r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3827
Expires: Wed, 01 Feb 2023 18:14:06 GMT
Date: Wed, 01 Feb 2023 17:10:19 GMT
Connection: keep-alive
www.htjfdb.com/gff8wo_/
200 OK 513 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (688), with CRLF line terminators
Hash 8b3e31468b10949212cb9a6ac5de036f
6308a2402749cbbf1c5ec1abe9ca3bacf8b189be
4e4b3bda1cc354bdb9559d76013bc709450b1913af858623347b92171378a76e
GET /gff8wo_/ HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 17:10:18 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5688
Expires: Wed, 01 Feb 2023 18:45:08 GMT
Date: Wed, 01 Feb 2023 17:10:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18406
Expires: Wed, 01 Feb 2023 22:17:06 GMT
Date: Wed, 01 Feb 2023 17:10:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 16:43:25 GMT
content-type: application/json
age: 1615
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4woT9WeOYImUHdxih9iXdfhBl2VBxNgHbEBOYx0bEfg9ihYDBdJhllK9+3k1UeazB7cJzgE6Ei4=
x-amz-request-id: S3X4YGAF6GJR0283
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 16:22:44 GMT
age: 2856
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 17:10:20 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.htjfdb.com/tj.js
200 OK 258 B IP
File type ASCII text, with CRLF line terminators
Hash 7b0ed5cf52b152b24f7b35b23716cb6e
c5304744e4ecf5d7d8b4a94fece3be45c2d66436
c22ab963898545ff10e0c0dc4d72ecacd53c30dbcc0b97b35431246172f51861
GET /tj.js HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/gff8wo_/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 17:10:19 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.htjfdb.com/common.js
200 OK 681 B IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 3cb1c90c04f81b3c5e007bbb7a158420
a650a21fd616d5278524f64f6576ef844d169a7b
0dd610d3df6cba8b091f76701fe8be95e56f066a862507d74c0e3b1761b95601
GET /common.js HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/gff8wo_/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 17:10:19 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.htjfdb.com/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 www.htjfdb.com/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.htjfdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/gff8wo_/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 17:10:19 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Mon, 06 Feb 2023 17:10:19 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 16:49:05 GMT
age: 1275
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4184
Expires: Wed, 01 Feb 2023 18:20:04 GMT
Date: Wed, 01 Feb 2023 17:10:20 GMT
Connection: keep-alive
sgnnusyd.top/
200 OK 4.6 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2ce941238cde23a845065e8cf266f439
ff403eeafc420a43005d9342e890f14ed7c0a002
4c288847b6e9f65f2e8e53c1d937e3875def7c3482353b1af704890e3050b912
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.htjfdb.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:20 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oJWD%2Fw09fKUza4vZASGTYoJdjymeDzb63CDXHUqHed4FcfRiQdiVdtfMFh1T7QdwUS8zEwa%2BskurPLaW1xqpkC04FBYo6AR94xy2CLNb3OfmaPTN%2BeYO5yQQhP%2BW2Bc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cca4b32b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash afeb57852b2d9ba4f1f10c523e1c1448
37ceed011ac88188be714eaa6e8788f33c57fd6d
0583c3a45abdcca2c58d00cb8900f1736444de08dd0f7007921cd811be360073
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 05 Feb 2023 14:58:20 GMT
ETag: "37ceed011ac88188be714eaa6e8788f33c57fd6d"
Last-Modified: Wed, 01 Feb 2023 14:58:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 903
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4ccccd500b02-OSL
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 63c7cd7248374a479a89d61771eca500
592bf42306d45b6cbdb7d1d1cf64fa778b3ba1c4
155d8eed2aa118d4a9a4d6329370cffbb9fa8a4b4b3f5b02a29550e606220ab8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155D8EED2AA118D4A9A4D6329370CFFBB9FA8A4B4B3F5B02A29550E606220AB8"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Wed, 01 Feb 2023 18:34:40 GMT
Date: Wed, 01 Feb 2023 17:10:21 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 63c7cd7248374a479a89d61771eca500
592bf42306d45b6cbdb7d1d1cf64fa778b3ba1c4
155d8eed2aa118d4a9a4d6329370cffbb9fa8a4b4b3f5b02a29550e606220ab8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155D8EED2AA118D4A9A4D6329370CFFBB9FA8A4B4B3F5B02A29550E606220AB8"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Wed, 01 Feb 2023 18:34:40 GMT
Date: Wed, 01 Feb 2023 17:10:21 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 63c7cd7248374a479a89d61771eca500
592bf42306d45b6cbdb7d1d1cf64fa778b3ba1c4
155d8eed2aa118d4a9a4d6329370cffbb9fa8a4b4b3f5b02a29550e606220ab8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155D8EED2AA118D4A9A4D6329370CFFBB9FA8A4B4B3F5B02A29550E606220AB8"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Wed, 01 Feb 2023 18:34:40 GMT
Date: Wed, 01 Feb 2023 17:10:21 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 63c7cd7248374a479a89d61771eca500
592bf42306d45b6cbdb7d1d1cf64fa778b3ba1c4
155d8eed2aa118d4a9a4d6329370cffbb9fa8a4b4b3f5b02a29550e606220ab8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155D8EED2AA118D4A9A4D6329370CFFBB9FA8A4B4B3F5B02A29550E606220AB8"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Wed, 01 Feb 2023 18:34:40 GMT
Date: Wed, 01 Feb 2023 17:10:21 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 63c7cd7248374a479a89d61771eca500
592bf42306d45b6cbdb7d1d1cf64fa778b3ba1c4
155d8eed2aa118d4a9a4d6329370cffbb9fa8a4b4b3f5b02a29550e606220ab8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "155D8EED2AA118D4A9A4D6329370CFFBB9FA8A4B4B3F5B02A29550E606220AB8"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5059
Expires: Wed, 01 Feb 2023 18:34:40 GMT
Date: Wed, 01 Feb 2023 17:10:21 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 94CAepKNA/3Dkd7Ft9MOhQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KlLl8NV0BTt5GMSMLbVqEFXsE1E=
sgnnusyd.top/template/smmmsp/assets/css/common/style.css
200 OK 3.5 kB URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/style.css
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 66cb8aa56779e7bb6c8372deea7a9335
466dabea62174668da14a602dd5e4172df88c48a
8af809a347ae484242398ac680f5be8092da7a1ebc160792f81eaa7987190ab6
GET /template/smmmsp/assets/css/common/style.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 29 Apr 2020 12:40:16 GMT
Vary: Accept-Encoding
ETag: W/"5ea975b0-48a2"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L6J2qI693gF0KoPyNH%2BSmIoil7EmPZCDDPrqb6zINQgY%2BCqNm7kCop%2FZ3MFrJf50magHvs8MUDgBdKjFFrMEN6dAZOJUsDxfZjw6Xh9LVGjzEjrkufDGfrIQlX0tyeM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cccef4ab512-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/main.css
200 OK 549 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/main.css
IP
File type ASCII text, with CRLF line terminators
Hash 08b2e4bfeba023ec56e6a5d661ee59a7
331d65e1c07c021ac57febff6cbb3b7b7eb48186
d3846565e87aab70c9c517e975f30237535c1e8ac662706b68390c2f6e1bd9b6
GET /template/smmmsp/assets/css/custom/main.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:47:24 GMT
Vary: Accept-Encoding
ETag: W/"5c7a431c-7cd"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hobaxRbuKO4BZogShSHQegN7aNywADGEgQ9qzhECjAGewkTvnVp%2FzGi03aFsDLjVK%2FydY9e0WQAgrtD6xVC5dkHwQ8nFGuvoo79l%2BxYu192t%2BRLiC1CMKwhYdQP%2FdgY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4ccce992b4f9-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/header.css
200 OK 517 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/header.css
IP
File type ASCII text, with CRLF line terminators
Hash 0bb0fa81ed0f205181328e7758425737
8b9c97fbd73a1ac33397bfa5c26aac27a0557bd1
17024888daa4bf01f5097c4fc9e3c6fcdf09293ac13cf588a60a0ce424fb8bd0
GET /template/smmmsp/assets/css/custom/header.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:48:10 GMT
Vary: Accept-Encoding
ETag: W/"5c7a434a-5c8"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=okGZ66gHI8cCaeIs7BSXRAOSIK7EdxvRBx0wb9CfDrTTGOUMrmGQfla8j2WMd1KGJxNNLSH9AjgbPyk8Sj4zD1ux4QSY6VCy%2B7JH0xuQNLwFb31WhCAk07FuU%2FlGAIM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cccec85b51d-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/banner.css
200 OK 321 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/banner.css
IP
File type ASCII text, with CRLF line terminators
Hash 66e2134420e87365212f3432572d53a7
5ddf9c38c9b25f615d57d9a48eae0807ff6c2958
8fd908d798c5bd16d0a0f9d0d7dfd24d0b360c1dd8ec0bc8b66c9b55f3014ac6
GET /template/smmmsp/assets/css/custom/banner.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:47:46 GMT
Vary: Accept-Encoding
ETag: W/"5c7a4332-49c"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FCXb5XH4ze%2F5npbTNQpVcu5g0rZGbf%2BJcLVAOitsbCurZSH%2Biu98Vxai%2BDOM%2BOYJtA3O5vRC2zwXVLtIYzVcEJ314P3FTSbwbpzbyO8ohkqOWRfojWXEEFAYQnXFRlI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4ccced25b4f1-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/menu.css
200 OK 938 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/menu.css
IP
File type ASCII text, with CRLF line terminators
Hash 5e9b4ea54bc46458dfac766b78829488
4bddb65ff8ba79a92d746da36efa218027b77116
0ead24b794fe0231b7f445698e80911aa1774f6e9b499383d7e15f0fc8a8d6ad
GET /template/smmmsp/assets/css/custom/menu.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:48:48 GMT
Vary: Accept-Encoding
ETag: W/"5c7a4370-1c3c"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aafRuqPVZLZHoHqKEiMLfM6qAJPCQnaxqg0Owdi6jL5WoVEAZU5dg%2Bvh%2FqRRFQ834fmqJX0hy%2Fb4rnsFbx50OgV44RWUtvyfT6Kyzb7TIvyHTIlZdrxQ7lvym1J8YlQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cccf8750b4d-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/custom/footer.css
200 OK 191 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/footer.css
IP
File type ASCII text, with CRLF line terminators
Hash 965c36f19e7092d48b083b9a9b69f169
77bc1fae75919cf2da412c4300a2e4d9307517e0
de90b36509f77eb3bb1c7d17361aa5294dee501bcad6eb4f788e23d3eef91951
GET /template/smmmsp/assets/css/custom/footer.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:49:08 GMT
ETag: W/"5c7a4384-242"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NvbxVigqcvdz6%2BhILhqRG8sxv6qWAcUdIgx9TrOPT3KkskRZ1QbxsGlDlcAOqwOsTG%2BzdyFZdtH%2BDY8CplrfxBF%2F9yqZ4ywDtrT3OkTX5GewdC3i1wupkj0DyJAHpqs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4cccf9c3b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sgnnusyd.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 655 B URL HTTP/1.1 sgnnusyd.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
File type HTML document, ASCII text, with very long lines (1238)
Hash bc3ba461c8a309acf61b6d9c41cb6236
88482306ecc9258d5e9cbb9ba5314dab223a5db4
31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 14:59:41 GMT
ETag: W/"63d7db5d-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1z1lYBYJ6ceXs9WVBQIK8AeMpxdzyJJEjYGWzdMqZ%2FBqeoyYviXHzAXE67M6uQt9or0tx1WT9L4dAj8lojdJz7mMiTqaeduXH9VHp5Rk3fNqc2ssJRWWx12hg3sB0pw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4ccf2d2ab4eb-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Fri, 03 Feb 2023 17:10:21 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/ch1b3g0luop1749ch1b3g0luop564843.jpg
200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/ch1b3g0luop1749ch1b3g0luop564843.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash d5ff5229d0e8d309ff135f35b15b7166
068822ed896536ee034773652cfc5aabed87a53d
095164023ecf0f27f3ee847158f9ac60f84794752875ffd033605c2230ec8b31
GET /upload/vod/2021/06-22/17/ch1b3g0luop1749ch1b3g0luop564843.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/jpeg
content-length: 11030
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11666, status=webp_bigger
etag: "60d1b244-2d92"
last-modified: Tue, 22 Jun 2021 09:49:56 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4ccdbe1cb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/mwxjuuefr1l1749mwxjuuefr1l244809.jpg
200 OK 9.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/mwxjuuefr1l1749mwxjuuefr1l244809.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4439df86e95746fc01e25776584035bb
899b0e8db51d275ec13b7f75e338c9cee668b34d
8352d4d413ac0bab8beb83ed6ecdf7fdf3c37a784c94a56c04c1f7b9c1c81560
GET /upload/vod/2021/06-22/17/mwxjuuefr1l1749mwxjuuefr1l244809.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/webp
content-length: 9656
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10312
content-disposition: inline; filename="mwxjuuefr1l1749mwxjuuefr1l244809.webp"
etag: "60d1b239-2848"
last-modified: Tue, 22 Jun 2021 09:49:45 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792c4ccdbe24b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/whopfk3v1up1749whopfk3v1up464814.jpg
200 OK 7.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/whopfk3v1up1749whopfk3v1up464814.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1290e1ac09d50124cac7d7c2bc4359e6
482ac933a9ca065de8ac6e9f2ca99705d7924af6
a8fd083a6a7cacaef5fa83436094730099733ad4c37a5b47068bba2bc4da8d60
GET /upload/vod/2021/06-22/17/whopfk3v1up1749whopfk3v1up464814.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/webp
content-length: 6958
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8356
content-disposition: inline; filename="whopfk3v1up1749whopfk3v1up464814.webp"
etag: "60d1b23a-20a4"
last-modified: Tue, 22 Jun 2021 09:49:46 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792c4ccdbe23b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/vnzqyxfs0ez1750vnzqyxfs0ez004848.jpg
200 OK 4.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/vnzqyxfs0ez1750vnzqyxfs0ez004848.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e222605e0a41a95808cb2daac7e767da
7b82ef7394badca30517844f336162ed9bf65e83
706bacb26a8528db04ec3122fd176d578a95c0fa2ed2bba8765280aa3141c3cd
GET /upload/vod/2021/06-22/17/vnzqyxfs0ez1750vnzqyxfs0ez004848.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/webp
content-length: 4170
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6784
content-disposition: inline; filename="vnzqyxfs0ez1750vnzqyxfs0ez004848.webp"
etag: "60d1b248-1a80"
last-modified: Tue, 22 Jun 2021 09:50:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792c4ccdbe22b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/tfp0kgn3js41749tfp0kgn3js4554839.jpg
200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/tfp0kgn3js41749tfp0kgn3js4554839.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9454d205c1313e1e28b603d29612d5c1
74c686f2f7dba3c61b01642f4b124b727c012459
8edff0fd5299971ac83f5a8a28cf913bca00605514812774d60eb8dd003c0ee9
GET /upload/vod/2021/06-22/17/tfp0kgn3js41749tfp0kgn3js4554839.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/webp
content-length: 8140
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9089
content-disposition: inline; filename="tfp0kgn3js41749tfp0kgn3js4554839.webp"
etag: "60d1b243-2381"
last-modified: Tue, 22 Jun 2021 09:49:55 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 792c4ccdbe19b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/xwimk3olh4p1749xwimk3olh4p484823.jpg
200 OK 9.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/xwimk3olh4p1749xwimk3olh4p484823.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash dcd4a77d12818aeb145ac2222588a5bd
85a6c05a16bfedfc10cce8c3d9f352a86faea9f2
85e36d9c958b02b0c1c63a4cced45f0c87eae308fcc7dc3fd1e753055435ba26
GET /upload/vod/2021/06-22/17/xwimk3olh4p1749xwimk3olh4p484823.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/jpeg
content-length: 9568
last-modified: Tue, 22 Jun 2021 09:49:48 GMT
etag: "60d1b23c-2560"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4ccdbe28b4ed-OSL
X-Firefox-Spdy: h2
sgnnusyd.top/template/smmmsp/assets/css/theme/default.css
200 OK 24 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/theme/default.css
IP
File type ASCII text, with no line terminators
Hash 45fdb73a80a833ea9b3a7707fcad0566
093d4fa40f57b35a96154fbe74fb5eb7376eda24
82871fdb8f75fa02a9f2a4c390da56fcdee1f4da212ebb27e345008c04530f7f
GET /template/smmmsp/assets/css/theme/default.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Content-Length: 24
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:50:38 GMT
ETag: "5c7a43de-18"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kKlp8DpaQcZERyvo3IExygw8L5PnFiiNWqsm6pU0ZZ9iDV8qq1iTQqPu5mWXv1hs7PZhlC%2B6LrZyBzzAPnJj8PqWRKml9q7dgLv8K1bogKXFALiitbIKnLEByA1PW08%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4ccefc64b4f9-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/js/common/juqery/jquery.js
404 Not Found 109 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/js/common/juqery/jquery.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /template/smmmsp/assets/js/common/juqery/jquery.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 404 Not Found
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B7yq%2FIfi5cgQXed1XGtkmR%2BpzOYYjlNLcNRvJwlcc7XnUCKWGQ37gS3GI%2FJOlNEMQR7RJwwsjr9DAk6k%2FgsPpbKbBcxbSgA0VUV50rI16zeNxPpMh2LdxNeMfihB%2B6I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4ccf0f79b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/dtacykglaav1749dtacykglaav594847.jpg
200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/dtacykglaav1749dtacykglaav594847.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 27f830306193f808117fc710c7502b04
b93ecd6595a62ca916f8680a38c925c09a2edf85
1f8945d88ee0e301fdd026d197be1e88a3afc4f928eac368df5c460a4d7b4b0a
GET /upload/vod/2021/06-22/17/dtacykglaav1749dtacykglaav594847.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/jpeg
content-length: 10508
last-modified: Tue, 22 Jun 2021 09:49:59 GMT
etag: "60d1b247-290c"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4ccdbe20b4ed-OSL
X-Firefox-Spdy: h2
sgnnusyd.top/template/smmmsp/assets/css/custom/img_list.css
200 OK 656 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/custom/img_list.css
IP
File type ASCII text, with CRLF line terminators
Hash 813a474b419fb5460acae1b3b978951e
2587685b7bcdc8bfc992d91e41b5c1239455b5df
92b54eb33215edf0c63ac28f6d3d4d1a0294fc4bab9893a8a8f274c7e46b4a6c
GET /template/smmmsp/assets/css/custom/img_list.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 11:24:28 GMT
Vary: Accept-Encoding
ETag: W/"5c7a67ec-cae"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NmQiJjHoHTVfpRIARwZjK6B9%2BzdvgAtYiCv6oL8P2vbF6gTgvBtV7lo%2F5Ay9w0xsuEy1TIx2FKN7U%2F%2Bn64cAp8GueQ857SoALz0qpwPk0x%2BiOzlRZFiTnfDyNHSrbiE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4ccf0856b4f1-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/flickity.min.css
200 OK 815 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/flickity.min.css
IP
File type ASCII text, with CRLF line terminators
Hash bc40d4e4a3fd99000dfcfe3d5f01bf1e
70630dc523095734c9975cbe9122c8598ec56275
05805a64e2b9412ca8cb1c2f13989a9db83761b62e7a074649fbba0f086e36c9
GET /template/smmmsp/assets/css/common/flickity.min.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:49:50 GMT
Vary: Accept-Encoding
ETag: W/"5c7a43ae-ab1"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BbfYVzjE%2FtKGgjZCkJfHI9S%2BtWwxmBZwLTUGNdSDe%2BTpUTDgK90RSEpoo08GdnibHOoZGXg7E02qarxULga0VF0qbW2GabnvtM2G8Ad6VCLXueSsJqGZZ%2B1N%2Fy5Pky0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4ccefab1b512-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/ads/2dl.js
200 OK 566 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/2dl.js
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (507), with CRLF line terminators
Hash cb2618285c9ac0baa29c7c2fab5a17c4
29c9ae7396dc3e4baba6f3e12d31a02012e3ee69
b3424cb960c839ade2dfb4b1a630770fde32d28638ebe2e9a4e28ddb3ff25f81
GET /template/smmmsp/ads/2dl.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 10:34:54 GMT
ETag: W/"63c91cce-360"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F5xwg6YgGirEI0Ibtz0ZEwmaJYiEG%2F7ZvDHIXnAGP4ndDBGeKY2EVJPCorFBauV0nBRhfCAogX8Trbjw1NUdhcZcDfAoJCC0joXkWgxncMkueySkf%2B2%2FTOJN9Jq2EhY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4ccf0a930b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/sajmtrucwri1749sajmtrucwri574845.jpg
200 OK 8.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/sajmtrucwri1749sajmtrucwri574845.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d45f4b13c9d503e631fb36e5c1b1296e
6d3041fd0d127ab9b752c7e90c11fb22f59089f8
36700ca09833f3033d0367aee9845deecd3f55dfb8e113e4fea4f6d076d3f4fe
GET /upload/vod/2021/06-22/17/sajmtrucwri1749sajmtrucwri574845.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/jpeg
content-length: 8311
last-modified: Tue, 22 Jun 2021 09:49:57 GMT
etag: "60d1b245-2077"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4ccdbe1eb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/se3apt002o01749se3apt002o0514831.jpg
200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/se3apt002o01749se3apt002o0514831.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 55c3d6123c0c360e6ab2c9302ed174ef
6853aa9ef41bfb2e5a3676d2c62401442d30f252
eb74df8258c7e00788a6b072147bfa429be61b3d5ce80d5ce6b3268bc86e38bb
GET /upload/vod/2021/06-22/17/se3apt002o01749se3apt002o0514831.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/jpeg
content-length: 10918
last-modified: Tue, 22 Jun 2021 09:49:52 GMT
etag: "60d1b240-2aa6"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4ccdce30b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2021/06-22/17/oyrbbw3xvqm1749oyrbbw3xvqm234807.jpg
200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2021/06-22/17/oyrbbw3xvqm1749oyrbbw3xvqm234807.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 99c8fd28994d2c81783c50784aa444f1
96e0201f7b5386aacdf182fe80bda763fce8d953
73573823a523c17a3faae53358fbf294f209b1b87b41c44564d0f3c8d8921c1f
GET /upload/vod/2021/06-22/17/oyrbbw3xvqm1749oyrbbw3xvqm234807.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:21 GMT
content-type: image/jpeg
content-length: 12908
last-modified: Tue, 22 Jun 2021 09:49:23 GMT
etag: "60d1b223-326c"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4ccdbe27b4ed-OSL
X-Firefox-Spdy: h2
sgnnusyd.top/template/smmmsp/ads/xx1.js
200 OK 402 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/xx1.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 866fea0bf8448410e3b905b147c265a7
c0d86a83955450c355fd81827065ce66519c1fe2
c88d042d1408c46cc75b8b33f493649b48dcfe3d7c08267f027cea0f11483166
GET /template/smmmsp/ads/xx1.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 11:06:15 GMT
Vary: Accept-Encoding
ETag: W/"63c68127-6df"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0czcT9cXfDH%2BFScTmneVDg6Ex19XehwYIsncZdALaT%2F6iruhCEe5hN3Fm9ePR7WPV%2BYrvXGm%2FnAwxWD4lgbyMVqMN3DvZsEhixLiTrgKhrBAZDWqtClsR5pal65Q5hM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4ccf3d3db4eb-OSL
alt-svc: h2=":443"; ma=60
hm.baidu.com/hm.js?ab312e1a1aa72763b1e7369ae6196eed
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?ab312e1a1aa72763b1e7369ae6196eed
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 1ae4ebfac424492eff7db4586e57fe05
578e976d04fa020087c718655b7de209ae3347c3
23937778a08a45de853d0bd649af324745797a1cfdc23c2b466cfce2a459f844
GET /hm.js?ab312e1a1aa72763b1e7369ae6196eed HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.htjfdb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Wed, 01 Feb 2023 17:10:21 GMT
Etag: 0236efb9a614ec837259af7a17330e36
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7E5A41A94608D73E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
sgnnusyd.top/template/smmmsp/ads/xx2.js
200 OK 214 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/xx2.js
IP
File type HTML document, ASCII text, with CRLF line terminators
Hash 5aeab064807fdfe2cb38ce1636ba3d46
85540d3bdccc4652e8b68e8fb1ddeff4c74dd99c
60f56369414fd7e9f3ff9a7d700614526aa980629edb02b27c6458d64ec6e086
GET /template/smmmsp/ads/xx2.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 11:06:15 GMT
ETag: W/"63c68127-1d7"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Re0hsLMsbm4iNUDEZx5Ux9JttYtBAt66C6ZcOoh5GrROT61cgCHw9Cfip1ZwTNCMAlfZmvcF3WFZYqQbubUb7ZZgx68cdEi0l4JBF%2Fmp0WC3%2BIyPLFMNzFRuvpIzXCQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4cd10f79b4f9-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/ads/xx3.js
200 OK 400 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/ads/xx3.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 4278cddb28bcee78a6953ed41ff61d16
e533d209f02d4efef33c129c4b97862c7a0488b8
2d464bdcc0c676c20115a1e215eb49ec6c0fbecfe936d254383bdf302a2aad10
GET /template/smmmsp/ads/xx3.js HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 15 Jan 2023 07:05:27 GMT
Vary: Accept-Encoding
ETag: W/"63c3a5b7-51d"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izqlI1ySocNMN%2FVGGF0ySAbIb0Qyfiz78RPkiO94DRlOY%2FpvtJh%2B8SYe8gMxThaYzXqBRQAIyS3T%2BxCOlzjYYaHvZXY7i0JpxWu%2B3KG8zXUFVT38BJgsqY6my6Ly2KU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cd10b18b51d-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/common.css
200 OK 528 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/common.css
IP
File type assembler source, ASCII text, with CRLF line terminators
Hash 20cb2d9dcda1d9384faff84dccc54b34
53415d1e6f671fdbd93608a26335d66aeddbf72b
b3e62e6ede81f54ed5c4621c96b47da7226499766278004c8ab7686771b45a31
GET /template/smmmsp/assets/css/common/common.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:45:28 GMT
Vary: Accept-Encoding
ETag: W/"5c7a42a8-5e2"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7n3ncpefwy7iOnYrGMDBg8KA3WExeKyK%2Fh1REOzy%2BnQIg1xNgJXe5L6qFUNo9X8j5RTg4fBy5jTtEprrvixhNCMCgfA9PtAfU8LMtmHAE5OM%2F5dEzPX%2B2Cp4qNfzFGc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cd11b13b4f1-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/icon.css
200 OK 324 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/icon.css
IP
File type ASCII text, with CRLF line terminators
Hash 25b281150e31f0d158beace91ac17b74
25210828fcf7fe46fd841b531b20bb7f72301d02
5a4896037e25ce7def690326ad152f7b3cad3d5f3da392591ca0574e6708d79b
GET /template/smmmsp/assets/css/common/icon.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:46:36 GMT
Vary: Accept-Encoding
ETag: W/"5c7a42ec-496"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hL9rhDlcCIiHXGFrSqstwSnNSb6rE9vyXkiAynxvkF9uV5VaG0H7qfnjbPwCFyb69byQGK6poa98B32gsIoxhpgtchqKIe%2BZyCe%2Fh0vxP%2FU01TmSGXOrfLpQrFXVy0s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cd11cd10b4d-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/common/pagination.css
200 OK 411 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/common/pagination.css
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 756f111ee343465ac3fdfcd6a7d56aac
72d2d9ae0b73197af2e343e54e469692a39e276d
d14d1e91f99c7287522285b812621b4003acc0ddd7e0098f30cd048a21699b7c
GET /template/smmmsp/assets/css/common/pagination.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/common/style.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 08:45:54 GMT
Vary: Accept-Encoding
ETag: W/"5c7a42c2-51e"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IOBOXPf1id9vHzcWTJAu8L%2BXgPaHWGNBRnsRNSf21RCjyGAVEY%2BVHYGs3m3%2FFPJ8o0jSM1rZWab%2Fkb0NEGxfd5x7dMxlBK4ThBZvrF6JYiEAg5%2BoQbzwjMDwlJNOgLI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cd11e9db512-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/css/theme/blue.css
200 OK 696 B URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/css/theme/blue.css
IP
File type ASCII text, with CRLF line terminators
Hash d1b6791f4679bcab3ab01381c2504a49
6625522320cbe2f9339cb2f1208fd7c52ce774ca
8d57cfc0b7f72f5cae88513d97110c2237908888a2fd47971feb9ac6a33b80ed
GET /template/smmmsp/assets/css/theme/blue.css HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/theme/default.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 27 Jul 2020 14:19:36 GMT
Vary: Accept-Encoding
ETag: W/"5f1ee278-a2c"
Expires: Thu, 02 Feb 2023 05:10:21 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=unVsHGPbm%2FXyUIQVKKE8C6H2%2BkFYKUbkj9QDuutVMVYLMUWdjntaGsk2nA5D6SH1Qdpe27Mb3GYG9Q7Kq9xCZAd2nUYnrh1OPb80eqO96xQvYVJAuD7z3GrLsiyBO%2Bo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792c4cd14899b4eb-OSL
alt-svc: h2=":443"; ma=60
sgnnusyd.top/template/smmmsp/assets/images/theme/default/share_person.png
200 OK 120 kB URL HTTP/1.1 sgnnusyd.top/template/smmmsp/assets/images/theme/default/share_person.png
IP
File type PNG image data, 209 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size 120 kB (120413 bytes)
Hash 0d14c8e56fc563d379c937900ded0d55
203a9f011bade5af589203b10506e7e0cccc7668
eeebb7933f599e6ddab118b4501dc623b4511350acaca1ea40230c1722b520ac
GET /template/smmmsp/assets/images/theme/default/share_person.png HTTP/1.1
Host: sgnnusyd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/template/smmmsp/assets/css/custom/header.css
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:22 GMT
Content-Type: image/png
Content-Length: 120413
Connection: keep-alive
Last-Modified: Sat, 02 Mar 2019 09:00:22 GMT
ETag: "5c7a4626-1d65d"
Expires: Thu, 02 Mar 2023 04:12:49 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 133053
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RXe%2Fht7WtKyuaf%2BdVJ1XZEimXVXcIM1IhCKTnmMZQe4hW2LJWkMyEuh3qSXB1YG3pcd2g8T7O%2FnVYZFROeKglJiJ%2Bc18%2BS%2BDNHLa%2BvlPVKurJvGbRiWoajJL5SX3eFg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792c4cd38a5cb512-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
IP
Hash 747b1ebf0bbe436fda57d08462c5fb3d
2da3921a5111c3df026dd1dfb282c5de603b148d
ec123d282ed8c3109d4b300ff224ad6fd92215774c3fb5767bc6079b76ba3db8
POST /s/gts1p5/_xrTVnExDmw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:10:22 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash 7104b12d0f5bade5cc12b4e1aec85e8a
62cb4dc8a09c3ef5b6d689e09148c3f7b550cb44
3a1ac8682c371ce62e86fe37df6f44c16a0dc61b5e590ac76db1083ffe834b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:10:22 GMT
Last-Modified: Wed, 01 Feb 2023 16:54:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
cdn.jsjsjs.xyz/happy/newyear/kongkong/960x60ns.gif
200 OK 406 kB URL HTTP/2 cdn.jsjsjs.xyz/happy/newyear/kongkong/960x60ns.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 406 kB (406419 bytes)
Hash 91949a67089d61d1c111d50f6e101660
fab540d8a71b28159836bf995e398a9569314e47
35ede3c11832a2e4f6562a484535420d010601981e3b07fdc271f160b0a81507
GET /happy/newyear/kongkong/960x60ns.gif HTTP/1.1
Host: cdn.jsjsjs.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:22 GMT
content-type: image/gif
content-length: 406419
last-modified: Wed, 16 Feb 2022 13:39:39 GMT
etag: "620cfe9b-63393"
expires: Thu, 02 Feb 2023 08:50:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 2535588
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IosbKmSRd5fHMwxU%2B9oYA9oewlft7AzWnySVdACNQ2Kgh25nnnfd0%2BG4BcOGQCrJmmj7YSCgm2K0iaWYSb3%2Bt1PoRKtRZJ3Ip5nDOZYA21IsfoVQJLzW9FJPCL53lV9uRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792c4cd3bddbb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1358848506&si=ab312e1a1aa72763b1e7369ae6196eed&v=1.3.0&lv=1&sn=239&r=0&ww=1280&u=http%3A%2F%2Fwww.htjfdb.com%2Fgff8wo_%2F&tt=%E6%BC%AF%E6%B2%B3%E7%A8%BC%E5%A5%BD%E9%9B%86%E5%9B%A2%E6%9C%89%E9%99%90%E8%B4%A3%E4%BB%BB%E5%85%AC%E5%8F%B8
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1358848506&si=ab312e1a1aa72763b1e7369ae6196eed&v=1.3.0&lv=1&sn=239&r=0&ww=1280&u=http%3A%2F%2Fwww.htjfdb.com%2Fgff8wo_%2F&tt=%E6%BC%AF%E6%B2%B3%E7%A8%BC%E5%A5%BD%E9%9B%86%E5%9B%A2%E6%9C%89%E9%99%90%E8%B4%A3%E4%BB%BB%E5%85%AC%E5%8F%B8
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1358848506&si=ab312e1a1aa72763b1e7369ae6196eed&v=1.3.0&lv=1&sn=239&r=0&ww=1280&u=http%3A%2F%2Fwww.htjfdb.com%2Fgff8wo_%2F&tt=%E6%BC%AF%E6%B2%B3%E7%A8%BC%E5%A5%BD%E9%9B%86%E5%9B%A2%E6%9C%89%E9%99%90%E8%B4%A3%E4%BB%BB%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.htjfdb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 01 Feb 2023 17:10:21 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=2F579D5EBACEE07B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/_xrTVnExDmw
IP
Hash 747b1ebf0bbe436fda57d08462c5fb3d
2da3921a5111c3df026dd1dfb282c5de603b148d
ec123d282ed8c3109d4b300ff224ad6fd92215774c3fb5767bc6079b76ba3db8
POST /s/gts1p5/_xrTVnExDmw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:10:22 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9927
Expires: Wed, 01 Feb 2023 19:55:49 GMT
Date: Wed, 01 Feb 2023 17:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9927
Expires: Wed, 01 Feb 2023 19:55:49 GMT
Date: Wed, 01 Feb 2023 17:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9927
Expires: Wed, 01 Feb 2023 19:55:49 GMT
Date: Wed, 01 Feb 2023 17:10:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9927
Expires: Wed, 01 Feb 2023 19:55:49 GMT
Date: Wed, 01 Feb 2023 17:10:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 22:03:43 GMT
age: 68799
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hjIm9dNf6UE9rpIlKWeLwWuF7Pm6yJeAZgbwchvJcuDy-zkXEr502w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
age: 69544
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:57:42 GMT
age: 69160
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:53:10 GMT
age: 33432
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78fe9a77211d6f9a462f625af0c6f9bc
ac0b58423d7578e7a1b60a62220c0a57924dda82
e047466c3ae0a55509f4ace49d0476f94271b5a25e71caa3b06ec468a238b652
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb36bfce9-5d67-458e-846d-ca30f9242449.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14041
x-amzn-requestid: 2be6655d-3b0e-4e65-b44b-11682610b640
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaRGFpIAMFbMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-5554d18d5db235913afa77a2;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MeSOuCSjsjhK6FOS67rw6oF4rS08twjOACGbXJrNPH6vwZb8lZh9lw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:51:18 GMT
etag: "ac0b58423d7578e7a1b60a62220c0a57924dda82"
content-type: image/jpeg
age: 69544
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c83dcdb618756ebbfeb69a8bff6d38c
5f909182ab6847690e7ebd100e3f0d2798e36192
2e29d0747fb973908228501178465ac09f6553ef8e50dd70ee617f3379eb733c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F591a38fc-2daf-42e7-a48b-a02e54cb63e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7049
x-amzn-requestid: bc6522f2-eb6b-4e59-9912-0c03d145f021
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk31LGE2IAMF8rw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839ba-67477ed1260c27f67e28043d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Q_aVbWJKMbX1_bjggzbdnWbgmfooGvXj76t55QGGXRr_y6ZgW2gctw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:52:24 GMT
age: 69478
etag: "5f909182ab6847690e7ebd100e3f0d2798e36192"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?65dd0edee86b82f2424cf951cbae0bc3
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?65dd0edee86b82f2424cf951cbae0bc3
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 5a2dbd849f25bf2d764933e03cf5ffef
36e0a40d9dfd701fd0755294dd0718f62f4dbaa1
e0172e16ff09df7a53fa7b735d0f07e73e5b9f87e5be5181e628ba8bfe171d19
GET /hm.js?65dd0edee86b82f2424cf951cbae0bc3 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Wed, 01 Feb 2023 17:10:22 GMT
Etag: 4beaf3fdcc42ef0d3f5d46717253f981
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=0778967C2F532E61; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
zerossl.ocsp.sectigo.com/
200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash e0b129531c5d0c9ebab28d14eb44ccaa
df1a8eb39b2dd1da5992b5a559f5f715252b1e4a
9555ad8bf81bd62c2ae4868ba22b50997b29f1f42e5fc5337c957f337810826a
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:22 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 11:20:27 GMT
Expires: Sun, 05 Feb 2023 11:20:26 GMT
Etag: "df1a8eb39b2dd1da5992b5a559f5f715252b1e4a"
Cache-Control: max-age=324003,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792c4cd54af40b59-OSL
dimg04.c-ctrip.com/images/0102y12000abt01aa9FED.gif
200 OK 121 kB URL HTTP/2 dimg04.c-ctrip.com/images/0102y12000abt01aa9FED.gif
IP
File type GIF image data, version 89a, 960 x 80\012- data
Size 121 kB (120581 bytes)
Hash df98d05eafcc98d4a8beb8fdaea33d7b
e2fe0e1248eee770d0160151fd5d15822a5a9058
6c9bfee3b3175e72068b00c27a767920960a51080930ba550da900debc25d311
GET /images/0102y12000abt01aa9FED.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 120581
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=4669161
expires: Mon, 27 Mar 2023 18:09:43 GMT
date: Wed, 01 Feb 2023 17:10:22 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0101112000abt01g10476.gif
200 OK 173 kB URL HTTP/2 dimg04.c-ctrip.com/images/0101112000abt01g10476.gif
IP
File type GIF image data, version 89a, 200 x 200\012- data
Size 173 kB (172727 bytes)
Hash 97984b725f20d8e6784d91528cda2f22
a6e6cac1afac6ea410287147be6becb23f620fa3
43514c1bc343a8f1dccdd02ee1b018b1d1b5ba3d5c7ff414125b3922d979132e
GET /images/0101112000abt01g10476.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 172727
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=4645686
expires: Mon, 27 Mar 2023 11:38:28 GMT
date: Wed, 01 Feb 2023 17:10:22 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
s2.loli.net/2022/07/02/cEnQm235N4OABoT.jpg
200 OK 9.2 kB URL HTTP/2 s2.loli.net/2022/07/02/cEnQm235N4OABoT.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /2022/07/02/cEnQm235N4OABoT.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:22 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Sat, 02 Jul 2022 02:48:11 GMT
etag: "62bfb1eb-23ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mr8sWOA8Qkjp5ZkhE903A5YFCr5izJNZ7jjz9lh%2Fk2S9ClHW3A8%2Fb24ZF5jHMwuQZs67vfn%2FzFOZXV3%2BHHXBnAUh4OX39Z2%2FvdP3h4V%2B2JGXwX3qQyBvQZgfEbnJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792c4cd40d480b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=279620201&si=65dd0edee86b82f2424cf951cbae0bc3&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=240&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=279620201&si=65dd0edee86b82f2424cf951cbae0bc3&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=240&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=279620201&si=65dd0edee86b82f2424cf951cbae0bc3&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=240&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 01 Feb 2023 17:10:22 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0D28C4938CC3C566; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.digicert.com/
200 OK 280 B IP
Hash 7104b12d0f5bade5cc12b4e1aec85e8a
62cb4dc8a09c3ef5b6d689e09148c3f7b550cb44
3a1ac8682c371ce62e86fe37df6f44c16a0dc61b5e590ac76db1083ffe834b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 17:10:22 GMT
Last-Modified: Wed, 01 Feb 2023 16:54:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
hm.baidu.com/hm.js?bb5df629d89651b4be132773570ee52d
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?bb5df629d89651b4be132773570ee52d
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 08995217d4dc7abc7a02ca18fda39c60
ee3f4b19261dbcaaf2d8f6252b033863f989fae3
fb697656a1d628c3049260826b7fc56c12c5d0cd129f970bbb5fde7723ffc8be
GET /hm.js?bb5df629d89651b4be132773570ee52d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Wed, 01 Feb 2023 17:10:22 GMT
Etag: f016745b05bcbf0607663dd4563aa227
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=0CFC208B1781462D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=506783167&si=bb5df629d89651b4be132773570ee52d&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=240&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=506783167&si=bb5df629d89651b4be132773570ee52d&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=240&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=506783167&si=bb5df629d89651b4be132773570ee52d&su=http%3A%2F%2Fwww.htjfdb.com%2F&v=1.3.0&lv=1&sn=240&r=0&ww=1268&u=http%3A%2F%2Fsgnnusyd.top%2F HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 01 Feb 2023 17:10:23 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=97A19F6AC2A83BFB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
zerossl.ocsp.sectigo.com/
200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash f98cd379b1a9ed5aa79cd45bc7ada124
fc7cb7fbd2b488f482318db6e17262fcc0fd1474
514aa6ecda34a090e1ec8096ac64aae61411ad539530e4225d8f8eee9b07fedf
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:23 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 19:03:59 GMT
Expires: Tue, 07 Feb 2023 19:03:58 GMT
Etag: "fc7cb7fbd2b488f482318db6e17262fcc0fd1474"
Cache-Control: max-age=524614,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792c4cd998b80b69-OSL
8499136.com/8499/960x100.gif
200 OK 479 kB URL HTTP/2 8499136.com/8499/960x100.gif
IP
File type GIF image data, version 89a, 960 x 100\012- data
Size 479 kB (479036 bytes)
Hash f586fcd7d6a54725a2d0d26355f16a06
338916b44a69b6820f8b741d0c47e68830e6234a
af1a7ed89fa356285f747cd80c8d7d33b980066a02051706c41083edd567414d
GET /8499/960x100.gif HTTP/1.1
Host: 8499136.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:22 GMT
content-type: image/gif
content-length: 479036
last-modified: Sat, 24 Dec 2022 13:20:16 GMT
etag: "74f3c-5f092c34fedc2"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash f98cd379b1a9ed5aa79cd45bc7ada124
fc7cb7fbd2b488f482318db6e17262fcc0fd1474
514aa6ecda34a090e1ec8096ac64aae61411ad539530e4225d8f8eee9b07fedf
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:23 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 19:03:59 GMT
Expires: Tue, 07 Feb 2023 19:03:58 GMT
Etag: "fc7cb7fbd2b488f482318db6e17262fcc0fd1474"
Cache-Control: max-age=524614,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792c4cd97f170b59-OSL
8499159.com/8499/zzxx/960x60.gif
200 OK 291 kB URL HTTP/2 8499159.com/8499/zzxx/960x60.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/zzxx/960x60.gif HTTP/1.1
Host: 8499159.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:23 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:23:32 GMT
etag: "46f0c-5f092cf097c3f"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash acdab5c3b8f06c7f39a0c0093af38544
23893f57c43bf58f719d85c9b433b96338f5665c
bb0e03e2f53ffcba5d09260d4c2104af41c5f03ebb2e29dc6a633d32cdcef257
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=866
Date: Wed, 01 Feb 2023 17:10:24 GMT
Connection: keep-alive
X-N: S
8499159.com/8499/s/960x60.gif
200 OK 291 kB URL HTTP/2 8499159.com/8499/s/960x60.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 291 kB (290572 bytes)
Hash 57aeaeed8e55b2a1e23b348d9d73f9d5
381bc182c18210ba33ebe13cbf8f20f297d33c16
e10903ca99193ba8ffd6c5f74753461cf070e75026e73fda3c040496f8dcfdb6
GET /8499/s/960x60.gif HTTP/1.1
Host: 8499159.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 17:10:23 GMT
content-type: image/gif
content-length: 290572
last-modified: Sat, 24 Dec 2022 13:22:23 GMT
etag: "46f0c-5f092cae807d2"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
595tuchuang.com/960x80.gif
301 Moved Permanently 166 B URL HTTP/1.1 595tuchuang.com/960x80.gif
IP
ASN #9808 China Mobile Communications Group Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sgnnusyd.top/
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 17:10:24 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://595tuchuang.com/960x80.gif
Server: cdn
ocsp.sectigo.com/
200 OK 471 B IP
Hash be3af2efb5a57acf854d5f991857d1f6
fa04143d697ae9361360605e5978545f0469e3f1
c8ea1d5001bfd299733efcb1350344477258f6d1449b5f414689b9e990386bec
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 18:00:46 GMT
Expires: Mon, 06 Feb 2023 18:00:45 GMT
Etag: "fa04143d697ae9361360605e5978545f0469e3f1"
Cache-Control: max-age=434420,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792c4ce0caef1c0a-OSL
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash c1c399722b215fb70937262fa1988bfb
1b811781785d9c5476e5029aa9a19805dfc7809a
78d52ed39860d08257176df7ecb6fbb9e418e0ebb8af4f35001a60cbfc0893d9
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Wed, 01 Feb 2023 17:10:25 GMT
Connection: keep-alive
X-N: S
5999218ccc.com/d978576ad7634777a7e4122bdd1a28a3.gif
200 OK 579 kB URL HTTP/1.1 5999218ccc.com/d978576ad7634777a7e4122bdd1a28a3.gif
IP
File type GIF image data, version 89a, 750 x 120\012- data
Size 579 kB (579018 bytes)
Hash 54c2a3fb838c8e711bbe07220637d637
77e33ed77eb68c23320c059105fb2c900141301e
fc832269e62682138155c4f5e7f34f36512d1bfe69482fbc4a2cc3d27251c8e1
GET /d978576ad7634777a7e4122bdd1a28a3.gif HTTP/1.1
Host: 5999218ccc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sgnnusyd.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "639ad110-8d5ca"
Date: Sun, 15 Jan 2023 08:47:09 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 15 Dec 2022 07:47:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-18
Content-Length: 579018
595tuchuang.com/960x80.gif
200 OK 0 B URL HTTP/1.1 595tuchuang.com/960x80.gif
IP
ASN #9808 China Mobile Communications Group Co., Ltd.
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sgnnusyd.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 17:10:25 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Wed, 01 Mar 2023 06:45:41 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
108.186.106.231
95.101.11.115
104.22.12.214
93.184.220.29
183.255.106.38
103.235.46.191