firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 00:49:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GQWyTHRDQdbpfpVrdxdh7SbnHcTQYNo664IqqNWc5LmzVU5yJe4dJw==
Age: 2383
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9244
Expires: Wed, 31 Aug 2022 04:03:02 GMT
Date: Wed, 31 Aug 2022 01:28:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Tue, 30 Aug 2022 02:27:04 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QPJsv7Q2xU_XZaH9iFsvQwCQVw1xMeJ3WD8JkUVxE-7OlbDjgV0ZrQ==
age: 82915
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 01:28:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dmlnhx.top/
172.121.229.37301 Moved Permanently 0 B IP 172.121.229.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: dmlnhx.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 31 Aug 2022 01:28:55 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.dmlnhx.top/index.php
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 31 Aug 2022 01:17:12 GMT
Cache-Control: max-age=3600
Expires: Wed, 31 Aug 2022 01:32:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8Rkgg-1w6zFzicsNC4BapTs0yXQp4UrcOW6UlOBN4IsC5c6TA9ItLA==
Age: 707
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f67e41cdd7e5f2aa8f93d031979c9109
5f4c0093f9bf8f8e48e0d7f56ed31aba0c6f43f6
608e2b7d208977f18da12165c9eb1539656d7754dc49f3f687736151a4810e06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4441
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 01:28:59 GMT
Last-Modified: Wed, 31 Aug 2022 00:14:58 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.dmlnhx.top/index.php
172.121.229.37200 OK 471 B IP 172.121.229.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (593), with CRLF line terminators
Hash 9699ddfb465432d65b836aea776c70b2
f17c12974398e90055b8fc8a316e9da9553ebeaa
67d826fa414788e0263e723d62e137afd1de0f81c677f0033257302ecd437797
Analyzer Verdict Alert quad9 Sinkholed
GET /index.php HTTP/1.1
Host: www.dmlnhx.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:28:56 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
44.228.106.27101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.106.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5RfJsXHiT7+88hM6aTg4hw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IzZWXiiW3r+WQNilXIPEYpFGe7Y=
www.dmlnhx.top/common.js
172.121.229.37200 OK 680 B IP 172.121.229.37:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 8cf86183360d54392527a1015a7f9dfc
ebe427191fe28b8b8df3371b56e979a3678a49f5
c4fb4953d6a6415656faf3d8188e8b6d65f2cbb143b91dce0e0596fcf29ffa5c
Analyzer Verdict Alert quad9 Sinkholed
GET /common.js HTTP/1.1
Host: www.dmlnhx.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dmlnhx.top/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:28:56 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.dmlnhx.top/tj.js
172.121.229.37200 OK 258 B IP 172.121.229.37:0
File type ASCII text, with CRLF line terminators
Hash d87760a6f1d25fb26dee57550c85b309
adad963d68248f9d83a8ba30c086107f6bbeec2e
d53148a663921cf64f3a1e481a6f9697c6ab3d2d34bbbe41fcd05fcd6754c408
Analyzer Verdict Alert quad9 Sinkholed
GET /tj.js HTTP/1.1
Host: www.dmlnhx.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dmlnhx.top/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:28:56 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.dmlnhx.top/favicon.ico
172.121.229.37200 OK 1.2 kB URL HTTP/1.1 www.dmlnhx.top/favicon.ico
IP 172.121.229.37:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.dmlnhx.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dmlnhx.top/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:28:57 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Mon, 05 Sep 2022 01:28:57 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
hlgspe.top/
107.148.17.187200 OK 6.1 kB IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6554), with CRLF line terminators
Hash df89f434ab75e0f36c5af5867d39c71b
6b6036990873c369c078efc8edfb6eb94aeac09f
3966d2d15c93723bceb63c0fc81800a13fd3d8567f51d4958c5e7ce70cf44874
GET / HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.dmlnhx.top/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 4a47b5f705f97476d8cd2015749ea661
967b9023b7edf45aed169f9d3f73fe90464d5bfe
2428a5dbceced429a2797e998d96b0e5686d9b166a1a4fd1b449b02f3241ef87
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Sep 2022 00:21:03 GMT
ETag: "967b9023b7edf45aed169f9d3f73fe90464d5bfe"
Last-Modified: Wed, 31 Aug 2022 00:21:04 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2003
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7431fe236fc7b51b-OSL
hlgspe.top/static/css/home.css
107.148.17.187200 OK 5.9 kB URL HTTP/1.1 hlgspe.top/static/css/home.css
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type Unicode text, UTF-8 text, with very long lines (310), with CRLF line terminators
Hash 363ab79bd3cd42fd360bd10229a70042
9bc0232d1b50d5ae9fd981cefaf29324ee7a443d
c000deb565563d05f4285c70b58783e681e8147fd7933ffa9f87b9f93655c0fb
GET /static/css/home.css HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: text/css
Last-Modified: Mon, 08 Jul 2019 02:09:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5d22a5ee-5501"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18099
Expires: Wed, 31 Aug 2022 06:30:39 GMT
Date: Wed, 31 Aug 2022 01:29:00 GMT
Connection: keep-alive
hlgspe.top/template/hlgsp/css/swiper.min.css
107.148.17.187200 OK 3.5 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/css/swiper.min.css
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with very long lines (19512)
Hash b89961554017f5cc842eed99b4b20037
7da3fbf0edcde1771a315c2c4225cb3430f7669a
364dcc1b84b1c408ee4fad0578eee15d30c975da9a298d82ce71443c5ad95d6f
GET /template/hlgsp/css/swiper.min.css HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: text/css
Last-Modified: Sun, 06 Dec 2020 16:26:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fcd062b-4d43"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hlgspe.top/template/hlgsp/css/style.css
107.148.17.187200 OK 7.2 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/css/style.css
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type Unicode text, UTF-8 text, with very long lines (618)
Hash 75dc183454f8959d3912d28d0cfdc776
e63785adb7b3823447c451237dee696f24af7e31
d9e2ebe3de9dd800561c2d094419513ba32fae6cb885a0ce568d064e8a66be09
GET /template/hlgsp/css/style.css HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: text/css
Last-Modified: Thu, 04 Feb 2021 03:52:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"601b6f75-6c09"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hlgspe.top/static/js/home.js
107.148.17.187200 OK 10 kB URL HTTP/1.1 hlgspe.top/static/js/home.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type Unicode text, UTF-8 text, with very long lines (2677), with CRLF line terminators
Hash cf27875c07ac1742b6554d5c6369812f
d7a01a40e5144cdcd36a8588cbb929e317019a78
a558013b5c70dc000814a5045bd1988aec1ce0552617fbb38f3349b923119440
GET /static/js/home.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/javascript
Last-Modified: Tue, 28 Apr 2020 14:28:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5ea83d72-994e"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18099
Expires: Wed, 31 Aug 2022 06:30:39 GMT
Date: Wed, 31 Aug 2022 01:29:00 GMT
Connection: keep-alive
hlgspe.top/static/js/jquery.autocomplete.js
107.148.17.187200 OK 6.4 kB URL HTTP/1.1 hlgspe.top/static/js/jquery.autocomplete.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text, with CRLF line terminators
Hash d9f67b358ecd6dc03fc709356018ab11
11a75063c50de09d8a323dc8bb93c194729055c0
d1f6fa1324f9b17b39672b105b95aa7792ab1a5e10a5a95e625f26b0c1b0a801
GET /static/js/jquery.autocomplete.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/javascript
Last-Modified: Sun, 10 Mar 2019 13:12:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c850d54-64a8"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hlgspe.top/template/hlgsp/css/mmcdy.css
107.148.17.187200 OK 3.6 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/css/mmcdy.css
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
Hash 8c965590bdf3480f74f258e81ac2f468
5942a89448d0b9dfb77497edf1a2eefe7fec9d17
ef836a07b197fbd69add5c83d611bbdd6bbceaebfa49bd5b2909fd92fa0badbc
GET /template/hlgsp/css/mmcdy.css HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: text/css
Last-Modified: Sun, 06 Dec 2020 16:26:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fcd062b-34be"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18099
Expires: Wed, 31 Aug 2022 06:30:39 GMT
Date: Wed, 31 Aug 2022 01:29:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18099
Expires: Wed, 31 Aug 2022 06:30:39 GMT
Date: Wed, 31 Aug 2022 01:29:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab8959a7-d059-469e-b95c-b21c71ed8ab3.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab8959a7-d059-469e-b95c-b21c71ed8ab3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edfa67cc65030e8c10882c845ae4b109
8cfbc8ce5f11f2ced44c220fa2b5c50cd4a29b68
ab1e493bb0174518b660b80004eb41760705e1e591c0ffcf36e9ce5cc80f3f1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab8959a7-d059-469e-b95c-b21c71ed8ab3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9510
x-amzn-requestid: 69ff0817-dfe8-44be-94e0-d6587624e88b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOLHO5IAMFrnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825a-46e004a92ea51b8d133bca8c;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Jvf6mb8FWjLaYY1QOsIto-BhhpZkgTQeaG4YpMEgOOebll15QhJKAw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:48:04 GMT
age: 13256
etag: "8cfbc8ce5f11f2ced44c220fa2b5c50cd4a29b68"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9843fcd5eb49c75b942e3dd042f3a931
ff6de19656bc0ee5649c1367448116a9576a690a
8e9679e05e1b2194e44a962a19f226793b5d7fc2334df64f8dd560498532ad3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6266
x-amzn-requestid: 82231f45-328a-479a-b346-108fe6a0c190
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjU6bEP5IAMFaGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630acea8-6545154a39b44bb04d3bc18c;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P_a-E2SVJUpYrlOzoX9kDtHoAeyEpcqEXau-5wDupR-9AAk3gQgaHQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 12:26:10 GMT
age: 46970
etag: "ff6de19656bc0ee5649c1367448116a9576a690a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zYT0vF7Bxa5m84D12jI2w_A-MzR3wIMBOb0ubTEdNMlpYUes5aYdlQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:48:04 GMT
age: 13256
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 084c7b9f1244ec72236ab517787af1e2
18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb
2ea7697ebc332bec201ffeaed54a738869b6c64784916574db2c7e6a7990fb3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5911
x-amzn-requestid: ff3b12df-1798-40bb-bf02-ad198710da96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdcGHFGYoAMFw_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630873c0-00cd86e97d0687c702a49ecb;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:18:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Cye1gqpeY74FmJV8LaYt9HN_CHH0l-OhkdHM35WydK61gQm50CrMVw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 18:11:33 GMT
age: 26247
etag: "18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcb5acc5186b678254184c5dac12079
d7c84b42a0dd5b86a0668127698fd5f25b647fcb
8173103eda58bf2f1af2d077fc90c2c1b6d2a93265092a9c3152b686e05a4f9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5910
x-amzn-requestid: 935b97da-1473-4863-bad2-a732709de9d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslNHEfTIAMFWrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e8253-150847db7280350c19e2e464;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4aUTNIPL-Pl5Vz-xh4gI21QtLwdmMMrc7NJGLWRJPz0oJtvnFPfk8w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:06 GMT
age: 13434
etag: "d7c84b42a0dd5b86a0668127698fd5f25b647fcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c96a8515aca08228b53a33becf0f79b
8609a382648785901de3ab9f474b7319601921ba
2b9307cfcacfc4c15ecdc67b8045d7f4ecafd6a94d710e040a7e0d6911548caf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d294083-a431-468c-a1ef-4df4295be72a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6173
x-amzn-requestid: d5d519c7-88e2-4faa-8cbd-c828d40a0698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XelESE0MoAMFptQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6308e881-0f2a5fe86a7bc81610835e6c;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 15:36:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hAYsuuAnParaODBY0scpZ9hounVraQbSL7JnTeqSpkKJWm421xPm4A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:47:34 GMT
age: 13286
etag: "8609a382648785901de3ab9f474b7319601921ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hlgspe.top/template/hlgsp/js/jquery.lazyload.min.js
107.148.17.187200 OK 1.3 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/js/jquery.lazyload.min.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with very long lines (3309)
Hash fe3a417c05fcbde8246764774497dd92
03bafb954a4e1e582afbceb5406cfd5dd4224830
39eb4e5c1fbdbd957715e47e5eaf631852e1ffcdc09e8f5d0e69a24375ccd486
GET /template/hlgsp/js/jquery.lazyload.min.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/javascript
Last-Modified: Sun, 06 Dec 2020 16:26:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fcd0643-d35"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hlgspe.top/static/js/jquery.js
107.148.17.187200 OK 37 kB URL HTTP/1.1 hlgspe.top/static/js/jquery.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with very long lines (32089), with CRLF line terminators
Hash cb8b32d2a46a250954f981780ea7d0d3
149d7140bb977c0ea043397cd72f067e56974692
080e5c45daae1e54faf78ecb600d5bd6680e7889343ebf220f94b6b9a343beae
GET /static/js/jquery.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/javascript
Last-Modified: Sun, 10 Mar 2019 13:12:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c850d54-169d9"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hlgspe.top/template/hlgsp/js/common.js
107.148.17.187200 OK 5.1 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/js/common.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type Unicode text, UTF-8 (with BOM) text
Hash abb82ca088c793ca22760be97b52cb76
cc2942b1b7ee1425cd2e9a899817afb6829d81c1
d3f4e9abc66b828b07c70e363c6e28b475d8be72b2f40bdf5af85fb6f751e05a
GET /template/hlgsp/js/common.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/javascript
Last-Modified: Sun, 06 Dec 2020 16:26:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fcd0632-37bc"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hlgspe.top/template/hlgsp/ads/hengfu1.js
107.148.17.187200 OK 245 B URL HTTP/1.1 hlgspe.top/template/hlgsp/ads/hengfu1.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document, ASCII text
Hash 48b05b4e5fd65daedfd0bc5f07874847
f8ef857d0954296642bb71c4384bccd3177a046b
abce26975d1b8fe14b57b29ad2f87e46a5e3fb11da51a41dde16dcbccf535c83
GET /template/hlgsp/ads/hengfu1.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/javascript
Content-Length: 245
Last-Modified: Sat, 06 Aug 2022 04:28:27 GMT
Connection: keep-alive
ETag: "62ededeb-f5"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
hlgspe.top/template/hlgsp/ads/dl.js
107.148.17.187404 Not Found 146 B URL HTTP/1.1 hlgspe.top/template/hlgsp/ads/dl.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/hlgsp/ads/dl.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
hlgspe.top/template/hlgsp/ads/hengfu3.js
107.148.17.187200 OK 2 B URL HTTP/1.1 hlgspe.top/template/hlgsp/ads/hengfu3.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with CRLF line terminators
Hash 81051bcc2cf1bedf378224b0a93e2877
ba8ab5a0280b953aa97435ff8946cbcbb2755a27
7eb70257593da06f682a3ddda54a9d260d4fc514f645237f5ca74b08f8da61a6
GET /template/hlgsp/ads/hengfu3.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: application/javascript
Content-Length: 2
Last-Modified: Sat, 06 Aug 2022 04:28:28 GMT
Connection: keep-alive
ETag: "62ededec-2"
Expires: Wed, 31 Aug 2022 13:29:01 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
hlgspe.top/template/hlgsp/js/swiper.min.js
107.148.17.187200 OK 38 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/js/swiper.min.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type ASCII text, with very long lines (65269)
Hash 39373734403134c8fbc01dfd978eddf0
4b1005ed20d8645162955504c36b6462e1bd6bdf
2aad78bdf3b7edd157831fca2cc5ccd8447e241441b1269642ba94e3fc075486
GET /template/hlgsp/js/swiper.min.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:00 GMT
Content-Type: application/javascript
Last-Modified: Sun, 06 Dec 2020 16:27:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5fcd0656-1e700"
Expires: Wed, 31 Aug 2022 13:29:00 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hlgspe.top/template/hlgsp/images/loading.gif
107.148.17.187200 OK 1.4 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/images/loading.gif
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type GIF image data, version 89a, 16 x 16\012- data
Hash c3d6947988790580587d57af4acd8d97
889897b6bc89c1198aa9c04710bf6afd6877b698
d1c8e64dcc04555103890ff2c8c7b16a5c739846f9d419b57041f6131b49ec6f
GET /template/hlgsp/images/loading.gif HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: image/gif
Content-Length: 1388
Last-Modified: Sun, 06 Dec 2020 16:26:48 GMT
Connection: keep-alive
ETag: "5fcd0648-56c"
Expires: Fri, 30 Sep 2022 01:29:01 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hlgspe.top/template/hlgsp/ads/dl.js
107.148.17.187404 Not Found 146 B URL HTTP/1.1 hlgspe.top/template/hlgsp/ads/dl.js
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/hlgsp/ads/dl.js HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
hlgspe.top/template/hlgsp/images/ico.png
107.148.17.187200 OK 48 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/images/ico.png
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type PNG image data, 300 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 0f7667ba06e8f128d197b459635a234b
7c80613fb1cd971aea4628bf4ef7354652dc0252
e856f63cd913cc79638572a9ab85f4263f375fdf5a79c568a827ec877ebfa900
GET /template/hlgsp/images/ico.png HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/template/hlgsp/css/mmcdy.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: image/png
Content-Length: 48085
Last-Modified: Sun, 06 Dec 2020 16:27:32 GMT
Connection: keep-alive
ETag: "5fcd0674-bbd5"
Expires: Fri, 30 Sep 2022 01:29:01 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hlgspe.top/static/images/home/loading.gif
107.148.17.187200 OK 1.4 kB URL HTTP/1.1 hlgspe.top/static/images/home/loading.gif
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type GIF image data, version 89a, 16 x 16\012- data
Hash c3d6947988790580587d57af4acd8d97
889897b6bc89c1198aa9c04710bf6afd6877b698
d1c8e64dcc04555103890ff2c8c7b16a5c739846f9d419b57041f6131b49ec6f
GET /static/images/home/loading.gif HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/static/css/home.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: image/gif
Content-Length: 1388
Last-Modified: Mon, 08 Jul 2019 02:09:50 GMT
Connection: keep-alive
ETag: "5d22a5ee-56c"
Expires: Fri, 30 Sep 2022 01:29:01 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hlgspe.top/template/hlgsp/images/p.png
107.148.17.187200 OK 1.8 kB URL HTTP/1.1 hlgspe.top/template/hlgsp/images/p.png
IP 107.148.17.187:0
ASN #398823 PEGTECHINC-AP-02
File type PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e22be518bf7a4f98a4480cf1ba1e0e8
73e7b3bfc4a103d6e92d36ebcdd3d610d04394af
69b3865c46b3a6d2b14da69a64f85c41c13d280c99419af976ce8eb66ddd4361
GET /template/hlgsp/images/p.png HTTP/1.1
Host: hlgspe.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/template/hlgsp/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: image/png
Content-Length: 1818
Last-Modified: Sun, 06 Dec 2020 16:26:28 GMT
Connection: keep-alive
ETag: "5fcd0634-71a"
Expires: Fri, 30 Sep 2022 01:29:01 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
fmlb.netlbtu.com/upload/vod/2020/05-01/12/ovuros3rajv1204ovuros3rajv2233444.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/ovuros3rajv1204ovuros3rajv2233444.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 138a1212ab82d2a5eb0a1fdb8bba37c5
bc7335ad5772a6d5a2fc4931d3f97da051866def
694cc6a9848ae9bc0c729b8939abf33d93e03a06fb34f00b765ac872a13af931
GET /upload/vod/2020/05-01/12/ovuros3rajv1204ovuros3rajv2233444.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 10328
cf-bgj: h2pri
etag: "60ff4a986d1fd61:0"
last-modified: Fri, 01 May 2020 04:04:22 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1021
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bw0mnR4lEJaEzsDjB1ncEkDRaA1u80gnQIf6osUyZaDYaZz75hOD3GXUdYkcFk4GjTgSShA%2FLX5D9iRhDyNs4vbhzZDE3Fhz1obS2z6mhu1FsXK5GJDxQb%2B2DaX%2BKMNaYLhB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe289991f3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/rxgrcb0qlpk1204rxgrcb0qlpk1733434.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/rxgrcb0qlpk1204rxgrcb0qlpk1733434.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 68c4b55292545d01b704349345de2082
376e0cb444567b588b0331d7eced9b192e5735de
dbd3b5a5846af5e9232c16eab5ffc60357c245e845c83e69716daefd49722c9a
GET /upload/vod/2020/05-01/12/rxgrcb0qlpk1204rxgrcb0qlpk1733434.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 10012
last-modified: Fri, 01 May 2020 04:04:17 GMT
etag: "4690b6956d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=StniYZEwHfgHJ5nwJThc%2B988EU%2F%2BzQa7hAXRVUjqwaVnqGIcHgj546UFMMd3%2ByoCla9tUFryavKAXZFYcOKlA3C1NNXkhweouOoqiky15V0CweZY5pyf9iWcRwXw6lnJKC6b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28b9a0f3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.249200 OK 503 B IP 23.36.76.249:0
ASN #20940 Akamai International B.V.
Hash cb7f4051a6d84a5541c273e5fc906c7a
8cec3941948eb04d257ccdabb9b9ed0ec3f4a499
32c63736a9b2595d93faddfdd8d0db23ed4ae652cf7696417afc4bc57870c5fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "32C63736A9B2595D93FADDFDD8D0DB23ED4AE652CF7696417AFC4BC57870C5FB"
Last-Modified: Mon, 29 Aug 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6604
Expires: Wed, 31 Aug 2022 03:19:05 GMT
Date: Wed, 31 Aug 2022 01:29:01 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2020/05-01/12/kgrtpstw0vs1204kgrtpstw0vs1333424.jpg
104.21.235.174200 OK 9.6 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/kgrtpstw0vs1204kgrtpstw0vs1333424.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash cc38589a58c76a42f38959a8c0897a28
a7d7396d721a0367af867d1100fb432f822165c8
702b334a889bfb400c2403dbacb476c8435f54023ed883b7139a50e89db996df
GET /upload/vod/2020/05-01/12/kgrtpstw0vs1204kgrtpstw0vs1333424.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 9552
cf-bgj: h2pri
etag: "e4f934936d1fd61:0"
last-modified: Fri, 01 May 2020 04:04:13 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dl%2Ff9tmppCSRyDc4%2BBkPZxn6h9YoRZk%2FP8J4ppN48GqAq1d1k2hEAqzoyKUBAmp4VpHDIGyOgNXRHXHhmjzKcVH%2BeiZXvNfwbrekv8x4icIY%2BB2GKnt9VrYw3eyfY0AbWDbx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28998af3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/eddyhcqlvcu1204eddyhcqlvcu1633430.jpg
104.21.235.174200 OK 9.1 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/eddyhcqlvcu1204eddyhcqlvcu1633430.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d2ba9e79d53162e787f5cbcf54632bf2
85bb91c3454c5e04523a0747084c9117ffa295a8
ef8a718e186209f062620b3b4427e063bd252a546c718c8abd011a3c146d019b
GET /upload/vod/2020/05-01/12/eddyhcqlvcu1204eddyhcqlvcu1633430.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 9065
cf-bgj: h2pri
etag: "74d9b9946d1fd61:0"
last-modified: Fri, 01 May 2020 04:04:16 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qSFSeZX0DvYAT0k6FWZbi6ol3dfngjEvjCtBb1Fmu4gEi2xuDTgwEmoGN6LwflPiPXG07cVtaXKrQJyT%2F4SQUih8Dbepy8ReId9PN0m2XDEVmWI16LX5RPA8P3SzHKTMGdX9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28a996f3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/0efdbwyhu4012040efdbwyhu401433426.jpg
104.21.235.174200 OK 14 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/0efdbwyhu4012040efdbwyhu401433426.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 835c209248671d3c1be4f808a9f4fad1
49d7449473ce3a753c1ac222f2bf3b2650c15a0f
0feac7785107fa2523bba9bdfc1cf51ff9d4b0f2e715be3a12becb9c3923fbeb
GET /upload/vod/2020/05-01/12/0efdbwyhu4012040efdbwyhu401433426.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 14140
cf-bgj: h2pri
etag: "94cfb5936d1fd61:0"
last-modified: Fri, 01 May 2020 04:04:14 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f5GPOj2Zsl4rXdQKeFr7Ag9%2B7gHdgM%2F5Lidmxl%2BEYZb%2BCjoBIO7JiLUsOiqAUKhcsoeQqM095PK%2Btcatg7xRWrqmE3eJOxa%2BD%2BzJ%2F351RARD0jTkxhZ%2BZDRzJdVC1w2vRN0A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28a994f3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/qlnxb2savkq1204qlnxb2savkq1933438.jpg
104.21.235.174200 OK 7.3 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/qlnxb2savkq1204qlnxb2savkq1933438.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1bbfdde88e62eb04e53152e927dc57b6
cce8e4bd7fbc7fed44c93c6f72f1606092beec0f
eb957069e4321fb3c1c100982ad0aa7832fcba2a07d4299f709dab2bac789292
GET /upload/vod/2020/05-01/12/qlnxb2savkq1204qlnxb2savkq1933438.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 7325
last-modified: Fri, 01 May 2020 04:04:19 GMT
etag: "f571ba966d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q2cciJQLp4p3YWMf%2Bc41RIkLKQUYouMKC5TAfRnngqMEmmPmh%2FOq73EvJnAOu6FogHDjODzGQEFyOfQr%2BMj3cJLf8lM0J5qyWZLmuwmxlghlpDXW3vOX34ZS4pfcDcHweRYt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28998df3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/nhpsukn4ojg1204nhpsukn4ojg1833436.jpg
104.21.235.174200 OK 8.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/nhpsukn4ojg1204nhpsukn4ojg1833436.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ebd2262d5681ec3d25e69cd83db954cd
d30c6b14f611bfd37d19bf13c769aab3258eeec7
b8dbd12f813cdb899f62e8b14303105edf61b61b144ee533859ebeb6117ee1ab
GET /upload/vod/2020/05-01/12/nhpsukn4ojg1204nhpsukn4ojg1833436.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 8201
last-modified: Fri, 01 May 2020 04:04:18 GMT
etag: "daec34966d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FHKb5PjQZrncj%2B2QwpN1A7bVR64yMhXioHMV7uAtObixsNQBWO5WEMGzMS601fxMi%2F%2FeXjd9etIk2MuMhldCzYvzG96rXAm%2B98BdxMldUbM4f7v7agE12PQzuxmHXzsNP98q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28998cf3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/k2w3uhv504o1204k2w3uhv504o1533428.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/k2w3uhv504o1204k2w3uhv504o1533428.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 6d791c013b10468597168cde0aead3ee
fab4adeca56ce6fb63e126992ba491d293b1828e
5d6a735c31b8221f4a9df12415183302cebcdf50f5f4b21d89fe6e57e60dca95
GET /upload/vod/2020/05-01/12/k2w3uhv504o1204k2w3uhv504o1533428.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 10190
last-modified: Fri, 01 May 2020 04:04:15 GMT
etag: "a5f138946d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KMAr9FE69T%2Fpo9eOpfCXmgijLYTzJQUsf%2F3rIy5m8Vh%2BxB9X%2BWXbn385LFX1g3BcXCJdyFLYp60FD5tCURW15uFe%2BQSfc33XzP%2FkkJmPlu5%2BlBBiMOvrH2xzvwkgiUud2ptV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28a995f3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/pmtq2fyre2s1204pmtq2fyre2s2133442.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/pmtq2fyre2s1204pmtq2fyre2s2133442.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 784b9e3fa0dd4efe732186d98e98fe8e
eaefa778fe09060b035657110834d15fb73ed30b
2b5d5d7af7c7e8f804d2990b0202da366f29b3dfd532429613c73d3a383684c7
GET /upload/vod/2020/05-01/12/pmtq2fyre2s1204pmtq2fyre2s2133442.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 10051
last-modified: Fri, 01 May 2020 04:04:21 GMT
etag: "26f1bb976d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W8yoa68fNg9jUbP5n%2B9dO5IW1y7l2Uw2PNRSFQN02YcLVWKbrZ%2BKsfyJjaX0R%2BLdw85%2Fn1rJ7AFonTNg6RXKxGImTjEBK6EobpEL8QdoCfUJs2deNy0yvHQgNQC4L%2BiyEVbd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28998ff3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/nwxlh1zfave1204nwxlh1zfave1633432.jpg
104.21.235.174200 OK 9.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/nwxlh1zfave1204nwxlh1zfave1633432.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c4c3b6ba3f1f0c4dc83dd26e22986b62
dda022880ae7128f5f3ebb0c55b1c2bb57c75ac4
48b8c2667d90404d486701f5e2b7fa7a9f8c2bcfaefe094d1a94142fad3ba656
GET /upload/vod/2020/05-01/12/nwxlh1zfave1204nwxlh1zfave1633432.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 9160
last-modified: Fri, 01 May 2020 04:04:16 GMT
etag: "453238956d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gSJk808TgJ0YfwdOgaXB5Hkow3YNulU4Y93F7iRy80XE2Jl3%2FJx1Wez6gMA0zfl6Nb5MuBdwoN1DH9NG%2BcDVLT4gBx6hWZBHSDsyEUs5UEoCrEff0LnaB0dVmgas9UiE1ECb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28b99ef3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/s1thsdyaflk1204s1thsdyaflk2233446.jpg
104.21.235.174200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/s1thsdyaflk1204s1thsdyaflk2233446.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9d7acafcc077572791b8460d560409b5
388e612ea6eeee59b8d254a96d9c6db7c8e911b9
1dc37d5fdbb2a37bda214f8799070dd7b6f86c04d15247b97b80fabb6025a81b
GET /upload/vod/2020/05-01/12/s1thsdyaflk1204s1thsdyaflk2233446.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 10401
last-modified: Fri, 01 May 2020 04:04:22 GMT
etag: "ae47c7986d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ec6dm5oJy0VEA21C7vk2LDHZsNQq6ykRaOdw5eKV%2BjUiJIfdrSfZB6frheUFgXtMNBj%2Bx9%2B2HWLIdxG3HhxprsQzdNybRpwXKniEHPbAlm7fupX7vW1UhL9ga6rpwWYCtwG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28a993f3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2020/05-01/12/ckhwtgm00pu1204ckhwtgm00pu2033440.jpg
104.21.235.174200 OK 9.1 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2020/05-01/12/ckhwtgm00pu1204ckhwtgm00pu2033440.jpg
IP 104.21.235.174:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash c198128b9c2aa993a798c578ac8d24d5
1e1e6125572a359e0d7afaca34f9b19669ec973f
aff94dfb5dc10fd67fed978b513126a4ae1b758c898510b3bddbe5b1dbc76574
GET /upload/vod/2020/05-01/12/ckhwtgm00pu1204ckhwtgm00pu2033440.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/jpeg
content-length: 9053
last-modified: Fri, 01 May 2020 04:04:20 GMT
etag: "eb933d976d1fd61:0"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MMzT%2BPBTECfFxOMzYrB2Ljpzbf%2FhnZWEGEkOlfupOSZd8wkcstYKkybtIjvmDj%2FAwqD0jJ%2BKSfpEPsBCzIK7BC%2FIY4rKYTNHqy0Wli5%2BFYTREq%2FJ%2BTaj5xKT7VBqJY3JhEg0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe28998ef3fb-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?59c73e28dfebfd1b546f842ef76a3c3b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?59c73e28dfebfd1b546f842ef76a3c3b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (627)
Hash 2d54c858f00fcd15736837545cbc3ffd
68230b6c62a0d8a7f9bddc76d3d9893d3c08a6be
0945cfc72ff5f817f3d8a441be426a3604c27ce9ffb7c41bc66ec94b9c9b4c37
GET /hm.js?59c73e28dfebfd1b546f842ef76a3c3b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.dmlnhx.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11340
Content-Type: application/javascript
Date: Wed, 31 Aug 2022 01:29:01 GMT
Etag: d018808e21ad2962f23e4c4d5e179e06
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=533135AADFCBDB3A; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
bdimg.share.baidu.com/static/api/js/share.js?cdnversion=461640
112.34.113.148200 OK 6.2 kB URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/share.js?cdnversion=461640
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (17305), with no line terminators
Hash a78bd68ac53bbc7eff7039d2c4e2c4ab
52e17a124e5ef7c4729e2000f8a7ffa14c2a4eb9
dbaf841ced63da2a82e537cf643b52d50b71620c39b5fbb6c90965ba8b78fd8e
GET /static/api/js/share.js?cdnversion=461640 HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 6218
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:02 GMT
Etag: "2981715462"
Expires: Wed, 31 Aug 2022 01:59:02 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash dccdd9d58a428262aaaf2953c034962e
42290c1dc024529c600c7010c90b3ffcf53365f6
4559ac63536b6350571975dc7ec9befec45b4d2d1ba70715a8f8eb24e9636456
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 30 Aug 2022 22:46:47 GMT
Expires: Wed, 31 Aug 2022 22:46:47 GMT
ETag: "42290c1dc024529c600c7010c90b3ffcf53365f6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash dccdd9d58a428262aaaf2953c034962e
42290c1dc024529c600c7010c90b3ffcf53365f6
4559ac63536b6350571975dc7ec9befec45b4d2d1ba70715a8f8eb24e9636456
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 31 Aug 2022 01:29:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 30 Aug 2022 22:46:47 GMT
Expires: Wed, 31 Aug 2022 22:46:47 GMT
ETag: "42290c1dc024529c600c7010c90b3ffcf53365f6"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
hm.baidu.com/hm.js?697e66b12b4eafa25235cd3e4a57a860
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?697e66b12b4eafa25235cd3e4a57a860
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (628)
Hash e4db64dd5d054e3542f0f4f14853a0da
c56f2f2e60fce8046b2de33e6c84d666c53f2b44
8a35310145080c19600c4476a16316501ddac3579343f658363d448a51471c66
GET /hm.js?697e66b12b4eafa25235cd3e4a57a860 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11341
Content-Type: application/javascript
Date: Wed, 31 Aug 2022 01:29:01 GMT
Etag: 21981db1b3e32d075c078d31cb4153bb
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=32D34E8B4D716617; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
bdimg.share.baidu.com/static/api/js/share/share_api.js?v=226108fe.js
112.34.113.148200 OK 374 B URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/share/share_api.js?v=226108fe.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (636), with no line terminators
Hash d83d9b2e8f9991d48228eacaa36ed9d8
43f570d57795ff92f4f9765ca13fe8e7c04004dc
0823a3af4f618739366bd95c18c78716313d835adb2b20bcfa1bf44265fb7cfb
GET /static/api/js/share/share_api.js?v=226108fe.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 374
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:02 GMT
Etag: "2151209923"
Expires: Wed, 31 Aug 2022 01:59:02 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding
bdimg.share.baidu.com/static/api/js/view/share_view.js?v=3ae6026d.js
112.34.113.148200 OK 751 B URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/view/share_view.js?v=3ae6026d.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (1410), with no line terminators
Hash 2f70d93b9f03bdfbd94c882baa358ba0
f2ff3411db7c99b8c38f88ef83d8d2c1e36cc97c
2d79560384a4a5d390dc9979d68b9db79d01076b2e89a110d16a42af3dbfaadc
GET /static/api/js/view/share_view.js?v=3ae6026d.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 751
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:02 GMT
Etag: "2738411398"
Expires: Wed, 31 Aug 2022 01:59:02 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=31193717&si=59c73e28dfebfd1b546f842ef76a3c3b&v=1.2.97&lv=1&sn=7277&r=0&ww=1152&ct=!!&u=http%3A%2F%2Fwww.dmlnhx.top%2Findex.php&tt=%E5%A4%A9%E6%B0%B4%E5%A2%92%E9%A4%90%E8%B4%A7%E8%BF%90%E4%BB%A3%E7%90%86%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=31193717&si=59c73e28dfebfd1b546f842ef76a3c3b&v=1.2.97&lv=1&sn=7277&r=0&ww=1152&ct=!!&u=http%3A%2F%2Fwww.dmlnhx.top%2Findex.php&tt=%E5%A4%A9%E6%B0%B4%E5%A2%92%E9%A4%90%E8%B4%A7%E8%BF%90%E4%BB%A3%E7%90%86%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=836&et=0&ja=0&ln=en-us&lo=0&rnd=31193717&si=59c73e28dfebfd1b546f842ef76a3c3b&v=1.2.97&lv=1&sn=7277&r=0&ww=1152&ct=!!&u=http%3A%2F%2Fwww.dmlnhx.top%2Findex.php&tt=%E5%A4%A9%E6%B0%B4%E5%A2%92%E9%A4%90%E8%B4%A7%E8%BF%90%E4%BB%A3%E7%90%86%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.dmlnhx.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 31 Aug 2022 01:29:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=BED02991F7370AD6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
jeniferace.com/xykdlynt/jizpq1xyu0rhxkva8foia/1764/jizpq
47.243.183.17200 OK 7.0 kB URL HTTP/1.1 jeniferace.com/xykdlynt/jizpq1xyu0rhxkva8foia/1764/jizpq
IP 47.243.183.17:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type ASCII text, with very long lines (41853), with no line terminators
Hash e0644509a444ac27040dc33a0c5ebdab
dcea9d1675b2b57ddd909837b26b41f2159f0696
bcf932047d064a2354739c7d03a521fbbae3fa32359bdb67adb07237fa6ec5eb
GET /xykdlynt/jizpq1xyu0rhxkva8foia/1764/jizpq HTTP/1.1
Host: jeniferace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Wed, 31 Aug 2022 01:29:02 GMT
Content-Type: text/html;charset=UTF8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Wed, 31 Aug 2022 01:29:02 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: Content-Type, Content-Range, Content-Disposition, Content-Description
P3P: CP=CAO PSA OUR
Set-Cookie: showed_plan_108=1137; path=/; SameSite=None; Secure; expires=Wednesday, 31-Aug-2022 01:34:02 GMT
Content-Encoding: gzip
janicerace.com/nw21/zuo/01.png
104.18.27.23200 OK 12 kB URL HTTP/2 janicerace.com/nw21/zuo/01.png
IP 104.18.27.23:0
File type PNG image data, 80 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash a6e4d31aecf50cf3506de1020e842e28
867e03922aefdfe315f9d819b61f5e7410fdda8a
829343340fa0fafff16c5104438cd760dfabea997e9c257ef2402ee64de6755e
GET /nw21/zuo/01.png HTTP/1.1
Host: janicerace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 01:29:02 GMT
content-type: image/png
content-length: 11544
last-modified: Sat, 20 Feb 2021 09:36:43 GMT
etag: "6030d82b-2d18"
expires: Fri, 30 Sep 2022 01:29:02 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 2349162
accept-ranges: bytes
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
server: cloudflare
cf-ray: 7431fe2fff6db517-OSL
X-Firefox-Spdy: h2
jeniferace.com/xykdlynt/jizpq1xyu0rhxkva4foia/1764/jizpq
47.243.183.17200 OK 8.3 kB URL HTTP/1.1 jeniferace.com/xykdlynt/jizpq1xyu0rhxkva4foia/1764/jizpq
IP 47.243.183.17:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type ASCII text, with very long lines (51585), with no line terminators
Hash 140509177461d27d84c0b71ccf2b14c6
01d908635aa862995f87920ce54dc447261790c9
6c4f86d42156d3458b901e7d85edbe2f823ef6c506de84fc4fe0e99cc30e2f3d
GET /xykdlynt/jizpq1xyu0rhxkva4foia/1764/jizpq HTTP/1.1
Host: jeniferace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Wed, 31 Aug 2022 01:29:02 GMT
Content-Type: text/html;charset=UTF8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Wed, 31 Aug 2022 01:29:02 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: Content-Type, Content-Range, Content-Disposition, Content-Description
P3P: CP=CAO PSA OUR
Set-Cookie: showed_plan_104=1206; path=/; SameSite=None; Secure; expires=Wednesday, 31-Aug-2022 01:34:02 GMT
Content-Encoding: gzip
bdimg.share.baidu.com/static/api/js/share/api_base.js
112.34.113.148200 OK 580 B URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/share/api_base.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (1468), with no line terminators
Hash a2f2cddb86ee350731a332b4c44f5e0d
e8ec70d2a62da5fff2ce1b684a4a9d112d640315
142e59628a500e248c6155c8fe279eeb70bc6aebf516c1bb6cd9486ea1b207b1
GET /static/api/js/share/api_base.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 580
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:02 GMT
Etag: "3610826631"
Expires: Wed, 31 Aug 2022 01:59:02 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=824&et=0&ja=0&ln=en-us&lo=0&rnd=127268820&si=697e66b12b4eafa25235cd3e4a57a860&su=http%3A%2F%2Fwww.dmlnhx.top%2F&v=1.2.97&lv=1&sn=7278&r=0&ww=1140&ct=!!&u=http%3A%2F%2Fhlgspe.top%2F&tt=%E7%81%AB%E9%BE%99%E6%9E%9C%E8%A7%86%E9%A2%91-%E5%88%86%E4%BA%AB%E5%A4%A7%E5%85%A8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=824&et=0&ja=0&ln=en-us&lo=0&rnd=127268820&si=697e66b12b4eafa25235cd3e4a57a860&su=http%3A%2F%2Fwww.dmlnhx.top%2F&v=1.2.97&lv=1&sn=7278&r=0&ww=1140&ct=!!&u=http%3A%2F%2Fhlgspe.top%2F&tt=%E7%81%AB%E9%BE%99%E6%9E%9C%E8%A7%86%E9%A2%91-%E5%88%86%E4%BA%AB%E5%A4%A7%E5%85%A8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=824&et=0&ja=0&ln=en-us&lo=0&rnd=127268820&si=697e66b12b4eafa25235cd3e4a57a860&su=http%3A%2F%2Fwww.dmlnhx.top%2F&v=1.2.97&lv=1&sn=7278&r=0&ww=1140&ct=!!&u=http%3A%2F%2Fhlgspe.top%2F&tt=%E7%81%AB%E9%BE%99%E6%9E%9C%E8%A7%86%E9%A2%91-%E5%88%86%E4%BA%AB%E5%A4%A7%E5%85%A8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 31 Aug 2022 01:29:02 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4341A4F60938D5D3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
bdimg.share.baidu.com/static/api/js/view/view_base.js
112.34.113.148200 OK 728 B URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/view/view_base.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (1616), with no line terminators
Hash 7ee144ca4be853ced65e63463259e6eb
a171d2b09ecb55590628a71a7f50fc05eb2d7e92
89119613d47f7bd1c2daf15d878fea5cfbca158fbd90930fcf106b4dc177d9f6
GET /static/api/js/view/view_base.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 728
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:02 GMT
Etag: "2688079746"
Expires: Wed, 31 Aug 2022 01:59:02 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:09 GMT
Server: BWS/1.0
Vary: Accept-Encoding
yeliao66h.com/1/12.gif
172.247.252.5200 OK 2.0 MB IP 172.247.252.5:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 2.0 MB (2019069 bytes)
Hash 174bc54ad660f7975ebc086afe427b82
b2644cf7d91aded61f3d770c72d1444f3575e05e
e505580bc17ec59127f8beab6ca3e9bb34e32c8a742a198950bf2ccfc17f5d9f
GET /1/12.gif HTTP/1.1
Host: yeliao66h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 01:29:01 GMT
content-type: image/gif
content-length: 2019069
last-modified: Mon, 11 Jul 2022 11:44:02 GMT
etag: "62cc0d02-1ecefd"
expires: Fri, 30 Sep 2022 01:29:01 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
bdimg.share.baidu.com/static/api/js/base/tangram.js?v=37768233.js
112.34.113.148200 OK 36 kB URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/base/tangram.js?v=37768233.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (32769)
Hash 1a17164900cba54de0776f3d66b38647
115ecb2a379ead464545695c324301d95164b16c
2eb4ae8ab6cc0e3b820134d3da036902344908846eecc4f7d0adb6dbdab23a79
GET /static/api/js/base/tangram.js?v=37768233.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 36055
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:02 GMT
Etag: "814241156"
Expires: Wed, 31 Aug 2022 01:59:02 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding
qqtt.charlottebeverly.com/nynie.jsp?g=f4aeSwax2w3Yfl8y3JttHWY%2B5WloiVp5tcxZsVWZGag%2FDKWabptGaUM&p=Linux%20x86_64
47.243.189.36200 OK 69 B URL HTTP/1.1 qqtt.charlottebeverly.com/nynie.jsp?g=f4aeSwax2w3Yfl8y3JttHWY%2B5WloiVp5tcxZsVWZGag%2FDKWabptGaUM&p=Linux%20x86_64
IP 47.243.189.36:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash c74c0086f9e17ed07db4e47a4bb6ea33
6565e20dca1d34598b03daf7d583a41452de4620
3640d8162c65ec7f4edcafda864ec1623fc59710202aea4bbb83806e51033ada
GET /nynie.jsp?g=f4aeSwax2w3Yfl8y3JttHWY%2B5WloiVp5tcxZsVWZGag%2FDKWabptGaUM&p=Linux%20x86_64 HTTP/1.1
Host: qqtt.charlottebeverly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Wed, 31 Aug 2022 01:29:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Wed, 31 Aug 2022 01:29:03 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Content-Encoding: gzip
bdimg.share.baidu.com/static/api/js/trans/data.js?v=17af2bd2.js
112.34.113.148200 OK 412 B URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/trans/data.js?v=17af2bd2.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (750), with no line terminators
Hash 29c5b785d50a87ce5a4313b5019eb7b5
b7860a71e25a8824fcd02da0e0db33a065c92918
02b7badc488407efd854be77e566b70ab9d31b1b85097ee8e85678b38825e00e
GET /static/api/js/trans/data.js?v=17af2bd2.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 412
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:03 GMT
Etag: "3812154305"
Expires: Wed, 31 Aug 2022 01:59:03 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding
qqtt.charlottebeverly.com/fidvm.jsp?g=5a5fQa1nWazj8D%2FR6ttS0DMtV5l4llkKZG%2FnkMQyZHj4Tp7jvJurDi0&p=Linux%20x86_64
47.243.189.36200 OK 68 B URL HTTP/1.1 qqtt.charlottebeverly.com/fidvm.jsp?g=5a5fQa1nWazj8D%2FR6ttS0DMtV5l4llkKZG%2FnkMQyZHj4Tp7jvJurDi0&p=Linux%20x86_64
IP 47.243.189.36:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash 839ac0bd3c9ec6ae47487e2b0ddca0d7
9895cdefa19bdaac60e64d00e95bb6b8a01339fc
8d0a171653905658f3578f94c894b50a477af9de906188e5088dabcece53b955
GET /fidvm.jsp?g=5a5fQa1nWazj8D%2FR6ttS0DMtV5l4llkKZG%2FnkMQyZHj4Tp7jvJurDi0&p=Linux%20x86_64 HTTP/1.1
Host: qqtt.charlottebeverly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Wed, 31 Aug 2022 01:29:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Wed, 31 Aug 2022 01:29:03 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 4fb9998131c60423ea923f1f06a6100a
70d80de9906fa1514a316280d39ea2f32d083929
61f7ce92aec247aad1a4b9602cbc512b9c5e35737b8fb3252b31f7f62cb34a8f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 31 Aug 2022 01:29:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 30 Aug 2022 20:44:14 GMT
Expires: Wed, 31 Aug 2022 20:44:14 GMT
ETag: "70d80de9906fa1514a316280d39ea2f32d083929"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
bdimg.share.baidu.com/static/api/js/component/partners.js?v=96dbe85a.js
112.34.113.148200 OK 790 B URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/component/partners.js?v=96dbe85a.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (1866), with no line terminators
Hash 1fe5dfa0f217378c6a269d0907572b26
e02e330ef145b006002710a57642d06bfcf5bd76
53912ed51acc9f854c807eb4e0ce6a23e51e6614e1c9881c0e0eaaae7b65bb94
GET /static/api/js/component/partners.js?v=96dbe85a.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 790
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:03 GMT
Etag: "3493386128"
Expires: Wed, 31 Aug 2022 01:59:03 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:07 GMT
Server: BWS/1.0
Vary: Accept-Encoding
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 4fb9998131c60423ea923f1f06a6100a
70d80de9906fa1514a316280d39ea2f32d083929
61f7ce92aec247aad1a4b9602cbc512b9c5e35737b8fb3252b31f7f62cb34a8f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 31 Aug 2022 01:29:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 30 Aug 2022 20:44:14 GMT
Expires: Wed, 31 Aug 2022 20:44:14 GMT
ETag: "70d80de9906fa1514a316280d39ea2f32d083929"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
bdimg.share.baidu.com/static/api/css/share_style0_32.css?v=5090ac8b.css
112.34.113.148200 OK 831 B URL HTTP/1.1 bdimg.share.baidu.com/static/api/css/share_style0_32.css?v=5090ac8b.css
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (3755), with no line terminators
Hash b285529cc8961b4ace7ad9357d213bb2
4d9f3d6fc78ff2e77a58ff6cd6553f80dc3dd12c
44fea272339fc0c5709de07b60a91f8cbfa9750ef1657c4b2f0c64b0214154df
GET /static/api/css/share_style0_32.css?v=5090ac8b.css HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 831
Content-Type: text/css
Date: Wed, 31 Aug 2022 01:29:03 GMT
Etag: "3786987277"
Expires: Wed, 31 Aug 2022 01:59:03 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:04 GMT
Server: BWS/1.0
Vary: Accept-Encoding
api.share.baidu.com/getnum?url=http%3A%2F%2Fhlgspe.top%2F&callback=bd__cbs__6fb67c
39.156.68.163200 OK 43 B URL HTTP/1.1 api.share.baidu.com/getnum?url=http%3A%2F%2Fhlgspe.top%2F&callback=bd__cbs__6fb67c
IP 39.156.68.163:0
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash 280bac4b91edcd354fec1284162796bb
a3fea3dbfc780f03f656216e305234d392b2c9c0
92feeb7ef7502d68812708983193fd0e7450aabb4cb8eed99eeeac679e678134
GET /getnum?url=http%3A%2F%2Fhlgspe.top%2F&callback=bd__cbs__6fb67c HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Wed, 31 Aug 2022 01:29:03 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=ADE2BE5249B2E3A2F5DE72961E1E845E:FG=1; max-age=31536000; expires=Thu, 31-Aug-23 01:29:03 GMT; domain=.baidu.com; path=/; version=1
Content-Length: 43
caitlinbeverly.com/esyyiz.jsp?g=ac10NIDVTgSKTimI7nZAkceY9%2F1%2FYcAOJsObkbhFDqb5TfyiCSEnN%2BLwZOosCdTjoSw3&p=Linux%20x86_64&u_url=http%3A%2F%2Fwww.dmlnhx.top%2F&r_url=http%3A%2F%2Fhlgspe.top%2F&u_sw=1280&u_sh=1024&u_bw=1128&u_bh=1757&u_utz=0
47.243.183.17200 OK 87 B URL HTTP/1.1 caitlinbeverly.com/esyyiz.jsp?g=ac10NIDVTgSKTimI7nZAkceY9%2F1%2FYcAOJsObkbhFDqb5TfyiCSEnN%2BLwZOosCdTjoSw3&p=Linux%20x86_64&u_url=http%3A%2F%2Fwww.dmlnhx.top%2F&r_url=http%3A%2F%2Fhlgspe.top%2F&u_sw=1280&u_sh=1024&u_bw=1128&u_bh=1757&u_utz=0
IP 47.243.183.17:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash 799832e8ab209ce5f8a5523cb21cff8d
392c9cd7e635d0bf7f6899afd22ef234d11f650c
598f8496dd58a6870fa8ad7891d4b4b4f8a6e67824e242e1146d08c9448316ff
GET /esyyiz.jsp?g=ac10NIDVTgSKTimI7nZAkceY9%2F1%2FYcAOJsObkbhFDqb5TfyiCSEnN%2BLwZOosCdTjoSw3&p=Linux%20x86_64&u_url=http%3A%2F%2Fwww.dmlnhx.top%2F&r_url=http%3A%2F%2Fhlgspe.top%2F&u_sw=1280&u_sh=1024&u_bw=1128&u_bh=1757&u_utz=0 HTTP/1.1
Host: caitlinbeverly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Wed, 31 Aug 2022 01:29:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Wed, 31 Aug 2022 01:29:03 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Content-Encoding: gzip
caitlinbeverly.com/wkatky.jsp?g=504aUufgLh99ySBo7efrek%2Ff3GcDGt1p6CejrqAaI4DGgox2cRouQx%2B2yFakx%2Bq2Gyqr&p=Linux%20x86_64&u_url=http%3A%2F%2Fwww.dmlnhx.top%2F&r_url=http%3A%2F%2Fhlgspe.top%2F&u_sw=1280&u_sh=1024&u_bw=1128&u_bh=1797&u_utz=0
47.243.183.17200 OK 87 B URL HTTP/1.1 caitlinbeverly.com/wkatky.jsp?g=504aUufgLh99ySBo7efrek%2Ff3GcDGt1p6CejrqAaI4DGgox2cRouQx%2B2yFakx%2Bq2Gyqr&p=Linux%20x86_64&u_url=http%3A%2F%2Fwww.dmlnhx.top%2F&r_url=http%3A%2F%2Fhlgspe.top%2F&u_sw=1280&u_sh=1024&u_bw=1128&u_bh=1797&u_utz=0
IP 47.243.183.17:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash ae18614ba2b9a57fde32efd36a576870
6a0c98b699ab122c18273b726293570127f67821
3b3fa5e29c44b4cf7eac2ee687989ab516ff253a0a019df3c282831e9dd210a6
GET /wkatky.jsp?g=504aUufgLh99ySBo7efrek%2Ff3GcDGt1p6CejrqAaI4DGgox2cRouQx%2B2yFakx%2Bq2Gyqr&p=Linux%20x86_64&u_url=http%3A%2F%2Fwww.dmlnhx.top%2F&r_url=http%3A%2F%2Fhlgspe.top%2F&u_sw=1280&u_sh=1024&u_bw=1128&u_bh=1797&u_utz=0 HTTP/1.1
Host: caitlinbeverly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hlgspe.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.2.4
Date: Wed, 31 Aug 2022 01:29:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.2.14p1
Last-Modified: Wed, 31 Aug 2022 01:29:03 GMT
Cache-Control: no-cache, must-revalidate
Pramga: no-cache
Access-Control-Allow-Origin: *
Content-Encoding: gzip
bdimg.share.baidu.com/static/api/js/trans/logger.js?v=60603cb3.js
112.34.113.148200 OK 1.0 kB URL HTTP/1.1 bdimg.share.baidu.com/static/api/js/trans/logger.js?v=60603cb3.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with very long lines (2159), with no line terminators
Hash 56b6c00869999857d8a8f9c27a2b53f9
e38f99caca30ca16e0bae04ddcbee49785d1fb37
4e41ba0ecfe5cae8269b3fdab5fe6bdc96cd6c9bb3379f85b18a74945c3dc2a4
GET /static/api/js/trans/logger.js?v=60603cb3.js HTTP/1.1
Host: bdimg.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=1800
Content-Encoding: gzip
Content-Length: 1034
Content-Type: text/javascript
Date: Wed, 31 Aug 2022 01:29:05 GMT
Etag: "3887650637"
Expires: Wed, 31 Aug 2022 01:59:05 GMT
Last-Modified: Fri, 05 Jun 2015 08:50:08 GMT
Server: BWS/1.0
Vary: Accept-Encoding
api.share.baidu.com/v.gif
39.156.68.163200 OK 23 B URL HTTP/1.1 api.share.baidu.com/v.gif
IP 39.156.68.163:0
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
GET /v.gif HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Length: 23
Content-Type: image/gif
Server: bfe
Date: Wed, 31 Aug 2022 01:29:05 GMT
nsclick.baidu.com/v.gif?pid=307&type=3071&sign=&desturl=http%253A%252F%252Fwww.dmlnhx.top%252F&linkid=l7gxwy4bawx&apitype=1
182.61.200.83200 OK 0 B URL HTTP/1.1 nsclick.baidu.com/v.gif?pid=307&type=3071&sign=&desturl=http%253A%252F%252Fwww.dmlnhx.top%252F&linkid=l7gxwy4bawx&apitype=1
IP 182.61.200.83:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v.gif?pid=307&type=3071&sign=&desturl=http%253A%252F%252Fwww.dmlnhx.top%252F&linkid=l7gxwy4bawx&apitype=1 HTTP/1.1
Host: nsclick.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hlgspe.top/
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Cache-Control: no-cache
Connection: keep-alive
Content-Length: 0
Content-Type: image/gif
Date: Wed, 31 Aug 2022 01:29:06 GMT
Pragma: no-cache
Server: nginx/1.8.0
Tracecode: 17465269722500977418083109