r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12164
Expires: Sun, 02 Oct 2022 18:06:30 GMT
Date: Sun, 02 Oct 2022 14:43:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 14:03:10 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 ad6a59dd9fdc1afb57f7131fcd96bf20.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: iPla92gWRn-yPRIXBy78GjGsdXKfH5byHPtlTrA08rkrcuO6ayIpEQ==
Age: 2436
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.102200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.102:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 b3d26bb0853726fb30b0576bc254ef10.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: zfEINjtDWXV5IJCLDBgVyILRPf57GHUFwAg1ISZbsfmZ8T8DuoKcsA==
age: 40230
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:43:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 14:32:55 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 02 Oct 2022 14:32:53 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ad6a59dd9fdc1afb57f7131fcd96bf20.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: fw4xAQaklWcogiHZo6U2LCd39W026Ur6bGlqS_kW-iv_V61YdBurLA==
Age: 653
201505.com/
168.76.35.219301 Moved Permanently 0 B IP 168.76.35.219:0
ASN #137951 Clayer Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 201505.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 02 Oct 2022 14:43:46 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.201505.com/index.php
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5078
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 14:43:47 GMT
Last-Modified: Sun, 02 Oct 2022 13:19:10 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zW3iFMLPZBtzV+IAlWynLg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JEke3FDiMtfYhwKE8licXQrs9l0=
www.201505.com/index.php
168.76.35.219200 OK 650 B IP 168.76.35.219:0
ASN #137951 Clayer Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (690), with CRLF line terminators
Hash 13fe57d9bd617a3ad5e2af71c4b9916e
97da47b3062caf5efd2e2d28fb92ec87ca5e14a1
cb275faf5c41bbc95ddd46f5432204fa484d50f6f4717cb273420fa8262e2e6d
GET /index.php HTTP/1.1
Host: www.201505.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 14:43:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.201505.com/common.js
168.76.35.219200 OK 1.2 kB IP 168.76.35.219:0
ASN #137951 Clayer Limited
File type HTML document, ISO-8859 text, with very long lines (389), with CRLF line terminators
Hash c074b80815252d0f511dcda60d096e8e
4dea505b42dc8a0edd743f191f88ac1f88f98c2c
31c5de2a388340a7b7f027e61ea7eab58660897f3b75a0e9df6c35dc9158a07a
GET /common.js HTTP/1.1
Host: www.201505.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.201505.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 14:43:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.201505.com/tj.js
168.76.35.219200 OK 276 B IP 168.76.35.219:0
ASN #137951 Clayer Limited
File type ISO-8859 text, with CRLF line terminators
Hash 5c3ec7d149f6fddf1589d720f7ac28a0
688627f1b3edd99d54b3ba79166e1618b853e430
192b8c9f5396433fc5f954d7269274bcfe10285576b8c552bf68c0c1ee0f4aee
GET /tj.js HTTP/1.1
Host: www.201505.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.201505.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 14:43:47 GMT
Content-Type: application/x-javascript
Content-Length: 276
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Sun, 02 Oct 2022 17:52:55 GMT
Date: Sun, 02 Oct 2022 14:43:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11347
Expires: Sun, 02 Oct 2022 17:52:55 GMT
Date: Sun, 02 Oct 2022 14:43:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 463bdcfbec5426e18ecef83b1c373b71
2e533332ee5c49143e58dad32ee3717a39179532
2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4987
x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHpFs4oAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA==
via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:45 GMT
etag: "2e533332ee5c49143e58dad32ee3717a39179532"
content-type: image/jpeg
age: 60543
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 36129
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d99550eb468960005df780c03ab6ecfc
03111ce2048e8bc5be100ff3a746da2e664f8aab
9dcd18e02621fa95d846be7c951e7353f24aa68a282ee0b693e7e5da38c3cfcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10679
x-amzn-requestid: fae3b86e-6f85-485f-81e4-22b7b17f30f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWRkYF2tIAMF-OQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338c94f-486c76da111696471e3905f2;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:12:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CU4YQ3XmxAexkl1rn7BOCSyqyIB12Ff9gMMXqVta5JgIIwQZmUCVMg==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 08:04:33 GMT
age: 23955
etag: "03111ce2048e8bc5be100ff3a746da2e664f8aab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edded48f558f739287a040151349ef67
d63b6ba630736d32c364b0e6a369274b2389b7ff
33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
content-type: image/jpeg
age: 60613
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11f2e40823827b62bca89d18ee279cb2
fa7e61b4f2864b8e51acb2cc887c15d5cb41ef38
c7811cb947483a033f31ff1e93b813f1bbc49b03ed78fcedab2090c71e5c4d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: e83a86d3-f5ab-4645-92df-4b2da3d4afa3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDgmFdlIAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2d0-48c3fa150800475c790b95bd;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: f1aqkuvCub_vq9gBDgA4VL8hNf16FXzXhQjSHC1yDLISm85uOqJF9w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:50 GMT
etag: "fa7e61b4f2864b8e51acb2cc887c15d5cb41ef38"
content-type: image/jpeg
age: 60538
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26b855e3a55a0cfd23896413332a5c05
342e3be8998b548a7004c2a51c9910959b3747db
dfb620bbfa8adde25d578bc9baaa165324170b2f6bbcc2275f1a824267081ccb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8324
x-amzn-requestid: fa9aa819-4e83-4c42-a899-49396a990ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZS2QZEZqoAMF8SA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376a68-1161ffe757f32d1666e230a6;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 22:15:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qLKXx_FMt1iTVh0bLwMkPNuKVVYzURAim45RmI2f3Fj6YfxtKHfjmQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 22:20:52 GMT
age: 58976
etag: "342e3be8998b548a7004c2a51c9910959b3747db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
154.82.85.205/sese1.html
154.82.85.205200 OK 639 B IP 154.82.85.205:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash e6970a8fefd637807121972b6f0286cb
565fb1cba197a7fe08e8266041be425e2ab89f54
a2dac39b60e248cf052da357664222ffd99f3b27d41eefe73f0c49a4fac927d6
GET /sese1.html HTTP/1.1
Host: 154.82.85.205
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.201505.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 14:45:18 GMT
Content-Type: text/html
Last-Modified: Fri, 01 Jul 2022 10:51:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62bed1b9-5a1"
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 6ad2b931d1309bbd6926dae34cb28967
4d9dd78c7d41b1f21803596f93f471e2725b7c6f
760bb8bee3b94955c00d4fadf594d74aef5842d7914f70f9f8ae166fcb839d9d
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 14:43:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Thu, 06 Oct 2022 11:13:43 GMT
ETag: "4d9dd78c7d41b1f21803596f93f471e2725b7c6f"
Last-Modified: Sun, 02 Oct 2022 11:13:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1423
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753e36659b13b4fa-OSL
www.201505.com/favicon.ico
168.76.35.219200 OK 1.2 kB URL HTTP/1.1 www.201505.com/favicon.ico
IP 168.76.35.219:0
ASN #137951 Clayer Limited
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.201505.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.201505.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 14:43:48 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Fri, 07 Oct 2022 14:43:48 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
api.share.baidu.com/s.gif?l=http://www.201505.com/index.php
39.156.68.163200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.201505.com/index.php
IP 39.156.68.163:0
ASN #9808 China Mobile Communications Group Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.201505.com/index.php HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.201505.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Sun, 02 Oct 2022 14:43:49 GMT
hm.baidu.com/hm.js?05e48c780440f6054376905e09eece64
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?05e48c780440f6054376905e09eece64
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (643)
Hash fe74a22a3fb45a8af49ad38174592dd5
a62462510f636bb25b5de76b85528833945016ec
801ed4e7fe512db5b14ce843f45cfe25f2b17e2b24dc46ba4aa1510ee1d79752
GET /hm.js?05e48c780440f6054376905e09eece64 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.201505.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11356
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 14:43:49 GMT
Etag: ef4a04152421bcd9d66bb528a76fdd6f
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E7A887470833F6F9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?243dc6728d1648c8f76c566bf876e715
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?243dc6728d1648c8f76c566bf876e715
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (634)
Hash 334400f7d5d8aab47fdc04e0e9ff9dc3
3cedab67fc243884fb3e32b63e16046f0c88a6d9
a5f908f3c9493a0b07f05ba6053c004b02d65987d245d0c45ea6bafc713ba176
GET /hm.js?243dc6728d1648c8f76c566bf876e715 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.201505.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11347
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 14:43:49 GMT
Etag: e28d603088e3fe02647e583dba60986a
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=ABCABDFD539DC146; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?7d94a949509efd2bcb316b52915c1cec
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7d94a949509efd2bcb316b52915c1cec
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (631)
Hash 47c6de90487b684a8e35724cc9e3f4ad
9927f672015fe35182d7ce222c15559656356e22
26d0868f74c1a52f6dee67c762d8c02082ab5b8b47ef00ebff23cfa40ecc3d01
GET /hm.js?7d94a949509efd2bcb316b52915c1cec HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.201505.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11344
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 14:43:49 GMT
Etag: 4e3be75b359d98e68c888bde032b25bb
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=199D7BD86A5BF6A8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=529609549&si=05e48c780440f6054376905e09eece64&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=529609549&si=05e48c780440f6054376905e09eece64&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=529609549&si=05e48c780440f6054376905e09eece64&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.201505.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 14:43:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C48F9BE9843D2B9C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=135947430&si=7d94a949509efd2bcb316b52915c1cec&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=135947430&si=7d94a949509efd2bcb316b52915c1cec&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=135947430&si=7d94a949509efd2bcb316b52915c1cec&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.201505.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 14:43:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4127175C391D0D3D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=147871469&si=243dc6728d1648c8f76c566bf876e715&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=147871469&si=243dc6728d1648c8f76c566bf876e715&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=147871469&si=243dc6728d1648c8f76c566bf876e715&v=1.2.97&lv=1&sn=1760&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.201505.com%2Findex.php&tt=%E4%B9%8C%E6%B5%B7%E7%AC%AC%E6%85%B7%E6%97%85%E8%A1%8C%E7%A4%BE HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.201505.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 14:43:50 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=B73CF52D07CFCDB9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
154.82.85.204/seystz.html
154.82.85.204200 OK 312 B URL HTTP/1.1 154.82.85.204/seystz.html
IP 154.82.85.204:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 7029cac17dfef1f9d467202e63eb18d1
5a9b997a7415b95b22e08ee7b991901600d3f3a2
0265b771b34d4861c43b27b356303f7f275a1ae48e01776421b5b649ed8704c5
GET /seystz.html HTTP/1.1
Host: 154.82.85.204
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://154.82.85.205/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 14:45:20 GMT
Content-Type: text/html
Content-Length: 312
Last-Modified: Tue, 27 Sep 2022 14:17:10 GMT
Connection: keep-alive
ETag: "633305e6-138"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9323fd32571be576736ac3ee02829776
37572dc8a2768e84772053e08176db3a6e00fdb3
51bb34a52a801632018072032d3e7a2d42fbbac1503b926d39397351919ea9f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51BB34A52A801632018072032D3E7A2D42FBBAC1503B926D39397351919EA9F0"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21582
Expires: Sun, 02 Oct 2022 20:43:34 GMT
Date: Sun, 02 Oct 2022 14:43:52 GMT
Connection: keep-alive
fmlb.netlbtu.com/upload/vod/2021/06-17/18/fdlz3iyaog41822fdlz3iyaog4273624.jpg
172.64.141.29200 OK 10 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/06-17/18/fdlz3iyaog41822fdlz3iyaog4273624.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 809c1765e68469f1edab71f536645a1a
fcf6ed704426423d9b1cbf4413b4ac63b51ac07b
5c3044d7c22be74df768749f18328ed3d4886a223efcad1ecd6a1fbb7f022f90
GET /upload/vod/2021/06-17/18/fdlz3iyaog41822fdlz3iyaog4273624.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:53 GMT
content-type: image/jpeg
content-length: 10176
cf-bgj: h2pri
etag: "249033ac6263d71:0"
last-modified: Thu, 17 Jun 2021 10:22:27 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FRLeNepENopoWZP9DV4YJMkEzILZBttHojZslXoPxsoQvyndz%2FyGqi4p5wcZYjTiwTfqDoWYa2EKQeVhUCRDG%2FNJe5eTAgiebyrFsDZaSS2Ps%2B2lkrgUI6v3jWQIdAgTN3Y%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e367f6c30753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2021/06-17/18/fzm0dkbcmzw1822fzm0dkbcmzw293628.jpg
172.64.141.29200 OK 9.2 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/06-17/18/fzm0dkbcmzw1822fzm0dkbcmzw293628.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash e0a4ce85d1cedebc21ea4c0f8670ee07
e9d33bb177b686c3449ee920d943d70923a52d94
14c192c50c642cce406167c7b44c1ebb50b7cfbfef259584243fe342d0afb39b
GET /upload/vod/2021/06-17/18/fzm0dkbcmzw1822fzm0dkbcmzw293628.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:53 GMT
content-type: image/jpeg
content-length: 9227
cf-bgj: h2pri
etag: "2d5546ad6263d71:0"
last-modified: Thu, 17 Jun 2021 10:22:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LkQC0jCG2wn5YpZ3JvECJ%2Fms66KfGUGiO3eCX1p3fyi2ryiXtRz7mzKJfoqVA%2Fjpu3SyNUcGG4P%2B8lJXpIsR9hhaITBH6PWtRq04OLGHk6ZQltLgO%2FCigEFiWHDt4JyFj7v9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e367f6c2e753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2021/06-17/18/o5fvclmruha1822o5fvclmruha243618.jpg
172.64.141.29200 OK 8.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/06-17/18/o5fvclmruha1822o5fvclmruha243618.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1a8a3bfcecbc90bb83ef5a43a36d4f70
d2b9494e2964238f7b9648cc4feba2bed81073b8
82ed70e89a6edfede5ed6b2af73a06aeff578cc4001119614f0795165eaebb8a
GET /upload/vod/2021/06-17/18/o5fvclmruha1822o5fvclmruha243618.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:53 GMT
content-type: image/jpeg
content-length: 8779
cf-bgj: h2pri
etag: "dff165aa6263d71:0"
last-modified: Thu, 17 Jun 2021 10:22:24 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FlMW2qHD42%2BHRNir32kj2Wy2c1Isq%2FzG%2F7ShnOElpRLQGsOwxrfoJUdAAwrYkdmE2aTCSJC6zIXj0msjbCS5Zw5TlxBjjAiFFNb0%2FQYh9UOBCBEKCYnR7O11ClQlq6GyPO%2Bo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e367f5c26753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2021/06-17/18/gptpc3o14ec1822gptpc3o14ec253620.jpg
172.64.141.29200 OK 9.8 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/06-17/18/gptpc3o14ec1822gptpc3o14ec253620.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 9f475d2ae5ad42f2b95a240523e5f35b
06564e3b3330313d51a0b473005af1a25baa5651
251c73b418901c45026cd5230af89265a5ded9af6613c955409b2558165729d3
GET /upload/vod/2021/06-17/18/gptpc3o14ec1822gptpc3o14ec253620.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:53 GMT
content-type: image/jpeg
content-length: 9827
cf-bgj: h2pri
etag: "2b0f1aa6263d71:0"
last-modified: Thu, 17 Jun 2021 10:22:25 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GHHwc%2BqY2D6T4ZmkjPc8PU2VvB2as67xmZ2ysn%2FC4G%2FkIiQxmf%2FtJ%2B%2BMEr4pCIHrFHTN7QaB%2BHGRSJu3PUJg9FHnbU3rJW7fA1o8WSurd4Uhk2cpvhWuvvL2joapTDEQvvWn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e367f6c37753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fmlb.netlbtu.com/upload/vod/2021/06-17/18/3qpoe5xmhrw18223qpoe5xmhrw303630.jpg
172.64.141.29200 OK 8.1 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/06-17/18/3qpoe5xmhrw18223qpoe5xmhrw303630.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 83af2a600f4cecd27db7040500e9d8fd
8740d2e983552e6d32ead4cff69e3e3f67cba2d5
f51ee0f477a008fd1fcb83b6dcecaf168b31c00fcd359ac10ad761f3ade35f4e
GET /upload/vod/2021/06-17/18/3qpoe5xmhrw18223qpoe5xmhrw303630.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:53 GMT
content-type: image/jpeg
content-length: 8143
cf-bgj: h2pri
etag: "f81f0ad6263d71:0"
last-modified: Thu, 17 Jun 2021 10:22:30 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1H51cRmg%2FfJYtK6Kji2e%2BvbEEPFjjUnhtuaTZ23H9fRtCr3ZMc8vKHWOZRH1QZeoxPAtXiIkxI0TkmlCNOS1PT3nsmWVnouM4JGL1QVeyVm8qr%2BgGoh%2BfsNlpRxuyrRmPmEB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e367f6c2a753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3d3aebfbab901037cef72b5d7d87ab9f
24d18aee5643110e053c089b68e38985a0319bdb
7a516828d053f28ede0c47160dc7968db012af70515d16ba1a26e638c5d2b933
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=632
Date: Sun, 02 Oct 2022 14:43:53 GMT
Connection: keep-alive
X-N: S
fmlb.netlbtu.com/upload/vod/2021/06-17/18/acqrnwxhlem1822acqrnwxhlem263622.jpg
172.64.141.29200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/06-17/18/acqrnwxhlem1822acqrnwxhlem263622.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 621fe4dfbe9a6fde3a3a5582466040e7
c043c8783f47f0280572a2be9e75e2b730a4652f
adb0a01f04c3ec2dfaebab59203eecf22c8c7da305854421eeab87fef06e620d
GET /upload/vod/2021/06-17/18/acqrnwxhlem1822acqrnwxhlem263622.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:53 GMT
content-type: image/jpeg
content-length: 11144
cf-bgj: h2pri
etag: "2782a4ab6263d71:0"
last-modified: Thu, 17 Jun 2021 10:22:26 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VvXsCUO3Bw1Qiznt2NNsiLAA%2FNr6FrDB4V0cqb7oZOzIiiGi0RXk9DuaDEDAoRM4pfLSk9qD9QaYCxt5ouGcscHexld%2FhPsOpPieiesdsYjtVVvjNg7L9f%2Bh7VMatCwklSTt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e367f6c31753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3d3aebfbab901037cef72b5d7d87ab9f
24d18aee5643110e053c089b68e38985a0319bdb
7a516828d053f28ede0c47160dc7968db012af70515d16ba1a26e638c5d2b933
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=632
Date: Sun, 02 Oct 2022 14:43:53 GMT
Connection: keep-alive
X-N: S
fmlb.netlbtu.com/upload/vod/2021/06-17/18/z2i3rye5o211822z2i3rye5o21283626.jpg
172.64.141.29200 OK 11 kB URL HTTP/2 fmlb.netlbtu.com/upload/vod/2021/06-17/18/z2i3rye5o211822z2i3rye5o21283626.jpg
IP 172.64.141.29:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d280edfdf837961d276b483eb1c7626d
c55cb29a18ddae2b500f3466fa23bd6e076c63ab
8fe7b71b383693a1815c2427fa61467221a7b06e358ed3e3f83a69660ea96288
GET /upload/vod/2021/06-17/18/z2i3rye5o211822z2i3rye5o21283626.jpg HTTP/1.1
Host: fmlb.netlbtu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:53 GMT
content-type: image/jpeg
content-length: 11306
cf-bgj: h2pri
etag: "d77dbbac6263d71:0"
last-modified: Thu, 17 Jun 2021 10:22:28 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fn6cFpx%2BiB3oLcKEYzrb%2BwT8i9XRxC33mwgIs5cVKbj6l%2F73sygbF4q031iFZCZg2TY6FfWxwAixSA0Uq2%2FEf%2BbZj4%2FUgIglsfIuVdpbtfbHyxY3G5qTs1QgyVVLmcgRffXh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e367f6c2c753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3d3aebfbab901037cef72b5d7d87ab9f
24d18aee5643110e053c089b68e38985a0319bdb
7a516828d053f28ede0c47160dc7968db012af70515d16ba1a26e638c5d2b933
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=632
Date: Sun, 02 Oct 2022 14:43:53 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3d3aebfbab901037cef72b5d7d87ab9f
24d18aee5643110e053c089b68e38985a0319bdb
7a516828d053f28ede0c47160dc7968db012af70515d16ba1a26e638c5d2b933
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=632
Date: Sun, 02 Oct 2022 14:43:53 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.10200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.10:0
ASN #20940 Akamai International B.V.
Hash 3d3aebfbab901037cef72b5d7d87ab9f
24d18aee5643110e053c089b68e38985a0319bdb
7a516828d053f28ede0c47160dc7968db012af70515d16ba1a26e638c5d2b933
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=376
Date: Sun, 02 Oct 2022 14:43:53 GMT
Connection: keep-alive
X-N: S
www.seys863.vip/template/m1938pc/static/css/index.3e73f18a.css
156.240.215.235200 OK 54 kB URL HTTP/2 www.seys863.vip/template/m1938pc/static/css/index.3e73f18a.css
IP 156.240.215.235:0
Hash a2a8a19f6f5af02d827ac8fdb9f34ba3
38b302c20a6a1f36523424d3bde91b5787aa0906
addb986137501de7a9eef292d7f574796c14464fd8f1207bb07becaa5638965b
GET /template/m1938pc/static/css/index.3e73f18a.css HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:33 GMT
content-type: text/css
last-modified: Thu, 05 May 2022 04:07:00 GMT
vary: Accept-Encoding
etag: W/"62734d64-378c7"
expires: Sun, 02 Oct 2022 15:27:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.seys863.vip/template/m1938pc/static/css/style2.css
156.240.215.235200 OK 27 kB URL HTTP/2 www.seys863.vip/template/m1938pc/static/css/style2.css
IP 156.240.215.235:0
Hash f6b78e12498fdba8e5de5f7de7f5bd1c
ce8fbce01f35f648e8c1bcd51cf74cf185273021
881807706a50630dbf2468249ded7d7f2225b9635ef2a2c8ad66f6d489b2067e
GET /template/m1938pc/static/css/style2.css HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:33 GMT
content-type: text/css
last-modified: Wed, 10 Aug 2022 08:59:49 GMT
vary: Accept-Encoding
etag: W/"62f37385-1c55b"
expires: Sun, 02 Oct 2022 15:27:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a6d171e55c1a1ac8ece353575d147a3a
5a61831087a80040b65eab54ece8e3e52712e11e
88cea2b557e59c9e1a632fca96a817c8ccf3a1aaa5707f3bac8337d8d054b001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CEA2B557E59C9E1A632FCA96A817C8CCF3A1AAA5707F3BAC8337D8D054B001"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21562
Expires: Sun, 02 Oct 2022 20:43:15 GMT
Date: Sun, 02 Oct 2022 14:43:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a6d171e55c1a1ac8ece353575d147a3a
5a61831087a80040b65eab54ece8e3e52712e11e
88cea2b557e59c9e1a632fca96a817c8ccf3a1aaa5707f3bac8337d8d054b001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CEA2B557E59C9E1A632FCA96A817C8CCF3A1AAA5707F3BAC8337D8D054B001"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 02 Oct 2022 20:43:53 GMT
Date: Sun, 02 Oct 2022 14:43:53 GMT
Connection: keep-alive
www.seys863.vip/template/m1938pc/css/ate.css
156.240.215.235200 OK 6.5 kB URL HTTP/2 www.seys863.vip/template/m1938pc/css/ate.css
IP 156.240.215.235:0
Hash fe8a65911889e26115abc13822f8bd82
a7856b040f60e6cc1211b381753058b146fbf1cb
54387b9e4c767f98cd05223b128ed8f1c4238775fb4e7e9d28c1807e61364c57
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:33 GMT
content-type: text/css
last-modified: Fri, 07 May 2021 10:47:34 GMT
vary: Accept-Encoding
etag: W/"60951ac6-126e4"
expires: Sun, 02 Oct 2022 15:27:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 88cf67b4e72efa1050403e4d820a4cc1
43b72ed5e5d875327ce6ab92335474ab3813969b
1c83bebab9a039fea9703b1d7b4ddaab1139720b540270f477e3232df0dbadf2
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 14:43:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Thu, 06 Oct 2022 11:26:57 GMT
ETag: "43b72ed5e5d875327ce6ab92335474ab3813969b"
Last-Modified: Sun, 02 Oct 2022 11:26:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1178
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753e3684cda3b4fa-OSL
www.aoattsetp.vip/hf/xincha.gif
104.21.84.153200 OK 287 kB URL HTTP/2 www.aoattsetp.vip/hf/xincha.gif
IP 104.21.84.153:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 287 kB (287106 bytes)
Hash bf69a23dccde7e62074b6300ea402b95
dd009214a977991f1ce608f209962267a2db1e2c
6e329ba63b5b8b6493317c2c2f140b49bc76cb72d5eb06793d5f32e87ac308fb
GET /hf/xincha.gif HTTP/1.1
Host: www.aoattsetp.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 287106
last-modified: Mon, 06 Jun 2022 10:46:28 GMT
etag: "629ddb04-46182"
expires: Sun, 30 Oct 2022 20:17:50 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 112493
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T0jtzVpKXbt%2BNUJCCAXxssG53iLxWvPK3idzonw7hksZFq8kXvlUIh%2BHhCs4s6pvIPgSPnlo2SmE1c6DNzbiRutQSYQ9E%2BGO2aOppRicYGT7TEOJZTfM0wDkROMzaKmus61Jvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3686ff76b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/images/2022/05/23/youma22613.jpg
172.247.77.90200 OK 171 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22613.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 171 kB (171347 bytes)
Hash 7a28bf67819c1c3bf0c6159158d6ec36
f8a6c0be3f493eea324a3711754de0e470dc1db4
1aacd1b25c208d1efa23044bc44e5bf12df76db1c1f838a92eae56b00c894bb7
GET /images/2022/05/23/youma22613.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:58 GMT
Content-Type: image/jpeg
Content-Length: 171347
Last-Modified: Wed, 10 Aug 2022 11:39:28 GMT
Connection: keep-alive
ETag: "62f398f0-29d53"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22603.jpg
172.247.77.90200 OK 175 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22603.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 175 kB (175049 bytes)
Hash 224b7952f7b3d444ccde2cb227131dd7
d9e5c1cf11369e09bf572769c342169d705b30de
adab7cb39f1b856be43ad7eb1f13707aeb176ddb08834d1375e53f9ee3a4b4d9
GET /images/2022/05/23/youma22603.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:58 GMT
Content-Type: image/jpeg
Content-Length: 175049
Last-Modified: Wed, 10 Aug 2022 12:04:15 GMT
Connection: keep-alive
ETag: "62f39ebf-2abc9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22611.jpg
172.247.77.90200 OK 168 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22611.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x534, components 3\012- data
Size 168 kB (167767 bytes)
Hash 721a523d873993afa18ba19e7d2ec044
6df6b75ba47dcb45753a4c52b518023733a5ef1f
5c8ed56f3a676f8acae90e80683995193a54cd110becf0e888a98bac0adbd381
GET /images/2022/05/23/youma22611.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:58 GMT
Content-Type: image/jpeg
Content-Length: 167767
Last-Modified: Wed, 10 Aug 2022 11:52:13 GMT
Connection: keep-alive
ETag: "62f39bed-28f57"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
tupku.top/logotp/xfb20.gif
104.21.82.102200 OK 104 kB URL HTTP/2 tupku.top/logotp/xfb20.gif
IP 104.21.82.102:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 104 kB (104154 bytes)
Hash 6553288173706db890b5934ca6e5fa82
309e0cd019f8614179d507151a9d064db1b49803
e156a5a08f34a3969f19c8a8c808b06d1396a496f3678f7c4ff4c5f8b4c2d968
GET /logotp/xfb20.gif HTTP/1.1
Host: tupku.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 104154
last-modified: Fri, 15 Apr 2022 17:52:25 GMT
etag: "6259b0d9-196da"
expires: Wed, 19 Oct 2022 16:51:43 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1075290
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xuewk1mXIJgCIfgq1sjGTQNVTg4%2F9f6JAhII3Up0NrDoFcLVnnPA%2BRs4sZst%2FHk04ipq4OF6mn5ZPCHOOM2Ed7%2BX%2FBEaPYOw9Cys%2B9KEPEKgsZ9BS%2F6clE%2FzX9U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3687de9db4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.users.51.la/21377941.js
103.143.19.103200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21377941.js
IP 103.143.19.103:0
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash 016d2639fa57a46fd6c1413fe6584f99
c10b5c4a8be6ac31d68f2f36bac273bc6df7c381
ef51e00cf3c8546d50decae9dc59a50557e9934c167ed900957a5f7e838ceee3
GET /21377941.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Sun, 02 Oct 2022 14:43:54 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=977ad6a90d40b6166ed; path=/
HWWAFSESTIME=1664721829342; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
tupku.top/logotp/fff.gif
104.21.82.102200 OK 109 kB IP 104.21.82.102:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 109 kB (108625 bytes)
Hash 7f746939550d2ae41686ebf019a90ed7
8fccfd19873d3f91ba8b2d36680c42b650c653b2
16b6f5f802abc23c5788ad49bf0d3036db36fac0fd728e19548de61c54316252
GET /logotp/fff.gif HTTP/1.1
Host: tupku.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 108625
last-modified: Sun, 19 Jun 2022 13:14:28 GMT
etag: "62af2134-1a851"
expires: Wed, 19 Oct 2022 16:51:43 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1075290
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hu%2BfxfyW4l4QLCViJBJiGKfP%2BH6RW%2B18ih1AfYHWNds0jkL92XEix0egJtWT4JLC6RR6zlnbZeBEFz29eyoWDbxZVhjuolvFim0Q%2FVaY3TySpv%2FcdPusVqx%2Fx40%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3687de9cb4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tupku.top/hf/ztvo555.gif
104.21.82.102200 OK 260 kB IP 104.21.82.102:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 260 kB (260250 bytes)
Hash 3c38f626fe18a3854a48bdd75014a35a
798db446f32550974f8d23ed38e7443bc704a7c5
3f2337a9e2991779b55c477192c303230079503e60e568982b32df7eca629d0a
GET /hf/ztvo555.gif HTTP/1.1
Host: tupku.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 260250
last-modified: Wed, 14 Sep 2022 16:15:42 GMT
etag: "6321fe2e-3f89a"
expires: Wed, 19 Oct 2022 16:51:43 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1075290
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B9g%2FXSTbhHg6xXXDttFvoCPGSo9TSTqlJRuMQ6yUeZB1dPs%2FsF5n6ke2FilfHNd0TXVKo6HNj7rpsgUh%2B%2BP3fHRKrlce%2FSQSPIRGJ0cjo%2BX54LL12Y6V3W%2BloPE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3687eea5b4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.seys863.vip/
156.240.215.235200 OK 32 kB IP 156.240.215.235:0
Hash d4014b577ede13f8c706f8ab4d4fd65c
ce537db07e8dd9c4b34fc790b6844ca5c9fb1037
838fda5b29eee630dc31152c10d8e4a182934e4fe84007b91432d4ccdae6a0ba
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://154.82.85.204/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:32 GMT
content-type: text/html;Charset=utf-8;charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=7g6229qbt0k3m3ifhs9q57lnbp; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
IP 142.250.74.3:0
Hash 912e6b2f9785c3cf091a2b1eb4fe3977
6fe37de66bd5b2435ebe60cf205bebc0b9635245
f91f69b8cfc0f43ed743c3d21f9a169e2e70938dcc53ca6fffa9c7507ad408d4
POST /s/gts1p5/QOjNzpBth-A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 14:43:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
IP 142.250.74.3:0
Hash 912e6b2f9785c3cf091a2b1eb4fe3977
6fe37de66bd5b2435ebe60cf205bebc0b9635245
f91f69b8cfc0f43ed743c3d21f9a169e2e70938dcc53ca6fffa9c7507ad408d4
POST /s/gts1p5/QOjNzpBth-A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 14:43:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.seys863.vip/template/m1938pc/static/images/lazyload.gif
156.240.215.235200 OK 1.6 kB URL HTTP/2 www.seys863.vip/template/m1938pc/static/images/lazyload.gif
IP 156.240.215.235:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 03ce3dcc84af110e9da8699a841e5200
d2b7e4e31fe8e1c6b720e33448674102879e4246
d3e3944d4649450dee66a55c69eeced2d825b6ca1a349f72c75fd3780ae3f006
GET /template/m1938pc/static/images/lazyload.gif HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/template/m1938pc/static/css/style2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:34 GMT
content-type: image/gif
content-length: 1553
last-modified: Wed, 10 Aug 2022 09:15:32 GMT
etag: "62f37734-611"
expires: Tue, 01 Nov 2022 03:27:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.tukudhgg.vip/lm/0yFUidjGHhQ.gif
172.67.208.179200 OK 121 kB URL HTTP/2 www.tukudhgg.vip/lm/0yFUidjGHhQ.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 500 x 280\012- data
Size 121 kB (121040 bytes)
Hash 72f445e66343e28d92a588cd7858f2dc
0138a721a5a93bdac4700c65cc6f6490009d3c19
649a3df45cf01aea3bd959614665909f5e36a0dbfcf297334c69c94b579abbc0
GET /lm/0yFUidjGHhQ.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 121040
last-modified: Thu, 07 Jul 2022 07:36:06 GMT
etag: "62c68ce6-1d8d0"
expires: Sun, 30 Oct 2022 20:17:53 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 112490
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B5HKUqWR%2FvhZ5LBv304OT8LaTE%2FRySmHu9aGNdMPUBxPAu1FhcSIim2pTfjYY4%2BoWrmn%2BmxqB0qmx0XGhOV8Y5O4%2Be47hl5HDiSo0SvQ450LTPk9%2FFuawzu8ftlwvo2EwlEx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e36885f6e1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.tukudhgg.vip/hf/wang602.gif
172.67.208.179200 OK 875 kB URL HTTP/2 www.tukudhgg.vip/hf/wang602.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 961 x 82\012- data
Size 875 kB (874783 bytes)
Hash a2fb53ffd95f97887826abebea62513c
383ca8074e26fe16c406db211cbe5cba41e91f65
05c8180bd75026280aab15eabb7b113a44d97deb29fbf70ade8a954d4d70e51e
GET /hf/wang602.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 874783
last-modified: Sat, 24 Sep 2022 02:18:02 GMT
etag: "632e68da-d591f"
expires: Mon, 24 Oct 2022 03:18:12 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 692089
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QIEDQmkgPmY6w10BUXQ%2BADF3%2FkYB1wAE291lqDW9hYHZZ6NbPaDpErxaPMTzSGY8qh4%2BML5E0RG%2FI8PXj1ygoB9eAJ7zttMG7C%2BSh0JdvjGO9Ck3S9Ik5VwS8FjpeO%2BI6HWc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e36885f561c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tukudhgg.vip/logotp/tiangx01.gif
172.67.208.179200 OK 193 kB URL HTTP/2 tukudhgg.vip/logotp/tiangx01.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 193 kB (192700 bytes)
Hash 1f96742e79c464754770d21b824c422e
2eacc04050d6b364ca38e67f740f5019ba609d72
90b4a34013848befc26d1e21f30afa75bb896fb8775cfb283e0d1f4d9bc1a294
GET /logotp/tiangx01.gif HTTP/1.1
Host: tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 192700
last-modified: Sun, 19 Jun 2022 13:11:00 GMT
etag: "62af2064-2f0bc"
expires: Mon, 24 Oct 2022 06:38:31 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 680070
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ydVNARwYQFRE%2FX2uG9x2PtkJyr9t2Iq5aqR8gFJfwfQ82vDE%2BzLCltf00z5NHvRWGDuXthdSlQi8kfjWodD0%2FcHn%2FJgTi2egcISAke4KcNJRZJ%2BliutODfcGI1IDjRo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e36886f771c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.seys863.vip/template/m1938pc/images/video-play.png
156.240.215.235200 OK 1.6 kB URL HTTP/2 www.seys863.vip/template/m1938pc/images/video-play.png
IP 156.240.215.235:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:34 GMT
content-type: image/png
content-length: 1567
last-modified: Fri, 07 May 2021 10:47:38 GMT
etag: "60951aca-61f"
expires: Tue, 01 Nov 2022 03:27:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
tukudhgg.vip/hf/xincha.gif
172.67.208.179200 OK 287 kB URL HTTP/2 tukudhgg.vip/hf/xincha.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 287 kB (287106 bytes)
Hash bf69a23dccde7e62074b6300ea402b95
dd009214a977991f1ce608f209962267a2db1e2c
6e329ba63b5b8b6493317c2c2f140b49bc76cb72d5eb06793d5f32e87ac308fb
GET /hf/xincha.gif HTTP/1.1
Host: tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 287106
last-modified: Mon, 06 Jun 2022 10:46:28 GMT
etag: "629ddb04-46182"
expires: Sun, 30 Oct 2022 20:17:50 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 112493
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tr2%2B9hEABjW8NKaTYZ9%2BMA%2B41%2FJ%2Bng4mhuQvACDwbtSOwWy5UnpCs3Wb%2Fsidh3wMOuPWTqn7xcknF0KKQfVjQhP3bIGGoomEBpd4B3%2B8YA2AqkL5jpLiG%2FCtsgwFuX0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e36887f851c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.seys863.vip/template/m1938pc/images/video-mask.png
156.240.215.235200 OK 107 B URL HTTP/2 www.seys863.vip/template/m1938pc/images/video-mask.png
IP 156.240.215.235:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:34 GMT
content-type: image/png
content-length: 107
last-modified: Fri, 07 May 2021 10:47:36 GMT
etag: "60951ac8-6b"
expires: Tue, 01 Nov 2022 03:27:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/images/2022/05/23/youma22602.jpg
172.247.77.90200 OK 179 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22602.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x534, components 3\012- data
Size 179 kB (179200 bytes)
Hash 2a11fc00a886c320d98962bebd8bb1cd
8363ffc61be7455576ddde66ff509cd2cd884dfd
7afb745d447d3366c48a4478b4e29b82495af2ea87c3f8922f3bdc47d6e755a0
GET /images/2022/05/23/youma22602.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:58 GMT
Content-Type: image/jpeg
Content-Length: 179200
Last-Modified: Wed, 10 Aug 2022 11:49:09 GMT
Connection: keep-alive
ETag: "62f39b35-2bc00"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/kj21241.jpg
172.247.77.90200 OK 195 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/kj21241.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x535, components 3\012- data
Size 195 kB (195310 bytes)
Hash baf983ba0cebcd6b51dae6597889ce26
100ef5bf02150c4d8efa1e83acba064b6e431e50
b86b9e8257a1167fb05be0292206b1827bb856cc00084920d95f9527ee2cab7b
GET /images/2022/05/23/kj21241.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:58 GMT
Content-Type: image/jpeg
Content-Length: 195310
Last-Modified: Wed, 10 Aug 2022 11:35:08 GMT
Connection: keep-alive
ETag: "62f397ec-2faee"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
IP 142.250.74.3:0
Hash 912e6b2f9785c3cf091a2b1eb4fe3977
6fe37de66bd5b2435ebe60cf205bebc0b9635245
f91f69b8cfc0f43ed743c3d21f9a169e2e70938dcc53ca6fffa9c7507ad408d4
POST /s/gts1p5/QOjNzpBth-A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 14:43:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sesejs.top/ggdy/logo.js
154.82.85.209200 OK 2.5 kB IP 154.82.85.209:0
Hash 1bdf76f0d5f4b00a7e1293addd565a03
0c9f9d849a3b12aaf13f46a2355ed911711d91f9
4ef9d3d3feb92452656ce8074405027c362cc3c2572fe9ded0cac7e7d4b896e9
GET /ggdy/logo.js HTTP/1.1
Host: sesejs.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:45:24 GMT
content-type: application/javascript
last-modified: Sun, 02 Oct 2022 09:26:33 GMT
vary: Accept-Encoding
etag: W/"63395949-303c"
expires: Mon, 03 Oct 2022 02:45:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
tukudhgg.vip/lm/aaa122.gif
172.67.208.179200 OK 514 kB URL HTTP/2 tukudhgg.vip/lm/aaa122.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 320 x 186\012- data
Size 514 kB (513487 bytes)
Hash eb6ae4c3d42252ba0149361e28da9f18
b42e20c95a707951729969f9250f0b66f3ab4992
43abb0219a75601add12728d8c9a91af813a1342cc8b70acc6d5d5429af2fb62
GET /lm/aaa122.gif HTTP/1.1
Host: tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 513487
last-modified: Wed, 25 May 2022 14:05:09 GMT
etag: "628e3795-7d5cf"
expires: Wed, 19 Oct 2022 16:51:45 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1075288
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UNjwGiwNV7I8vZyeTdr3jAP7XGYi8R6uBz9Z9M18a3vw%2BmxLIF86OxST4s95OVIV%2Bk%2B0R2eRDpBNK%2BdQYCbeuX3fAnrUZTdcmjE61%2FGysSzJsq%2FwxZuHLI48Yqhhg7U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3688e82c1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.tukudhgg.vip/lm/chuns02.gif
172.67.208.179200 OK 299 kB URL HTTP/2 www.tukudhgg.vip/lm/chuns02.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 720 x 428\012- data
Size 299 kB (299089 bytes)
Hash d9e70a7219c6571182c6618445fe610d
3e856d9d935fe071fc41e98196bcef27383980fa
1d07059bc4c6f33316632222a1a5a4cd7c1f4468f37b5e5507e95377439d1c19
GET /lm/chuns02.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 299089
last-modified: Fri, 16 Sep 2022 10:02:28 GMT
etag: "632449b4-49051"
expires: Sun, 16 Oct 2022 14:24:17 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1383480
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jwS55WoBt9tEVCSJ4COtnVNGjUdc1MTG%2FzmdvThnsUkYJIdUtQ2Xw4hCXWMlQgF4LImzbVf9ByfxLI5eOv5j0m8fyFxRkRvxY9KCCkTRfzk0GH4D65nAi3Jx5PwOjgHDhmqM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3688f8481c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash adbcd2ee8e2c2e561442b3191d245cc9
0b8556423d26d39be6f67f9fd40ade0c64ccae16
745d42c766b0aed6ed6acd6357632b28ddded37d5abec2549ff2adaf25c1af23
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "745D42C766B0AED6ED6ACD6357632B28DDDED37D5ABEC2549FF2ADAF25C1AF23"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15376
Expires: Sun, 02 Oct 2022 19:00:10 GMT
Date: Sun, 02 Oct 2022 14:43:54 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash adbcd2ee8e2c2e561442b3191d245cc9
0b8556423d26d39be6f67f9fd40ade0c64ccae16
745d42c766b0aed6ed6acd6357632b28ddded37d5abec2549ff2adaf25c1af23
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "745D42C766B0AED6ED6ACD6357632B28DDDED37D5ABEC2549FF2ADAF25C1AF23"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15376
Expires: Sun, 02 Oct 2022 19:00:10 GMT
Date: Sun, 02 Oct 2022 14:43:54 GMT
Connection: keep-alive
tukudhgg.vip/logotp/xpj200.gif
172.67.208.179200 OK 423 kB URL HTTP/2 tukudhgg.vip/logotp/xpj200.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 423 kB (422639 bytes)
Hash e9fbb3e8331bcc6b705b7bc3c44a22bb
6f1c2c9b38a1f5c31e0d59d8f2bec101b5cbb329
bb0c7a32e541641e9c3f5899048ec245463de2bc5efc698b1e6bc528e8e2951a
GET /logotp/xpj200.gif HTTP/1.1
Host: tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 422639
last-modified: Sat, 10 Sep 2022 08:46:22 GMT
etag: "631c4ede-672ef"
expires: Mon, 10 Oct 2022 14:18:01 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1902271
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X122UwDpLlZJr6%2F7dCHah9LGBb5LWY9XrEw8IxFRSC6nm6xM6GFOfqHBXVB0EnaxD2FW4h8lWzgSiW3KBQqEt5xdgMlEq0c%2B%2B2QfSTiHCYYyymTqIXijUaHv%2BaSRbR8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e368948b01c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
raw.githubusercontent.com/laosu9898/shantu/main/960x240.gif
185.199.108.133200 OK 473 kB URL HTTP/2 raw.githubusercontent.com/laosu9898/shantu/main/960x240.gif
IP 185.199.108.133:0
File type GIF image data, version 89a, 960 x 240\012- data
Size 473 kB (473262 bytes)
Hash 684975669f3b5ba70edcd50162b63ec7
263b1e0cb976ff53e2c20842bbc70ea2da74a4e3
df3cfebd0dcd82ea8335969d8c2bbb8b1c71a307fd40c1ca7f52e6d0c5e07d6a
GET /laosu9898/shantu/main/960x240.gif HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: image/gif
etag: W/"69409335def275b79efcbf7873744be9fae24fec05ff84dd0e622165171add37"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 0807:6D17:161B28:1DB97B:6339A3AA
accept-ranges: bytes
date: Sun, 02 Oct 2022 14:43:54 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664721834.077273,VS0,VE290
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: 596a5e130bf0df3353dc622969b8c9aee763f8bf
expires: Sun, 02 Oct 2022 14:48:54 GMT
source-age: 0
content-length: 473262
X-Firefox-Spdy: h2
www.tukudhgg.vip/logotp/swrhe.gif
172.67.208.179200 OK 156 kB URL HTTP/2 www.tukudhgg.vip/logotp/swrhe.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 156 kB (156311 bytes)
Hash c1cd6fbcc60e4242fb31eb894d7d9450
1b0a2ba85f38fa452a391250067e916ac7b61345
aca31490b0e0478395648fb5f6ce318b56a4a443c7a64e069c71cee6c0f0bb44
GET /logotp/swrhe.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 156311
last-modified: Wed, 08 Jun 2022 08:25:23 GMT
etag: "62a05cf3-26297"
expires: Fri, 28 Oct 2022 08:05:15 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 329254
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2BT9i9fR7tSES4%2FZBggOrj7vm72h%2BxAwAo79%2FJao5Mkh4X2hAZuCCPjN78sTlYEkiCRxUFuno%2BSO%2Bs3Ejf%2F36ncz3RsNv6fyZ1T3JDUsC3moJ9fPWoJNdrJn31XZcnTgikVV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e368958bc1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
IP 142.250.74.3:0
Hash 912e6b2f9785c3cf091a2b1eb4fe3977
6fe37de66bd5b2435ebe60cf205bebc0b9635245
f91f69b8cfc0f43ed743c3d21f9a169e2e70938dcc53ca6fffa9c7507ad408d4
POST /s/gts1p5/QOjNzpBth-A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 14:43:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94e347f56bf9a634c73f50d8c54d9e4f
0e9c2fe707000d0848a1cc18e4add80fd28181f9
fd0916b236edc71ac1b0273ecc99abed57ed497aa05913eb1174bbbd63f2f725
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD0916B236EDC71AC1B0273ECC99ABED57ED497AA05913EB1174BBBD63F2F725"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16908
Expires: Sun, 02 Oct 2022 19:25:42 GMT
Date: Sun, 02 Oct 2022 14:43:54 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/QOjNzpBth-A
IP 142.250.74.3:0
Hash 912e6b2f9785c3cf091a2b1eb4fe3977
6fe37de66bd5b2435ebe60cf205bebc0b9635245
f91f69b8cfc0f43ed743c3d21f9a169e2e70938dcc53ca6fffa9c7507ad408d4
POST /s/gts1p5/QOjNzpBth-A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 14:43:54 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tupkku.top/logotp/xfb66.gif
104.21.51.97200 OK 624 kB URL HTTP/2 tupkku.top/logotp/xfb66.gif
IP 104.21.51.97:0
File type GIF image data, version 89a, 145 x 145\012- data
Size 624 kB (623748 bytes)
Hash a32d51e341cd89abbece4c69d304f22d
66079b18e75f9469f4be074e9bc02ba0d85c4361
a9dfe27cd3c4cfd68f0deb55a593bcac7f77494883c5dc7dbe6f1301e150ab9d
GET /logotp/xfb66.gif HTTP/1.1
Host: tupkku.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 623748
last-modified: Fri, 15 Apr 2022 17:52:24 GMT
etag: "6259b0d8-98484"
expires: Sat, 29 Oct 2022 06:27:39 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 248708
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dX63dOZC2JvY6N8sza%2F4a7CVYpPiGXcVhJ%2FIe8hweyrX2UoEzD28%2BLAHmgVrsHp7Zm45P%2Bhh0whUNedfocGUykB1NzSenJG%2Fcd0%2FV%2BVjlEJtaeQQiTG3bkUIgVwf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3689ac54b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tupkku.top/lm/se5.gif
104.21.51.97200 OK 397 kB IP 104.21.51.97:0
File type GIF image data, version 89a, 320 x 180\012- data
Size 397 kB (396964 bytes)
Hash 7b42e791e269b8425a0f380efdd8e5fd
10c09c8f711478c7aeccc988c076d299fafcbbfa
00ef96678470106e95be9f6f4dc07debbbb63a96db839adbf17e5e04e27caf60
GET /lm/se5.gif HTTP/1.1
Host: tupkku.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 396964
last-modified: Wed, 25 May 2022 14:04:51 GMT
etag: "628e3783-60ea4"
expires: Sun, 30 Oct 2022 20:17:53 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 112490
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jTm9mBCf3W1agvq2THJ%2FaVkOj2paeJV9OxL%2FeyQoiPkJV47DruyX5fdMEv99FcRgL9b1tyQvmAhYRVmZyzN6EKtOHmSUKVtBAda7Ot6yrBrXK3wxO%2Fy5K9qxYEnn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753e3689ac50b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/images/2022/05/23/youma22605.jpg
172.247.77.90200 OK 201 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22605.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 201 kB (201046 bytes)
Hash b23c810d38de6da2a7ed8a4d36aa9d89
c69b2a3a2cebc5a1369651038630510b4166be0e
f31fd09db96504f3973f38f88892ec8a4d8c5277f92b9ee55ee64e76616670e9
GET /images/2022/05/23/youma22605.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 201046
Last-Modified: Wed, 10 Aug 2022 11:43:11 GMT
Connection: keep-alive
ETag: "62f399cf-31156"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22610.jpg
172.247.77.90200 OK 199 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22610.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 199 kB (199183 bytes)
Hash a887bc95a692a2f192a11acdacf8ef83
18f0f32690eaf4536143369b85b3689f2291452b
b5920cc3d2a17aa0bed8437f15dd5ac5ebf11131b7bfd7acb56db56b32e94292
GET /images/2022/05/23/youma22610.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 199183
Last-Modified: Wed, 10 Aug 2022 11:53:39 GMT
Connection: keep-alive
ETag: "62f39c43-30a0f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash adbcd2ee8e2c2e561442b3191d245cc9
0b8556423d26d39be6f67f9fd40ade0c64ccae16
745d42c766b0aed6ed6acd6357632b28ddded37d5abec2549ff2adaf25c1af23
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "745D42C766B0AED6ED6ACD6357632B28DDDED37D5ABEC2549FF2ADAF25C1AF23"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15376
Expires: Sun, 02 Oct 2022 19:00:10 GMT
Date: Sun, 02 Oct 2022 14:43:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash caacc1a4ceccd6eba61041fdb92e8786
cf494c7788c94c8f7976ddddd4d00109791e8c7b
5d0d4a7adcb9d5e37006e169165829c846c00f0cd599e6c84e7f8a4a20e468ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D0D4A7ADCB9D5E37006E169165829C846C00F0CD599E6C84E7F8A4A20E468ED"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12668
Expires: Sun, 02 Oct 2022 18:15:02 GMT
Date: Sun, 02 Oct 2022 14:43:54 GMT
Connection: keep-alive
hm.baidu.com/hm.js?1c9804a0eb65ec1dc593fa6a26c86511
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1c9804a0eb65ec1dc593fa6a26c86511
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (627)
Hash 6c465c819f5f68d7384395d2e3dfb052
4b7e4be5a2a93e32b00cc63a5746636fe8877ba9
ce0f8ae588b8c82c2f7357372ff408d241c771e9d1210b69b1d859c9b14a5574
GET /hm.js?1c9804a0eb65ec1dc593fa6a26c86511 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11340
Content-Type: application/javascript
Date: Sun, 02 Oct 2022 14:43:54 GMT
Etag: c0c92fc9784c8207b65245da42ce8ffb
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=5D4B13DF9E280F6F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ddcdn.comtucdncom.com/images/2022/05/23/youma22608.jpg
172.247.77.90200 OK 158 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22608.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 158 kB (158463 bytes)
Hash 874ce969de059599e48505749db30465
bf803f09377867a89267b5efb32b33e4efd269b1
1f04f72ecf6b8de1d0279d6c90eff242fd112ea1052dde66309d86956c645bd2
GET /images/2022/05/23/youma22608.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 158463
Last-Modified: Wed, 10 Aug 2022 11:50:09 GMT
Connection: keep-alive
ETag: "62f39b71-26aff"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22604.jpg
172.247.77.90200 OK 190 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22604.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 190 kB (190228 bytes)
Hash 9cc5349be4eebd473179b16e1aa83359
04d66b2574a542f0d9b9365f1f23c59cc57d363d
d11b7b0897249bf850f04709dd3b5d91cda53a26a2188f60e48f4c0c62c6d209
GET /images/2022/05/23/youma22604.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 190228
Last-Modified: Wed, 10 Aug 2022 11:52:23 GMT
Connection: keep-alive
ETag: "62f39bf7-2e714"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22606.jpg
172.247.77.90200 OK 208 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22606.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 208 kB (208491 bytes)
Hash c027c6668762d99dd2e63c380e3415a3
dba7ec60eb93ac02a99e6e43afd42ecb3a33fdbd
47454099d57483be8661a4a5c136e2618e42698beed4bfde8487963f014b0bd8
GET /images/2022/05/23/youma22606.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 208491
Last-Modified: Wed, 10 Aug 2022 12:00:28 GMT
Connection: keep-alive
ETag: "62f39ddc-32e6b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22607.jpg
172.247.77.90200 OK 217 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22607.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x535, components 3\012- data
Size 217 kB (217143 bytes)
Hash 52233438bdc909bb482bb64fae24521e
ab3ad12e9937be4fb71ffc6ff9e418b7b3939a3c
238609192d929b4d04585487085b8ffa753b32443c8b0693a32e8a5341498e51
GET /images/2022/05/23/youma22607.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 217143
Last-Modified: Wed, 10 Aug 2022 11:56:23 GMT
Connection: keep-alive
ETag: "62f39ce7-35037"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22612.jpg
172.247.77.90200 OK 233 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22612.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 233 kB (232788 bytes)
Hash 1ea1d12a4b88756c1615fb2ac271bbbf
943bc4f50379bc6dcb2448b8e0bf6e7043beb2c6
0a2b9ff25c444dfb8bd6c57cfe92da3b4de6d25dd07995411b9184bf521a6d9c
GET /images/2022/05/23/youma22612.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 232788
Last-Modified: Wed, 10 Aug 2022 11:39:30 GMT
Connection: keep-alive
ETag: "62f398f2-38d54"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/23/youma22609.jpg
172.247.77.90200 OK 237 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/23/youma22609.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 237 kB (236930 bytes)
Hash 5e53d4bb111c0b1bd22614c6a7338c68
3cfc359a5112954d6d567b463d6f06d5660d7891
750d0650e28bd3b27d018748b45681e5d762388f3a0502c5c4869e4004aae5e5
GET /images/2022/05/23/youma22609.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:43:59 GMT
Content-Type: image/jpeg
Content-Length: 236930
Last-Modified: Wed, 10 Aug 2022 11:49:14 GMT
Connection: keep-alive
ETag: "62f39b3a-39d82"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/20/kj21767.jpg
172.247.77.90200 OK 174 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/20/kj21767.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 174 kB (174105 bytes)
Hash fb750ea59998870705f5f72f8f563592
5bc5929bbc0ef847bea7a0906e466018fedfca8c
3c951b1a1b0a0da6ad4f0f65e71ee6d70d3473a89e48415b9bcbcfbfa121468f
GET /images/2022/05/20/kj21767.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 174105
Last-Modified: Wed, 10 Aug 2022 11:35:04 GMT
Connection: keep-alive
ETag: "62f397e8-2a819"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/20/youma22579.jpg
172.247.77.90200 OK 170 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/20/youma22579.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Size 170 kB (170441 bytes)
Hash 4b226b2e728fd7d9b8121ee8b9e8f1a2
2fc934f7b41fabdeb857d172536aca10274cb83c
c5e2dfb51a3472d0dc88882e8acafdd335400a34f369786a309966e5017df9c6
GET /images/2022/05/20/youma22579.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 170441
Last-Modified: Wed, 10 Aug 2022 11:38:56 GMT
Connection: keep-alive
ETag: "62f398d0-299c9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/20/youma22587.jpg
172.247.77.90200 OK 168 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/20/youma22587.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x505, components 3\012- data
Size 168 kB (168134 bytes)
Hash 5b17028c0867e972e578d13be95edf02
33fb150d34eba6550930cec4465648943cec3c2a
4db1e4f5c881c7b2eefc5803f7b497cd6eaf377deb9e4e39c953702973cde4f4
GET /images/2022/05/20/youma22587.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 168134
Last-Modified: Wed, 10 Aug 2022 11:49:50 GMT
Connection: keep-alive
ETag: "62f39b5e-290c6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/20/youma22578.jpg
172.247.77.90200 OK 134 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/20/youma22578.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 134 kB (133672 bytes)
Hash d8caf59c76de0b07881ea95d8339ef83
6ed55a59b0c9710030c8a83a94d67349949a9049
ec4365ee6a9d17057c4a83c3f15b99543f243c0f3fa06e59d1d17d91172f7fa9
GET /images/2022/05/20/youma22578.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 133672
Last-Modified: Wed, 10 Aug 2022 11:35:30 GMT
Connection: keep-alive
ETag: "62f39802-20a28"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sesejs.top/ggdy/shf.js
154.82.85.209200 OK 7.5 kB IP 154.82.85.209:0
Hash f6771f34980cc9ae04f17f7456b76538
65a308c585ba4ffe600fc0b166396d4a080f66ca
b81d42e110c32638dbd61f219737e9150bd23846f918f0740c6ef2c62219f63f
GET /ggdy/shf.js HTTP/1.1
Host: sesejs.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:45:24 GMT
content-type: application/javascript
last-modified: Sun, 02 Oct 2022 09:26:47 GMT
vary: Accept-Encoding
etag: W/"63395957-f85"
expires: Mon, 03 Oct 2022 02:45:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=13526158&si=1c9804a0eb65ec1dc593fa6a26c86511&su=http%3A%2F%2F154.82.85.204%2F&v=1.2.97&lv=1&sn=1765&r=0&ww=1280&ct=!!&u=https%3A%2F%2Fwww.seys863.vip%2F&tt=%E6%B6%A9%E6%B6%A9%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=13526158&si=1c9804a0eb65ec1dc593fa6a26c86511&su=http%3A%2F%2F154.82.85.204%2F&v=1.2.97&lv=1&sn=1765&r=0&ww=1280&ct=!!&u=https%3A%2F%2Fwww.seys863.vip%2F&tt=%E6%B6%A9%E6%B6%A9%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=13526158&si=1c9804a0eb65ec1dc593fa6a26c86511&su=http%3A%2F%2F154.82.85.204%2F&v=1.2.97&lv=1&sn=1765&r=0&ww=1280&ct=!!&u=https%3A%2F%2Fwww.seys863.vip%2F&tt=%E6%B6%A9%E6%B6%A9%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 02 Oct 2022 14:43:55 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=1BC760D79148751C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ddcdn.comtucdncom.com/images/2022/05/20/youma22588.jpg
172.247.77.90200 OK 198 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/20/youma22588.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 198 kB (198205 bytes)
Hash 383f574456caee91a78abc24a029747e
0e374293aff972ad70912daf45b0c04d3d24d4b7
941ca59eebe1d3c15c1fc0b9786af9bfdf86b3dd26b03fd916d2ebed7b5c3b5c
GET /images/2022/05/20/youma22588.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 198205
Last-Modified: Wed, 10 Aug 2022 11:54:14 GMT
Connection: keep-alive
ETag: "62f39c66-3063d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/images/2022/05/20/kj21762.jpg
172.247.77.90200 OK 170 kB URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/20/kj21762.jpg
IP 172.247.77.90:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x538, components 3\012- data
Size 170 kB (170097 bytes)
Hash e4ef27a73c0b6a7e3938d55a05921f76
436a295d919f1ee0665107033bbe0b158920fa08
04186d8922a32851c983a42078211e5e8bdebec6aeb0dca78d9f1e794c59efd6
GET /images/2022/05/20/kj21762.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 170097
Last-Modified: Wed, 10 Aug 2022 11:37:49 GMT
Connection: keep-alive
ETag: "62f3988d-29871"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
taiwtp1.com/img/200200.gif
220.128.218.220200 OK 0 B URL HTTP/2 taiwtp1.com/img/200200.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
GET /img/200200.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:42:05 GMT
content-type: image/gif
content-length: 75259
last-modified: Wed, 09 Mar 2022 04:51:10 GMT
etag: "6228323e-125fb"
expires: Tue, 01 Nov 2022 14:42:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fsadcx1.com/tu/yuepao2.gif
23.225.3.254200 OK 0 B URL HTTP/2 fsadcx1.com/tu/yuepao2.gif
IP 23.225.3.254:0
GET /tu/yuepao2.gif HTTP/1.1
Host: fsadcx1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:43:54 GMT
content-type: image/gif
content-length: 1006638
last-modified: Mon, 04 Jul 2022 11:59:09 GMT
etag: "62c2d60d-f5c2e"
expires: Tue, 01 Nov 2022 14:43:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
sesejs.top/ggdy/lm.js
154.82.85.209200 OK 0 B IP 154.82.85.209:0
GET /ggdy/lm.js HTTP/1.1
Host: sesejs.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:45:24 GMT
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 15:00:21 GMT
vary: Accept-Encoding
etag: W/"630e2605-5f0"
expires: Mon, 03 Oct 2022 02:45:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ddcdn.comtucdncom.com/images/2022/05/20/kj21772.jpg
172.247.77.90200 OK 0 B URL HTTP/1.1 ddcdn.comtucdncom.com/images/2022/05/20/kj21772.jpg
IP 172.247.77.90:0
GET /images/2022/05/20/kj21772.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 171845
Last-Modified: Wed, 10 Aug 2022 11:46:41 GMT
Connection: keep-alive
ETag: "62f39aa1-29f45"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ddcdn.comtucdncom.com/upload/vod/20210801-1/7ba2dcb873c28afd8c7dc18841f0e907.jpg
172.247.77.90200 OK 0 B URL HTTP/1.1 ddcdn.comtucdncom.com/upload/vod/20210801-1/7ba2dcb873c28afd8c7dc18841f0e907.jpg
IP 172.247.77.90:0
GET /upload/vod/20210801-1/7ba2dcb873c28afd8c7dc18841f0e907.jpg HTTP/1.1
Host: ddcdn.comtucdncom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sun, 02 Oct 2022 14:44:00 GMT
Content-Type: image/jpeg
Content-Length: 219563
Last-Modified: Wed, 10 Aug 2022 11:35:36 GMT
Connection: keep-alive
ETag: "62f39808-359ab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sesejs.top/ggdy/spq.js
154.82.85.209200 OK 0 B IP 154.82.85.209:0
GET /ggdy/spq.js HTTP/1.1
Host: sesejs.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:45:24 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 10:39:25 GMT
vary: Accept-Encoding
etag: W/"6336c75d-62e"
expires: Mon, 03 Oct 2022 02:45:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.seys863.vip/template/m1938pc/css/zui.css
156.240.215.235200 OK 0 B URL HTTP/2 www.seys863.vip/template/m1938pc/css/zui.css
IP 156.240.215.235:0
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: www.seys863.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 03:27:33 GMT
content-type: text/css
last-modified: Thu, 26 May 2022 14:47:47 GMT
vary: Accept-Encoding
etag: W/"628f9313-1679e"
expires: Sun, 02 Oct 2022 15:27:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
sesejs.top/ggdy/wz.js
154.82.85.209200 OK 0 B IP 154.82.85.209:0
GET /ggdy/wz.js HTTP/1.1
Host: sesejs.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.seys863.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:45:24 GMT
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 10:39:52 GMT
vary: Accept-Encoding
etag: W/"6336c778-1ad1"
expires: Mon, 03 Oct 2022 02:45:24 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2