
www.tupku.top/lm/031815-80.gif
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 500 x 281\012- data
Size
1.6 MB (1626999 bytes)
Hash
17244f3a8b60a0f7b291f5621c873713
c523f5d5b60d2eabc9084e9ba5803647ac08c2cd
4aed8c090aa7bff3de4c028efced6a87dd7645bc15d265cdddf106f3f5dd9435

HTTP Headers

GET /lm/031815-80.gif HTTP/1.1
Host: www.tupku.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 1626999
last-modified: Thu, 07 Jul 2022 15:13:11 GMT
etag: "62c6f807-18d377"
expires: Fri, 03 Mar 2023 18:21:21 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 270492
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bo9aqOT8leYr70xa66wo4xAGOUje49mGBYmhs%2FNWuxoRKuO3sjSnqslNB147197RIAGcsBq30Ho7h1N0u%2FirAZNrum4zaWuAx1dd22kd7loKcyWs6jOdIoM5cYKnaDiE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683febc05b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/3j2eylbu2yo.jpg

104.22.16.247

200 OK

5.4 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/3j2eylbu2yo.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.4 kB (5370 bytes)
Hash
ffcb5c0498d4b06a31af409a7878308e
f8dc8758e4ed560c11b94cd0132eac88bc8a4e5f
32ace819f819a57f57999334d3db35410e8e92d78c364c71df5ef92bccbacacb

HTTP Headers

GET /upload/vod/2022/12/3j2eylbu2yo.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 5370
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7687
content-disposition: inline; filename="3j2eylbu2yo.webp"
etag: "63944459-1e07"
last-modified: Sat, 10 Dec 2022 08:33:29 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fcc96c0b3d-OSL
X-Firefox-Spdy: h2

dvcasha2.ocsp-certum.com/

23.36.79.17

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
d9573e06d11e9b6100ba72682feeb51d
f18f84b6559ebe87345f2e41a271ca184708b78c
8ce73a353ef90c8050346772d57ace093c221f4f1ab35fc8760bfbdac0eb9398

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: STALE
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive
X-N: S

www.jz1007.xyz/template/m1938pc/static/css/menu.css

194.59.220.30

200 OK

2.6 kB

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/menu.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
data
Size
2.6 kB (2610 bytes)
Hash
d97b499d73109a2bd3144e9c4f0a2fab
e89fdf8a2615fc75ccf421c3f7cfea87acdf42ef
7b260d40b236318e094011f40e3bfe3e08f1c14e6064a34685dd66d4b350cdee

HTTP Headers

GET /template/m1938pc/static/css/menu.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 06:03:46 GMT
vary: Accept-Encoding
etag: W/"6167c842-1e6c"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
1d675a7e710d50e285ada6908862c4f0
fb989cca29cd85d6001687fb1939f0d45df63189
943db88f8d4d96bfa36456716b126f658f81d91bc5da8887222b840468c3aaa2

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 07:03:57 GMT
Expires: Sat, 11 Feb 2023 07:03:56 GMT
Etag: "fb989cca29cd85d6001687fb1939f0d45df63189"
Cache-Control: max-age=552124,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683fe88c41bfe-OSL

fengmian.fhfhtutu.com/upload/vod/2022/12/uokxga22ifr.jpg

104.22.16.247

200 OK

12 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/uokxga22ifr.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Size
12 kB (11710 bytes)
Hash
a436596478a48e7a2d16bd013eea3fd4
ecb7781d589c6d35c859222db2866443d47e301d
1d039c59ff5ede8ab11a9fcad955e8d21fe2faf5ac76bb9e6e5f8eb2aa9f347b

HTTP Headers

GET /upload/vod/2022/12/uokxga22ifr.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11710
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12300, status=webp_bigger
etag: "63944455-300c"
last-modified: Sat, 10 Dec 2022 08:33:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9690b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/wizytn25tlx.jpg

104.22.16.247

200 OK

9.2 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/wizytn25tlx.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.2 kB (9174 bytes)
Hash
cf543af5608109ca717d7ef94e2d8f03
96e3f4120372fa414c437562e008c21fbf191aad
1279c81dbdcf88ec52d53698ad26eba62ae9aa97613d08917c3bf25c37ce89cd

HTTP Headers

GET /upload/vod/2022/12/wizytn25tlx.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/webp
content-length: 9174
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10382
content-disposition: inline; filename="wizytn25tlx.webp"
etag: "6394444e-288e"
last-modified: Sat, 10 Dec 2022 08:33:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 794683fcb9680b3d-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
95ef286241e2e8f0e21b98561aefc5fb
3532ab1933aaa450f0027401fa0200a9a77f687b
d7b6bf61fa986c535178a0511aae2704a7c85d16ee7db11b95d6673f18b61073

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dd17b0-118"
Server: ECS (amb/6B99)
Content-Length: 280

fengmian.fhfhtutu.com/upload/vod/2022/12/tg1k401yc3v.jpg

104.22.16.247

200 OK

9.4 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/tg1k401yc3v.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
9.4 kB (9431 bytes)
Hash
5c372dc9def055a7e572fbf7528c0c5d
647e36b380598d0f3b2a3256c54d0cafbb91daa7
420fd4d60c6df628027d14671f6bdc86bbfe2599586dbdc169ddea8921e22593

HTTP Headers

GET /upload/vod/2022/12/tg1k401yc3v.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9431
last-modified: Fri, 16 Dec 2022 05:37:01 GMT
etag: "639c03fd-24d7"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9450b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/yqg0ctowi0r.jpg

104.22.16.247

200 OK

12 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/yqg0ctowi0r.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
12 kB (11629 bytes)
Hash
92304e546bdf7b8a89407f95f8063107
62dbe0bedd8bddacadae0ba66041849cdceb2f99
7fe50ea71164dc7afd7802277c29d5acebc72e3b4ebb01bd1ad3266eae09bfbe

HTTP Headers

GET /upload/vod/2022/12/yqg0ctowi0r.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11629
last-modified: Fri, 16 Dec 2022 05:33:40 GMT
etag: "639c0334-2d6d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca94f0b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/wp3vd351vcq.jpg

104.22.16.247

200 OK

11 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/wp3vd351vcq.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
11 kB (11432 bytes)
Hash
fa4bce3c4fb9f5e802dabd6eecbee2c3
00237fb65273a4ce03cd9e28bda03f431a18b0fa
07c9dcf1bf02a091bd91848076305e38e78016a8eae73d651e6900d098f8aa0f

HTTP Headers

GET /upload/vod/2022/12/wp3vd351vcq.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11432
last-modified: Fri, 16 Dec 2022 05:33:43 GMT
etag: "639c0337-2ca8"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9500b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/p4dazimjm1z.jpg

104.22.16.247

200 OK

7.8 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/p4dazimjm1z.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
7.8 kB (7780 bytes)
Hash
308fb87b7e5b04a3a347f2b46fdae2d5
2f544975fc9eecfdab75920f636fc0fcb1b0968c
5f24d6a65fc95d1335fe7b79e03dc8ed1a360a14c24b82cff248b908eadea5f3

HTTP Headers

GET /upload/vod/2022/12/p4dazimjm1z.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 7780
last-modified: Fri, 16 Dec 2022 05:39:56 GMT
etag: "639c04ac-1e64"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb95b0b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/jwznrdx1rzt.jpg

104.22.16.247

200 OK

9.3 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/jwznrdx1rzt.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
9.3 kB (9281 bytes)
Hash
49abbcac28f3c71cad4ae8a67d8cac96
d2490b1ffedb6c07c66b0020d502ec41ab4aa89f
2c08e01edb20401cf51516968daa49e4fdc022dcc7102bd8330ff6790e0c5563

HTTP Headers

GET /upload/vod/2022/12/jwznrdx1rzt.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9281
last-modified: Fri, 16 Dec 2022 05:39:52 GMT
etag: "639c04a8-2441"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9590b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/11/k2v53j32wfq.jpg

104.22.16.247

200 OK

11 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/11/k2v53j32wfq.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
11 kB (11204 bytes)
Hash
317fb3f882aff19a70cbe3ebef4ea38d
ee2221ce5e325619c134dfe47b1950ddb624e9c4
26ec5e9faf7f2a221b55c14cdc6a7667ec3b359a803a29789c41c66a7ed6bec7

HTTP Headers

GET /upload/vod/2022/11/k2v53j32wfq.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11204
last-modified: Sun, 20 Nov 2022 09:02:04 GMT
etag: "6379ed0c-2bc4"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb96a0b3d-OSL
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
7ea5264cc3f667dc252472e44f2a20e0
e76d3fa080a337ae9762287027c37915b0676623
293033590cbb5150b0d6f9f975ae620ad6aba4b508b1aef627da5bb5d669589b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 13:22:16 GMT
Expires: Thu, 09 Feb 2023 13:22:15 GMT
Etag: "e76d3fa080a337ae9762287027c37915b0676623"
Cache-Control: max-age=402023,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ff7a3fb50f-OSL

fengmian.fhfhtutu.com/upload/vod/2022/11/e4xjv2sdpwt.jpg

104.22.16.247

200 OK

9.9 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/11/e4xjv2sdpwt.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
9.9 kB (9922 bytes)
Hash
bf3937314d96dae4b39df3eaf574b21f
f314d5891df0837a2d0b9b98e4068d1966cf9297
f32d7b59e917566925f3912158f15831f98f977e531ac1af95066286a44f9af7

HTTP Headers

GET /upload/vod/2022/11/e4xjv2sdpwt.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9922
last-modified: Sun, 20 Nov 2022 09:02:08 GMT
etag: "6379ed10-26c2"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9430b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/kbdsbr0vqol.jpg

104.22.16.247

200 OK

9.4 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/kbdsbr0vqol.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
9.4 kB (9438 bytes)
Hash
5373e4bdd6e1cce6897fe5236d67e7c4
587f7b966c10fe26bc90f8fd02c77a2988b74804
9fd2481e9942656b2830bb79b5e26384b144a584f74bf6eaf4b629d16e1488da

HTTP Headers

GET /upload/vod/2022/12/kbdsbr0vqol.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9438
last-modified: Fri, 16 Dec 2022 05:39:47 GMT
etag: "639c04a3-24de"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9570b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/11/xagkpjvbpws.jpg

104.22.16.247

200 OK

8.5 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/11/xagkpjvbpws.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
8.5 kB (8505 bytes)
Hash
8010fc11f91d6db48a82b7f12e54a89c
13a620eb3ec7eaeb77c4ef8da510ca6b1ae55098
728067ce164a7855ca4e958457cc6dcf5000ef74e5f3cf9fc74acbb33aa45f5d

HTTP Headers

GET /upload/vod/2022/11/xagkpjvbpws.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 8505
last-modified: Mon, 14 Nov 2022 09:09:07 GMT
etag: "637205b3-2139"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9600b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/11/bzfd51g00gj.jpg

104.22.16.247

200 OK

11 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/11/bzfd51g00gj.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
11 kB (10751 bytes)
Hash
dad61eeef0bb97895f182162a82f6bf2
ccdbea3f752c051384f3013e57136158e0eae02f
c8787bc248a0e7f434cb175c26b7979a78e8786f66467b70977837a32efd4845

HTTP Headers

GET /upload/vod/2022/11/bzfd51g00gj.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 10751
last-modified: Sun, 20 Nov 2022 09:55:23 GMT
etag: "6379f98b-29ff"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9490b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/vvzmzgwg4u0.jpg

104.22.16.247

200 OK

7.6 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/vvzmzgwg4u0.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
7.6 kB (7610 bytes)
Hash
2eea6b485021ac2ad8f55abf6fa5f689
361e5b02c91ad95e554c242d469495236ad2e0f1
da79edb9d7d4be3b24266f343e7616da242811409ea164aeec8d36a0c799372e

HTTP Headers

GET /upload/vod/2022/12/vvzmzgwg4u0.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 7610
last-modified: Fri, 16 Dec 2022 05:33:33 GMT
etag: "639c032d-1dba"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca94c0b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2023/01/mwaq2vax3qh.jpg

104.22.16.247

200 OK

7.6 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2023/01/mwaq2vax3qh.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
7.6 kB (7587 bytes)
Hash
648292032d8e7cdb7bd557462b5d3442
7d272366a98d7f1b39ad392f66c6e335a9072853
a697cc8617c903bdaee8158ddf6e60e391dbe8ea66c60835f0d1cab968c067f6

HTTP Headers

GET /upload/vod/2023/01/mwaq2vax3qh.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 7587
last-modified: Mon, 23 Jan 2023 01:53:52 GMT
etag: "63cde8b0-1da3"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9650b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2023/01/bheho20r0om.jpg

104.22.16.247

200 OK

12 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2023/01/bheho20r0om.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
12 kB (12019 bytes)
Hash
8506421d02634fbf0a8df1693088ac18
10346d0d29d769a19f1ab3d379b8577926d4d473
29d52309ddadae3884012d625a6c8b7a5da8f1923398eb1559c3633bbee3e876

HTTP Headers

GET /upload/vod/2023/01/bheho20r0om.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 12019
last-modified: Mon, 23 Jan 2023 01:54:00 GMT
etag: "63cde8b8-2ef3"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9670b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/5z5dzizfnql.jpg

104.22.16.247

200 OK

9.2 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/5z5dzizfnql.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
9.2 kB (9245 bytes)
Hash
f63fe09eefab2b60d3693a24341a57c7
c041183235ebf9d8cd6f3a56e9f7ec7da2148a30
91517b268f9e8dcecceda8de161c8f3dd50c839de63c554482a567a58cdfc8e1

HTTP Headers

GET /upload/vod/2022/12/5z5dzizfnql.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9245
last-modified: Fri, 16 Dec 2022 05:39:38 GMT
etag: "639c049a-241d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9520b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/1fntcjklroe.jpg

104.22.16.247

200 OK

13 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/1fntcjklroe.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
13 kB (12853 bytes)
Hash
d5b62eb281b8b4e7fe7dd1cfe18965b6
113d634aa05b8053e87e81f4a41de4ac94822665
be144586001036f8f3cf8953fb9aad33607606c8494a7da487b8b80dc4486cf4

HTTP Headers

GET /upload/vod/2022/12/1fntcjklroe.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 12853
last-modified: Fri, 16 Dec 2022 05:36:54 GMT
etag: "639c03f6-3235"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9470b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/11/dcrmi1ua02i.jpg

104.22.16.247

200 OK

9.4 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/11/dcrmi1ua02i.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
9.4 kB (9389 bytes)
Hash
96cc6ad2cf90c093a7ddac5630704244
5fd613da09e6e159d4edc905211f6bad658efdec
dcbdf1f0225f8643349b72c7822b6d969f56325db7d80b75b7ede521c85463e1

HTTP Headers

GET /upload/vod/2022/11/dcrmi1ua02i.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 9389
last-modified: Mon, 14 Nov 2022 09:09:04 GMT
etag: "637205b0-24ad"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb95d0b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/12/hysyfitfegg.jpg

104.22.16.247

200 OK

11 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/12/hysyfitfegg.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
11 kB (11346 bytes)
Hash
1322714494f6925473b5539fc91b2534
5f336e6e1c2a55c12c984b147d9f843a0a3daa54
ea64a0f7a54d42c1dbac4e2fcd041a5229d1134c72e1cab1c5dd4e7eb2bd660d

HTTP Headers

GET /upload/vod/2022/12/hysyfitfegg.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11346
last-modified: Fri, 16 Dec 2022 05:39:43 GMT
etag: "639c049f-2c52"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fca9540b3d-OSL
X-Firefox-Spdy: h2

fengmian.fhfhtutu.com/upload/vod/2022/11/sxvtlbhe0um.jpg

104.22.16.247

200 OK

11 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2022/11/sxvtlbhe0um.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
11 kB (10896 bytes)
Hash
df21d2755a52634f11aa544a85ff4ec0
ae91b2f4e03b6fd8726f4073d58289a6f0751d47
8258cfbadf9ec8e35b3c27a11ce9c073cbf0dedb61d167a4f4202b0fe0482a4d

HTTP Headers

GET /upload/vod/2022/11/sxvtlbhe0um.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 10896
last-modified: Mon, 14 Nov 2022 09:09:10 GMT
etag: "637205b6-2a90"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9640b3d-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
0c2fd9e24e3d289e9f2debff52ba8817
a365c6ab942e90846875d7cee165852ff1bf59da
6ceb7cf57e11738a3863924aac43f2d6f75a9d9e974d7a07b82bb471d6c20630

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=95673
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dda180-117"
Expires: Mon, 06 Feb 2023 00:06:24 GMT
Last-Modified: Sat, 04 Feb 2023 00:06:24 GMT
Server: nginx
Content-Length: 279

fengmian.fhfhtutu.com/upload/vod/2023/01/woq2x5orei1.jpg

104.22.16.247

200 OK

12 kB

URL HTTP/2
fengmian.fhfhtutu.com/upload/vod/2023/01/woq2x5orei1.jpg
IP
104.22.16.247:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
12 kB (11498 bytes)
Hash
c3dc7f6f0559662889452edde2e105e6
eb3b34ebee643a9584097988a1d6552d34ad23cf
3a9fd5d241319c30e7bf7fda627cf1e6a9171a8f20acbbb126f4b5c15887daad

HTTP Headers

GET /upload/vod/2023/01/woq2x5orei1.jpg HTTP/1.1
Host: fengmian.fhfhtutu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/jpeg
content-length: 11498
last-modified: Mon, 23 Jan 2023 01:53:55 GMT
etag: "63cde8b3-2cea"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794683fcb9660b3d-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
0c2fd9e24e3d289e9f2debff52ba8817
a365c6ab942e90846875d7cee165852ff1bf59da
6ceb7cf57e11738a3863924aac43f2d6f75a9d9e974d7a07b82bb471d6c20630

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=95673
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dda180-117"
Expires: Mon, 06 Feb 2023 00:06:24 GMT
Last-Modified: Sat, 04 Feb 2023 00:06:24 GMT
Server: nginx
Content-Length: 279

kvtaaa.top/01dfa9bde54e701e29b1896a128d2cc1.gif

172.67.173.230

200 OK

917 kB

URL HTTP/2
kvtaaa.top/01dfa9bde54e701e29b1896a128d2cc1.gif
IP
172.67.173.230:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 80\012- data
Size
917 kB (917343 bytes)
Hash
4c00e1159d5d1e950b0b9d0bf4ff89ea
ff4782d5b4f083af52757f7f74c524f17ad67a93
edb306fed3ef2015e2eb7a7d11d15f923367819b44e15d0650fdea692f50005e

HTTP Headers

GET /01dfa9bde54e701e29b1896a128d2cc1.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jz1007.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 917343
last-modified: Sun, 25 Dec 2022 10:36:11 GMT
etag: "63a8279b-dff5f"
expires: Fri, 24 Feb 2023 21:03:35 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 865696
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1MgYDgcH%2F%2FF195Z5dRIbLPi0sSgb9BD%2BAkjhQt2MhTODHiKgR8B6VLs75s1IW%2FlgpexnUwG0rFtESWFqr6wCkKhhtwt3wH3uhdjRB1ED0bZ%2F4Xe90MTLEKsDP8XV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794684000ce31c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

dvcasha2.ocsp-certum.com/

23.36.79.17

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
1eafd3eb212244e66d1f1415c988d2b5
05438410bda1b06ce5b1f2d8903a8af805a998dc
b99011f08bec941d4030f64b4292a377b1447db4ee62a4d128f9cbd4c0aa83f3

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=764
Date: Sat, 04 Feb 2023 21:31:51 GMT
Connection: keep-alive
X-N: S

ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a33f72967b9a84458bd5cc89a7d42176
ee79f3e52689b68ed385743e06a599d545e48c8b
d2cec375bfc538014980238050a9b11ab7876965f23cc6d099ae09385a516c6f

HTTP Headers

POST /s/gts1p5/IOl1ekfxYGk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

kvtaaa.top/153ac71e52df3d7d664bf0bb17905f12.gif

172.67.173.230

200 OK

202 kB

URL HTTP/2
kvtaaa.top/153ac71e52df3d7d664bf0bb17905f12.gif
IP
172.67.173.230:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 80\012- data
Size
202 kB (202324 bytes)
Hash
b3257a1280c7afd3cc952de2c91b1b68
9b1a4dc37ecaca40f22a6748542f8431a8c6d03d
6e09a9770baaf036b9d90d6826ac91de0246661c68d573064c774edd97047fd6

HTTP Headers

GET /153ac71e52df3d7d664bf0bb17905f12.gif HTTP/1.1
Host: kvtaaa.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jz1007.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 202324
last-modified: Mon, 13 Jun 2022 10:12:34 GMT
etag: "62a70d92-31654"
expires: Sat, 04 Mar 2023 18:46:31 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 182720
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F0j4JdAxMY8JMio82Yi17M6JrBEctZhbDUkWg8na%2F0ugx8ChRWiByV440iwZsP3a2wp95lQmvuv3qZG6HJZQlmTHoOYRQNv14zDQXopVdr6MjZiPcv%2BsCczZU34Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794684002d0a1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=386908123&si=8a25af5bea94a7da8d20c689df4320a6&su=http%3A%2F%2Fapp.gxfc567888.com%2F&v=1.3.0&lv=1&sn=13004&r=0&ww=1268&u=https%3A%2F%2Fwww.jz1007.xyz%2F&tt=%E5%A6%9E%E5%A6%9E%E5%BD%B1%E8%A7%86

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=386908123&si=8a25af5bea94a7da8d20c689df4320a6&su=http%3A%2F%2Fapp.gxfc567888.com%2F&v=1.3.0&lv=1&sn=13004&r=0&ww=1268&u=https%3A%2F%2Fwww.jz1007.xyz%2F&tt=%E5%A6%9E%E5%A6%9E%E5%BD%B1%E8%A7%86
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=386908123&si=8a25af5bea94a7da8d20c689df4320a6&su=http%3A%2F%2Fapp.gxfc567888.com%2F&v=1.3.0&lv=1&sn=13004&r=0&ww=1268&u=https%3A%2F%2Fwww.jz1007.xyz%2F&tt=%E5%A6%9E%E5%A6%9E%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 Feb 2023 21:31:51 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=8E8A9F757B512A92; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
62f51fe58e0450bb1e99532dc02a30a9
4c8d3d506f97d1db2919869f19c8ffc4e13d1ec6
75d1c4e55561606e15937eb33d32cd14695f30adb29a06d8275a076fbed53588

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 06:56:42 GMT
Expires: Fri, 10 Feb 2023 06:56:41 GMT
Etag: "4c8d3d506f97d1db2919869f19c8ffc4e13d1ec6"
Cache-Control: max-age=465289,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ff481a0b4d-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
94ae414ee20b4aa0622ee52b3c445ffc
4c46e93267549bc9b2b0325b866c97a9b5c29436
4a066f182b74467bff8208a3bce9ba3504266cd86e8a36af02e3ebfbb3db3793

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 21:49:37 GMT
Expires: Fri, 10 Feb 2023 21:49:36 GMT
Etag: "4c46e93267549bc9b2b0325b866c97a9b5c29436"
Cache-Control: max-age=518864,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ff496eb4f9-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
48899eef405d779f15dd94aeda4ff2f2
d0fec1d7b935849d0a29e47c843ed7e3afe36ef2
f9a8f6e97c645535fff70f7ed40d211e6252d229dd38242ab35a82bc2d5fd933

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 12:14:20 GMT
Expires: Fri, 10 Feb 2023 12:14:19 GMT
Etag: "d0fec1d7b935849d0a29e47c843ed7e3afe36ef2"
Cache-Control: max-age=484347,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794683ffca9bb50f-OSL

yhtuchuang.com/960x120.gif

183.255.106.33

200 OK

55 B

URL HTTP/1.1
yhtuchuang.com/960x120.gif
IP
183.255.106.33:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
HTML document, ASCII text, with no line terminators
Size
55 B (55 bytes)
Hash
26f51666f8eb543f2e3b36b753f2b854
2e370a609a131c989d7793d2c50550c06dad3897
5c9e276f8c376cc2fc6f480efd306581096d6f4c9efb5b339cf73221d4c84753

HTTP Headers

GET /960x120.gif HTTP/1.1
Host: yhtuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:51 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: guard=58cad3a21LKb0Cpp3DoPd68RylEpl8H+Xg==; path=/;Expires=Sat, 04-Feb-23 21:41:51 GMT
Cache-Control: no-cache, no-store, must-revalidate
Server: cdn
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
0c2fd9e24e3d289e9f2debff52ba8817
a365c6ab942e90846875d7cee165852ff1bf59da
6ceb7cf57e11738a3863924aac43f2d6f75a9d9e974d7a07b82bb471d6c20630

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Server: ECS (amb/6B99)
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
771181635d9c7fe1ddf5bb82d4bf2c12
b146bc4dee082bc0209b582e6fc2705a1ada6abb
fc3f89dd283c7a8ea1a0b75ee6962321fdadc102c0c4edb801038a4bd4590417

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3883
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:51 GMT
Etag: "63dd82c4-2d7"
Last-Modified: Sat, 04 Feb 2023 20:27:09 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 727

fmtu.netfhtu.com/upload/vod/2021/05/f1zrg3bo3x0.jpg

172.247.77.90

200 OK

14 kB

URL HTTP/1.1
fmtu.netfhtu.com/upload/vod/2021/05/f1zrg3bo3x0.jpg
IP
172.247.77.90:0
ASN
#40065 CNSERVERS

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Size
14 kB (13932 bytes)
Hash
4dd86c34a0cd3e53157cf1c1be95a0ae
b76bd237ef2f09b89b6febfa8b1fdeef07e1c251
dc6e496a397d736957eea2c5f6eacd8e68b0948f86ebba5bb8ad52894dc537b5

HTTP Headers

GET /upload/vod/2021/05/f1zrg3bo3x0.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 04 Feb 2023 21:32:46 GMT
Content-Type: image/jpeg
Content-Length: 13932
Connection: keep-alive
Last-Modified: Mon, 24 May 2021 22:01:39 GMT
ETag: "60ac2243-366c"
Accept-Ranges: bytes

p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f

47.246.44.226

200 OK

343 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
IP
47.246.44.226:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
343 kB (343002 bytes)
Hash
ce862703bd3a6fd9e7acc3c32453fe84
c27754e24547e935314ba986477cd326628af7e4
eb9f779660b2713488854f27a211239724bb29b842e939424ec882b51520350b

HTTP Headers

GET /obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 343002
date: Sat, 17 Dec 2022 10:28:23 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sat, 17 Dec 2022 10:00:43 GMT
nw-session-id: 2022121718004301013113605215982497p5k6801dy
nw-session-trace: 2022-12-17T18:00:43.827293149+08:00 42
x-bdcdn-cache-status: TCP_HIT
x-length: 343002
x-powered-by: ImageX
x-response-date: Sat, 17 Dec 2022 18:00:43 GMT
x-tt-logid: 2022121718004301013113605215982497
via: n128-134-083, cache14.l2de2[0,0,206-0,H], cache5.l2de2[2,0], cache5.l2de2[3,0], cache3.se1[0,0,200-0,H], cache2.se1[1,0]
x-request-ip: fdbd:dc03:15:482::74
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 010ec35d8338a3c1341674e3d2464ee09a429c9c5af2fc930930b9ec60625c05f3b71a3d79f906afd2479681df4ec15d8b01af344e24d3e5df5584a5196f7e0400dfccab4c7d44dab881b7b096fd4eb23fa223bfc14da29e326a459a9a6aa15d8b
x-response-lb: image
ali-swift-global-savetime: 1671272903
age: 4273408
x-cache: HIT TCP_MEM_HIT dirn:9:164853675
x-swift-savetime: Sat, 17 Dec 2022 11:36:55 GMT
x-swift-cachetime: 31531888
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9616755463119903920e
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f127fe11e021870b95a25d444accce72
a2d7621ce6fc743e368a4f82c739539b81480fb5
48f9f5d1566f87e1ac2b4c8642ba23346431edae3fcac5c5932a75a38cd7551b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48F9F5D1566F87E1AC2B4C8642BA23346431EDAE3FCAC5C5932A75A38CD7551B"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4422
Expires: Sat, 04 Feb 2023 22:45:34 GMT
Date: Sat, 04 Feb 2023 21:31:52 GMT
Connection: keep-alive

66888aaa.com/6a7891198af94f218ccc6ac153fbe699.gif

45.61.212.227

200 OK

177 kB

URL HTTP/1.1
66888aaa.com/6a7891198af94f218ccc6ac153fbe699.gif
IP
45.61.212.227:0
ASN
#53587 AZT

File type
GIF image data, version 89a, 750 x 100\012- data
Size
177 kB (177167 bytes)
Hash
65f3e7c7cb8287f8477fb705f58a7161
8e09c7d7dd79ff1119bda6fe3732df42c64b0b74
2b94d9ea2bf175666a90d69a766391c1b5475d88509121b7bd784fa37609a808

HTTP Headers

GET /6a7891198af94f218ccc6ac153fbe699.gif HTTP/1.1
Host: 66888aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "639ad059-2b40f"
Date: Fri, 13 Jan 2023 04:44:55 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 15 Dec 2022 07:44:25 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-27
Content-Length: 177167

8499159.com/8499/zzxx/960x60.gif

172.247.109.213

200 OK

291 kB

URL HTTP/2
8499159.com/8499/zzxx/960x60.gif
IP
172.247.109.213:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 60\012- data
Size
291 kB (290572 bytes)
Hash
57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6

HTTP Headers

GET /8499/zzxx/960x60.gif HTTP/1.1
Host: 8499159.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:51 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "46f0c-5f092cf097c3f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

dvcasha2.ocsp-certum.com/

23.36.79.17

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
d45e57ecc6a1bda6b5da5a1c9cc81ead
48c6f217ef5fefa8bdbe52b16267db178c4e07e6
b3d86752de2791739096132640416b00a0369b32a5a9163650d30b469be9f7d9

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=402
Date: Sat, 04 Feb 2023 21:31:52 GMT
Connection: keep-alive
X-N: S

dvcasha2.ocsp-certum.com/

23.36.79.17

200 OK

1.6 kB

URL HTTP/1.1
dvcasha2.ocsp-certum.com/
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
1.6 kB (1599 bytes)
Hash
2577d21a7512681bd6498c1dcebd4a71
82c0a4181e2e66e8abc026f3068bb993fd2a4499
d9bd2c60355553732c64668df57a5bd698dbc403f5a379faa9e163210ea1fa6c

HTTP Headers

POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=847
Date: Sat, 04 Feb 2023 21:31:52 GMT
Connection: keep-alive
X-N: S

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
8a6b75f8b88ed036870ee5634707c25f
b2c020dbc08089db2ec2c02bc89dd86fb67df039
160f7d479b7730fc4c71e7fef941759654288a00326d2ed2745f3f5ad10e2287

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5656
Cache-Control: max-age=148158
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 21:31:52 GMT
Etag: "63de586e-2d7"
Expires: Mon, 06 Feb 2023 14:41:10 GMT
Last-Modified: Sat, 04 Feb 2023 13:06:54 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 727

5951835ccc.com/1272565d7dac4e9aa3ed8725af8f9082.gif

103.170.15.77

200 OK

857 kB

URL HTTP/1.1
5951835ccc.com/1272565d7dac4e9aa3ed8725af8f9082.gif
IP
103.170.15.77:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 60\012- data
Size
857 kB (857145 bytes)
Hash
cf250ba4debf89cc57f49709d7cb73b0
ef7b4219780eedca6dde0a5b46278cd8120bf00f
952f1be23b3fc8df89b231db9a483f55ccd73486d8fe3e71c07e70405cbd4d4a

HTTP Headers

GET /1272565d7dac4e9aa3ed8725af8f9082.gif HTTP/1.1
Host: 5951835ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c7f2b5-d1439"
Date: Tue, 31 Jan 2023 15:43:42 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 18 Jan 2023 13:23:01 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-07
Content-Length: 857145

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
9e221b9bd3a914c6b8491375a285bd21
6b6a029014a3051fd76408da1ebd98243b59d0e4
c43c858542754acc1d2db483335566e19958577f0b44da183a12043bb95ce9db

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 08 Feb 2023 19:53:20 GMT
ETag: "6b6a029014a3051fd76408da1ebd98243b59d0e4"
Last-Modified: Sat, 04 Feb 2023 19:53:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468404ceb81c0e-OSL

638236rpn.com/d0245169c64c469c88717a1a417e40b4.gif

103.170.15.101

200 OK

759 kB

URL HTTP/1.1
638236rpn.com/d0245169c64c469c88717a1a417e40b4.gif
IP
103.170.15.101:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 100\012- data
Size
759 kB (758664 bytes)
Hash
aba678cc899befb96d7234dc3087f2c0
72becd4ad309343a09159b1eaf66ea3c3b05585a
f4ee005ff278376111cf7430637a2be54c202f0ca62bd2afde5c8cff0e5f2c7c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /d0245169c64c469c88717a1a417e40b4.gif HTTP/1.1
Host: 638236rpn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6370b612-b9388"
Date: Thu, 02 Feb 2023 00:17:46 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 13 Nov 2022 09:17:06 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-31
Content-Length: 758664

3761121ccc.com/025ebab711b94b6084690936525e9946.gif

103.170.15.97

200 OK

910 kB

URL HTTP/1.1
3761121ccc.com/025ebab711b94b6084690936525e9946.gif
IP
103.170.15.97:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 80\012- data
Size
910 kB (910251 bytes)
Hash
7765dd886b3a8252706ac71a319898bc
bb1d99a7feeaae8a744e8bca7c4ead0d6da0a492
5b8c556af017878ef03cb2ad0a809ffcc3d8aaaf601361a22d990c0efa6fa6d1

HTTP Headers

GET /025ebab711b94b6084690936525e9946.gif HTTP/1.1
Host: 3761121ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63a95b27-de3ab"
Date: Sun, 29 Jan 2023 15:14:28 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 26 Dec 2022 08:28:23 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-27
Content-Length: 910251

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
9e221b9bd3a914c6b8491375a285bd21
6b6a029014a3051fd76408da1ebd98243b59d0e4
c43c858542754acc1d2db483335566e19958577f0b44da183a12043bb95ce9db

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 08 Feb 2023 19:53:20 GMT
ETag: "6b6a029014a3051fd76408da1ebd98243b59d0e4"
Last-Modified: Sat, 04 Feb 2023 19:53:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794684061f451c12-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
b37e05e888337ab7752cec8a9bf67a36
d5e6393f3caf984e6d6e4b96067cf8285bf8bada
bdcf1090abfc6ee3c1116b67d06f42d9763feffe4fa1d11eb6f4c6edd0ea075e

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 18:53:59 GMT
ETag: "d5e6393f3caf984e6d6e4b96067cf8285bf8bada"
Last-Modified: Sat, 04 Feb 2023 18:54:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468407cb6db4f4-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
b37e05e888337ab7752cec8a9bf67a36
d5e6393f3caf984e6d6e4b96067cf8285bf8bada
bdcf1090abfc6ee3c1116b67d06f42d9763feffe4fa1d11eb6f4c6edd0ea075e

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 18:53:59 GMT
ETag: "d5e6393f3caf984e6d6e4b96067cf8285bf8bada"
Last-Modified: Sat, 04 Feb 2023 18:54:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468407edd0b4ed-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
b37e05e888337ab7752cec8a9bf67a36
d5e6393f3caf984e6d6e4b96067cf8285bf8bada
bdcf1090abfc6ee3c1116b67d06f42d9763feffe4fa1d11eb6f4c6edd0ea075e

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 08 Feb 2023 18:53:59 GMT
ETag: "d5e6393f3caf984e6d6e4b96067cf8285bf8bada"
Last-Modified: Sat, 04 Feb 2023 18:54:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79468407fe2ab518-OSL

qp.ezfxpuo.cn/960X60.gif

218.66.171.78

200 OK

254 kB

URL HTTP/2
qp.ezfxpuo.cn/960X60.gif
IP
218.66.171.78:0
ASN
#133776 Quanzhou

File type
GIF image data, version 89a, 960 x 60\012- data
Size
254 kB (253519 bytes)
Hash
f744e995971941b6a95fcd2636f5a545
ac9c1230e04eab9e31512d2afe440fe5f0367dc5
59b1a138fa72df587e61916179965cbd819f91aec53ce6ab606949a7e06b3063

HTTP Headers

GET /960X60.gif HTTP/1.1
Host: qp.ezfxpuo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: NgxFence
date: Sat, 04 Feb 2023 21:31:52 GMT
content-type: image/gif
content-length: 253519
x-oss-request-id: 63DCC16D4C8B373832AC955A
etag: "F744E995971941B6A95FCD2636F5A545"
last-modified: Tue, 29 Nov 2022 08:27:54 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 17987192695826819902
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
content-md5: 90TplZcZQbapX80mNvWlRQ==
x-oss-server-time: 1
x-cache: HIT
strict-transport-security: max-age=31536000; includeSubdomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2

p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image

120.52.95.236

200 OK

678 kB

URL HTTP/2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP
120.52.95.236:0
ASN
#133119 China Unicom IP network

File type
GIF image data, version 89a, 270 x 160\012- data
Size
678 kB (677521 bytes)
Hash
94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84

HTTP Headers

GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 21:31:52 GMT
content-type: image/gif
content-length: 677521
server: openresty
age: 19417967
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=2
via: CHN-HElangfang-AREACUCC1-CACHE2[2],CHN-HElangfang-AREACUCC1-CACHE35[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE60[39],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,36]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

595tuchuang.com/960x80.gif

183.255.106.34

200 OK

145 kB

URL HTTP/1.1
595tuchuang.com/960x80.gif
IP
183.255.106.34:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
GIF image data, version 89a, 960 x 80\012- data
Size
145 kB (144990 bytes)
Hash
9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c

HTTP Headers

GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Wed, 01 Mar 2023 06:45:41 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes

587tuchuang.com/587z80.gif

183.255.106.34

200 OK

139 kB

URL HTTP/1.1
587tuchuang.com/587z80.gif
IP
183.255.106.34:0
ASN
#9808 China Mobile Communications Group Co., Ltd.

File type
GIF image data, version 89a, 960 x 80\012- data
Size
139 kB (139025 bytes)
Hash
4751af930c8c7b33a61958356ca554f0
c0cfc5b499211aa4f43c5815630738d36013c1aa
68f1f41464e84af0d6078d951d3a3f479e6865bb641a6eed4ba969bb7067bb18

HTTP Headers

GET /587z80.gif HTTP/1.1
Host: 587tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 21:31:52 GMT
Content-Type: image/gif
Content-Length: 139025
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:30:32 GMT
ETag: "63a30a78-21f11"
Expires: Thu, 02 Mar 2023 07:21:02 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes

kjimg10.360buyimg.com/ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif

121.226.246.3

200 OK

1.4 MB

URL HTTP/2
kjimg10.360buyimg.com/ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif
IP
121.226.246.3:0
ASN
#4134 Chinanet

File type
GIF image data, version 89a, 960 x 80\012- data
Size
1.4 MB (1411145 bytes)
Hash
3e2a08c45f216f23995e08dc45ed0e86
c9390027ee4885cb509d8b2ad37d6daa9698631e
ffdceb96ee4670386b85d0e2389496569d7e5e9f16844c2f26e9656482a8f12f

HTTP Headers

GET /ott/jfs/t1/46182/9/21860/1411145/63819a6eEcb8ec547/ae47a05d2165a957.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:53 GMT
content-type: image/gif
content-length: 1411145
cache-control: max-age=15552000
expires: Tue, 01 Aug 2023 02:55:16 GMT
last-modified: Sat, 26 Nov 2022 04:47:42 GMT
age: 239797
via: http/1.1 ORI-CLOUD-HUZ-MIX-15 (jcs [cHs f ]), http/1.1 SQ-CT-1-MIX-25 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1675306516656-0-0-0-231-231;200;200-1675428628548-0-0-0-5-5;200-1675546313225-0-0-0-1-1
X-Firefox-Spdy: h2

www.jz1007.xyz/

194.59.220.30

200 OK

1.2 MB

URL HTTP/2
www.jz1007.xyz/
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type
data
Size
1.2 MB (1208817 bytes)
Hash
908ae3a5cb37adabd30caa8fddc3e0e8
68c545fa6f50a5c0187625b14f5f57d67240ff8e
2a69254c2873b8dbd246efdda41d37ecaeed6d65b531db19ae9164d318907798

HTTP Headers

GET / HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://app.gxfc567888.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

kjimg10.360buyimg.com/ott/jfs/t1/48391/16/19388/893726/6380d3c5E0d000912/3cef13072ce017c1.gif

121.226.246.3

200 OK

894 kB

URL HTTP/2
kjimg10.360buyimg.com/ott/jfs/t1/48391/16/19388/893726/6380d3c5E0d000912/3cef13072ce017c1.gif
IP
121.226.246.3:0
ASN
#4134 Chinanet

File type
GIF image data, version 89a, 960 x 80\012- data
Size
894 kB (893726 bytes)
Hash
1e34697200f13da14c5bfabeba617325
9a18ed38d5d385f885c28a4280b4c61302745b65
b63a862a0f65ff9f685e9b67fd171a6df96878469b0a85d1da2f644399c0409f

HTTP Headers

GET /ott/jfs/t1/48391/16/19388/893726/6380d3c5E0d000912/3cef13072ce017c1.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:53 GMT
content-type: image/gif
content-length: 893726
cache-control: max-age=15552000
expires: Wed, 02 Aug 2023 21:01:36 GMT
last-modified: Fri, 25 Nov 2022 14:40:05 GMT
age: 88218
via: http/1.1 ORI-CLOUD-HUZ-MIX-29 (jcs [cHs f ]), http/1.1 SQ-CT-1-MIX-25 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1675458096006-0-0-14-75-75;200;200-1675508761134-0-0-0-5-5;200-1675546313262-0-0-0-1-1
X-Firefox-Spdy: h2

p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0

43.154.254.32

200 OK

1.6 MB

URL HTTP/2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
IP
43.154.254.32:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type
GIF image data, version 89a, 640 x 200\012- data
Size
1.6 MB (1607696 bytes)
Hash
9c26f4dcfdfa72ecdcbe3ea854547b4c
fed85b90734400d6810be2b07403f5c8a194a507
ebd842d015d6684a6995a73f1e81f0dea219815318f8993501da9ca79cca74d2

HTTP Headers

GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 04 Feb 2023 21:31:53 GMT
content-type: image/gif
content-length: 1607696
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:45 GMT
cache-control: max-age=2592000
x-delay: 122454 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1607696
chid: 0
fid: 0
x-nws-log-uuid: 8396bfbd-85cb-497f-aea0-32c77c19917f
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/main.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/main.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/main.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 14:51:36 GMT
vary: Accept-Encoding
etag: W/"616843f8-85b"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/img_list.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/img_list.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/img_list.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 15:08:47 GMT
vary: Accept-Encoding
etag: W/"616847ff-9dd"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/style.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/style.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Thu, 14 Oct 2021 17:25:59 GMT
vary: Accept-Encoding
etag: W/"61686827-5335"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/index.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/index.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/index.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Fri, 12 Nov 2021 13:36:57 GMT
vary: Accept-Encoding
etag: W/"618e6df9-1837"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/pagination.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/pagination.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/pagination.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-51e"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/pf.js

194.59.220.30

404 Not Found

0 B

URL HTTP/2
www.jz1007.xyz/pf.js
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /pf.js HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/blue.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/blue.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/blue.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/default.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:28 GMT
vary: Accept-Encoding
etag: W/"613f4608-bf0"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/icon.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/icon.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/icon.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:50 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-62f"
expires: Sun, 05 Feb 2023 09:31:50 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/banner.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/banner.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/banner.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:26 GMT
vary: Accept-Encoding
etag: W/"613f4606-49c"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/header.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/header.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/header.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Wed, 13 Oct 2021 13:35:12 GMT
vary: Accept-Encoding
etag: W/"6166e090-10db"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

www.jz1007.xyz/template/m1938pc/static/css/flickity.min.css

194.59.220.30

200 OK

0 B

URL HTTP/2
www.jz1007.xyz/template/m1938pc/static/css/flickity.min.css
IP
194.59.220.30:0
ASN
#18978 ENZUINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/m1938pc/static/css/flickity.min.css HTTP/1.1
Host: www.jz1007.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 21:31:49 GMT
content-type: text/css
last-modified: Mon, 13 Sep 2021 12:37:28 GMT
vary: Accept-Encoding
etag: W/"613f4608-ab1"
expires: Sun, 05 Feb 2023 09:31:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

img.1201555.com/images/63d2101183b5991e572600e7.gif

3.36.126.81

302 Found

0 B

URL HTTP/2
img.1201555.com/images/63d2101183b5991e572600e7.gif
IP
3.36.126.81:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/63d2101183b5991e572600e7.gif HTTP/1.1
Host: img.1201555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jz1007.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/70c57cabb92242258bbf034be8584f7f
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML