r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10562
Expires: Mon, 26 Sep 2022 01:05:36 GMT
Date: Sun, 25 Sep 2022 22:09:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 21:15:08 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _bQNXQUdnClAYbpm702exZhTkAoTECyiUF1660Fr2xQkcaiStXL2mA==
Age: 3266
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BCYHNlymAV2THQ03llc8Hwo6tLR4tebFqUpQk5-jLvkR9MrhXwPtig==
age: 63260
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 22:09:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
3950hg.com/
35.243.93.42301 Moved Permanently 166 B IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 22:09:34 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://3950hg.com/
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 22:04:17 GMT
Expires: Sun, 25 Sep 2022 22:19:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kI_tVuVb33KjKpugW690NpevHtMXhmUWXuIfnLRWERyVc7BSWoazKA==
Age: 317
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1258
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:34 GMT
Last-Modified: Sun, 25 Sep 2022 21:48:37 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mW6Vvy4fKxv3kitH8zvbGg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8URGvgTTtitUbNevA6uYe8WqBBU=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cd24b04196eb63b4a2e037d169f1e9f7
782ea7734facd670d64628bc4ff94e56e4ea4ee1
6a6397d09b768eb5716de829db5b776e303107bdc57edaf7a1bd59015ae782ac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A6397D09B768EB5716DE829DB5B776E303107BDC57EDAF7A1BD59015AE782AC"
Last-Modified: Sun, 25 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 26 Sep 2022 04:09:35 GMT
Date: Sun, 25 Sep 2022 22:09:35 GMT
Connection: keep-alive
3950hg.com/
35.243.93.42200 OK 1.0 kB IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (414)
Hash fd01a7f54fc8ca86b6698024195a284c
9d5a8a0e2a9f7daee38d7e0a2822be7d8a916d5a
f771c405a4d34863315ea8dc8505650012124d6ed6a7a1eef6779b4cba967c25
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-ae7"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13585
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 22:09:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13585
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 22:09:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13585
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 22:09:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c11e6fef1be62b971bd9daf378bfc95
ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yl8BCwdlIePsc4gIX4IYH0L6NHipn_5fBsa9nyYy14w0m49jPUYXBw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:51 GMT
age: 705
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1dfa0c2-ab90-410b-b036-ba20f7cfe781.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1dfa0c2-ab90-410b-b036-ba20f7cfe781.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ae396e310d1a7b5e9c4f0bcff5f0f26
1f1ab5678eb454de32e049cd3fe7e7fd0cd7447f
e6b75239519cf7d49594cd2c4ee5c9cf9d8c8c5cad2b9886465e877a0b3a0db4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1dfa0c2-ab90-410b-b036-ba20f7cfe781.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6447
x-amzn-requestid: af8b5b52-ee1a-4227-b30b-c65dbb7d6bb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSJKHrMIAMFuJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca3a-08bf4d8a18ccc6b277eacecf;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dU1BSSjuJbF7wUjycpWIsRPw6Sr-NcLmiT5Ka6RSerkx4fhlPWrgGw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:01:31 GMT
age: 485
etag: "1f1ab5678eb454de32e049cd3fe7e7fd0cd7447f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27d324b1fb661c318aced98468501b3c
5c4ee294c98e8fc9312a7d481b6ec165494cf852
937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:03:29 GMT
age: 367
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 988b0c94c41a21c736b330c3256d0a3c
c16a6f018bd80c6390b7a07f4e6698db7bfd28b0
3034912f83810b3999ffa90f5eeaf0f45773c592cfd3cf2bfb794ea1b150158c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9070
x-amzn-requestid: 2aceb075-d4bc-45b8-8330-5e719c565f77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKEEdPoAMFsNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca40-3f120e0774b1d58a08898c39;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: feNiTFDhUx-BfoiybnKj83hCq6CCoiMeOSEHyFs8b7cLIgKvnO1Cdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:04:42 GMT
age: 432
etag: "c16a6f018bd80c6390b7a07f4e6698db7bfd28b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 1921
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:02:10 GMT
age: 446
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
35.243.93.42200 OK 66 kB URL HTTP/1.1 3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7f1f83959236cc77b1fe00c71bd92235
154a6617fb3de260b58cf368a3a89168fa4e5f4a
f9963986545c79ab0ce9b84fc0ebd2c6427f2d55b0aac703e5b627f91aaebd14
GET /static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:35 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-2e11e"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/js/manifest.7c26f105d84773ee159f.js
35.243.93.42200 OK 2.8 kB URL HTTP/1.1 3950hg.com/static/js/manifest.7c26f105d84773ee159f.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4788), with no line terminators
Hash 9918c5050d49530ee15c816e54d8d181
1c175775377d091d9fccc9207fbf2bf0470edf5d
3191ddddb81a1cb8ed61f0fe933e38488fee1a615bcc4ccbc3ac6853e38f31d9
Analyzer Verdict Alert fortinet Phishing
GET /static/js/manifest.7c26f105d84773ee159f.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-12b4"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/images/index/main_bg.png
35.243.93.42200 OK 10 kB URL HTTP/1.1 3950hg.com/static/images/index/main_bg.png
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 145 x 161, 8-bit colormap, non-interlaced\012- data
Hash a859990a26b054ea7945d7b562a736c0
6dc604414596bf18d4f2a2b138e9a548039da90d
7fc9e8c0d92f72ec6d2b1c8be09d24d5e7db7e9f581ce9fd603c879ab21e9c86
GET /static/images/index/main_bg.png HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:36 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-2714"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/images/logo_loading.png
35.243.93.42200 OK 81 kB URL HTTP/1.1 3950hg.com/static/images/logo_loading.png
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 09c7b123db7bce55f73ef2249065d178
ce5dcdeec183f0010c5a646cd94c00ba9cbbdc77
2e0ca7f19c0150ac17f6eea6b0de6ccf87cee1ac72131f8d30ba1261380853b2
GET /static/images/logo_loading.png HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:36 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-13d08"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/js/index.3b1bb77462264f2283ad.js
35.243.93.42200 OK 226 kB URL HTTP/1.1 3950hg.com/static/js/index.3b1bb77462264f2283ad.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (65500), with no line terminators
Size 226 kB (225795 bytes)
Hash fc2a7270a33a1b5d464ea3f54b84b3bd
f5abc7e37fb42bf8e3bccd6b2fe33d7ecd617866
153c1711fa67cd3f453e0c18f4313de341f3389ac4a4da909d36adb7464ccc1f
Analyzer Verdict Alert fortinet Phishing
GET /static/js/index.3b1bb77462264f2283ad.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-104535"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/js/vendor.3ac1f2d9a4738954c9fb.js
35.243.93.42200 OK 453 kB URL HTTP/1.1 3950hg.com/static/js/vendor.3ac1f2d9a4738954c9fb.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Size 453 kB (453310 bytes)
Hash 194a76c83eec40980862c998a7e7421a
7ba42f89e36bea7f8ee1158cf6abbd5f6ca9d8fb
64abcdc559066bb0229055f5fea3ded17593c4b9ebf9539a1122875eccd4fef0
Analyzer Verdict Alert fortinet Phishing
GET /static/js/vendor.3ac1f2d9a4738954c9fb.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-17ad97"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/serviceApi/portal/public/module_status
35.243.93.42200 OK 264 B URL HTTP/1.1 3950hg.com/serviceApi/portal/public/module_status
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (347), with no line terminators
Hash a9ebd015856420c009a63f9c09b92ba3
4d4acf98e9f827f8502414c15b604407884d16b0
3be1cdbc186b5c1851dff5925070d5edbf66d07a82e3a48c74461d0d9ca0cf6f
Analyzer Verdict Alert fortinet Phishing
POST /serviceApi/portal/public/module_status HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 23
Origin: https://3950hg.com
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:38 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-RateLimit-Remaining: 3
X-RateLimit-Burst-Capacity: 4
X-RateLimit-Replenish-Rate: 4
Cache-Control: no-store
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/js/6.91aa24d620261c1193cb.js
35.243.93.42200 OK 15 kB URL HTTP/1.1 3950hg.com/static/js/6.91aa24d620261c1193cb.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (64133), with no line terminators
Hash 3ba6d76356f7d7698a829ac4e643ff29
5a22055ef8c2115aaedea5c2193cbb7215395913
060d52736532bdbe037d9437a4663d2422489abb67b3319273755316d9271575
Analyzer Verdict Alert fortinet Phishing
GET /static/js/6.91aa24d620261c1193cb.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-116b9"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/js/55.fe03f28f26a3d1a349e7.js
35.243.93.42200 OK 6.9 kB URL HTTP/1.1 3950hg.com/static/js/55.fe03f28f26a3d1a349e7.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (23707), with no line terminators
Hash 9e0d62345f0d83090baaf13bbafed1c2
719714d7333f9b13aa07257fc5a2feb41bb042eb
5e5268a4ac319b0585654e0264c46f9c3e121c54ff08ac7b4df8dcb944dd7e4f
Analyzer Verdict Alert fortinet Phishing
GET /static/js/55.fe03f28f26a3d1a349e7.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-5e37"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/js/104.9ac6b6933c7a5ec7bb3c.js
35.243.93.42200 OK 2.4 kB URL HTTP/1.1 3950hg.com/static/js/104.9ac6b6933c7a5ec7bb3c.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (7961), with no line terminators
Hash 45541a3696635b92ee40f67e84cb351c
d657f8158bed2657433c28497beb5d0e8453f3cd
aa044fcaa8040c9bafa17aba32dfee698075dc42d7840ebe63f57dc9320ea746
Analyzer Verdict Alert fortinet Phishing
GET /static/js/104.9ac6b6933c7a5ec7bb3c.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-1f92"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/js/64.eec252fdea28002e971b.js
35.243.93.42200 OK 2.2 kB URL HTTP/1.1 3950hg.com/static/js/64.eec252fdea28002e971b.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (7565), with no line terminators
Hash 92be3f6d0273bd6524279dea2d538eb4
7720a45b03f446171b893aaf42b6d7e532a6b1d4
8c1fb76f0c13cd1147fa5502d7d43e6829051f07503915a350672d4cfe9637d2
Analyzer Verdict Alert fortinet Phishing
GET /static/js/64.eec252fdea28002e971b.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-1dce"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/js/107.393d2319cc110d462114.js
35.243.93.42200 OK 981 B URL HTTP/1.1 3950hg.com/static/js/107.393d2319cc110d462114.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (2490), with no line terminators
Hash bc38093e1eac7f92525a37cb88f530b2
e69093c52a6e163f79507e8bb9ca191516d1b08e
06e0cc830d8c31c29f85691a71b0a76b631bdeb88fa6ad558969c0d6ee507a4f
Analyzer Verdict Alert fortinet Phishing
GET /static/js/107.393d2319cc110d462114.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-9bb"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/
104.208.116.156301 Moved Permanently 166 B IP 104.208.116.156:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://m.3950hg.com/
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/js/24.d29d8553e3a4ce519b5f.js
35.243.93.42200 OK 1.8 kB URL HTTP/1.1 3950hg.com/static/js/24.d29d8553e3a4ce519b5f.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (7379), with no line terminators
Hash 4c66dfa43dacabe82f8dc924e47df9d1
78ce88b85212be744b9841f52c56ac5d76fcd257
44ab031b998b95befd955cbd3eccf8ac4f0d00467a6fbe719afa46f83fd71679
Analyzer Verdict Alert fortinet Phishing
GET /static/js/24.d29d8553e3a4ce519b5f.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-1d30"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/js/106.edddc27f19041821ac3a.js
35.243.93.42200 OK 1.1 kB URL HTTP/1.1 3950hg.com/static/js/106.edddc27f19041821ac3a.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (3568), with no line terminators
Hash 26ed447dadf35349b26116967a176f27
0f7080cdea59aa7f8f27184bb2522691aab3d68e
9b01f9f402873e5cc238cc4b0272dec4acb8246e537bcf6e0dae869aae4918fd
Analyzer Verdict Alert fortinet Phishing
GET /static/js/106.edddc27f19041821ac3a.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-df1"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/js/127.c2d12d947788d87bc4dd.js
35.243.93.42200 OK 887 B URL HTTP/1.1 3950hg.com/static/js/127.c2d12d947788d87bc4dd.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (887), with no line terminators
Hash b670d347788a69a0233cb8120b1d0f0d
2681a36b17a5baa3c486b0d2e0c55f34fa5b464e
d63d921e136dcd02ebd36bbe20d4c602c5fe407ec1dbd722b39851dd2a9c43b4
Analyzer Verdict Alert fortinet Phishing
GET /static/js/127.c2d12d947788d87bc4dd.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Content-Length: 887
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
ETag: "6303f566-377"
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
Accept-Ranges: bytes
3950hg.com/static/js/101.e7391d32b1412eaf4950.js
35.243.93.42200 OK 980 B URL HTTP/1.1 3950hg.com/static/js/101.e7391d32b1412eaf4950.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (2509), with no line terminators
Hash cbb9e75c88c393f78753ec75cd70c43f
9aa20bdd996b2a9bb194b0fa6df9839709ab4d7a
38d41d22e6d2c6139ea25e229972f92bf70e1ef2b46c4d3b2273a0cceec51eb5
Analyzer Verdict Alert fortinet Phishing
GET /static/js/101.e7391d32b1412eaf4950.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-9ce"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/js/109.f62673c7cb09c3d5d2a4.js
35.243.93.42200 OK 800 B URL HTTP/1.1 3950hg.com/static/js/109.f62673c7cb09c3d5d2a4.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (800), with no line terminators
Hash 33d31f25f921c421e8289eb163d8ad3e
007a6f3f84345a5898a845701025b5bdd7d3a3dd
5df48714ddddbd8025930272d8d5b100d5b0afa74cb7198cc5b060a9315d3fc9
Analyzer Verdict Alert fortinet Phishing
GET /static/js/109.f62673c7cb09c3d5d2a4.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Content-Length: 800
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
ETag: "6303f566-320"
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
Accept-Ranges: bytes
3950hg.com/static/js/105.c61a4181f1543134baae.js
35.243.93.42200 OK 1.2 kB URL HTTP/1.1 3950hg.com/static/js/105.c61a4181f1543134baae.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (2902), with no line terminators
Hash 066603eece6a93f8349a46c5ce928655
65ac486b3b174b8a67230f40522ff59f0c842905
b78d6a40b25ae13010cee3e38b692f6668f93112c55dc0710c631ba732fa853b
Analyzer Verdict Alert fortinet Phishing
GET /static/js/105.c61a4181f1543134baae.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-b7b"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/js/98.f5d1666d2cfbb1dbd8cc.js
35.243.93.42200 OK 867 B URL HTTP/1.1 3950hg.com/static/js/98.f5d1666d2cfbb1dbd8cc.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (867), with no line terminators
Hash 77fe24187e2f3f2788d69ee1ec4c135e
06f8f452f51aee4261e23a929409e934b7bad92c
9633e90c132cc63ee8aa2674c0daac410816fe33a7e71d7f9981f23281019c6b
Analyzer Verdict Alert fortinet Phishing
GET /static/js/98.f5d1666d2cfbb1dbd8cc.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Content-Length: 867
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
ETag: "6303f566-363"
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
Accept-Ranges: bytes
3950hg.com/static/js/99.c3f076e3b3e6a6e732e8.js
35.243.93.42200 OK 835 B URL HTTP/1.1 3950hg.com/static/js/99.c3f076e3b3e6a6e732e8.js
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (835), with no line terminators
Hash 6f789ac07ea9a434dfd387956c2eb474
b204b73edfa7cd47b4978a5abdaf22e54cc3967e
8d7d317816c38d9d0ad50eceb276e7df8e461f730cf74bfa11b700ce793f3cb2
Analyzer Verdict Alert fortinet Phishing
GET /static/js/99.c3f076e3b3e6a6e732e8.js HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/javascript
Content-Length: 835
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
ETag: "6303f566-343"
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash a9986c3deacbfff1f83e64f18ba3c0cb
2fa6859fdee9144c101281e9093e819db16b9af0
499054eb30292c5f2337563b51630a1ac5a3d441409aea3d0e5ed7da7f32b4f2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 08:08:12 GMT
Expires: Sun, 02 Oct 2022 08:08:11 GMT
Etag: "2fa6859fdee9144c101281e9093e819db16b9af0"
Cache-Control: max-age=553711,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750715df7dd2b4f9-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash a9986c3deacbfff1f83e64f18ba3c0cb
2fa6859fdee9144c101281e9093e819db16b9af0
499054eb30292c5f2337563b51630a1ac5a3d441409aea3d0e5ed7da7f32b4f2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 08:08:12 GMT
Expires: Sun, 02 Oct 2022 08:08:11 GMT
Etag: "2fa6859fdee9144c101281e9093e819db16b9af0"
Cache-Control: max-age=553711,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750715dfbb620b3d-OSL
3950hg.com/serviceApi/portal/public/is_agent_host?v=1664143777240
35.243.93.42200 OK 66 B URL HTTP/1.1 3950hg.com/serviceApi/portal/public/is_agent_host?v=1664143777240
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 9437142323cd07515bf8df6b4533b035
be889c3b00b09d31a27776ad828a23d6abe345a1
18fa243ec53577950f35df10c71eb1f691ff20d53fb3c9d077633c2c366c4c72
Analyzer Verdict Alert fortinet Phishing
GET /serviceApi/portal/public/is_agent_host?v=1664143777240 HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-RateLimit-Remaining: 3
X-RateLimit-Burst-Capacity: 4
X-RateLimit-Replenish-Rate: 4
Cache-Control: no-store
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/serviceApi/game/public/game/all_games?moduleNo=hg002800&subUserName=gygame00&terminal=PC&v=1664143777241
35.243.93.42200 OK 1.3 kB URL HTTP/1.1 3950hg.com/serviceApi/game/public/game/all_games?moduleNo=hg002800&subUserName=gygame00&terminal=PC&v=1664143777241
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (8972), with no line terminators
Hash fc57fca52fada71299a12d7d5001e375
e6ad6fab5cb95fc265994c24652efbe0e148c9cd
124618e9ae1745f374e1302b9d463bf93d1e5e5bcb0a9c6b1c9cf8345aff9540
GET /serviceApi/game/public/game/all_games?moduleNo=hg002800&subUserName=gygame00&terminal=PC&v=1664143777241 HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/serviceApi/portal/public/get_static_res_info
35.243.93.42200 OK 3.9 kB URL HTTP/1.1 3950hg.com/serviceApi/portal/public/get_static_res_info
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (20249), with no line terminators
Hash f12940fd963c9d38d2b8922edf259afb
5a2b6e874b3c94aaa389851e76a508918429baee
a12836d799d7b8b993143258064d2e5b33f9070710d1053eae234736517d9421
Analyzer Verdict Alert fortinet Phishing
POST /serviceApi/portal/public/get_static_res_info HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 66
Origin: https://3950hg.com
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-RateLimit-Remaining: 3
X-RateLimit-Burst-Capacity: 4
X-RateLimit-Replenish-Rate: 4
Cache-Control: no-store
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/serviceApi/portal/public/get_web_ftp_config
35.243.93.42200 OK 87 B URL HTTP/1.1 3950hg.com/serviceApi/portal/public/get_web_ftp_config
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 9372dfe1f9bf0d49b741d28a4b05a994
d8f8ad0a308296b997563b803daaa24a93a422c4
fb07e98df0f566e389609a9852e29bf45232f5d983dd68f19c24fe20c3823ba0
Analyzer Verdict Alert fortinet Phishing
POST /serviceApi/portal/public/get_web_ftp_config HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 38
Origin: https://3950hg.com
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-RateLimit-Remaining: 3
X-RateLimit-Burst-Capacity: 4
X-RateLimit-Replenish-Rate: 4
Cache-Control: no-store
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
m.3950hg.com/
20.2.86.48200 OK 2.2 kB IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5117)
Hash 30fcd37b2633ab2fbf4418b2e4de9232
7deb2638a2cf34088468656815c56a974155040d
f188a5341dd7a12bd24c973b6447e3b3e48f8900656e7654d80c406e863a59d7
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2704"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/serviceApi/activity/public/activity_promotions_list
35.243.93.42200 OK 4.0 kB URL HTTP/1.1 3950hg.com/serviceApi/activity/public/activity_promotions_list
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (14245), with no line terminators
Hash f764923fed12e35de1e71e0c0447b1d6
c3f6de5fbc4864b15ec5a8e61f08af92ffba6c38
ba92d8449237c26f1629c77788cfa3424d1164d9bbf37f9881ecf51727848f63
Analyzer Verdict Alert fortinet Phishing
POST /serviceApi/activity/public/activity_promotions_list HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 85
Origin: https://3950hg.com
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Type: application/json;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 692f5a300f8c80fbc15727ca80d8c1e4
999f782d12cfe788907aa34d3d0b3917ea2c5fe3
7b1067e01102354210d26b8aa176ac6f8d0be76f158d0e0d16b06205490e5282
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:40 GMT
Server: ECS (amb/6BB4)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 692f5a300f8c80fbc15727ca80d8c1e4
999f782d12cfe788907aa34d3d0b3917ea2c5fe3
7b1067e01102354210d26b8aa176ac6f8d0be76f158d0e0d16b06205490e5282
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:40 GMT
Last-Modified: Sun, 25 Sep 2022 22:09:40 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
3950hg.com/static/images/header/bg-header.jpg
35.243.93.42200 OK 770 B URL HTTP/1.1 3950hg.com/static/images/header/bg-header.jpg
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, baseline, precision 8, 133x99, components 3\012- data
Hash 5d2dbdd4d7a24feae0089ef3942c9f01
1ce345de0b8381e25d623b46677059344b7ab4a2
dfaa1c6c8fa6ae9832e84db96e8668b8fc43f7f24270995f2f217e9bbfd29130
GET /static/images/header/bg-header.jpg HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: image/jpeg
Content-Length: 770
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
ETag: "6303f566-302"
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 692f5a300f8c80fbc15727ca80d8c1e4
999f782d12cfe788907aa34d3d0b3917ea2c5fe3
7b1067e01102354210d26b8aa176ac6f8d0be76f158d0e0d16b06205490e5282
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:40 GMT
Last-Modified: Sun, 25 Sep 2022 22:09:40 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 692f5a300f8c80fbc15727ca80d8c1e4
999f782d12cfe788907aa34d3d0b3917ea2c5fe3
7b1067e01102354210d26b8aa176ac6f8d0be76f158d0e0d16b06205490e5282
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:40 GMT
Last-Modified: Sun, 25 Sep 2022 22:09:40 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 692f5a300f8c80fbc15727ca80d8c1e4
999f782d12cfe788907aa34d3d0b3917ea2c5fe3
7b1067e01102354210d26b8aa176ac6f8d0be76f158d0e0d16b06205490e5282
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 22:09:40 GMT
Last-Modified: Sun, 25 Sep 2022 22:09:40 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
m.3950hg.com/static/css/splash.css
20.2.86.48200 OK 886 B URL HTTP/1.1 m.3950hg.com/static/css/splash.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1944), with no line terminators
Hash 779ae521e748105f4c6c2ca8cd951669
899b512c9fa46a9a7be053e5a4e1e6501933ddf6
ea21bbd932ce5160ede004f3ba12699423ed3c18b3e93fea91f31a381b86fff1
GET /static/css/splash.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-798"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~748942c6.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~748942c6.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~748942c6.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
static.3963hg.com//gygame00/static_resource/202011141924252184fc4075-2be7-403f-82bd-8762cec6989b.png
104.21.40.16200 OK 12 kB URL HTTP/2 static.3963hg.com//gygame00/static_resource/202011141924252184fc4075-2be7-403f-82bd-8762cec6989b.png
IP 104.21.40.16:0
File type PNG image data, 180 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e4d1100b2b5833c27b0b649d6e4b434
40bf91fb7477987bbc0f4327d5cd4ce2db0a58e2
73dc4e8dbdcdc6292b66b66971d0b2a617c1270af3eea0c6c31a404fb73ee7b2
GET //gygame00/static_resource/202011141924252184fc4075-2be7-403f-82bd-8762cec6989b.png HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/png
content-length: 12440
last-modified: Sat, 14 Nov 2020 11:25:21 GMT
etag: "5fafbea1-3098"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f3WGSAA4r2IeiU0Ogx3Tw3PLpMl3Q%2BrLtQtP73Vc761UPO2sTOel8xoQeKK4bHYZbnDvfEy1j21dV3tyt9n1w%2B1%2BAQcM0kYWVWJ19VoBYtdeDu7I%2Fv%2FQFNtU8WR44h2JUG11WA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35dfc1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.3950hg.com/static/css/app~72f93981.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~72f93981.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~72f93981.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~31ecd969.89dc933111ce856faa3c.css
20.2.86.48200 OK 3.6 kB URL HTTP/1.1 m.3950hg.com/static/css/app~31ecd969.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (15601), with no line terminators
Hash d45ef7bdfeae6d4fde4569ab3b842709
77a15fc18d8abd7a311ea36c9337a0bc5cc62871
f361b92c39a5bd1269f2a0c6cea78036afdcd0f824969ef506e5c69b7e84f030
GET /static/css/app~31ecd969.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-3cf9"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~2a42e354.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~2a42e354.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~2a42e354.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~7274e1de.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~7274e1de.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~7274e1de.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~06cb62fb.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~06cb62fb.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~06cb62fb.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~8a3ac071.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~8a3ac071.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~8a3ac071.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
login.greenjade88.com/jswrapper/integration.js.php?casino=greenjade88
113.212.181.210200 OK 74 kB URL HTTP/1.1 login.greenjade88.com/jswrapper/integration.js.php?casino=greenjade88
IP 113.212.181.210:0
ASN #59243 3rd Floor, Kings Court 1, Chino Roces Avenue
File type C source, Unicode text, UTF-8 text, with very long lines (387)
Hash 69b237fdde9db2981d301275cbc777cf
0a72f385d8546d182b0d38a81e042fced4374368
6a9bcab7c6689908a3ec24f112022858da0cc29a021c69c6be59039615bb63b7
GET /jswrapper/integration.js.php?casino=greenjade88 HTTP/1.1
Host: login.greenjade88.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Powered-By: Servlet/4.0
Content-Type: application/javascript
Cache-Control: private,no-transform,max-age=600
Date: Sun, 25 Sep 2022 22:09:39 GMT
Content-Language: en-US
Transfer-Encoding: chunked
Strict-Transport-Security: max-age=16070400; includeSubDomains
static.3963hg.com//gygame00/static_resource/2020111419242456f7d6dbbc-78fb-4e1e-b23d-e03e2152273e.png
104.21.40.16200 OK 21 kB URL HTTP/2 static.3963hg.com//gygame00/static_resource/2020111419242456f7d6dbbc-78fb-4e1e-b23d-e03e2152273e.png
IP 104.21.40.16:0
File type PNG image data, 267 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash b549fd99e91cb49d4f759b0e127c07e4
9c9396fbe71462ce98ff4e04a402d4e2b4b3c858
d854cc0f510e396a2863776c1951feb7d36388d1245cffe78c4ffab84bf4491e
GET //gygame00/static_resource/2020111419242456f7d6dbbc-78fb-4e1e-b23d-e03e2152273e.png HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/png
content-length: 20941
last-modified: Sat, 14 Nov 2020 11:24:56 GMT
etag: "5fafbe88-51cd"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37j7JL3Ut6Q0MUgBbaEYOMWWhWNR5AYkuB3g2znLcwXTLFOdOAyGEr0CiW%2Bb9egaha%2BwvqdFbmBDenO4OfrlIS5b19DbbFDugq6XZHUhPABvae0REhE0C2HhJiJMnIiBIr18Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e3ce811c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
3950hg.com/static/images/icons/icon_speaker_marquee.svg
35.243.93.42200 OK 738 B URL HTTP/1.1 3950hg.com/static/images/icons/icon_speaker_marquee.svg
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (831), with CRLF line terminators
Hash d7a17a807d527dcecfea94f0d59ea1ee
03dfeb34f5ffcd60aec83c4d395a24e49bfdb87e
2e67d0d76f4425a714f4b5ec9873cb5d824940184147c342b2dd549a7c74c279
Analyzer Verdict Alert fortinet Phishing
GET /static/images/icons/icon_speaker_marquee.svg HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-601"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
m.3950hg.com/static/css/app~db300d2f.89dc933111ce856faa3c.css
20.2.86.48200 OK 3.6 kB URL HTTP/1.1 m.3950hg.com/static/css/app~db300d2f.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type AmigaDOS script\012- , Unicode text, UTF-8 text, with very long lines (16426), with no line terminators
Hash 500d45b22324b0a4632de9582e9d0200
180a1e2fa7033fef0a69434c52a0b0d1320c3992
87458986027d273de59bf76c757abf143a0b7d14145f0294f43bb558c97578f5
GET /static/css/app~db300d2f.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-4032"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/images/icons/icon_list_triangle.svg
35.243.93.42200 OK 660 B URL HTTP/1.1 3950hg.com/static/images/icons/icon_list_triangle.svg
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with CRLF line terminators
Hash 2b21e0cb1f8c8502b585b30ccfad44a7
2ce5779f704e3edf76d153c9c207c83e19c344ac
d754adcb7e99cf94f1e9e7c4bf07d34399bd96375601150aac555c5cd3d24cab
Analyzer Verdict Alert fortinet Phishing
GET /static/images/icons/icon_list_triangle.svg HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: image/svg+xml
Content-Length: 660
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
ETag: "6303f566-294"
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
Accept-Ranges: bytes
m.3950hg.com/static/css/app~6216c3af.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~6216c3af.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~6216c3af.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~203e0718.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~203e0718.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~203e0718.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~28e81c2c.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~28e81c2c.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~28e81c2c.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~3c5fe53d.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~3c5fe53d.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~3c5fe53d.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
static.3963hg.com//gygameff/hg002800/static_resource/202106121724154259dfbe1f-51f9-400a-af6e-4715d8e162d9.jpg
104.21.40.16200 OK 66 kB URL HTTP/2 static.3963hg.com//gygameff/hg002800/static_resource/202106121724154259dfbe1f-51f9-400a-af6e-4715d8e162d9.jpg
IP 104.21.40.16:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x320, components 3\012- data
Hash 4e4c6a9c4b69f0a0b9102c8f902fb7cb
644760c88ff1690e1a8f6a9e16627546dbcc463a
87c780cd7f800b4c30108942186dcf55d2054aca42858420a821bc26e34ffeda
GET //gygameff/hg002800/static_resource/202106121724154259dfbe1f-51f9-400a-af6e-4715d8e162d9.jpg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/jpeg
content-length: 65921
last-modified: Sat, 12 Jun 2021 09:15:42 GMT
etag: "60c47b3e-10181"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0TtVyLqjmRRt3X4Kr%2FxQTrTqB1QQ9mtZY74QZlg%2FSPfidqssuDZphxaBAapyTKUfJ5JSfM9El%2BZI68bRYUGIXoPIxNRwnHm4n3PBsotsiGMZ1OgXikUAUN7izssOxrU1c6CxxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35df81c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.3950hg.com/static/css/app~36b7fa68.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~36b7fa68.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~36b7fa68.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~d398c514.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~d398c514.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~d398c514.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~96c0edf0.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~96c0edf0.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~96c0edf0.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~a3f30ba8.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~a3f30ba8.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~a3f30ba8.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~7d359b94.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~7d359b94.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~7d359b94.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
static.3963hg.com//gygameff/hg002800/static_resource/202207201430037c4f14c6-2700-4489-b450-1c661a81486c.jpg
104.21.40.16200 OK 178 kB URL HTTP/2 static.3963hg.com//gygameff/hg002800/static_resource/202207201430037c4f14c6-2700-4489-b450-1c661a81486c.jpg
IP 104.21.40.16:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x320, components 3\012- data
Size 178 kB (177834 bytes)
Hash b108074dbe916fa754ea8922c1edc047
e5e4219dcaf475dc913838d18f639e73e4e1c251
382bbe8ea830efa83d2e4df2d9518003c480d889f7aacab52e049d9fdb77e9da
GET //gygameff/hg002800/static_resource/202207201430037c4f14c6-2700-4489-b450-1c661a81486c.jpg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/jpeg
content-length: 177834
last-modified: Wed, 20 Jul 2022 06:30:03 GMT
etag: "62d7a0eb-2b6aa"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eedUbtgR%2FV%2B7Wa%2F8SXtwb%2BCYhRgleM6J9sldXAdZPB1dTrXiTrpbuH8A5UWGJ5o9DiDXr5Tgp4ePjTNimkyCzHlVlHs33CdZueJEdnkDSXce070zzF7Qi74JegmttXqmCQOm6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35df21c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.3950hg.com/static/css/app~acda4ad0.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~acda4ad0.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~acda4ad0.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~9c5b28f6.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~9c5b28f6.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~9c5b28f6.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~53bd17ed.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~53bd17ed.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~53bd17ed.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~8a7b4606.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~8a7b4606.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~8a7b4606.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~b91ecd73.89dc933111ce856faa3c.css
20.2.86.48200 OK 88 kB URL HTTP/1.1 m.3950hg.com/static/css/app~b91ecd73.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65536), with no line terminators
Hash 27b99b558974fe5dc5c3b3d134480725
e7bfb7933e5ecd229ef9db6eb7ca61e6b9616aa8
a4548df307a9160a29864fdaf769a1c821cdb19f4fb3de066624a632cf6af3a8
GET /static/css/app~b91ecd73.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-db0c1"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~91884273.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~91884273.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~91884273.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
static.3963hg.com//gygameff/hg002800/static_resource/202203311751084d8bacfe-0895-4755-8e11-cd643ae83cfd.jpg
104.21.40.16200 OK 328 kB URL HTTP/2 static.3963hg.com//gygameff/hg002800/static_resource/202203311751084d8bacfe-0895-4755-8e11-cd643ae83cfd.jpg
IP 104.21.40.16:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x320, components 3\012- data
Size 328 kB (327757 bytes)
Hash b14ebd459230c2d553d37bd294b7028a
f6c16eb8685059893d6135e72536a664ab50616d
b676f88bc3d18e048224f07fda9bc1a2846e1bf83a03fb6a8bdfea466f2365cf
GET //gygameff/hg002800/static_resource/202203311751084d8bacfe-0895-4755-8e11-cd643ae83cfd.jpg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/jpeg
content-length: 327757
last-modified: Thu, 31 Mar 2022 09:51:08 GMT
etag: "6245798c-5004d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HW7yFsYDCKV2ncWsAWO5lKk826m%2F1JFMVfxR9lWylVAJpnC9JrwKfXEOffmnymndPUaLBIRceNjIGSBU8iDG5AapTL0BEpYoY2d6nGV4zvQ%2B1GrYFbYaTlJzrxkKNL0TPZlZMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35df71c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygameff/hg002800/static_resource/2022033117513762b64b52-8352-4a55-9cff-8f78ab253cd1.jpg
104.21.40.16200 OK 388 kB URL HTTP/2 static.3963hg.com//gygameff/hg002800/static_resource/2022033117513762b64b52-8352-4a55-9cff-8f78ab253cd1.jpg
IP 104.21.40.16:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x320, components 3\012- data
Size 388 kB (388307 bytes)
Hash 4c682060bab69193c980debdbef89478
b6d15ae85ffe2a743571d221a16d2fec4adce94f
2b012cfb6686b09cc3deda485832ee466ab22c2fa13e306ef8ef393a0910ea5a
GET //gygameff/hg002800/static_resource/2022033117513762b64b52-8352-4a55-9cff-8f78ab253cd1.jpg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/jpeg
content-length: 388307
last-modified: Thu, 31 Mar 2022 09:51:37 GMT
etag: "624579a9-5ecd3"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ZrLSZbmLg0PzO8HKtRy4NvANVJ%2BTCtLuN%2BmT5UR%2F5lub9FYm%2Fyt2Ye3bZtSjaeTSMRkRP8FB6WzhH0SgCqQBtWZCy25EznJSfaEyHoO%2BkM5XdIdGIM5ivJTrpLOKVe0Wc6whw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35df61c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygameff/hg002800/static_resource/20220214182145622b5b3a-8393-4fcb-9161-a2d470d8049c.jpg
104.21.40.16200 OK 324 kB URL HTTP/2 static.3963hg.com//gygameff/hg002800/static_resource/20220214182145622b5b3a-8393-4fcb-9161-a2d470d8049c.jpg
IP 104.21.40.16:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.0 (Windows), datetime=2022:02:14 16:15:13], baseline, precision 8, 1920x320, components 3\012- data
Size 324 kB (323682 bytes)
Hash 4270abfde5f0a122bc6b0e345e1d8a2e
145af1cce06d2bd1d94caf88088e306559c3a4c8
11ae15209d921c383842d8a1773f81df257a84ef13094fb0099ff5e59115e953
GET //gygameff/hg002800/static_resource/20220214182145622b5b3a-8393-4fcb-9161-a2d470d8049c.jpg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/jpeg
content-length: 323682
last-modified: Mon, 14 Feb 2022 10:21:45 GMT
etag: "620a2d39-4f062"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dGWAVPWlmIkprRyYPyCBMVvfrHqZ3laLeOWGNWsjapGBLY4pT6rEhCPW2XfVaTHg99a0COUlTpq5JQ9Ntoeb6O2xL6QcfBQ81HWIw2IjCeQa36x4oWEu%2B6GFR%2FfZEf%2B4KOSJtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35df41c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygameff/hg002800/static_resource/202106121724171070b38292-79a8-4e8f-bd58-7462b6f87264.jpg
104.21.40.16200 OK 325 kB URL HTTP/2 static.3963hg.com//gygameff/hg002800/static_resource/202106121724171070b38292-79a8-4e8f-bd58-7462b6f87264.jpg
IP 104.21.40.16:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=320, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], progressive, precision 8, 1920x320, components 3\012- data
Size 325 kB (325413 bytes)
Hash a66c28d6e01229ad5f195b3312fbe47c
83e3204869092a99e9d53eadc1e8fdb42f8b3209
0d55fcaacd9ede36bfbe2ce7cfc30c29b3746d4f04b24335104a2519dbc13edb
GET //gygameff/hg002800/static_resource/202106121724171070b38292-79a8-4e8f-bd58-7462b6f87264.jpg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/jpeg
content-length: 325413
last-modified: Sat, 12 Jun 2021 09:17:10 GMT
etag: "60c47b96-4f725"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1IWgud18CiY%2BHXQ3M%2BFWGotR%2BUV9XEft29QqhToNKboEyTKUXWL8jK7zHI3xgiG1feydoFSOpqoF7bANk3U94uE0DiQ3kbfrlr7FsLfOOqLlUnJBxyY1HnOny4UqJE9aDbkmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35df51c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.3950hg.com/static/css/app~f9ca8911.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~f9ca8911.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~f9ca8911.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~60482fbf.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~60482fbf.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~60482fbf.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~ec8c427e.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~ec8c427e.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~ec8c427e.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~9c72a770.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~9c72a770.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~9c72a770.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
static.3963hg.com//gygame00/static_resource/2021060100243635a511396b-4c27-4b0f-b549-776fdf7d22b6.svg
104.21.40.16200 OK 1.2 kB URL HTTP/2 static.3963hg.com//gygame00/static_resource/2021060100243635a511396b-4c27-4b0f-b549-776fdf7d22b6.svg
IP 104.21.40.16:0
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (1234), with CRLF line terminators
Hash 4ddde133b4cad106528228e0a34dbe92
3230c42b5f8a8f72fc86c87fccedaa3c7c98e3af
95cbc4004087ea194174d03e9464f6e01c9b99f852d45bf285ef3ee6be03d966
GET //gygame00/static_resource/2021060100243635a511396b-4c27-4b0f-b549-776fdf7d22b6.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:36:35 GMT
etag: W/"60b51093-82c"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rG1oX6w12sgygNEwCGgFFmN2hRyZ9a4ZmxEEO%2FvvjSt4%2BHbAbQHAPfE0KtJWsX%2BMtRGfYBuaos3jqJtQ4klofKcXfefTKkIn71beSKX3uyYg4pKvLX2PjvjWW7%2B4fcM8g7rzCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e36e0a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.3950hg.com/static/css/app~ccfed41c.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~ccfed41c.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~ccfed41c.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~d642632d.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~d642632d.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~d642632d.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
static.3963hg.com//gygameff/hg002800/static_resource/2021061316240613b2de4300-1941-495b-99e9-b4b4895d72e6.png
104.21.40.16200 OK 643 kB URL HTTP/2 static.3963hg.com//gygameff/hg002800/static_resource/2021061316240613b2de4300-1941-495b-99e9-b4b4895d72e6.png
IP 104.21.40.16:0
File type PNG image data, 1920 x 320, 8-bit/color RGB, non-interlaced\012- data
Size 643 kB (643176 bytes)
Hash 2b2f356964c95d8f46d1181a55334058
c9a3d45d77d329fe5ccb4e3dd28d761dbc7afe76
7e24afb64c92c8612c2a7c7f3784c6084ac55b1269b94fb58f3c5fb153d95079
GET //gygameff/hg002800/static_resource/2021061316240613b2de4300-1941-495b-99e9-b4b4895d72e6.png HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:41 GMT
content-type: image/png
content-length: 643176
last-modified: Sun, 13 Jun 2021 08:06:13 GMT
etag: "60c5bc75-9d068"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3hUBF6pGKLKRseAeDY%2FsthS%2FrE4hLdf9HFR7%2BgqtTAp3lMXM9j9b%2F47IeWguXI62tXZx8ziz%2B5V5cwT7suXq7G8ExR1hOflA44egZcY8wiNX8WSZ6%2BUWMD2R5dkNKWpyqkjG9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35df91c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
m.3950hg.com/static/css/app~ab8de4ae.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~ab8de4ae.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~ab8de4ae.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~d6bca244.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.4 kB URL HTTP/1.1 m.3950hg.com/static/css/app~d6bca244.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (11767), with no line terminators
Hash b8b4c5e2ed54632eb261186bd8755211
58a54267d1d1034106c1c94c16f056b71e092261
1fa2d5f4971dad3e83160ce3b32227537351cf4973969c5109518314ac82d576
GET /static/css/app~d6bca244.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2dff"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~3d9b8e9e.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~3d9b8e9e.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~3d9b8e9e.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~80236ddf.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.2 kB URL HTTP/1.1 m.3950hg.com/static/css/app~80236ddf.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10598), with no line terminators
Hash 33dde8bac689df576ab2813b0e2b6566
79e879652a624983f60496f5f8dfb8432823e2d1
4f210b31a6b101afde43e6e274d50efbbd6c508b66a124f49dc72c5af665e294
GET /static/css/app~80236ddf.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-296e"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~90adce77.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~90adce77.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~90adce77.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~32da2406.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~32da2406.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~32da2406.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~e83e5b62.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~e83e5b62.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~e83e5b62.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~970f9218.89dc933111ce856faa3c.css
20.2.86.48200 OK 39 kB URL HTTP/1.1 m.3950hg.com/static/css/app~970f9218.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (63077), with no line terminators
Hash 06bebb255f481d79bbe0cd5cdd143d1a
548f69bc65471692bee025adf207fc0d7c5d3b4f
c80d17a3d880bcc64cdc642cf9df9f7032d45e7da3fe37845d69b6547b9c0b82
GET /static/css/app~970f9218.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:41 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-f66d"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~dae72e19.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~dae72e19.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~dae72e19.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~12edcc67.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~12edcc67.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~12edcc67.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~d70f4ea0.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.2 kB URL HTTP/1.1 m.3950hg.com/static/css/app~d70f4ea0.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10598), with no line terminators
Hash 34f95cef948ad54cbc425e72c5e462b2
ca07e06eb612b5a278ec35413109ceba7a9bce03
9ffbe25c00f9f09d9080de9fe90099686044c295701e7d57ea689f39223849b9
GET /static/css/app~d70f4ea0.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-296e"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~4f374045.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~4f374045.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~4f374045.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~5779294a.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~5779294a.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~5779294a.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~44d8b03f.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~44d8b03f.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~44d8b03f.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/images/index/live/live_girl.png
35.243.93.42200 OK 299 kB URL HTTP/1.1 3950hg.com/static/images/index/live/live_girl.png
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 885 x 544, 8-bit/color RGBA, non-interlaced\012- data
Size 299 kB (298680 bytes)
Hash f144a636d18f50d5ab27ca513e404320
15b358538377f83da259b4f19f33652e6de18d42
3cfb6c7c02eb06ccc368f85ca0b2ce1c96dca0a57b31335e111df0ffbcbbcdaf
GET /static/images/index/live/live_girl.png HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:40 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-49236"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
m.3950hg.com/static/css/app~30ce6225.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~30ce6225.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~30ce6225.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~0415ae23.89dc933111ce856faa3c.css
20.2.86.48200 OK 39 kB URL HTTP/1.1 m.3950hg.com/static/css/app~0415ae23.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (63077), with no line terminators
Hash 06bebb255f481d79bbe0cd5cdd143d1a
548f69bc65471692bee025adf207fc0d7c5d3b4f
c80d17a3d880bcc64cdc642cf9df9f7032d45e7da3fe37845d69b6547b9c0b82
GET /static/css/app~0415ae23.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-f66d"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~190e1b22.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~190e1b22.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~190e1b22.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~cd9bb54c.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~cd9bb54c.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~cd9bb54c.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~afc93323.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~afc93323.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~afc93323.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~2f813d28.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~2f813d28.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~2f813d28.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~82ea78d8.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~82ea78d8.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~82ea78d8.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~e300ea46.89dc933111ce856faa3c.css
20.2.86.48200 OK 22 kB URL HTTP/1.1 m.3950hg.com/static/css/app~e300ea46.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash b4a11d72a976ede95afce7622fc01bd0
d4a91048a5d596b2ff93e8fca3e85a3c134f575a
118d9b9eb86b03734e330bf49bbdd27e7fa1c3ec2927c066bc0f4d26f478461b
GET /static/css/app~e300ea46.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-1b3e1"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~c122ce7e.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~c122ce7e.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~c122ce7e.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~95e0dc99.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~95e0dc99.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~95e0dc99.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/css/app~5d0e7c9a.89dc933111ce856faa3c.css
20.2.86.48200 OK 2.1 kB URL HTTP/1.1 m.3950hg.com/static/css/app~5d0e7c9a.89dc933111ce856faa3c.css
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (10344), with no line terminators
Hash 663942a9eb0454058bb6f9ed3b5e21d6
8f44449a5c0dfc3508a5632d054b92aa40c4dd60
ac043885780f995c75bc60fce8490dc4bdf7cecefb71597d591b044918cd7b10
GET /static/css/app~5d0e7c9a.89dc933111ce856faa3c.css HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-2870"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/24.ec2a94642713d46f6684.js
20.2.86.48200 OK 28 kB URL HTTP/1.1 m.3950hg.com/static/js/24.ec2a94642713d46f6684.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65455)
Hash abf96263980dadaf90fc480654e0e8e7
1c6b97123ed70acf71f0cbf96083dcdbdbe94ea1
1a816f445f4785860771af70313a943d2400ff19e585b6397765328547d6b13b
Analyzer Verdict Alert fortinet Phishing
GET /static/js/24.ec2a94642713d46f6684.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-16ce8"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/splash.js
20.2.86.48200 OK 605 B URL HTTP/1.1 m.3950hg.com/static/splash.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1541), with no line terminators
Hash 8357d122d67cb25f4585d9c1edf0fb12
6faac1b3091b909cfccb54ddbaa52f294f56b31b
ea4bdead7525dcf34277cef8a2f092c4c859bea37e5925a0f3c120ee76147977
Analyzer Verdict Alert fortinet Phishing
GET /static/splash.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-605"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/10.4c25d72efa70a17e1a75.js
20.2.86.48200 OK 23 kB URL HTTP/1.1 m.3950hg.com/static/js/10.4c25d72efa70a17e1a75.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (65441)
Hash 350b5e1664e8afb9d91aa29566027d58
47056cac7bb5b0a6a9e4933ea2b84aced0e40493
96d332a0d75c69c14db269a65b861a60c774b675169e92522d8564bc9baf4bbc
Analyzer Verdict Alert fortinet Phishing
GET /static/js/10.4c25d72efa70a17e1a75.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-13014"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/22.c3477b9a2b88d13ce272.js
20.2.86.48200 OK 21 kB URL HTTP/1.1 m.3950hg.com/static/js/22.c3477b9a2b88d13ce272.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (65454)
Hash 5cb05bf5ecb4da09338cc9e4b840dac9
a878927d337280f6b0a1871a1618a8e4743766ad
25c9617f252dc75460a2825b8865bf46326dbf65e2252501d88c0d30305e7de0
Analyzer Verdict Alert fortinet Phishing
GET /static/js/22.c3477b9a2b88d13ce272.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-106d9"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/2.cb52f70f810522c426f9.js
20.2.86.48200 OK 13 kB URL HTTP/1.1 m.3950hg.com/static/js/2.cb52f70f810522c426f9.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (36357)
Hash 0daf36f9d2ad0c51231101bd188c9be0
122f9891d1f233ed4731919d4b6c0ff4954dd700
995b91baf70d69d8a665f7925ac7279fb08b941c761537a486482d13b39aceb9
Analyzer Verdict Alert fortinet Phishing
GET /static/js/2.cb52f70f810522c426f9.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-8e55"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/23.2c03888180e211e1a1ae.js
20.2.86.48200 OK 23 kB URL HTTP/1.1 m.3950hg.com/static/js/23.2c03888180e211e1a1ae.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65536), with no line terminators
Hash 69df61e3159fc8106bb00bcd45d3341d
56fd7b22e3b9cee9b74b120a72352868d937a25e
519f9ba0485bf502ce91ca64484a16c0da80c2598d2ac1ce6dabdf3694c5e973
Analyzer Verdict Alert fortinet Phishing
GET /static/js/23.2c03888180e211e1a1ae.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-1501f"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
3950hg.com/static/images/footer/footer_img.png
35.243.93.42200 OK 2.0 kB URL HTTP/1.1 3950hg.com/static/images/footer/footer_img.png
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 1921 x 25, 8-bit colormap, non-interlaced\012- data
Hash ab977db2c32cce3fe406bb4909388498
ab4fa85aff8b0d2bd72c5684b1b4b678dddfe1e2
8ba40d7e3bf54bb62aa77a462ea0fb3dbe8529a2ab9a1fd0f2d5a957a8c1ee8c
GET /static/images/footer/footer_img.png HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-7ad"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/images/index/title_style02_center.png
35.243.93.42200 OK 4.0 kB URL HTTP/1.1 3950hg.com/static/images/index/title_style02_center.png
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 181 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash c79e0921a3a2dbac1c3fc14fc301ebca
0c46af3b2039373d52f578facf1d4917cb99ea2e
f9cfc54859429000059d97ec18a2598c9d94e5ebc170b110b59283b740cb0538
GET /static/images/index/title_style02_center.png HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-fb0"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
3950hg.com/static/images/header/menu_btn_bg.svg
35.243.93.42200 OK 548 B URL HTTP/1.1 3950hg.com/static/images/header/menu_btn_bg.svg
IP 35.243.93.42:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (329), with CRLF line terminators
Hash 0357470487da7b5fba6e71fc0e41a0c8
5761f2f874c5fe05d0f557b2c9fea6b24ee1067e
d42c3039b3cda26fa87c736bc9e197b4f3dde6e3069a03d58631e7f3820ccf58
Analyzer Verdict Alert fortinet Phishing
GET /static/images/header/menu_btn_bg.svg HTTP/1.1
Host: 3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/static/css/index.28f8dbac3b6493a3fbe30d33d4a59868.css
Cookie: sc=Z3lnYW1lMDA%3D; referrer=; auth=%7B%22status%22%3A0%2C%22platform%22%3A%22pc%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:43 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:30:14 GMT
Vary: Accept-Encoding
ETag: W/"6303f566-497"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: MISS
m.3950hg.com/static/js/7.ad3bab283f46673098a0.js
20.2.86.48200 OK 18 kB URL HTTP/1.1 m.3950hg.com/static/js/7.ad3bab283f46673098a0.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (62038), with no line terminators
Hash e1a43395042f801ded3fa6bd11d8723d
2766de56f1333f431b373d64256eddb9ea8a3eaf
13aee526c405c90741cf9ae3245ef67057e704ce42f6640b97ab114916bf0f87
Analyzer Verdict Alert fortinet Phishing
GET /static/js/7.ad3bab283f46673098a0.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-f256"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/50.555f2f94add55be3db57.js
20.2.86.48200 OK 22 kB URL HTTP/1.1 m.3950hg.com/static/js/50.555f2f94add55be3db57.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4fd2769f08357ac957c2d8da26c45854
2434f062608cbc4a212fb8fd5d44983de0173ae4
b4dada4bef7f5bace78d0e790a392a18e2fec08db324ab1ac1fd13c50585e112
Analyzer Verdict Alert fortinet Phishing
GET /static/js/50.555f2f94add55be3db57.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-1942d"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/21.98cae3ca10ca7c629327.js
20.2.86.48200 OK 41 kB URL HTTP/1.1 m.3950hg.com/static/js/21.98cae3ca10ca7c629327.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65536), with no line terminators
Hash 74247ebf153177ec9de720a90fa3213e
5c8b4f5f6e3b218c2d33f33b230b167da3dbb6f3
2efff5d2bef347c0bef1446c85f665afe610792e3d73cc2ada83c6d5ec55597c
Analyzer Verdict Alert fortinet Phishing
GET /static/js/21.98cae3ca10ca7c629327.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-1bb43"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
m.3950hg.com/static/js/28.6ab4a2123dea0fa2c53b.js
20.2.86.48200 OK 19 kB URL HTTP/1.1 m.3950hg.com/static/js/28.6ab4a2123dea0fa2c53b.js
IP 20.2.86.48:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (63937), with no line terminators
Hash 8199c772a2cb7004bc0d85b36c5d7028
770a1a57636b76970b83f2c2aafe98cc108622f4
ada3d3f9e1e0d204978c9fc246508a7ceda546cc2e36d7c4e9fd180ed9cb09e5
Analyzer Verdict Alert fortinet Phishing
GET /static/js/28.6ab4a2123dea0fa2c53b.js HTTP/1.1
Host: m.3950hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.3950hg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 22:09:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 21:29:44 GMT
Vary: Accept-Encoding
ETag: W/"6303f548-f9c1"
Content-Encoding: gzip
Server: cdn
Strict-Transport-Security: max-age=31536000;
X-Cache-Status: HIT
static.3963hg.com//gygame00/static_resource/2021060100243515223665b1-c90e-4987-b0eb-acdc8f125537.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/2021060100243515223665b1-c90e-4987-b0eb-acdc8f125537.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/2021060100243515223665b1-c90e-4987-b0eb-acdc8f125537.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:35:15 GMT
etag: W/"60b51043-9ca"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qd90Rlc8Btb6zRgho9coGyCPdl8DF%2B9SQW8v5OCI94MDnFKukowdhM04cs25AZg4OEAfGrWmZS9ZgORDiO9Dn7BHpjYvvHF%2BjvbbRppHlON6WbSpczxuZS9mEAUf%2FpBCvBC2Xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35dfa1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygame00/static_resource/202106010024365551199378-096d-48aa-aa52-7741f167d4ec.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/202106010024365551199378-096d-48aa-aa52-7741f167d4ec.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/202106010024365551199378-096d-48aa-aa52-7741f167d4ec.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:36:55 GMT
etag: W/"60b510a7-50f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jgy10K3phYv%2FpSjGP1O2Wz6ZbRkwx463zADs20KPMUUaclP55vdbJO8P9XO8RQz%2Fqk%2FHbJdvtEid3sl1fhuZS6XISmr6VKcb46GU0rDaVAP4evTY2hin5cd3sm5c%2F9Ul3YwYZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e36e131c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygame00/static_resource/2021060100243611ca75ac51-c03e-40b5-96b7-ec200e285c7c.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/2021060100243611ca75ac51-c03e-40b5-96b7-ec200e285c7c.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/2021060100243611ca75ac51-c03e-40b5-96b7-ec200e285c7c.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:36:11 GMT
etag: W/"60b5107b-b5d"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLFZTfiS1Ga8S3ivul2nuwaEhFV82%2BH7bH%2Fop2GOv%2B2XsvxL35M5L3mI1D8y8JAN5JBXKMqUnUW66aD6JOy8aLM7XgOTMsCy2Qlf8zfCiaurDgznFXLnGE%2FmpanAJpZn6G5WPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e37e151c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygame00/static_resource/2021060100243506cca291bb-91f6-43a0-90d0-3c8cd27684b3.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/2021060100243506cca291bb-91f6-43a0-90d0-3c8cd27684b3.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/2021060100243506cca291bb-91f6-43a0-90d0-3c8cd27684b3.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:35:06 GMT
etag: W/"60b5103a-97e"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YKAQaKOqSbhP2AZvQbszyu156SxpHUOAaR2blfZR8il1vtrB3VW8FMLQ7rxIJggs2phrG8F30VaE%2B1GxyIb6g8XuFi5D%2BOEJ0uyajGz4p8DRW%2B5vXdgclJp%2FL%2BtoYeRlLURiKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35dfd1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygame00/static_resource/202106010024353739195201-86e3-4ffb-8c3c-fe6bc061c9f7.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/202106010024353739195201-86e3-4ffb-8c3c-fe6bc061c9f7.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/202106010024353739195201-86e3-4ffb-8c3c-fe6bc061c9f7.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:35:37 GMT
etag: W/"60b51059-b41"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Kkv102%2Bz4jPlxNqrcpdKOOC6E6XtOAzeXeL0zkEx%2BZUTUDYWSzMbBC%2Bn5kscGhQyRc5D3Eg7WSOsGct2ksDy93orgMs2nUaIrojklgL6bCPCuYbIFeVU3oAl0J%2B%2BvACCwTxVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e3feea1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygame00/static_resource/2021060100243528b2141e6a-05f6-4ca1-bf49-025bd9e98f25.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/2021060100243528b2141e6a-05f6-4ca1-bf49-025bd9e98f25.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/2021060100243528b2141e6a-05f6-4ca1-bf49-025bd9e98f25.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:35:28 GMT
etag: W/"60b51050-1cd5"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o4khfk3D0jKWP7Kzszh6CzaWVlF3AVX4KQf8BdW9ehHUZKeokqSNT1hy%2F4XsyPuFl5M3taGtgx9lFVg9mmzT8qhmBplar7RKr4li%2FdHs48ryrCDWfzmUOtX%2B2UjZQuGSsAqQrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e35dfb1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.3963hg.com//gygame00/static_resource/202106010024364237dc287a-2141-4c57-9a61-d64ef2d3bb24.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/202106010024364237dc287a-2141-4c57-9a61-d64ef2d3bb24.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/202106010024364237dc287a-2141-4c57-9a61-d64ef2d3bb24.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:36:42 GMT
etag: W/"60b5109a-5c7"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iF4mcQ%2B17JMsOaztSj8UwYqvKkR9h4zhEIpwrqSl8grRDkrqIkg2yfgqKWcPqJsJ5Io0G6IWtE9kK77RZpYtmlNv3RBpW%2FTJ0XUQsd%2BzNsLtqj%2FgC1VIX0VEuaoFIDy0U%2BZmtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e36e121c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Serif+TC&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Serif+TC&display=swap
IP 142.250.74.10:0
GET /css?family=Noto+Serif+TC&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 22:09:35 GMT
date: Sun, 25 Sep 2022 22:09:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.3963hg.com//gygame00/static_resource/2021060100243623b1479d3d-2815-4eae-83d3-225617c5031b.svg
104.21.40.16200 OK 0 B URL HTTP/2 static.3963hg.com//gygame00/static_resource/2021060100243623b1479d3d-2815-4eae-83d3-225617c5031b.svg
IP 104.21.40.16:0
GET //gygame00/static_resource/2021060100243623b1479d3d-2815-4eae-83d3-225617c5031b.svg HTTP/1.1
Host: static.3963hg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3950hg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 22:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 31 May 2021 16:36:23 GMT
etag: W/"60b51087-a33"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jWmyMKPfP4RK6x%2FZgmZ2uwibhmK7CjlE66fkIfEAJKHc1fxhGrg2fKDWXe2ryKEimiY8yPtp04xK049NmWa0toyIapluYX%2BBM%2BIm02neHtbRa65sO9qyFb6Rn3q2COTtXDS3vw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 750715e37e161c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2