kitchensinkwebdesign.com/
172.121.88.55301 Moved Permanently 0 B URL HTTP/1.1 kitchensinkwebdesign.com/
IP 172.121.88.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: kitchensinkwebdesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Sep 2022 14:29:28 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.kitchensinkwebdesign.com/index.php
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2275
Expires: Tue, 06 Sep 2022 15:07:24 GMT
Date: Tue, 06 Sep 2022 14:29:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 14:04:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zlfJkiFUzWxwzb7pJEXg-GbM4z3hyPf_ApMb_DQy3vAyeHkf230M7w==
Age: 1511
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: A0hCuECM08BuCxmeUMzsVxgOZ04s-zysKPbKuPny-vGRMtqxvHFVvQ==
age: 47652
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.kitchensinkwebdesign.com/index.php
172.121.88.55200 OK 781 B URL HTTP/1.1 www.kitchensinkwebdesign.com/index.php
IP 172.121.88.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash 6e29692fe65e80c02b0dfab1a62b8180
4916f3a88af40c71dd5c6356e76cfd669b5dc1d6
a4055fd66a1cf3ea623f9a577e7ef61ec5330d5d95ca4388d635ff53b1a91192
GET /index.php HTTP/1.1
Host: www.kitchensinkwebdesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 14:29:28 GMT
Content-Type: text/html
Content-Length: 781
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 13:38:18 GMT
Expires: Tue, 06 Sep 2022 14:36:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hBCFRaeVDlRLfM2nSjs8tPPop9ulhIYT5Pc7zajhGnDm7IFrBbzNDQ==
Age: 3072
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2005
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 14:29:30 GMT
Last-Modified: Tue, 06 Sep 2022 13:56:05 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.kitchensinkwebdesign.com/tj.js
172.121.88.55200 OK 520 B URL HTTP/1.1 www.kitchensinkwebdesign.com/tj.js
IP 172.121.88.55:0
File type ASCII text, with CRLF line terminators
Hash c641843bbee2dbe645c9de13d8f953ed
1a93b5d7b8540d5acbaae9c8bc00c16926a23588
4604c89ab81e21b0a8e7e762b60c0190dd44643056504ae5c28ebd2b4e739ed7
GET /tj.js HTTP/1.1
Host: www.kitchensinkwebdesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 14:29:29 GMT
Content-Type: application/x-javascript
Content-Length: 520
Connection: keep-alive
www.kitchensinkwebdesign.com/common.js
172.121.88.55200 OK 738 B URL HTTP/1.1 www.kitchensinkwebdesign.com/common.js
IP 172.121.88.55:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 70670d0986c3d241b2799f9b5ae5e100
e0a9285c476b9339f8ee575c4cbc26ecfc4d0a8b
788c72241a91da39f72a02d61ea2da8aa6a57d0db6b1118e583ad166b61b1ea6
GET /common.js HTTP/1.1
Host: www.kitchensinkwebdesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 14:29:29 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.zhanzhang.baidu.com/push.js
182.61.201.93200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 182.61.201.93:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Tue, 06 Sep 2022 14:29:30 GMT
Etag: "4078521116"
Expires: Wed, 06 Sep 2023 14:29:30 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=72D8FF98307EA8FEB7C4EFEB22F67464:FG=1; max-age=31536000; expires=Wed, 06-Sep-23 14:29:30 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
push.services.mozilla.com/
35.86.38.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.86.38.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Tl61w3ZYHbhC3M2Scgv+Cw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CLO4QKgZgh9rkKkvCXaoDg82oL4=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf9acfd5b0a044c3f78132efbd48d5ff
01df7e4a525cc234a7e4eb8ea9ce4f69a73eebfa
23799f897e01d5e2d9bc8cf3edeab11c60301f00a96874136a0f09f07988bf4c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23799F897E01D5E2D9BC8CF3EDEAB11C60301F00A96874136A0F09F07988BF4C"
Last-Modified: Tue, 06 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4647
Expires: Tue, 06 Sep 2022 15:46:57 GMT
Date: Tue, 06 Sep 2022 14:29:30 GMT
Connection: keep-alive
api.share.baidu.com/s.gif?l=http://www.kitchensinkwebdesign.com/index.php
182.61.201.94200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.kitchensinkwebdesign.com/index.php
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.kitchensinkwebdesign.com/index.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Tue, 06 Sep 2022 14:29:31 GMT
www.kitchensinkwebdesign.com/favicon.ico
172.121.88.55200 OK 1.2 kB URL HTTP/1.1 www.kitchensinkwebdesign.com/favicon.ico
IP 172.121.88.55:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.kitchensinkwebdesign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 14:29:29 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sun, 11 Sep 2022 14:29:29 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 4768c7c87c32d084f2f3afab3f5ad0ad
ae854250b89cc8d51c86f068123e3943011235db
c1e4608d1fe0974989a7f349182c6cf74ef56107066fd5d9a2c16539c3645ad5
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:31 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Sep 2022 12:00:28 GMT
ETag: "ae854250b89cc8d51c86f068123e3943011235db"
Last-Modified: Tue, 06 Sep 2022 12:00:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 384
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7467e5b5fa160afe-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2492
Expires: Tue, 06 Sep 2022 15:11:04 GMT
Date: Tue, 06 Sep 2022 14:29:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2492
Expires: Tue, 06 Sep 2022 15:11:04 GMT
Date: Tue, 06 Sep 2022 14:29:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2492
Expires: Tue, 06 Sep 2022 15:11:04 GMT
Date: Tue, 06 Sep 2022 14:29:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2492
Expires: Tue, 06 Sep 2022 15:11:04 GMT
Date: Tue, 06 Sep 2022 14:29:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3fe4a321dcd6a94a637a528d74f9321a
3f3aad2cc71226b39549db1a9baa6837d4f1d897
a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12573
x-amzn-requestid: 92e03b26-883b-41e2-9033-379a6d02210c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYCdGy8oAMFQZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d42-1c4ea2f74b796623574bde87;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: u1hKGB5UKEuuIVqcQ_Lx5wfBjy_hB32Jnp7_mDnF2BrsN4a6Mj_WJQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:16 GMT
etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897"
content-type: image/jpeg
age: 60196
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:42 GMT
age: 60230
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0efc32eccbf76ac0d89f324d09a7fd1f
f8589eb3907582137d8b9373af745d80eddbf1bb
ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8UExY-3ojiqMEfyXXKG6kJcB5CRiNnfgG5JQS3gWnd4t4bbKNzbsYA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:43 GMT
age: 60229
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ce50dfa23e7f34ff68cc6426c2823f7
b1685694999272feb4d9fc39296418cd95480678
4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XjbO8y9D7PhQcN0XaBkmhcjzWCMRczO80wxAJa4gUFQZPrS6eb3Z3A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:59 GMT
age: 60033
etag: "b1685694999272feb4d9fc39296418cd95480678"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:36:52 GMT
age: 35560
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c81f3df885bdee8cac46ea9495e6b63b
fc766bca874a352a4acb569577d4cf6527f4f074
e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bSBSzzRMdrVdoV3Ld8hYWq2AwO7Mswcwa8Tk_AKa44j1SlrFugNqpg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:48:06 GMT
age: 60086
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ac926d0332f02f4f5a734812940af824
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (627)
Hash 406353a49a625224c3d6f12f5c65f35c
7aaeb9ae5a485c38b1399dfa09639ea9ee3aea77
1631dcc052d67c650b18a830c44fc53e105487ba3275257f8398a1ae2a042e39
GET /hm.js?ac926d0332f02f4f5a734812940af824 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11340
Content-Type: application/javascript
Date: Tue, 06 Sep 2022 14:29:31 GMT
Etag: 39ec7cde687b09774e339d30c39eebb0
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6E7C39F81A9AE69B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?fec0eaa8fc52795617f18f518d42aaab
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?fec0eaa8fc52795617f18f518d42aaab
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash b28762ede74f95b64916212e5f162706
3c9591f71cba614a9e1cb60f84568b8de47513d7
8ef7d911fd2105f78986fdd3a5a30d15484fa1aa75368a5be669fa1327e9cf27
GET /hm.js?fec0eaa8fc52795617f18f518d42aaab HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11337
Content-Type: application/javascript
Date: Tue, 06 Sep 2022 14:29:31 GMT
Etag: c44b97e544927ce46b1a18aec0e25c87
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C6C67AAFB599E0ED; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=832465741&si=ac926d0332f02f4f5a734812940af824&v=1.2.97&lv=1&sn=48222&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kitchensinkwebdesign.com%2Findex.php&tt=%E8%A5%BF%E5%8C%97%E6%87%88%E5%99%AC%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=832465741&si=ac926d0332f02f4f5a734812940af824&v=1.2.97&lv=1&sn=48222&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kitchensinkwebdesign.com%2Findex.php&tt=%E8%A5%BF%E5%8C%97%E6%87%88%E5%99%AC%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=832465741&si=ac926d0332f02f4f5a734812940af824&v=1.2.97&lv=1&sn=48222&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kitchensinkwebdesign.com%2Findex.php&tt=%E8%A5%BF%E5%8C%97%E6%87%88%E5%99%AC%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 06 Sep 2022 14:29:32 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=CA54F481A2633C3F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 082a9ecf66185130eabff60a1cd1c4e4
5c164f2c2ac13387f30268a0a0de52ccdb44b1ee
ac3737da774e9e2499e11c482100de466543fbeec0003a2e9f801fc178b843be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC3737DA774E9E2499E11C482100DE466543FBEEC0003A2E9F801FC178B843BE"
Last-Modified: Tue, 06 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Sep 2022 20:29:33 GMT
Date: Tue, 06 Sep 2022 14:29:33 GMT
Connection: keep-alive
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=86199793&si=fec0eaa8fc52795617f18f518d42aaab&v=1.2.97&lv=1&sn=48222&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kitchensinkwebdesign.com%2Findex.php&tt=%E8%A5%BF%E5%8C%97%E6%87%88%E5%99%AC%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=86199793&si=fec0eaa8fc52795617f18f518d42aaab&v=1.2.97&lv=1&sn=48222&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kitchensinkwebdesign.com%2Findex.php&tt=%E8%A5%BF%E5%8C%97%E6%87%88%E5%99%AC%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=86199793&si=fec0eaa8fc52795617f18f518d42aaab&v=1.2.97&lv=1&sn=48222&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kitchensinkwebdesign.com%2Findex.php&tt=%E8%A5%BF%E5%8C%97%E6%87%88%E5%99%AC%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 06 Sep 2022 14:29:32 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=2903D6435EC71DF7; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
jxys1.xyz/template/m1938pc/html9/ads/1.gif
173.231.38.5200 OK 254 B URL HTTP/2 jxys1.xyz/template/m1938pc/html9/ads/1.gif
IP 173.231.38.5:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/html9/ads/1.gif HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: image/gif
content-length: 254
last-modified: Sat, 02 Apr 2022 12:20:12 GMT
etag: "62483f7c-fe"
expires: Thu, 06 Oct 2022 14:29:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 202484583ad2bb33b7014bf7db638ec7
c7a244563ad1d98a8eb779c40673eb26356f9390
3bd97c471b349bed1e0752660f949c76b229374eb320f2dfcc611ca14a4a0797
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BD97C471B349BED1E0752660F949C76B229374EB320F2DFCC611CA14A4A0797"
Last-Modified: Mon, 05 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8557
Expires: Tue, 06 Sep 2022 16:52:10 GMT
Date: Tue, 06 Sep 2022 14:29:33 GMT
Connection: keep-alive
kvhaa.com/df0515659c031251093942922779f350.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kvhaa.com/df0515659c031251093942922779f350.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /df0515659c031251093942922779f350.gif HTTP/1.1
Host: kvhaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/html
content-length: 162
location: https://nvhaaa.top/df0515659c031251093942922779f350.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
jxys1.xyz/template/m1938pc/static/css/swiper.min.css
173.231.38.5200 OK 3.5 kB URL HTTP/2 jxys1.xyz/template/m1938pc/static/css/swiper.min.css
IP 173.231.38.5:0
Hash bb8199764b3ce5966334fd8041875109
6a8985b27e69e28c9a11e33ab2615bc2671f599f
03f879a66f1d3792ee1d18c584675521a3744db4969214bd90fc75f69445a36d
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:06 GMT
vary: Accept-Encoding
etag: W/"61e1000e-456d"
expires: Wed, 07 Sep 2022 02:29:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe9ec8c5470153ad713b338594311125
67439eca57eb002270b2067f96f4ec27cb150fe5
a23f19aac386608ec487f2103895d6f3952aa95e628f3969373d1985831d6d1a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23F19AAC386608EC487F2103895D6F3952AA95E628F3969373D1985831D6D1A"
Last-Modified: Tue, 06 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9026
Expires: Tue, 06 Sep 2022 16:59:59 GMT
Date: Tue, 06 Sep 2022 14:29:33 GMT
Connection: keep-alive
jxys1.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
173.231.38.5200 OK 13 kB URL HTTP/2 jxys1.xyz/template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff
IP 173.231.38.5:0
File type Web Open Font Format, TrueType, length 13408, version 1.0\012- data
Hash 99af6debcdaba3e7ffe01b4c3cbccacb
4efda64b06cd7c294f6214623bcb634f3def3bd1
1106aebd6819da7203324abc443186658c8f54180a460ccc5b83553c5ce34f72
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/fonts/font_593233_jsu8tlct5shpk3xr.woff HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://jxys1.xyz/template/m1938pc/static/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: font/woff
content-length: 13408
last-modified: Fri, 14 Jan 2022 04:47:30 GMT
etag: "61e10062-3460"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
acoozzh.top/30e6eb2de3e8d7da7879e39548fdfe92.gif
172.67.189.203200 OK 158 kB URL HTTP/2 acoozzh.top/30e6eb2de3e8d7da7879e39548fdfe92.gif
IP 172.67.189.203:0
File type GIF image data, version 89a, 500 x 300\012- data
Size 158 kB (158376 bytes)
Hash 55574ea2b72e2fbe45871f66165442a8
7fd461a708c87486335dde3e12740c188af0facd
005f42b2004591c7bdb51b40cab0711f489c32bb10ddc2061c5c48469fd769a0
GET /30e6eb2de3e8d7da7879e39548fdfe92.gif HTTP/1.1
Host: acoozzh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: image/gif
content-length: 158376
last-modified: Mon, 02 May 2022 19:18:16 GMT
etag: "62702e78-26aa8"
expires: Sun, 02 Oct 2022 12:11:38 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 353875
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K8DCbfdr3ohx%2BeoMLsLwmQB%2BG%2FzFZP%2Ff64Svzr0zjVzRwyxKeKzToFi%2BUKyQUO9%2FwaZMOOPMIXgO8Jb87%2B4EARPNo1UtHWqC71ZdUWo0dq2JqfYwk4P79aFSCw%2Fg3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5c73b140b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kn.pflmkj.cn/v21/uploads/images/interim/o509/bbc9b9f5-9374-463e-bfcf-883af3ceb7cf.gif
138.113.141.2200 OK 260 kB URL HTTP/2 kn.pflmkj.cn/v21/uploads/images/interim/o509/bbc9b9f5-9374-463e-bfcf-883af3ceb7cf.gif
IP 138.113.141.2:0
ASN #54994 QUANTILNETWORKS
Size 260 kB (260067 bytes)
Hash 8a9665af803ae17a97103d4b0df27c68
6c3b77f6c01f498e4b7c17fb92c2d1dbf98c4bd3
5713f70613e9797d3252d2e4227a592419eda74dd7c8796b060dfc1171db0ad6
GET /v21/uploads/images/interim/o509/bbc9b9f5-9374-463e-bfcf-883af3ceb7cf.gif HTTP/1.1
Host: kn.pflmkj.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: image/gif
last-modified: Wed, 24 Aug 2022 09:16:52 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
age: 1
x-via: 1.1 PSxgHKG8yo120:2 (Cdn Cache Server V2.0), 1.1 VM-ARN-01Obg11:1 (Cdn Cache Server V2.0)
x-ws-request-id: 6317594d_VM-ARN-01XCI21_17058-25161
cache-control: max-age=31536000
X-Firefox-Spdy: h2
kvezz.com/800a83efcf662b60b2ec0c6bb37ce110.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kvezz.com/800a83efcf662b60b2ec0c6bb37ce110.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /800a83efcf662b60b2ec0c6bb37ce110.gif HTTP/1.1
Host: kvezz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: text/html
content-length: 162
location: https://acoossu.top/800a83efcf662b60b2ec0c6bb37ce110.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fe9ec8c5470153ad713b338594311125
67439eca57eb002270b2067f96f4ec27cb150fe5
a23f19aac386608ec487f2103895d6f3952aa95e628f3969373d1985831d6d1a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A23F19AAC386608EC487F2103895D6F3952AA95E628F3969373D1985831D6D1A"
Last-Modified: Tue, 06 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9025
Expires: Tue, 06 Sep 2022 16:59:59 GMT
Date: Tue, 06 Sep 2022 14:29:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2bea7bfb8218ee47a14790d4a29a2726
2e799caa5676444018dc515e5d0eca1798e36f5e
56f26665c99215b49ae08fc24bfe869800561e0268ecaf6255153a35a4fab094
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56F26665C99215B49AE08FC24BFE869800561E0268ECAF6255153A35A4FAB094"
Last-Modified: Sun, 04 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10731
Expires: Tue, 06 Sep 2022 17:28:25 GMT
Date: Tue, 06 Sep 2022 14:29:34 GMT
Connection: keep-alive
acoosso.top/3c1bcbe1527d69a7efc3687b42d7ea1f.gif
104.21.57.86200 OK 148 kB URL HTTP/2 acoosso.top/3c1bcbe1527d69a7efc3687b42d7ea1f.gif
IP 104.21.57.86:0
File type GIF image data, version 89a, 500 x 300\012- data
Size 148 kB (147487 bytes)
Hash 75089f0d90ce5105b34d5570d6907c02
03e4fc67658fc34b261235102c279af038590041
03471ba9f1e6dc5c88972a90fcd0eab22c0f7e9d75f0f0e4be93a41e3dbc6021
GET /3c1bcbe1527d69a7efc3687b42d7ea1f.gif HTTP/1.1
Host: acoosso.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 147487
last-modified: Wed, 25 May 2022 14:11:04 GMT
etag: "628e38f8-2401f"
expires: Thu, 06 Oct 2022 05:59:57 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 30577
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AdLMvVCLkazca2fp%2F0wDgBXImFVe0bUBfw%2FTNFAHAOymwC1dgS%2FT7d3azjsfmhZPxqJb8qnlLoAq38SVuBVu71kChniee9t04xBMIps0E%2FM3BiF8%2BXCx7v8tVHyY7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5c91e590b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4ee38f8acf344df70df6de5711667977
5fc82c0dc4764f1ac576b98a49bfda9542862e19
8013d203e4bac90f25ee212215c5281d45718df18ec062869ff92f619d6b5e9c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8013D203E4BAC90F25EE212215C5281D45718DF18EC062869FF92F619D6B5E9C"
Last-Modified: Sun, 04 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4765
Expires: Tue, 06 Sep 2022 15:48:59 GMT
Date: Tue, 06 Sep 2022 14:29:34 GMT
Connection: keep-alive
hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?2ac4a2d34c34a270e029b4996d351332
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (626)
Hash 195aa6b72b6d62a721f77fb3ebe73ec5
e972fee5aef862acf8e3d12ec1fffa755721a87c
d7798b04b3f16b3e366c3ab84e3b9c38c068e41300c2303dc593d35cc9a85c6a
GET /hm.js?2ac4a2d34c34a270e029b4996d351332 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11339
Content-Type: application/javascript
Date: Tue, 06 Sep 2022 14:29:33 GMT
Etag: 4754da508a44f2f4f6a4394018577bf2
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=95747C2149204C91; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: text/html
content-length: 162
location: https://kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kzecc.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kzecc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: text/html
content-length: 162
location: https://kvhaaa.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 975e6ba05f5fd04c9a7f8f6a60a1b141
7acee0fe63c481415b8f7a3fc0d23e51c9eb5638
7d58e511345a7177425885db0b2176cdb8f9a9326e254f74cd65e112e840f78e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "7D58E511345A7177425885DB0B2176CDB8F9A9326E254F74CD65E112E840F78E"
Last-Modified: Sun, 04 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9021
Expires: Tue, 06 Sep 2022 16:59:55 GMT
Date: Tue, 06 Sep 2022 14:29:34 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 3142a2658eb484c472053a19f7034070
2d5729f3920c075110898fafb3d79c8c7873fdf7
e5ec8c3a47a97ac39fb137d8d7d4e230dbaed1e26497d8c764fe8bf40ab05c0a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:26:08 GMT
ETag: "2d5729f3920c075110898fafb3d79c8c7873fdf7"
Last-Modified: Tue, 06 Sep 2022 13:26:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 725
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7467e5caabdeb503-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 3142a2658eb484c472053a19f7034070
2d5729f3920c075110898fafb3d79c8c7873fdf7
e5ec8c3a47a97ac39fb137d8d7d4e230dbaed1e26497d8c764fe8bf40ab05c0a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:26:08 GMT
ETag: "2d5729f3920c075110898fafb3d79c8c7873fdf7"
Last-Modified: Tue, 06 Sep 2022 13:26:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 725
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7467e5caabf4b4ff-OSL
www.yssydh.top/upload/vod/20220727-1/216a680fcabdc4f622130059f8ea82da.gif
104.21.23.48200 OK 48 kB URL HTTP/2 www.yssydh.top/upload/vod/20220727-1/216a680fcabdc4f622130059f8ea82da.gif
IP 104.21.23.48:0
File type GIF image data, version 89a, 150 x 150\012- data
Hash 238e06fae36a60963dd217adc895c9e4
feb1b8c405b5e162fb23a7727aedb83eae0a9e9f
321e056f1cd521d36cde0b3579d208fd0118f423b07b92622a215ca551639fce
GET /upload/vod/20220727-1/216a680fcabdc4f622130059f8ea82da.gif HTTP/1.1
Host: www.yssydh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 47538
last-modified: Wed, 27 Jul 2022 08:34:24 GMT
etag: "62e0f890-b9b2"
expires: Tue, 04 Oct 2022 01:11:43 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220671
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vaCXtMVXcFyV7Qk98aiPPu3GHQI6IHJeG2HrxmsazAvC1AvZVB%2FfrmF%2Bhl5hm8Vy5BbHF8SvjWRm3DtI6pMR1LFd%2Br9kQkTXN5wQRNBZPrTQZM%2FYkMqU9SACSSQVKkD1JQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cabc33b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 3142a2658eb484c472053a19f7034070
2d5729f3920c075110898fafb3d79c8c7873fdf7
e5ec8c3a47a97ac39fb137d8d7d4e230dbaed1e26497d8c764fe8bf40ab05c0a
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 10 Sep 2022 13:26:08 GMT
ETag: "2d5729f3920c075110898fafb3d79c8c7873fdf7"
Last-Modified: Tue, 06 Sep 2022 13:26:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 725
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7467e5cabbf7b503-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af58eaa8cb9b94f696d1ba3dae7e002
f5ab7ee23ee3b161af8864d916a9f124e4ba1f2e
8622752192615128aab507e4133a002c5c098325ff6b01aeffcc0076916a9f40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8622752192615128AAB507E4133A002C5C098325FF6B01AEFFCC0076916A9F40"
Last-Modified: Sun, 04 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4669
Expires: Tue, 06 Sep 2022 15:47:23 GMT
Date: Tue, 06 Sep 2022 14:29:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af58eaa8cb9b94f696d1ba3dae7e002
f5ab7ee23ee3b161af8864d916a9f124e4ba1f2e
8622752192615128aab507e4133a002c5c098325ff6b01aeffcc0076916a9f40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8622752192615128AAB507E4133A002C5C098325FF6B01AEFFCC0076916A9F40"
Last-Modified: Sun, 04 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4669
Expires: Tue, 06 Sep 2022 15:47:23 GMT
Date: Tue, 06 Sep 2022 14:29:34 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 1f9b2d2783f33078462e63f03b6b74c9
4f619398c4e61640e81f3c6f96e91019bb9bff12
11091731063433fc79ff7a19d9694d9e5126b8d56cef10833ad2c20323f4b379
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 10 Sep 2022 11:41:30 GMT
ETag: "4f619398c4e61640e81f3c6f96e91019bb9bff12"
Last-Modified: Tue, 06 Sep 2022 11:41:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1607
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7467e5cb0c78b4ff-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 1f9b2d2783f33078462e63f03b6b74c9
4f619398c4e61640e81f3c6f96e91019bb9bff12
11091731063433fc79ff7a19d9694d9e5126b8d56cef10833ad2c20323f4b379
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 10 Sep 2022 11:41:30 GMT
ETag: "4f619398c4e61640e81f3c6f96e91019bb9bff12"
Last-Modified: Tue, 06 Sep 2022 11:41:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1607
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7467e5cb1c64b503-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash 1f9b2d2783f33078462e63f03b6b74c9
4f619398c4e61640e81f3c6f96e91019bb9bff12
11091731063433fc79ff7a19d9694d9e5126b8d56cef10833ad2c20323f4b379
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 10 Sep 2022 11:41:30 GMT
ETag: "4f619398c4e61640e81f3c6f96e91019bb9bff12"
Last-Modified: Tue, 06 Sep 2022 11:41:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1607
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7467e5cb1c9ab4ff-OSL
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 975e6ba05f5fd04c9a7f8f6a60a1b141
7acee0fe63c481415b8f7a3fc0d23e51c9eb5638
7d58e511345a7177425885db0b2176cdb8f9a9326e254f74cd65e112e840f78e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "7D58E511345A7177425885DB0B2176CDB8F9A9326E254F74CD65E112E840F78E"
Last-Modified: Sun, 04 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9021
Expires: Tue, 06 Sep 2022 16:59:55 GMT
Date: Tue, 06 Sep 2022 14:29:34 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2020/04-23/18/l4rdj5dg2i31806l4rdj5dg2i34611649.jpg
104.21.235.173200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-23/18/l4rdj5dg2i31806l4rdj5dg2i34611649.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 616d1dcc1484216ded65accd8ccb98c9
89081f2a6ccbbbdca7f72cbf6c8dfa1b76e7fbb0
bfa6eb0d8de0d2cb6004a448e957c5b5fef4908f968a0934e871d82cd319e8c4
GET /upload/vod/2020/04-23/18/l4rdj5dg2i31806l4rdj5dg2i34611649.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 10756
cf-bgj: h2pri
etag: "b198d5e55619d61:0"
last-modified: Thu, 23 Apr 2020 10:06:46 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5386
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=haWBvITkDNFT5X6wX0fOpmDNkm0EWp9A6L09rGeBh8jG8z5KWftQ7BA%2BaszgUUb2QQmc9xO92IFmy%2F4fgo6h5soZTA%2FI%2BP%2FlE%2BlocejPYAnH6Fpx4o9rkpn%2BHfxDwUc11n1%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f607330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/04-23/18/adir5upepi11806adir5upepi14511647.jpg
104.21.235.173200 OK 9.5 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-23/18/adir5upepi11806adir5upepi14511647.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2451042c032f90acc5d2fc703aeb140d
3d94c4e4ac738cb623e54fded28cc2d8dceada46
46cd56895e6f54802cdc80bbea481d32021832a1ef8ae4126dbdba944a47eedc
GET /upload/vod/2020/04-23/18/adir5upepi11806adir5upepi14511647.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 9467
cf-bgj: h2pri
etag: "45b854e55619d61:0"
last-modified: Thu, 23 Apr 2020 10:06:45 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5386
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t1LV437BHXgBMR31c2AI4Gyaw79gDHkp66V0c8GdjeqcwB5t5%2FpOAvMVZA6Inr4bzumDZzECSSWx6f8yFfEwDIaEXYsKOc1MrU1OKAy1OefBRTxjYy060SHEmB2cljNBGgiY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f627330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
acoossu.top/800a83efcf662b60b2ec0c6bb37ce110.gif
172.67.151.21200 OK 740 kB URL HTTP/2 acoossu.top/800a83efcf662b60b2ec0c6bb37ce110.gif
IP 172.67.151.21:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 740 kB (739561 bytes)
Hash 5318e42d25e6b9b53726d8166248cc33
762b03c16562865a9a58a02dba471f78608376db
b632e7a04d032c4853a8460e9d636ac032f697db8f50cfee6a6016587ed8f62c
GET /800a83efcf662b60b2ec0c6bb37ce110.gif HTTP/1.1
Host: acoossu.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jxys1.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 739561
last-modified: Mon, 02 May 2022 19:20:49 GMT
etag: "62702f11-b48e9"
expires: Sat, 01 Oct 2022 20:29:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 410407
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r9yOZVsIPGn2sasxUSlYZQvuk11I6%2Baul0rgjOTAKIh7JAr9a%2F0mtcPNLVJyLXSIbMQfhtR90WduyW%2Bwg7GvO1WK1WL3SJqpKXrhoGsy3PahkHPYMTMcY1m9sXYC7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb9a98b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/04-23/18/foeezy05xhd1806foeezy05xhd4811653.jpg
104.21.235.173200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-23/18/foeezy05xhd1806foeezy05xhd4811653.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 75c25e1130e543301a2ce21207b138de
41330f061d526d70715758aeca8c2ab0260e4360
fdf89e1aba41a197e95962d6556b52a7aeea570577a99d64a7cb0becee3ed0bf
GET /upload/vod/2020/04-23/18/foeezy05xhd1806foeezy05xhd4811653.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 10916
cf-bgj: h2pri
etag: "d52ccbe65619d61:0"
last-modified: Thu, 23 Apr 2020 10:06:48 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5387
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JzCawUOi4rih5rN7MyI4c7SbrYUR%2FW%2F7INHYXeoJmx2DP38eHyu4ZSEipAWCMW9k4gEMdjgekj4FxvPUB06juUyJPGxU8wFYqESB7kRQs%2B7rRkNgjYQ03Tdh2t3nWTQqjCFA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f647330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/02-27/19/k4uxiqelja41941k4uxiqelja4112761.jpg
104.21.235.173200 OK 8.7 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/k4uxiqelja41941k4uxiqelja4112761.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c3d456a58918067b1b04eaba890eb8ab
d41aad32ce81be72e4bf8ee14ce3a351b527f90f
264562b5881c9de089d09840858656369a46c6283bb65f134ae55a96bb7a6c9b
GET /upload/vod/2020/02-27/19/k4uxiqelja41941k4uxiqelja4112761.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 8653
cf-bgj: h2pri
etag: "d6c04ccf62edd51:0"
last-modified: Thu, 27 Feb 2020 11:41:11 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 213
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QTHGu%2FLhO28bJU%2B9bVam%2BNrGfRgVjufFBgeX4dRGoFYM6IDFl5rkYU4K34egBxse216AYyHeNeC0yOVCQ%2Bgq%2Fz364bTcVaQ%2BRWwlrSpzSiWd4lnPJMtmEZ%2BM4r%2FTkBCM4E0X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f687330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/02-27/19/2rvjmp5bj1d19412rvjmp5bj1d292763.jpg
104.21.235.173200 OK 13 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/2rvjmp5bj1d19412rvjmp5bj1d292763.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2bf65def29403655980b538bf770044e
7686935a8ce0fc910d549510b3177c5068a1673d
587e3ed3d894140b05a5b34954a43cbf210c6ebde885555ba89f26b9b050ae14
GET /upload/vod/2020/02-27/19/2rvjmp5bj1d19412rvjmp5bj1d292763.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 13198
cf-bgj: h2pri
etag: "c7cdf5d962edd51:0"
last-modified: Thu, 27 Feb 2020 11:41:29 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6487
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O%2Bb7EeyjIC8TZgsNEzFkBcJ6eKgdqlS3B4W7Zw63WOMuQv0xHMgfOl31xEIcdkjoetk73c%2Bf%2B0ed4iFTIig4JobG41NGym4wJewLyMxsivQ78sfKVmC4zZPjdoWj3dX4wmp2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f697330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0102y120009tf26vrA1E9.gif?proc=autoorient
104.110.17.24200 OK 151 kB URL HTTP/2 dimg04.c-ctrip.com/images/0102y120009tf26vrA1E9.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 151 kB (151061 bytes)
Hash 89c820a186cb325d9979cdae663875eb
e9dbc77e9d46e03ebec28aaca2bf5e302767064f
9116f460b6f4c7d03cf9be95d414ba83d6bcba145a4f1eddd9decec6127e0ade
GET /images/0102y120009tf26vrA1E9.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 151061
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=15379419
expires: Fri, 03 Mar 2023 14:33:13 GMT
date: Tue, 06 Sep 2022 14:29:34 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/02-27/19/05ekspbihox194005ekspbihox222755.jpg
104.21.235.173200 OK 6.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/05ekspbihox194005ekspbihox222755.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6359c963898679a6e9c1ad194eb1827f
9cda6c9c3b493966d27be7dd0dd035aee5d16ff2
b9af399f8b253af1a9e5359ea90f5f500baff8fdbb4a8e6a9cf54ae980353c5a
GET /upload/vod/2020/02-27/19/05ekspbihox194005ekspbihox222755.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 6422
cf-bgj: h2pri
etag: "793925b262edd51:0"
last-modified: Thu, 27 Feb 2020 11:40:22 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 7014
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2aNSDjZDm9xysrT5RKXnrDqOz5ycNrxLvgkPjTiSTYMspAjECl4KNbQsnyxJCsOolArXyW9nauIKQMnOn6Di%2FKhPQ6wV8gKqf6rXfjw%2FBCBbNQbcHl7FV4G8aiNMVjq6x0mA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f667330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/02-27/19/dn3ks3ehl0b1942dn3ks3ehl0b272769.jpg
104.21.235.173200 OK 7.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/dn3ks3ehl0b1942dn3ks3ehl0b272769.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 02baa5bb73e1ba436b6665d59e00b5a8
ee45f27ad955f2ea795e5f2c2a2d318e4f207820
af48d15d0b7c6a382800d91236ab03c273a3b30c9b79bc176986c12ebdf5c5f4
GET /upload/vod/2020/02-27/19/dn3ks3ehl0b1942dn3ks3ehl0b272769.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 7895
cf-bgj: h2pri
etag: "8d9b0fc62edd51:0"
last-modified: Thu, 27 Feb 2020 11:42:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4742
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jR%2FqJh91hRlAz83X41NiXSpwjM4FUeeqRxHdPevHviwJiCyJ79CVZZawQ61gkyBbVEPbTN7SyRw%2BfnRnTdVODYMU7VPxVYntu69AgQRK4CPA0FAZ4snA36VL%2BuaLIfDkQyom"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f6a7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/07-09/12/otbt3jn52vv1201otbt3jn52vv462503.jpg
104.21.235.173200 OK 8.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/07-09/12/otbt3jn52vv1201otbt3jn52vv462503.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 90x67, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4886b124faa9490c0b311dba40a053c2
22104b77fbe96a3475497743ad62a70d9da8e105
03e8e680e80d6deb8787e89b5e69ac07cd58145a02479e2917b3bca365164464
GET /upload/vod/2022/07-09/12/otbt3jn52vv1201otbt3jn52vv462503.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 8193
cf-bgj: h2pri
etag: "693fdf9b4893d81:0"
last-modified: Sat, 09 Jul 2022 04:01:46 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1341
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pK84m9zKoIWkmdABZm0KK1yM9KXWfRVJTtVh6L6FaCJwvyj0Xj5Pr8S8jtHXSlUEvsva%2BlsWlAwtbEMO1nL02T%2Fa89cPUHok6b%2F7QVFkseSNHubk6CjO34zCQHIGXb0BiV%2B5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f5f7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/02-27/19/0eneiz0fwlb19400eneiz0fwlb552759.jpg
104.21.235.173200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/0eneiz0fwlb19400eneiz0fwlb552759.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash cafeb460cadba158770baa63568b1c28
3d5724651bdef982adab93b4c4c0518b0834d108
b84b8d3b81919aeb2025c5e055f47e6cebb4f7d303bb82d0738587663500eebc
GET /upload/vod/2020/02-27/19/0eneiz0fwlb19400eneiz0fwlb552759.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 11110
cf-bgj: h2pri
etag: "623565c562edd51:0"
last-modified: Thu, 27 Feb 2020 11:40:55 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 213
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ej9xGj4oPsknD46LOvDECjGbPia8uW3W7uWBMdV3vSdRunBHwazWChK5N%2FeeWK5RXE5dRwv1il0g5Af%2BIXW1F2%2FXM%2F5gJ6gr1QaQXXu1Oz5sRFOaU0EPbJJfAW6ZtxZj0F5a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f6b7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/02-27/19/cc3lpqantm11942cc3lpqantm1112767.jpg
104.21.235.173200 OK 9.5 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/cc3lpqantm11942cc3lpqantm1112767.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2705c62151d22cbeacb2a82ce7f6dcf2
ce30141f61a3346c1784e77e5d2aa60775a1a76e
d55a2cb6b9b1b540e47f5da9d9212ef2b42071ab2c2dea2da60c803237b4b38a
GET /upload/vod/2020/02-27/19/cc3lpqantm11942cc3lpqantm1112767.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 9522
cf-bgj: h2pri
etag: "4c6739f362edd51:0"
last-modified: Thu, 27 Feb 2020 11:42:12 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4995
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Ji3Xd%2FZu2uff900w%2B0hBUwEffliHOE6RGoDMlIr14obbrePF8SIJopnCBvwvdppgFF%2Fvf%2BUgFAU7WTDTGrpVFmuRYANInorQf8uBpCedpM%2Fh%2B65h7zGqEqZewQPvGZ8BzQ6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f707330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/03-28/06/lhrscdncf1g0603lhrscdncf1g47765.jpg
104.21.235.173200 OK 6.9 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/03-28/06/lhrscdncf1g0603lhrscdncf1g47765.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b3e7a6843ed0231c610d24f89bf21557
aaace87179709d7c740572b6a12150c5c186f269
aa4b4ba9f67787b3b841c89d0cfad2400e246f4e9259128960a5073267311d3c
GET /upload/vod/2020/03-28/06/lhrscdncf1g0603lhrscdncf1g47765.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 6884
cf-bgj: h2pri
etag: "90ee1c97834d61:0"
last-modified: Fri, 27 Mar 2020 22:03:47 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4722
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UYAdBjmvOyUtDddEwiUasMlbUzYGdXC5IV3xdt9QlLqqdOT%2F36D3Lunr21J1nZdMSngywGwcHdAdxr5nm7GuuinZ6JDSEJxMdbDTPBuAtnMAVVB8Ri%2FriqoeFZ%2FOg8yEJsgz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f787330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/03-28/06/lqa3b2tpmh00603lqa3b2tpmh051805.jpg
104.21.235.173200 OK 7.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/03-28/06/lqa3b2tpmh00603lqa3b2tpmh051805.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ffbb62deab2f847fb9e0cbf1748e211a
3fd82bcbcb22c556f09177c83821ad7759b94161
c422f5638fd6a5751dfcad145b226ffd1dce1a99270b04fa8ec019dfa16b9578
GET /upload/vod/2020/03-28/06/lqa3b2tpmh00603lqa3b2tpmh051805.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 7822
cf-bgj: h2pri
etag: "b4e75d99834d61:0"
last-modified: Fri, 27 Mar 2020 22:03:51 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4722
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GvyvQ4is7gYVK%2FW4cASiZQUKEP79LBzhloOe02EQVOeyjqY9lmXBbH2RI%2BUYhStv2KkTiE3L%2B%2BlbVVpt8i75IGWYCy0EsY%2FhVLe6Ri3QeFVsOI1jjdMZj6eczVFGNp8bY1Y0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f7f7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/03-28/06/bkxge523frl0603bkxge523frl46757.jpg
104.21.235.173200 OK 8.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/03-28/06/bkxge523frl0603bkxge523frl46757.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1f65f59e340a1a261e4430e1fe11a042
8b46d835ffeea506a5a5d07433d5df0fa12c10b5
dc8079a2841590e8da53f109911ed1a866b7fd1f5a5062431e5d2685a24c063f
GET /upload/vod/2020/03-28/06/bkxge523frl0603bkxge523frl46757.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 8287
cf-bgj: h2pri
etag: "8da59296834d61:0"
last-modified: Fri, 27 Mar 2020 22:03:46 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4742
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k5XUXAo6vmQS1uyJC1B4Hn5xL1jd2BvU%2F1lDew2hqWKNgNcBYTKLWQUhdS%2FTWqGRybFneESajykSVuc1%2ForTQzDQ6IvIpMto5UZt68EjT5K6iBefvtbPJ4KaStO5x4nHCNrZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f827330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg
104.21.235.173200 OK 8.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 30ed76a00c6ba5a0743421c79a85a456
84ab818e94afb878dd64e354b69cbb2eb0bdbb22
09df0ec846ddca07df9c60f975436a9ffc469f260fad2fa5cd731b686d01500d
GET /upload/vod/2022/08-31/13/2yrr0wod3wh13232yrr0wod3wh3122907.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 8805
cf-bgj: h2pri
etag: "f0d146cff9bcd81:0"
last-modified: Wed, 31 Aug 2022 05:23:31 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6147
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qH1YZxXrmFg3BY00VHKBsxNG3HuZ8gloIr6CQMwBzvdTh9AL%2FSXPW0GA3P1tgFPK88y1BkKwagY4mgdoAzvELwZBW8hqC9fJr6JNEk2HGgu9TiDfv0ft3Lv5Tsu8oTOy9guO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb9f9a7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/04-23/18/gqkuo5gvhw01806gqkuo5gvhw04711651.jpg
104.21.235.173200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-23/18/gqkuo5gvhw01806gqkuo5gvhw04711651.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash aa3b2b61a8bdb5048085788dff766828
d81729b24e28eed15778dd97f2b526d78c943d35
7a2f20e96825fa39f771e65d1c4d1141b34df8bbee5fba3d3876cba29400e933
GET /upload/vod/2020/04-23/18/gqkuo5gvhw01806gqkuo5gvhw04711651.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 9604
cf-bgj: h2pri
etag: "19314fe65619d61:0"
last-modified: Thu, 23 Apr 2020 10:06:47 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5387
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ao6IUGHpUTnRP2weCIoWQU4U0aE6OIq0hkd%2BiKluiTBjAZLAKoYofJcgz5b8ygtDLTmz8Xii5yAy%2BSLJ7NrKyOpfMTqUcC50efcZiMY81Mu8DR%2FsIFpB9ueG4R3LKdEqdidG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb9f9b7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/04-23/18/iaklx01b0pe1804iaklx01b0pe4311413.jpg
104.21.235.173200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/04-23/18/iaklx01b0pe1804iaklx01b0pe4311413.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 67cd5b028a7eff2a6a1b9210d2e01270
b767f43ce400bedadceb3e688ebe0db54a37df53
4ca646184d98b782c7b5928304f1ea76dffaeae6c0835ca5bf0927f06d8e1594
GET /upload/vod/2020/04-23/18/iaklx01b0pe1804iaklx01b0pe4311413.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 10811
cf-bgj: h2pri
etag: "5061979c5619d61:0"
last-modified: Thu, 23 Apr 2020 10:04:43 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1341
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=io1caFhlrQGLtVWCWplaJTnIaXx%2Be6MULzVUoXhjMN1c5jGUlddm1zg4ORxnGh%2F%2BzoHwdb9Sa7UJaehBKq8gkwjZunzHu7zGLYqINGv6HMvl1SOFXYlGE0hAQv%2FOIF1IVY2N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cbd8077330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nvhaaa.top/df0515659c031251093942922779f350.gif
104.21.234.41200 OK 418 kB URL HTTP/2 nvhaaa.top/df0515659c031251093942922779f350.gif
IP 104.21.234.41:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 418 kB (417605 bytes)
Hash fb08ecbf43e86fb896554c765a146f05
7d73395cfd69d9025fc65e742f812a9ee739f072
6051c428622f29877786c097c50417643f91cd4942529192961604762dd40981
GET /df0515659c031251093942922779f350.gif HTTP/1.1
Host: nvhaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jxys1.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 417605
last-modified: Mon, 04 Jul 2022 12:16:06 GMT
etag: "62c2da06-65f45"
expires: Tue, 04 Oct 2022 22:40:20 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 143354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=532nrf8AXKihBPAFkv%2FJQyPiHtj4eyaABiASk3xmCZcLWnk9rYQAxZ3UBM8HMxCLhQwOCOp4%2FcRQMlhV0RJ%2FIg2jSRtyuKtfdnbbsKDfiBXTXEEKgjZMWFKwFeAI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8e047599-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nvhaaa.top/f48264215dede17305bafebb5c86200c.gif
104.21.234.41200 OK 475 kB URL HTTP/2 nvhaaa.top/f48264215dede17305bafebb5c86200c.gif
IP 104.21.234.41:0
File type GIF image data, version 89a, 750 x 300\012- data
Size 475 kB (474816 bytes)
Hash 5b9eeb2dbda56fe2c5d70a3ae26ebeb5
f9e16d4fbab1502a1484d8236a47d9ee867734f9
0439010081ec4a589fd13ef97768bf8e485df83f28bc81c4b4c18fb508cbbc16
GET /f48264215dede17305bafebb5c86200c.gif HTTP/1.1
Host: nvhaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jxys1.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 474816
last-modified: Mon, 11 Jul 2022 05:51:20 GMT
etag: "62cbba58-73ec0"
expires: Wed, 05 Oct 2022 14:03:15 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 87979
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=StdyDBe5xCXzigoW5aK7PkLjYqMfEf4FXW1gXrqT7S7B5OwO4vY1WuNN3gI4hEcto6ZxxmmtASRPs30T0d7XZyi5Nnzx%2B20dGFedvf0CiUS0%2BS0a2lKdHzt0YuhM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb9e197599-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=719151288&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.97&lv=1&sn=48224&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fjxys1.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=719151288&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.97&lv=1&sn=48224&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fjxys1.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=719151288&si=2ac4a2d34c34a270e029b4996d351332&su=https%3A%2F%2Fwww.jxys88.net%2F&v=1.2.97&lv=1&sn=48224&r=0&ww=1268&ct=!!&u=https%3A%2F%2Fjxys1.xyz%2F&tt=%E8%81%9A%E9%91%AB%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 06 Sep 2022 14:29:34 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E466B74061541972; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
fmlb.netlbtu.com/upload/vod/2022/07-17/11/wopwvnixakc1113wopwvnixakc315737.jpg
104.21.235.173200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/07-17/11/wopwvnixakc1113wopwvnixakc315737.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 90x67, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9287ba9ade54b4db145339642ef0ce6f
06037e4406b6ae3a3faccd34321e52629a42f583
bbd780e4fbe6dab22abf3c975474b5e02b8c2ca85ee71f04d3cfdf648699c45a
GET /upload/vod/2022/07-17/11/wopwvnixakc1113wopwvnixakc315737.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 12128
cf-bgj: h2pri
etag: "2c7535318b99d81:0"
last-modified: Sun, 17 Jul 2022 03:13:31 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7PMVtLjggxk9G81tYgeBBkqFpwy%2F%2Fu2MN6sa35kAw9LBwOvarRTS8o6Pd4B%2FHCdkZEhAU%2BYkB7sKYbt0C%2BmRGYSPrreJsvWDtHeRD8vnIEdx5h94rZ4jKguhLOFQZgUDU4VI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f5a7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jxys1.xyz/template/m1938pc/static/css/mm-content.css
173.231.38.5200 OK 59 kB URL HTTP/2 jxys1.xyz/template/m1938pc/static/css/mm-content.css
IP 173.231.38.5:0
Hash a11937c8e76cc0482ddb61657f1eeaca
9b6c84df0d743c300c31306b07cd76dda30bef84
da9df1573fdc8f01ea65b3a8e1a54add2780501e16675fc85c95382c4009144b
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/css/mm-content.css HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-1ccb"
expires: Wed, 07 Sep 2022 02:29:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 6a0ae3acfc9b763429916b303cac13b5
ae991af1fd5020d318fd8275b8a9a6465b882b15
86a3acfc9e883aa650099cb546b2c0799d3cc01686631ac0ecfda049e07dfcab
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Sep 2022 16:29:52 GMT
Expires: Sun, 11 Sep 2022 16:29:51 GMT
Etag: "ae991af1fd5020d318fd8275b8a9a6465b882b15"
Cache-Control: max-age=438616,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5cc7e3db4f9-OSL
fmlb.netlbtu.com/upload/vod/2022/08-03/12/e0klawjnksm1252e0klawjnksm2712661.jpg
104.21.235.173200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-03/12/e0klawjnksm1252e0klawjnksm2712661.jpg
IP 104.21.235.173:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash ab2d140a99eefd840872ab3460b6eb3d
9cc04d812b06aa0a8b35b843feb95e08bea1e713
fd9593d4050745df89650568c75935a3f9efa2f7fb6584f66b7be68f5df6e1f6
GET /upload/vod/2022/08-03/12/e0klawjnksm1252e0klawjnksm2712661.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 9568
cf-bgj: h2pri
etag: "9e447bd4f4a6d81:0"
last-modified: Wed, 03 Aug 2022 04:52:27 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zr0lrCKC0sojUjvZOSh5EuTHGTd9Y5bkBSNZbeapaU0R%2BLMvtFKPQtMHHF6%2BZ2Hoy%2FSfbuPKcKPmv5jpgjFMyLzK0tJVp2H9PanK%2BVpLHonJsmJqEVRMFh30Z2MjkfhI3oKE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f0c7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-22/06/isxumod44si0602isxumod44si315499.jpg
104.21.235.173200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-22/06/isxumod44si0602isxumod44si315499.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 84cdf376aca38535d31baa57f566fdf5
c3fb6f9b7fe9d1e26ee0bca9d6af04f4960ff2f9
5ab0bd8108192488970b8be2552dbc0b18048cdf9e7b78eea5a1f4455237057b
GET /upload/vod/2020/05-22/06/isxumod44si0602isxumod44si315499.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 11115
cf-bgj: h2pri
etag: "767e6b86bb2fd61:0"
last-modified: Thu, 21 May 2020 22:02:31 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4JCvXfqY9cEo911MqrCyak%2FDmPbR%2BvERcy%2BOwDY9N7DXzbcx2DFkl3ox671Acx4gA66%2FV5fusJv0Laqj3r%2BWbwpQmqj2ZXlEpjV7EmjseQtu8K2cyo7i%2FrWr0lZXpR%2Fmmnpj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cbbfd67330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 3c38ab21a3f49681bc1105b0dd4430b5
23859c316292446ac1e7b39cd62f8428a43dc6a8
49e845b43c1342aee1ad417f03fe17d88d560f44db142d8f5fa68b6f12e29116
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Sep 2022 07:20:03 GMT
Expires: Sun, 11 Sep 2022 07:20:02 GMT
Etag: "23859c316292446ac1e7b39cd62f8428a43dc6a8"
Cache-Control: max-age=405627,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5cbcca7fac8-OSL
fmlb.netlbtu.com/upload/vod/2022/07-20/01/pknycfzsm0e0150pknycfzsm0e096829.jpg
104.21.235.173200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/07-20/01/pknycfzsm0e0150pknycfzsm0e096829.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 4539a1894800311e3a3527f0bdb390fe
a5b64596b6de6bb31c89e23ce0a0f94ed5ca5c0b
642626194e2523a143e5597404e6ceccace5022a05b4847411c196e0621429d2
GET /upload/vod/2022/07-20/01/pknycfzsm0e0150pknycfzsm0e096829.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 10645
cf-bgj: h2pri
etag: "202e5bfd979bd81:0"
last-modified: Tue, 19 Jul 2022 17:50:10 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3pFcmEJxjsynnZUKEP7F3p6P%2FSL1Ld2MbUKAfY1Smxyl5yFjC%2BFvn4YZkP3wymS2%2BilEC7d1JriHprFoFPLuXV7sE4V7RCPGYprfMtoL0Pw%2BPo0k9K2ryWrsksR19jvRkgYG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f107330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/02-27/19/girzn1k2set1940girzn1k2set382757.jpg
104.21.235.173200 OK 8.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/girzn1k2set1940girzn1k2set382757.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ce67d4a7a6c35810dbb5eb3a77e87780
effa17c40c7bf96024cec62aca803770db51c32a
37dcf8e675afd36f33794d3d8f75aae2688cc50735ec6943a577734fcb059c89
GET /upload/vod/2020/02-27/19/girzn1k2set1940girzn1k2set382757.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 8417
cf-bgj: h2pri
etag: "b237cebb62edd51:0"
last-modified: Thu, 27 Feb 2020 11:40:39 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2BOl1cRXc3vaWzXvzK6qNahgVDZYdafa%2FwabO0W198X%2FdhNoQEjJZtkdgOHnXXjUFKAhk2ZiCPea%2BzeM6GNPYyF9VQBihQFS3pDOyojTKj0vL%2FrVSwp6dh2lWP8syzrtR8CX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f617330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/07-29/11/5000yqfstlj11335000yqfstlj5510563.jpg
104.21.235.173200 OK 14 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/07-29/11/5000yqfstlj11335000yqfstlj5510563.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 427x320, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 66ad1a9e3498b0c8aea1dfc7dc134ebf
9afeb4a06eb7a614dd3fe56eab917500ae3b30e6
25fc845d7813ece47e76f0bec2d681b11b0cd75e038c6534d99e5ee5e80ada08
GET /upload/vod/2022/07-29/11/5000yqfstlj11335000yqfstlj5510563.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 13639
cf-bgj: h2pri
etag: "3634a17fca2d81:0"
last-modified: Fri, 29 Jul 2022 03:33:55 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RhKc2%2BgXlzWz0395VUR1RvLo%2BLK8I0FDjDv5JyeF5hZShQm%2FFga%2FEGXxe9Jsb314OYfrg5jeaZUOnc6uCW9EpwFkz%2Fro1FENfyS1JW%2FpgsQnPAusznkaNEenFAb%2BGe%2FHvXPY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f197330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/07-18/11/d0unbto0ngv1155d0unbto0ngv296191.jpg
104.21.235.173200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/07-18/11/d0unbto0ngv1155d0unbto0ngv296191.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b582a4af9231cc88d8f68f2e0d404fcc
7b0ea3d20b788d237ba30994e75b6755532a66b9
264171cd50909148db302ce297972ab863634383a272c0e725ef22924cb2e4d1
GET /upload/vod/2022/07-18/11/d0unbto0ngv1155d0unbto0ngv296191.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 11793
cf-bgj: h2pri
etag: "6176e6385a9ad81:0"
last-modified: Mon, 18 Jul 2022 03:55:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1zAnPM2ox5gL7HafAkL%2FxjpP45fQCuwti9hdos2TBcahZsqlPkqNeDM3i%2B7L6jIf43%2FlyvUrTZTrXlP7DnFjm2SFjsOi7L9gXSHdavyRlEP1q2GlRa6dX9ABAm37YCDdajRx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f137330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/01-05/17/r2pp3jv0apa1755r2pp3jv0apa122511.jpg
104.21.235.173200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/01-05/17/r2pp3jv0apa1755r2pp3jv0apa122511.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash bde5197cbef45807a46e8ea1f48b9c24
4bb26bf05a79955276c6d8834253818e2125e9b5
f3f1ca5c751f8893b6d05edc5b233cf823260a5afc7a3096254f2aa4bb806159
GET /upload/vod/2020/01-05/17/r2pp3jv0apa1755r2pp3jv0apa122511.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 11011
cf-bgj: h2pri
etag: "ee56df38aec3d51:0"
last-modified: Sun, 05 Jan 2020 09:55:12 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u6oLuXebUkg13qqnRXD8nAU2j%2B2Q513N6NARLo%2F86Fw9XaXTmaMsAvo1QPyxuAkPOUl9czt%2BbJSgMM4%2BN5uQiV2hKOZMdWKFFksmHLKU8DJ2FeJKZSZk3%2Ffa7ehiWtjadoSJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f087330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 764828311025116f3f005ebe0dc06dfc
db5713193258184ba54241a6f6e4ac2435dbdf73
ce580327484ebe51bb6c779b34229e3fb3c59910c8e90851105bb3ebf1270c5e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CE580327484EBE51BB6C779B34229E3FB3C59910C8E90851105BB3EBF1270C5E"
Last-Modified: Mon, 05 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12721
Expires: Tue, 06 Sep 2022 18:01:36 GMT
Date: Tue, 06 Sep 2022 14:29:35 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2022/08-05/09/agq51f4uom20943agq51f4uom23912911.jpg
104.21.235.173200 OK 12 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-05/09/agq51f4uom20943agq51f4uom23912911.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 59b8d9b74e2f8d9998a15bbaf993a329
f8b17359f7e3b8a2b3d95dca5ecc81da85e43cc4
672e78a754dac2cf7410abdd8a1bcbee94ef26edb2d092991d8ac8563b7dffac
GET /upload/vod/2022/08-05/09/agq51f4uom20943agq51f4uom23912911.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 11928
cf-bgj: h2pri
etag: "90bca1c96ca8d81:0"
last-modified: Fri, 05 Aug 2022 01:43:40 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ioYbG248DE9BHw1QDEtHI%2FMf9ziQqdqWkhyLe%2FYOCQJkF9YOw1umliRPnNxWPnjG4EXqsbi8Yb4u7uuuUxL3pSU978ljN1MffKh%2FsByA7EU9%2BrYM1DZRe%2FVidJBjerTwoBwK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f0f7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-25/12/fnwnzck4rmh1242fnwnzck4rmh5220641.jpg
104.21.235.173200 OK 8.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-25/12/fnwnzck4rmh1242fnwnzck4rmh5220641.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 37d53d478b274e76e9cb9f9d45056897
17e082e2982add2172f586268789d193ffa8bf65
329cb55c0065ab1e9176fb434011f9a690429f0030b70328e673a432f54eee50
GET /upload/vod/2022/08-25/12/fnwnzck4rmh1242fnwnzck4rmh5220641.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 8816
cf-bgj: h2pri
etag: "f28eb7223db8d81:0"
last-modified: Thu, 25 Aug 2022 04:42:52 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uvy8VlXUYbuTwXrT4iXwctV6jhKWozXk0QXuqx3Qf2CyzxTn%2FW2HjGA%2BAXF%2Bqwhqvyh%2Fbm8n3lIx3m8kIo4FVN%2FgkaibcWH0tr%2FM0Wec4bTxKRq9bqxSytjVAqe55q1zAnL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f0d7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-09/11/4emvz4chswy11054emvz4chswy4314401.jpg
104.21.235.173200 OK 7.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-09/11/4emvz4chswy11054emvz4chswy4314401.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 89f5866e452889bce1a70741d1a18ffe
7bb9ec22f0bf782ae37657a6ccef85700d25055f
b511dabc217b91d814c2d041c66bb5635cf64bd00f084e2692c96c7ef753ea6a
GET /upload/vod/2022/08-09/11/4emvz4chswy11054emvz4chswy4314401.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 7762
cf-bgj: h2pri
etag: "87d821ea9cabd81:0"
last-modified: Tue, 09 Aug 2022 03:05:43 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Erdc%2FO4tt%2BJlLM1ppwIf%2BPQoem5CBhFe0bzDoXWVKczGdCqTtOZ6GEz38KLiELU5FKHUY1oDPA976Zl%2FTI2h2Bb4SdrwmFgZB9%2BM4g1BZp7f2mt1lawOiaQuOLtY1qOHBacI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f0a7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/08-15/12/ukv4amj1scx1243ukv4amj1scx2916719.jpg
104.21.235.173200 OK 7.4 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/08-15/12/ukv4amj1scx1243ukv4amj1scx2916719.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash eb6eb28aa2989226ff0d61488ebecebc
038fcdec42032906de63c1c6a3ef242dde0b7f8f
648d71776f6fff48456dc291e9e74011cbf04ad07eef0078f51604464c051003
GET /upload/vod/2022/08-15/12/ukv4amj1scx1243ukv4amj1scx2916719.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 7399
cf-bgj: h2pri
etag: "2bcb99061b0d81:0"
last-modified: Mon, 15 Aug 2022 04:43:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C9zgaBvd%2FY1DcIhPkrKiQJegqLbH%2FcmW36d%2Fi3uxgtYyjuXXdKaY3NC0nc0ZIFZzl5fS4Yohndc%2FGKQIjZVV7GxY8n9ouPKSBGLBNRtqcFa0XMdSTXLVJgQLfXk8YowMN6OK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb9f907330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
104.21.233.189200 OK 1.0 MB URL HTTP/2 kvhccc.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP 104.21.233.189:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.0 MB (1024160 bytes)
Hash 52748c8ca30fe48c822541046bceafc0
8640926f83b9c0d635fb28403505a7c0f0753857
2e292531362f37bf7a1cd01330efb234450b1f836e975c55f2b2179c0be32ae6
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kvhccc.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jxys1.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 1024160
last-modified: Wed, 25 May 2022 13:49:10 GMT
etag: "628e33d6-fa0a0"
expires: Wed, 05 Oct 2022 17:58:30 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 73864
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3oUpvPIVyi8MTKyrCIp2UEr9UuaDzs8guDsgwF4Q7GVs%2BHY5G%2BtloAi63aLIVddBGHWRE9kWAKuxSmE6J0W6eYtYbcBOZ1YctalVmj92cQX2fG%2BrOynwFpbKqC5p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cd4b747783-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2022/07-08/10/y21pp0ji2ri1048y21pp0ji2ri372131.jpg
104.21.235.173200 OK 9.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2022/07-08/10/y21pp0ji2ri1048y21pp0ji2ri372131.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1b3950442f67dcdc09082d46339c6559
5ddcfba342e9f6c7b04c4c4d7b60feb0a585a8b3
c9278ff92ccef88872e7cd1b5a681e3bc409b05f4f87b7d181f69afceba62af6
GET /upload/vod/2022/07-08/10/y21pp0ji2ri1048y21pp0ji2ri372131.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/jpeg
content-length: 9283
cf-bgj: h2pri
etag: "d94238397592d81:0"
last-modified: Fri, 08 Jul 2022 02:48:37 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h5drB5WU1B%2BZchqszKIcyOxgh2vUP9%2BWn%2Fv6Ug6FeW4gXY4BT9FPM3qXuqrTr0Fjydqir5f30sq%2BHfAKGK80ciTuOxFtmY3JCe5pNuQu1NLcfHQuR%2BRS3I9X2dxBUMGPGkj0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb6f157330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a0c0767540a2d7c98e5bf4ccb8f4dd8e
5c42aaeb2f6fa1801f731827fbcdf72671bf14b9
59a47977f50eae1bd749554475ceeb7b291188308b7b1492e835f2c3b16f60c9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 15:50:32 GMT
Expires: Sat, 10 Sep 2022 15:50:31 GMT
Etag: "5c42aaeb2f6fa1801f731827fbcdf72671bf14b9"
Cache-Control: max-age=349856,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5cc7823b4fa-OSL
fmlb.netlbtu.com/upload/vod/2020/02-27/19/qclmcv2poa51941qclmcv2poa5452765.jpg
104.21.235.173200 OK 7.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/02-27/19/qclmcv2poa51941qclmcv2poa5452765.jpg
IP 104.21.235.173:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d84241b3af7bb56223a133b0b53b30d0
1eb02ce33e92c3d5b865cff1787ada2675e1da6b
8f125d5d1f654a3f89a4fcabf686bc193d4e7b7078a622a66f35880caac93820
GET /upload/vod/2020/02-27/19/qclmcv2poa51941qclmcv2poa5452765.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/jpeg
content-length: 7195
cf-bgj: h2pri
etag: "2b7366e362edd51:0"
last-modified: Thu, 27 Feb 2020 11:41:45 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sfW7XfFXDcDx6oZPneg1flBzwHTjLdrrvqSZFwoY8DF5%2FsgmaiwdWKYDdJTuV9RSX%2BW2BcyyuTMAwFKAGeuzUxAkNr3vjfkEhfL0Fxyyn%2FvWNJX8JdXHyT%2BlSvF9T9IZF477"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cb8f6e7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvhaaa.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
172.67.218.101200 OK 864 kB URL HTTP/2 kvhaaa.top/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP 172.67.218.101:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: kvhaaa.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jxys1.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/gif
content-length: 864004
last-modified: Sun, 04 Sep 2022 09:11:53 GMT
etag: "63146bd9-d2f04"
expires: Thu, 06 Oct 2022 14:24:20 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 315
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CUOyivRVo9FivJQ0e8k9zrpDYeiK6ad27jqZwn0lkFAgxhVEz6b2suvF8%2BA2k8CqXEYhJNN9ATh%2FjQVHfhD4Si49ro4iG%2BKilamYB44kOiDNeYXWriqJMwc0Fj5D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7467e5cded650b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 817036b861ec2756ff519a0638d741fd
fd26daa3b7180941a6eb0993d7a0bf7057bfa72c
296eb5699fd3bbb32459efca830c0423361f448ed990c77bd9b5fecbf69ad5b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "296EB5699FD3BBB32459EFCA830C0423361F448ED990C77BD9B5FECBF69AD5B6"
Last-Modified: Mon, 05 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4673
Expires: Tue, 06 Sep 2022 15:47:28 GMT
Date: Tue, 06 Sep 2022 14:29:35 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash db1133fd7b0cd8f69dbd3bbcaf14a74e
cfb0b8084c37ad2e349b1e49a1da3a4fda26cde9
6d7def3dc1358744fad4d49447be2efb6527a0daa653ee6b54cae5f1f003ddea
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 04:48:18 GMT
Expires: Tue, 13 Sep 2022 04:48:17 GMT
Etag: "cfb0b8084c37ad2e349b1e49a1da3a4fda26cde9"
Cache-Control: max-age=569321,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5cd4da9fac8-OSL
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 764828311025116f3f005ebe0dc06dfc
db5713193258184ba54241a6f6e4ac2435dbdf73
ce580327484ebe51bb6c779b34229e3fb3c59910c8e90851105bb3ebf1270c5e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "CE580327484EBE51BB6C779B34229E3FB3C59910C8E90851105BB3EBF1270C5E"
Last-Modified: Mon, 05 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12721
Expires: Tue, 06 Sep 2022 18:01:36 GMT
Date: Tue, 06 Sep 2022 14:29:35 GMT
Connection: keep-alive
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 3f982804c323557f693c70786ebdf6d6
c63e2fa6088079ee59be90bc38f2ecaa5896c6a8
ec8e19e4b853d974a94a3a7ef3cce8be61e8cb80db7194470518db9b0d4e2383
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 14:29:35 GMT
Ali-Swift-Global-Savetime: 1662474575
Via: cache16.l2de2[477,478,200-0,M], cache16.l2de2[478,0], cache7.se1[499,498,200-0,M], cache7.se1[500,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 06 Sep 2022 14:29:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9b16624745746217977e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 3f982804c323557f693c70786ebdf6d6
c63e2fa6088079ee59be90bc38f2ecaa5896c6a8
ec8e19e4b853d974a94a3a7ef3cce8be61e8cb80db7194470518db9b0d4e2383
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 14:29:35 GMT
Ali-Swift-Global-Savetime: 1662474575
Via: cache15.l2de2[479,478,200-0,M], cache15.l2de2[480,0], cache8.se1[502,502,200-0,M], cache8.se1[503,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Tue, 06 Sep 2022 14:29:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9c16624745746162855e
si1.go2yd.com/get-image/0yFVWR9AM6k
163.171.140.79200 OK 140 kB URL HTTP/2 si1.go2yd.com/get-image/0yFVWR9AM6k
IP 163.171.140.79:0
ASN #54994 QUANTILNETWORKS
File type GIF image data, version 89a, 750 x 376\012- data
Size 140 kB (140259 bytes)
Hash 4125d9bf66b1a755f42abaea805ee9af
17232f64827beb19e2a717d1bdbf384b3e938249
d3c1b29a4d2c0fa6fc41d308d6c110eeb868276c2a74697766283838ebe1f732
GET /get-image/0yFVWR9AM6k HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/gif
content-length: 140259
x-application-context: application
x-kss-request-id: 42be03856f37421d8d1834ac0d22900d
etag: "4125d9bf66b1a755f42abaea805ee9af"
content-md5: QSXZv2axp1X0KrrqgF7prw==
last-modified: Mon, 28 Feb 2022 07:48:08 GMT
accept-ranges: bytes
server: KS3
age: 1
x-via: 1.1 PSbjwjBGP2vu136:9 (Cdn Cache Server V2.0), 1.1 PSzjnbsxsy229:10 (Cdn Cache Server V2.0), 1.1 PS-KHH-015lO119:3 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1se91:17 (Cdn Cache Server V2.0)
x-ws-request-id: 6317594f_PShlamstdAMS1vj92_1850-26379
access-control-allow-origin: *
ws-s2h-acc-level: 1
X-Firefox-Spdy: h2
si1.go2yd.com/get-image/0yFQ28gLGhP
163.171.140.79200 OK 280 kB URL HTTP/2 si1.go2yd.com/get-image/0yFQ28gLGhP
IP 163.171.140.79:0
ASN #54994 QUANTILNETWORKS
File type GIF image data, version 89a, 600 x 350\012- data
Size 280 kB (279676 bytes)
Hash b25d41aed5450abed3b57ce91edeb1ef
32246d3032e682f04be554c60fa343835bf7a1c9
3198df78ef5491bd63c4dbd8fea3604f34dad6baa285ea8629ec250954f405ba
GET /get-image/0yFQ28gLGhP HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/gif
content-length: 279676
server: Tengine
x-application-context: application
x-kss-request-id: 7619a86ae5664556a23b9964f031b63f
etag: "b25d41aed5450abed3b57ce91edeb1ef"
content-md5: sl1BrtVFCr7TtXzpHt6x7w==
last-modified: Mon, 28 Feb 2022 06:31:20 GMT
accept-ranges: bytes
age: 1
x-via: 1.1 PSbjzwdx5aa31:0 (Cdn Cache Server V2.0), 1.1 jszjsx22:12 (Cdn Cache Server V2.0), 1.1 PS-KHH-015lO119:7 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1cc96:6 (Cdn Cache Server V2.0)
x-ws-request-id: 6317594f_PShlamstdAMS1vj92_1850-26381
access-control-allow-origin: *
ws-s2h-acc-level: 1
X-Firefox-Spdy: h2
jxys1.xyz/template/m1938pc/html9/ads/zxf.js
173.231.38.5200 OK 76 kB URL HTTP/2 jxys1.xyz/template/m1938pc/html9/ads/zxf.js
IP 173.231.38.5:0
Hash e9186d4bc4fe38520a3301df6c4f02ff
52c66ec93953506ec4b0239fdeb0c09d704ae8d7
46e9e153da2be7f2cbe0143401fb40d4fd8d04b3f4559758a9761bd9d5a6863e
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/html9/ads/zxf.js HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: application/javascript
last-modified: Sun, 04 Sep 2022 07:16:27 GMT
vary: Accept-Encoding
etag: W/"631450cb-502"
expires: Wed, 07 Sep 2022 02:29:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
taiwtp1.com/img/960240.gif
220.128.218.220200 OK 224 kB URL HTTP/2 taiwtp1.com/img/960240.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 240\012- data
Size 224 kB (223879 bytes)
Hash a39bb27f09ccd6961fe1c0f3074a8b97
0e914bc58abc78e7275d3c639e2aeb548313d627
269a642190139efcc044a53f3194f196e79d8e981d3e8cf0184ce4e8eb134020
GET /img/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:28:01 GMT
content-type: image/gif
content-length: 223879
last-modified: Wed, 09 Mar 2022 04:06:14 GMT
etag: "622827b6-36a87"
expires: Thu, 06 Oct 2022 14:28:01 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
87193776899.com/137dd6d87688482eb020c1c774325059.185.gif
103.170.15.87200 OK 149 kB URL HTTP/1.1 87193776899.com/137dd6d87688482eb020c1c774325059.185.gif
IP 103.170.15.87:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 320 x 185\012- data
Size 149 kB (149081 bytes)
Hash ca110f84ebcc10dd498b26dc6c90087b
cfaf975d43693cfc7c2e05305068b0d933748d98
04dff307dc6fdc4da149bad386613e102c1f0e6d2b26974c5666505c7d97ef2e
Analyzer Verdict Alert quad9 Sinkholed
GET /137dd6d87688482eb020c1c774325059.185.gif HTTP/1.1
Host: 87193776899.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62f2795c-24659"
Date: Fri, 02 Sep 2022 11:08:41 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 09 Aug 2022 15:12:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-17
Content-Length: 149081
93533557591.com/7c572867c08941819e5390af65418338.gif
45.61.212.129200 OK 1.2 MB URL HTTP/1.1 93533557591.com/7c572867c08941819e5390af65418338.gif
IP 45.61.212.129:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 1.2 MB (1184271 bytes)
Hash a0d9c3776a1e7616e6c1471d4378e348
1958e68d4544d881c08e58ba3fb7f921db78b212
a49fb807e3e7d520fc3dfe9c6031159266a6083ee708f623259e0158060c58f0
GET /7c572867c08941819e5390af65418338.gif HTTP/1.1
Host: 93533557591.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6310a377-12120f"
Date: Fri, 02 Sep 2022 12:47:27 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 01 Sep 2022 12:20:07 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-29
Content-Length: 1184271
n5632.com/4aa44d1866a149878b6b79cadb7ab527.gif
45.61.212.125200 OK 748 kB URL HTTP/1.1 n5632.com/4aa44d1866a149878b6b79cadb7ab527.gif
IP 45.61.212.125:0
File type GIF image data, version 89a, 750 x 120\012- data
Size 748 kB (748166 bytes)
Hash dc16c165d9da37bf4a9e9596a765425c
824e5729161352cd5f7b57faea8a32c54d35b410
4abb336ff1a1a08dc2963b708638359da654fadaf843669e4406d6ab348b4608
GET /4aa44d1866a149878b6b79cadb7ab527.gif HTTP/1.1
Host: n5632.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63032a8a-b6a86"
Date: Thu, 25 Aug 2022 05:16:47 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 22 Aug 2022 07:04:42 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-25
Content-Length: 748166
aixuntupiana.oss-cn-hongkong.aliyuncs.com/dongtu/wwwsss.gif
47.57.203.161200 OK 514 kB URL HTTP/1.1 aixuntupiana.oss-cn-hongkong.aliyuncs.com/dongtu/wwwsss.gif
IP 47.57.203.161:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 220 x 145\012- data
Size 514 kB (513520 bytes)
Hash ee450336c78fc101d2d7205e82d9efc9
95f23c71ca954de5625ebc0c8cef043d329a19f7
61ef0f377860af7919f42403fd97cf9b1449ad52f35d4b30a25131e429e456d9
GET /dongtu/wwwsss.gif HTTP/1.1
Host: aixuntupiana.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: image/gif
Content-Length: 513520
Connection: keep-alive
x-oss-request-id: 6317594E2A67CA3537253232
Content-Disposition: attachment; filename="wwwsss.gif"
x-oss-force-download: true
Accept-Ranges: bytes
ETag: "EE450336C78FC101D2D7205E82D9EFC9"
Last-Modified: Thu, 18 Aug 2022 09:20:26 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7942705136501946339
x-oss-storage-class: Standard
Content-MD5: 7kUDNsePwQHS1yBegtnvyQ==
x-oss-server-time: 2
tupaiyy.oss-cn-hongkong.aliyuncs.com/huazidongtu/ddwq.gif
47.75.19.80200 OK 409 kB URL HTTP/1.1 tupaiyy.oss-cn-hongkong.aliyuncs.com/huazidongtu/ddwq.gif
IP 47.75.19.80:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 220 x 145\012- data
Size 409 kB (408728 bytes)
Hash 371b6f121262c42569b6d8b6fb9da6f3
067309d9157d7051e6c5ab934e03386704f7fa0e
b11e168dffce02d885da51ca27f591d58a5fdeb762422caed2411347c84b66f4
GET /huazidongtu/ddwq.gif HTTP/1.1
Host: tupaiyy.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: image/gif
Content-Length: 408728
Connection: keep-alive
x-oss-request-id: 6317594E051F683036644157
Accept-Ranges: bytes
ETag: "371B6F121262C42569B6D8B6FB9DA6F3"
Last-Modified: Mon, 04 Jul 2022 07:23:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12519031946448943376
x-oss-storage-class: Standard
Content-MD5: NxtvEhJixCVptti2+52m8w==
x-oss-server-time: 3
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash db1133fd7b0cd8f69dbd3bbcaf14a74e
cfb0b8084c37ad2e349b1e49a1da3a4fda26cde9
6d7def3dc1358744fad4d49447be2efb6527a0daa653ee6b54cae5f1f003ddea
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 04:48:18 GMT
Expires: Tue, 13 Sep 2022 04:48:17 GMT
Etag: "cfb0b8084c37ad2e349b1e49a1da3a4fda26cde9"
Cache-Control: max-age=569320,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5cde858b4f9-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 45d4387d44025b2e243a38c0dcf3fed0
db53b2fb799900c48d647c1459040cb0e3b7a829
84c96dab85b474b9499a16e2eb043e8f03fe0e1574217aa4b48f6e5e336b07ff
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Sep 2022 06:51:12 GMT
Expires: Sun, 11 Sep 2022 06:51:11 GMT
Etag: "db53b2fb799900c48d647c1459040cb0e3b7a829"
Cache-Control: max-age=403894,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5cf6ca3b4fa-OSL
aixuntupiana.oss-cn-hongkong.aliyuncs.com/dongtu/dddsssss.gif
47.57.203.161200 OK 840 kB URL HTTP/1.1 aixuntupiana.oss-cn-hongkong.aliyuncs.com/dongtu/dddsssss.gif
IP 47.57.203.161:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 840 kB (840357 bytes)
Hash 9e160c09997e69ea8413677f7d663904
2b75b4fe8a10a1941b6338448912428e4a93c7c9
73786a3a6eccefa740ef4201b8421389acb2737796c24dac77aaeddd9acddbc5
GET /dongtu/dddsssss.gif HTTP/1.1
Host: aixuntupiana.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: image/gif
Content-Length: 840357
Connection: keep-alive
x-oss-request-id: 6317594E2A67CA3338163232
Content-Disposition: attachment; filename="dddsssss.gif"
x-oss-force-download: true
Accept-Ranges: bytes
ETag: "9E160C09997E69EA8413677F7D663904"
Last-Modified: Thu, 18 Aug 2022 09:20:27 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 12978963347354480605
x-oss-storage-class: Standard
Content-MD5: nhYMCZl+aeqEE2d/fWY5BA==
x-oss-server-time: 2
jxys1.xyz/template/m1938pc/static/css/white.css
173.231.38.5200 OK 37 kB URL HTTP/2 jxys1.xyz/template/m1938pc/static/css/white.css
IP 173.231.38.5:0
Hash c6737200db65ae4faa465ffe1f1da327
780bf88102a012c4f12acb1ecace4a3892033fe3
ade6925b44afec7d9dabbbe7df7b6e0e3a32ac84954d97e99d7448912a85850e
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/css/white.css HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-29d9"
expires: Wed, 07 Sep 2022 02:29:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fsadcx1.com/tututu/yue.gif
23.225.3.254200 OK 4.0 MB URL HTTP/2 fsadcx1.com/tututu/yue.gif
IP 23.225.3.254:0
File type GIF image data, version 89a, 540 x 260\012- data
Size 4.0 MB (3960978 bytes)
Hash d8cb43dc553102ce0f6f051f33c1e801
2129e8cc2a17aed95bf77d70074cd779125f88ae
21e3ff28623e466cb2d36e805b1f47a83292022a9e98266a05960b62e95b67e0
GET /tututu/yue.gif HTTP/1.1
Host: fsadcx1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/gif
content-length: 3960978
last-modified: Thu, 29 Jul 2021 12:00:20 GMT
etag: "61029854-3c7092"
expires: Thu, 06 Oct 2022 14:29:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
jxys1.xyz/
173.231.38.5200 OK 1.1 MB IP 173.231.38.5:0
Size 1.1 MB (1081879 bytes)
Hash e96bce9d8742f49ea3cbfa2fe7b0cd8d
5a3ae1eec0609780d9e17a525c472c8d222dbdeb
8faf05f800a81ebea339ea045b40eeeed7c04c4a894489bdeb643a833698c6f0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys88.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
n7326.com/db431bafa2474156b9fddc3d9c277b4d.gif
45.61.212.125200 OK 177 kB URL HTTP/1.1 n7326.com/db431bafa2474156b9fddc3d9c277b4d.gif
IP 45.61.212.125:0
File type GIF image data, version 89a, 240 x 140\012- data
Size 177 kB (176976 bytes)
Hash 5c383b781891f009bfe7545eb03e78d9
75d4973454dc1243aeb3e10c8f58033b904f55a0
3fcb048f35db216dd311386f685b6dd7ed68384951f09cc018287cdb49d1d35b
GET /db431bafa2474156b9fddc3d9c277b4d.gif HTTP/1.1
Host: n7326.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62da66b6-2b350"
Date: Fri, 19 Aug 2022 10:21:19 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 22 Jul 2022 08:58:30 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-25
Content-Length: 176976
www.jxys88.net/news/list.php
173.231.12.68200 OK 553 kB URL HTTP/2 www.jxys88.net/news/list.php
IP 173.231.12.68:0
Size 553 kB (552870 bytes)
Hash b6200c5c81ffa4f6b099bd4a021befbf
73de7c6e33ea62c7851fe5782636a1c081cd63e4
06524e961a2938e92c905b01c6b9b75edbf0c4ad8179522e01223571fccc4cce
GET /news/list.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys88.net/news/index.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 20d9a456f13af0ff23c87f7971b9c6c6
9bf714ebb6d4440dbfaba18bb6301247842c6c04
b51f5ba883aa1d5a75f353ac4c4bd63d17592e569a0b1ce856e1e7538de6ff25
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:37 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 03:02:51 GMT
Expires: Tue, 13 Sep 2022 03:02:50 GMT
Etag: "9bf714ebb6d4440dbfaba18bb6301247842c6c04"
Cache-Control: max-age=562992,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5da1ecffac8-OSL
www.jxys88.net/news/data.php
173.231.12.68200 OK 121 kB URL HTTP/2 www.jxys88.net/news/data.php
IP 173.231.12.68:0
Size 121 kB (121392 bytes)
Hash 63d6c61dc2cd538bd72371ef14fc817f
879140f632b829f22453a15fd67a551017b245f2
9c81b4dfba9ad2f7989f2620b90cce98f0fc927e59285e27335bd00806e406e2
GET /news/data.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jxys88.net/news/list.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
jxys1.xyz/template/m1938pc/static/css/bootstrap.min.css
173.231.38.5200 OK 484 kB URL HTTP/2 jxys1.xyz/template/m1938pc/static/css/bootstrap.min.css
IP 173.231.38.5:0
Size 484 kB (483906 bytes)
Hash da35529d1c7cd11892ecc84a582424c6
81dc69763631a82336515bd81a87f8b308426979
4322666cc7ef494a3dafce25d2757f8fce6ef9cd169464110f3705628afcf3e2
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:04 GMT
vary: Accept-Encoding
etag: W/"61e1000c-23816"
expires: Wed, 07 Sep 2022 02:29:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 145626541cda2e504e043f2fc0c124b4
704daf42a65583b731621ff798e3851fc82f5725
13efb7f4f5420611f7d9309443f4ef479f812d14e566c4cb510f027d8e6a8e03
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 14:29:37 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Sep 2022 13:28:29 GMT
Expires: Sat, 10 Sep 2022 13:28:28 GMT
Etag: "704daf42a65583b731621ff798e3851fc82f5725"
Cache-Control: max-age=341330,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7467e5dbcfacb4fa-OSL
79181531227.com/5d290bfde1f54fff880e9553e702bbbb.jpg
45.61.212.56200 OK 110 kB URL HTTP/1.1 79181531227.com/5d290bfde1f54fff880e9553e702bbbb.jpg
IP 45.61.212.56:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 380x200, components 3\012- data
Size 110 kB (109701 bytes)
Hash 8e887859b22620e1b57d94d7db4a5a59
a8221eb24b4d49072cd5fc9d715357b492db6b58
ace8f023527467099bfe159e5fb84637a71d6afd1e4282ac8f9fe6bb58428dcf
GET /5d290bfde1f54fff880e9553e702bbbb.jpg HTTP/1.1
Host: 79181531227.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "630db366-1ac85"
Date: Thu, 01 Sep 2022 04:56:47 GMT
Content-Type: image/jpeg
Server: nginx
Last-Modified: Tue, 30 Aug 2022 06:51:18 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-26
Content-Length: 109701
jxys1.xyz/template/m1938pc/static/css/1.css
173.231.38.5200 OK 396 kB URL HTTP/2 jxys1.xyz/template/m1938pc/static/css/1.css
IP 173.231.38.5:0
Size 396 kB (395941 bytes)
Hash c33a5c6bca61340a4bf52c6acd220370
3e677dfde73882258cfcd3ff706ed78b64ac304e
d217a25ebb302689161aeaea6c94203426889817bde22ad7447eb526567d9af3
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/css/1.css HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/css
last-modified: Sun, 16 Jan 2022 07:31:51 GMT
vary: Accept-Encoding
etag: W/"61e3c9e7-50e"
expires: Wed, 07 Sep 2022 02:29:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png
43.129.255.47200 OK 1.5 MB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 80\012- data
Size 1.5 MB (1495356 bytes)
Hash af737e86fc083a958d9f25203333f0be
cb0ee5d9a71efdf61b622bd4175998bdeecca900
e1cf6ef72cde6e3f9bffa69e86e769e09e82d18f781a235fc977a5644e141a9a
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5cd5c322c76272c5e26cad46e1f3c6ce7/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 1495356
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:08:11 GMT
cache-control: max-age=2592000
x-delay: 556 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1495356
chid: 0
fid: 0
x-nws-log-uuid: 0483394e-2cf3-4b38-ad2a-a5669730d7cb
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png
43.129.255.47200 OK 894 kB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 80\012- data
Size 894 kB (893726 bytes)
Hash 1e34697200f13da14c5bfabeba617325
9a18ed38d5d385f885c28a4280b4c61302745b65
b63a862a0f65ff9f685e9b67fd171a6df96878469b0a85d1da2f644399c0409f
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b5472e67239ef16675ea414c591d4c7caa/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/gif
content-length: 893726
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 16:38:38 GMT
cache-control: max-age=2592000
x-delay: 111361 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 893726
chid: 0
fid: 0
x-nws-log-uuid: 2933573c-7002-49ed-840a-646e01d1e669
X-Firefox-Spdy: h2
885364.com/af487946377641ea8b2db51483f4b919.gif
47.75.19.14200 OK 33 kB URL HTTP/1.1 885364.com/af487946377641ea8b2db51483f4b919.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 250 x 150\012- data
Hash bc3f27f450ad0ebd19370d3737fc2e07
f1ac03dc00b5370bafdfdc604cea7f8bbdb3d75b
f76a84ddee61f9d582915900d7074fbb4c989b9669c3f871fd9fbf465895cbe1
GET /af487946377641ea8b2db51483f4b919.gif HTTP/1.1
Host: 885364.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 06 Sep 2022 14:29:37 GMT
Content-Type: image/gif
Content-Length: 33267
Connection: keep-alive
x-oss-request-id: 631759519DB57835360EE2CC
Accept-Ranges: bytes
ETag: "BC3F27F450AD0EBD19370D3737FC2E07"
Last-Modified: Tue, 02 Aug 2022 10:36:32 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2465277436600690179
x-oss-storage-class: Standard
Content-MD5: vD8n9FCtDr0ZNw03N/wuBw==
x-oss-server-time: 1
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b56c4f4d1cb2233646b35e992ae9a8bb03/0.png
43.129.255.47200 OK 1.4 MB URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b56c4f4d1cb2233646b35e992ae9a8bb03/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 80\012- data
Size 1.4 MB (1411145 bytes)
Hash 3e2a08c45f216f23995e08dc45ed0e86
c9390027ee4885cb509d8b2ad37d6daa9698631e
ffdceb96ee4670386b85d0e2389496569d7e5e9f16844c2f26e9656482a8f12f
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b56c4f4d1cb2233646b35e992ae9a8bb03/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
content-length: 1411145
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:00:38 GMT
cache-control: max-age=2592000
x-delay: 585 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1411145
chid: 0
fid: 0
x-nws-log-uuid: 05a88d2c-0f48-42ce-a5d9-28c221e32fb5
X-Firefox-Spdy: h2
kn.pflmkj.cn/v21/uploads/images/interim/o509/42b31fdd-3eaf-4afc-af1b-4b8a4c66c540.gif
138.113.141.2200 OK 0 B URL HTTP/2 kn.pflmkj.cn/v21/uploads/images/interim/o509/42b31fdd-3eaf-4afc-af1b-4b8a4c66c540.gif
IP 138.113.141.2:0
ASN #54994 QUANTILNETWORKS
GET /v21/uploads/images/interim/o509/42b31fdd-3eaf-4afc-af1b-4b8a4c66c540.gif HTTP/1.1
Host: kn.pflmkj.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 14:29:34 GMT
content-type: image/gif
last-modified: Wed, 24 Aug 2022 09:16:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
age: 1
x-via: 1.1 PSxgHKG8yo120:2 (Cdn Cache Server V2.0), 1.1 VM-ARN-01Obg11:1 (Cdn Cache Server V2.0)
x-ws-request-id: 6317594e_VM-ARN-01XCI21_17058-25180
cache-control: max-age=31536000
X-Firefox-Spdy: h2
aliyun-static-oss.oss-cn-hongkong.aliyuncs.com/b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif
47.56.33.17200 OK 0 B URL HTTP/1.1 aliyun-static-oss.oss-cn-hongkong.aliyuncs.com/b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif
IP 47.56.33.17:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /b5/f554e2887180883376a154c0d49550.gif?attname=899E8306-3565-4974-AD46-916F3A0C3E17.gif HTTP/1.1
Host: aliyun-static-oss.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 06 Sep 2022 14:29:34 GMT
Content-Type: image/gif
Content-Length: 294418
Connection: keep-alive
x-oss-request-id: 6317594E53375538324D51E2
Vary: Origin
Accept-Ranges: bytes
ETag: "B5F554E2887180883376A154C0D49550"
Last-Modified: Tue, 25 Jan 2022 08:46:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 7927258656666560621
x-oss-storage-class: Standard
Content-Disposition: inline;filename=899E8306-3565-4974-AD46-916F3A0C3E17.gif
Content-MD5: tfVU4ohxgIgzdqFUwNSVUA==
x-oss-server-time: 2
www.jxys88.net/news/index.php
173.231.12.68200 OK 0 B URL HTTP/2 www.jxys88.net/news/index.php
IP 173.231.12.68:0
GET /news/index.php HTTP/1.1
Host: www.jxys88.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kitchensinkwebdesign.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /hy_personal/3e28f14aa051684245c4e0cfebfbd4b564bf8a82fe24d215c37baf794f0f8b71/0.png HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/gif
content-length: 2668995
vary: Accept,Origin
last-modified: Mon, 18 Jul 2022 17:04:56 GMT
cache-control: max-age=2592000
x-delay: 133298 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 2668995
chid: 0
fid: 0
x-nws-log-uuid: 9c938e9a-40bf-4e06-8e68-2343a08c32d0
X-Firefox-Spdy: h2
jxys1.xyz/template/m1938pc/static/css/style.css
173.231.38.5200 OK 0 B URL HTTP/2 jxys1.xyz/template/m1938pc/static/css/style.css
IP 173.231.38.5:0
Analyzer Verdict Alert quad9 Sinkholed
GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: jxys1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 14:29:33 GMT
content-type: text/css
last-modified: Fri, 14 Jan 2022 04:46:10 GMT
vary: Accept-Encoding
etag: W/"61e10012-10aff"
expires: Wed, 07 Sep 2022 02:29:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Tue, 06 Sep 2022 14:29:35 GMT
content-type: image/gif
content-length: 1362871
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:47 GMT
cache-control: max-age=2592000
x-delay: 106756 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1362871
chid: 0
fid: 0
x-nws-log-uuid: 9d23faf3-c079-4e93-b75f-1002a0f58471
X-Firefox-Spdy: h2
884352.com/df99068335a545579920310eb24705ff.gif
47.75.19.14200 OK 0 B URL HTTP/1.1 884352.com/df99068335a545579920310eb24705ff.gif
IP 47.75.19.14:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /df99068335a545579920310eb24705ff.gif HTTP/1.1
Host: 884352.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jxys1.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Tue, 06 Sep 2022 14:29:35 GMT
Content-Type: image/gif
Content-Length: 423997
Connection: keep-alive
x-oss-request-id: 6317594F22C82A383116A4E5
Accept-Ranges: bytes
ETag: "E1A71FED14E92C07C2E10086C3F8AD63"
Last-Modified: Wed, 20 Jul 2022 08:31:02 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18376862633552853608
x-oss-storage-class: Standard
Content-MD5: 4acf7RTpLAfC4QCGw/itYw==
x-oss-server-time: 2