r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11213
Expires: Thu, 09 Feb 2023 05:24:44 GMT
Date: Thu, 09 Feb 2023 02:17:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2879
Expires: Thu, 09 Feb 2023 03:05:50 GMT
Date: Thu, 09 Feb 2023 02:17:51 GMT
Connection: keep-alive
www.amctop.com/board_data/editor_img/file/202106070747.pdf
107.187.128.201200 OK 803 B URL HTTP/1.1 www.amctop.com/board_data/editor_img/file/202106070747.pdf
IP 107.187.128.201:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash abcb177bf8a37cfaa4ea44ef1bbf5e41
d3b77951df912af805cb7783ca18c3f64571dbaa
8a7da0edf255f69ca891d5889e244321dda2281df9ccb6e8e937b276d75f3bce
GET /board_data/editor_img/file/202106070747.pdf HTTP/1.1
Host: www.amctop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 Feb 2023 02:17:51 GMT
Content-Type: text/html
Content-Length: 803
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 01:34:15 GMT
content-type: application/json
age: 2616
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14401
Expires: Thu, 09 Feb 2023 06:17:52 GMT
Date: Thu, 09 Feb 2023 02:17:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JzZSV7kqHIsdNpzYQ5pfz62NcJKW/UJAxWKdY9OlARv09rtphqeRXtcWIYWE96ARblY9HJ/YzLXD0brrLAY0ig==
x-amz-request-id: HX3JF7VT0T251CW2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 01:46:11 GMT
age: 1900
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:51 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.amctop.com/common.js
107.187.128.201200 OK 755 B IP 107.187.128.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 5f73964d0f1ee3a67eab575892c217cf
120910b1e0520552084c2eb944dd70e005b59d9b
6b2f8a4081ad7ad0f130b5ca86bb733128f0dace1c310398dd66145ece0df19f
GET /common.js HTTP/1.1
Host: www.amctop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.amctop.com/board_data/editor_img/file/202106070747.pdf
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 Feb 2023 02:17:51 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.amctop.com/tj.js
107.187.128.201200 OK 518 B IP 107.187.128.201:0
File type ASCII text, with CRLF line terminators
Hash 55e94d2ce67f82d04067a23c8861d50e
d74443dbdf6cfdc9953c662da75efc86972420f9
4e786f96ffe07f97dc0f9690fae3e6d1d6bb64c358b864bc9383ebc2eba8a6ce
GET /tj.js HTTP/1.1
Host: www.amctop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.amctop.com/board_data/editor_img/file/202106070747.pdf
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 Feb 2023 02:17:51 GMT
Content-Type: application/x-javascript
Content-Length: 518
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 01:51:21 GMT
age: 1590
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4057
Expires: Thu, 09 Feb 2023 03:25:29 GMT
Date: Thu, 09 Feb 2023 02:17:52 GMT
Connection: keep-alive
www.amctop.com/favicon.ico
107.187.128.201200 OK 1.2 kB URL HTTP/1.1 www.amctop.com/favicon.ico
IP 107.187.128.201:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.amctop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.amctop.com/board_data/editor_img/file/202106070747.pdf
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 Feb 2023 02:17:52 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Tue, 14 Feb 2023 02:17:52 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
push.services.mozilla.com/
52.40.31.202101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.31.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bdvIGJOrqvwjouqSYsKSzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8Emg1oMnSGmsyI8Ufq7EPJ9iLYQ=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 65c5f34d65a763beec80326d58bad767
103a4fe4a66466a943e03fd8c03b8b60945b7a45
3a0bfc33e963b0bc96babda603e96491fa6ddb717a526b3ef6f77ddc5a9bf91f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A0BFC33E963B0BC96BABDA603E96491FA6DDB717A526B3EF6F77DDC5A9BF91F"
Last-Modified: Wed, 08 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 09 Feb 2023 08:17:52 GMT
Date: Thu, 09 Feb 2023 02:17:52 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash bb52939504604c72014540f8b13102e5
e36cdfbc2bc74b9d434e085f83efc9c607c41871
be01413ab6a64564ff864306fcf506144310c8432abc27e8789d74ab0a45783c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:17:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 13 Feb 2023 00:47:51 GMT
ETag: "e36cdfbc2bc74b9d434e085f83efc9c607c41871"
Last-Modified: Thu, 09 Feb 2023 00:47:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1988
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79691c790f73b4fa-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash bb52939504604c72014540f8b13102e5
e36cdfbc2bc74b9d434e085f83efc9c607c41871
be01413ab6a64564ff864306fcf506144310c8432abc27e8789d74ab0a45783c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:17:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 13 Feb 2023 00:47:51 GMT
ETag: "e36cdfbc2bc74b9d434e085f83efc9c607c41871"
Last-Modified: Thu, 09 Feb 2023 00:47:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1988
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79691c791f7ab4fa-OSL
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7615
Expires: Thu, 09 Feb 2023 04:24:48 GMT
Date: Thu, 09 Feb 2023 02:17:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7615
Expires: Thu, 09 Feb 2023 04:24:48 GMT
Date: Thu, 09 Feb 2023 02:17:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7615
Expires: Thu, 09 Feb 2023 04:24:48 GMT
Date: Thu, 09 Feb 2023 02:17:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90107713-2512-413b-bb6c-0156521b403c.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90107713-2512-413b-bb6c-0156521b403c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 113363afa7cfd484dbc115a9f44c1723
2f9dfb845aa919a51a0b5fa9a824ac4845f669be
a91a045600ef2fdebd582ce453a85f7ce0c9f8be7258baf311d0d940de027c20
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F90107713-2512-413b-bb6c-0156521b403c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4308
x-amzn-requestid: 2d4ce596-9a69-4394-8e10-cd5c54687a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzKZ0F2DoAMF6nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddf10b-6c4fabe01360b8781bdd8e06;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 05:45:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R_VDTHUaRhwthD0THsWg42L1OF7lZAX3ENsTfV0U7kkn9o0x-mQ_9g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 13:53:53 GMT
age: 44640
etag: "2f9dfb845aa919a51a0b5fa9a824ac4845f669be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6c45da743665658afcfbf2309e1594b
04d025452dcec571f3eb6068499290d86e0c4c30
3ddfcf83ea18ba20700364c7095750a142a15575c988ba5688ed2f4dbbba4ee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3509a9bb-f5d1-4723-96d3-e2a87a28bbf4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6471
x-amzn-requestid: ab4c8119-a2f0-4b3d-bbed-b34c5a0a7a30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACiGaGsjoAMFmZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e416f5-7298e0530bee8f997b552e6e;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:41:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qxzdVgRauaFA1GnS6m2WJr7zkXVIpFUNZN0r_mdAQvkDu4nzYanjzQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:10:41 GMT
age: 14832
etag: "04d025452dcec571f3eb6068499290d86e0c4c30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95081172f8e19d19921acc802488e019
8531c150cb11de44361a95624b11cf46b9e0ba02
7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15019
x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f583LHiioAMFqkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 08:24:16 GMT
age: 64417
etag: "8531c150cb11de44361a95624b11cf46b9e0ba02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce710ab5746832fe637fada3e6d63abf
d545c85d4a8cf92dc8b88db0a056623d1ef7a943
40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2aG-IoAMFfnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AX-TsURes3Bn0RrAnH7TnsouJdkcOpbq7f7KAzPMWq4RMBH8FWMz7g==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 17:45:22 GMT
age: 30751
etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5fc553a8677d9c0bf4835a0c29a7345c
ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8
e821faf86e44f2b9c9d5bd8cd3575c0a99acfc58774077034c413e345a7c0c0c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7451
x-amzn-requestid: a900a5b4-85cd-4817-8e70-2516eb33a0a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fox8IHMuIAMFdHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9c9e7-1122726b315a7c5623d1ff3f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 02:09:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0giOb6VA3jgf_3ep6DqSBrFhYz8aBNWTjxpitvm9NWe2oNQlJ5UbEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:09:32 GMT
age: 14901
etag: "ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b11f9f70f5e8af4de6d9fc5b9f50ccbe
753cb08c3f8c7c0750d113253790a08db01986bc
d4b77ba995ea274fd169fc9bc66919b23e72a8edb88d6184bf3d7f3ab398c645
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11036
x-amzn-requestid: 4bd4976c-9500-4d6d-a447-dd2873987d13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswexHCYIAMFzag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-61d430202cbbf52823f38c49;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3U29-_iFXSAoG74d9-pJmmWfVbO6f2Y91lLvi7nXxgNYWKNvbFTRyQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 08:48:54 GMT
age: 62939
etag: "753cb08c3f8c7c0750d113253790a08db01986bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
push.zhanzhang.baidu.com/push.js
112.34.113.148200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 112.34.113.148:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.amctop.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Thu, 09 Feb 2023 02:17:53 GMT
Etag: "4078521116"
Expires: Fri, 09 Feb 2024 02:17:53 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=E03AF3020A80764F20F73D6513B9F188:FG=1; max-age=31536000; expires=Fri, 09-Feb-24 02:17:53 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
hm.baidu.com/hm.js?6ec41cb260c094ed046e0d18f81ee123
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?6ec41cb260c094ed046e0d18f81ee123
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (616)
Hash ecae943d03b738af38e9d504b63696c9
db86cb78a73440e136970fec9a5788d1542e3183
fe1c22a7ad5471952bde754c5d54fd9defc067a15b9115b4ae97b259f84deb1e
GET /hm.js?6ec41cb260c094ed046e0d18f81ee123 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.amctop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11254
Content-Type: application/javascript
Date: Thu, 09 Feb 2023 02:17:53 GMT
Etag: 44937ad8d91c94f2ac209324453cbc83
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=460F392F55D7BD62; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?65e69eb8240b52cbca20b7842a5a80d9
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?65e69eb8240b52cbca20b7842a5a80d9
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 21ad562c7d8a541928f5d0b18ad0cefc
4533bcf9a1315ab04f414da3d6d95bb95f51891d
5505bfe3d54a9989af7786f326d733641dd541d297bd5219fa169c6a3dd9b1f2
GET /hm.js?65e69eb8240b52cbca20b7842a5a80d9 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.amctop.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Thu, 09 Feb 2023 02:17:53 GMT
Etag: 7edac4afe321d242d6a25d288d4a08c6
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=31D6CCD027BA662C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=432094518&si=6ec41cb260c094ed046e0d18f81ee123&v=1.3.0&lv=1&sn=48111&r=0&ww=1280&u=http%3A%2F%2Fwww.amctop.com%2Fboard_data%2Feditor_img%2Ffile%2F202106070747.pdf&tt=%E4%BD%99%E5%A7%9A%E5%8E%8B%E9%95%A3%E5%BD%B1%E9%99%A2%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=432094518&si=6ec41cb260c094ed046e0d18f81ee123&v=1.3.0&lv=1&sn=48111&r=0&ww=1280&u=http%3A%2F%2Fwww.amctop.com%2Fboard_data%2Feditor_img%2Ffile%2F202106070747.pdf&tt=%E4%BD%99%E5%A7%9A%E5%8E%8B%E9%95%A3%E5%BD%B1%E9%99%A2%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=432094518&si=6ec41cb260c094ed046e0d18f81ee123&v=1.3.0&lv=1&sn=48111&r=0&ww=1280&u=http%3A%2F%2Fwww.amctop.com%2Fboard_data%2Feditor_img%2Ffile%2F202106070747.pdf&tt=%E4%BD%99%E5%A7%9A%E5%8E%8B%E9%95%A3%E5%BD%B1%E9%99%A2%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.amctop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 09 Feb 2023 02:17:54 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=470BE356387D2935; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1666951633&si=65e69eb8240b52cbca20b7842a5a80d9&v=1.3.0&lv=1&sn=48111&r=0&ww=1280&u=http%3A%2F%2Fwww.amctop.com%2Fboard_data%2Feditor_img%2Ffile%2F202106070747.pdf&tt=%E4%BD%99%E5%A7%9A%E5%8E%8B%E9%95%A3%E5%BD%B1%E9%99%A2%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1666951633&si=65e69eb8240b52cbca20b7842a5a80d9&v=1.3.0&lv=1&sn=48111&r=0&ww=1280&u=http%3A%2F%2Fwww.amctop.com%2Fboard_data%2Feditor_img%2Ffile%2F202106070747.pdf&tt=%E4%BD%99%E5%A7%9A%E5%8E%8B%E9%95%A3%E5%BD%B1%E9%99%A2%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1666951633&si=65e69eb8240b52cbca20b7842a5a80d9&v=1.3.0&lv=1&sn=48111&r=0&ww=1280&u=http%3A%2F%2Fwww.amctop.com%2Fboard_data%2Feditor_img%2Ffile%2F202106070747.pdf&tt=%E4%BD%99%E5%A7%9A%E5%8E%8B%E9%95%A3%E5%BD%B1%E9%99%A2%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.amctop.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 09 Feb 2023 02:17:54 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6F7FFF4067275E93; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
zhong.xboxtalks.com/news/index.php
104.233.156.157200 OK 12 kB URL HTTP/2 zhong.xboxtalks.com/news/index.php
IP 104.233.156.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (623), with CRLF, LF line terminators
Hash 42853d655cf8118e3e3b8592e4a45e17
47c08e3f8c002ed448ff6b0830da58e59416218b
d789eb6a8828b1cd47dd940e944627a2787decdc4ae06c8d625d3f7d7fc7af30
GET /news/index.php HTTP/1.1
Host: zhong.xboxtalks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.amctop.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=705307597&si=b16b6a4a1f070ba28e5ede46d7d8ead0&su=http%3A%2F%2Fwww.amctop.com%2F&v=1.3.0&lv=1&sn=48112&r=0&ww=1268&u=https%3A%2F%2Fzhong.xboxtalks.com%2Fnews%2Findex.php
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=705307597&si=b16b6a4a1f070ba28e5ede46d7d8ead0&su=http%3A%2F%2Fwww.amctop.com%2F&v=1.3.0&lv=1&sn=48112&r=0&ww=1268&u=https%3A%2F%2Fzhong.xboxtalks.com%2Fnews%2Findex.php
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=705307597&si=b16b6a4a1f070ba28e5ede46d7d8ead0&su=http%3A%2F%2Fwww.amctop.com%2F&v=1.3.0&lv=1&sn=48112&r=0&ww=1268&u=https%3A%2F%2Fzhong.xboxtalks.com%2Fnews%2Findex.php HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zhong.xboxtalks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 09 Feb 2023 02:17:54 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=757E3BAD61CAF285; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
api.share.baidu.com/s.gif?l=http://www.amctop.com/board_data/editor_img/file/202106070747.pdf
180.101.212.103200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.amctop.com/board_data/editor_img/file/202106070747.pdf
IP 180.101.212.103:0
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.amctop.com/board_data/editor_img/file/202106070747.pdf HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.amctop.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Thu, 09 Feb 2023 02:17:55 GMT
zhong.xboxtalks.com/news/list.php
104.233.156.157200 OK 690 B URL HTTP/2 zhong.xboxtalks.com/news/list.php
IP 104.233.156.157:0
Hash dfb29f84e44de895ad759005293ff24e
a898fa2012ffce092ffa824eb880f6930a59016e
253cfa7fb1e57fcc41245efa25e47bcd3a1ea5c831d8765d9e31e330b5cb9186
GET /news/list.php HTTP/1.1
Host: zhong.xboxtalks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zhong.xboxtalks.com/news/data.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/images/logo.gif
104.233.156.154200 OK 16 kB URL HTTP/2 www.nvyouyazi.xyz/static/images/logo.gif
IP 104.233.156.154:0
File type PNG image data, 220 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 41be2a554ab389c0fc7e24c2f4ce862a
5283ad78151ce1ce314d3ad7d8b4d44415bd7ac0
b99480fbf9e8a0b4cad8901bf79bae8c6ff03f4cc90817e450be24dd727c1b12
GET /static/images/logo.gif HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: image/gif
content-length: 16005
last-modified: Mon, 06 Feb 2023 15:54:27 GMT
etag: "63e122b3-3e85"
expires: Sat, 11 Mar 2023 02:17:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/images/1.gif
104.233.156.154200 OK 254 B URL HTTP/2 www.nvyouyazi.xyz/static/images/1.gif
IP 104.233.156.154:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /static/images/1.gif HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: image/gif
content-length: 254
last-modified: Wed, 18 May 2022 02:49:57 GMT
etag: "62845ed5-fe"
expires: Sat, 11 Mar 2023 02:17:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/images/empty.jpg
104.233.156.154200 OK 1.2 kB URL HTTP/2 www.nvyouyazi.xyz/static/images/empty.jpg
IP 104.233.156.154:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 220x124, components 3\012- data
Hash 2e10f99007a3ec31e2ae518ef51467c8
bb6aacf079028929e26331722e59d42f925517c3
dbb7cbacae8a87aff48ab56634c5ce8e18d03b93196c51e909f90d3350dc746d
GET /static/images/empty.jpg HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: image/jpeg
content-length: 1217
last-modified: Wed, 18 May 2022 03:32:52 GMT
etag: "628468e4-4c1"
expires: Sat, 11 Mar 2023 02:17:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/images/sprite.gif
104.233.156.154200 OK 55 B URL HTTP/2 www.nvyouyazi.xyz/static/images/sprite.gif
IP 104.233.156.154:0
File type GIF image data, version 89a, 10 x 10\012- data
Hash 8647a09907f1a5c35a56aaf41e8e0132
b55547d0446299a57eed391407359d1378032a09
d16e2c8d92eb72e4b584790314f6ca14916e3d5ae9374358515429b5b999bd31
GET /static/images/sprite.gif HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: image/gif
content-length: 55
last-modified: Wed, 18 May 2022 07:45:41 GMT
etag: "6284a425-37"
expires: Sat, 11 Mar 2023 02:17:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/fonts/voltaire.woff
104.233.156.154404 Not Found 479 B URL HTTP/2 www.nvyouyazi.xyz/static/fonts/voltaire.woff
IP 104.233.156.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 57dd7bfa6c07bfe5eeada45d4bdd78ec
395c6ad5c3ae0e8ea47281f5007c369551b32ad7
c870990950ca5802e260be6786d1e6a148b1acdfeed4fa9bb6acce744488c0b5
GET /static/fonts/voltaire.woff HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/static/assets/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: text/html
content-length: 479
etag: "6283b617-1df"
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/images/empty_288_144.jpg
104.233.156.154200 OK 1.3 kB URL HTTP/2 www.nvyouyazi.xyz/static/images/empty_288_144.jpg
IP 104.233.156.154:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 288x144, components 3\012- data
Hash 223ccd57e872d5f6706080f5c3773ee6
a2c808c0cb8d3f30ba4c289d72d93433b0e354c8
3e14bf5f6cb36df9deb0128d0b78d525d923ee63ba5d7a0d9061a06759e42004
GET /static/images/empty_288_144.jpg HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: image/jpeg
content-length: 1268
last-modified: Wed, 18 May 2022 03:32:52 GMT
etag: "628468e4-4f4"
expires: Sat, 11 Mar 2023 02:17:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/undefined
104.233.156.154404 Not Found 479 B URL HTTP/2 www.nvyouyazi.xyz/undefined
IP 104.233.156.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 57dd7bfa6c07bfe5eeada45d4bdd78ec
395c6ad5c3ae0e8ea47281f5007c369551b32ad7
c870990950ca5802e260be6786d1e6a148b1acdfeed4fa9bb6acce744488c0b5
GET /undefined HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: text/html
content-length: 479
etag: "6283b617-1df"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 2f61a1634df311c02527da1729378535
40953c858b3b128d7d3b7777aefecb0979a0c68d
a5d085c2033ef2a94041abfdaf9082990d3fa11f35ba64c880c4ebfce2ca1cf1
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:17:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 13 Feb 2023 00:14:36 GMT
ETag: "40953c858b3b128d7d3b7777aefecb0979a0c68d"
Last-Modified: Thu, 09 Feb 2023 00:14:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 6
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79691c99eefeb4fa-OSL
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
54.230.111.88200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 54.230.111.88:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
date: Wed, 01 Feb 2023 07:37:14 GMT
access-control-allow-origin: *
cache-control: max-age=7776000
edge-cache-tag: tg
expires: Tue, 02 May 2023 07:37:14 GMT
last-modified: Tue, 12 May 2015 01:00:00 GMT
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qB94YkswwGtSvl69e79TlXJYTPYihQGSf-4BSQ--9UorQi_8gu4zyA==
age: 672044
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cd239ba9f1f42222a4ea076f9c531a1b
8b360d546b4dba72dd52fb7c269a9cd891afee1b
d803e4e311e510f9dbddea7f24e92306f9686c5e4144e9cfe7d80777b6df5531
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D803E4E311E510F9DBDDEA7F24E92306F9686C5E4144E9CFE7D80777B6DF5531"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21567
Expires: Thu, 09 Feb 2023 08:17:25 GMT
Date: Thu, 09 Feb 2023 02:17:58 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a5607b13d6f08b25a67528d5b3fc5cd1
1b27673db9469f8c835b6518320afc901008a83c
600b679eb60e38187babeadf0f56e03ba0a869448ee10f99cd3935ff933f607f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4843
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Etag: "63e33eae-117"
Last-Modified: Thu, 09 Feb 2023 00:57:15 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
www.nvyouyazi.xyz/static/js/jquery.autocomplete.js
104.233.156.154200 OK 6.8 kB URL HTTP/2 www.nvyouyazi.xyz/static/js/jquery.autocomplete.js
IP 104.233.156.154:0
Hash 11dedea131b85a8db13a4ec3340456e0
c49c078b1b06bf3dd02d9d129634e2578b5787c3
0d86497c669e7be0b16675640d7a7d934375c3b327cdb443373b8ed9b4bf58fe
GET /static/js/jquery.autocomplete.js HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 03:30:06 GMT
vary: Accept-Encoding
etag: W/"6284683e-64a0"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/351t5VZFA4M
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/351t5VZFA4M
IP 142.250.74.163:0
Hash 6ca741a79f79a303c43c8197df791aa5
657b556144d9510f2dcbe98f716ab658c459d429
a1d5aa9de84c37c6ac3103a77eb0a7729d6a827559d4935d96a0c6360ec3acaf
POST /s/gts1p5/351t5VZFA4M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nvyouyazi.xyz/static/js/common1.js
104.233.156.154200 OK 193 kB URL HTTP/2 www.nvyouyazi.xyz/static/js/common1.js
IP 104.233.156.154:0
Size 193 kB (193400 bytes)
Hash b777701a0da5426407be7c2489aec355
8519cb21f00cababa7397ea152936be1bb4bc803
ce832bb2c3c9507f56b1f79d4b32193be96a2a1c8c4e0b3d97aa2ded3080a017
GET /static/js/common1.js HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2023 07:58:28 GMT
vary: Accept-Encoding
etag: W/"63e204a4-6e8"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/351t5VZFA4M
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/351t5VZFA4M
IP 142.250.74.163:0
Hash 6ca741a79f79a303c43c8197df791aa5
657b556144d9510f2dcbe98f716ab658c459d429
a1d5aa9de84c37c6ac3103a77eb0a7729d6a827559d4935d96a0c6360ec3acaf
POST /s/gts1p5/351t5VZFA4M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kzepp.com/b837372ece624904ca818f92a63102a4.gif
98.126.214.50301 Moved Permanently 162 B URL HTTP/2 kzepp.com/b837372ece624904ca818f92a63102a4.gif
IP 98.126.214.50:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /b837372ece624904ca818f92a63102a4.gif HTTP/1.1
Host: kzepp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 09 Feb 2023 02:17:58 GMT
content-type: text/html
content-length: 162
location: https://kvthhh.top/b837372ece624904ca818f92a63102a4.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash cad100455f905688039ed5dbbf9988f0
b978e259e92cc1056bc6c92337311565a1368c32
db3b723aed3f930e464ff7154ba95a6aeef30219d1da3f9d92e92a793badd64e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 02:17:58 GMT
Etag: "63e2ff6c-1d7"
Server: ECS (dcb/7EEA)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DBTgZjcBhFwo4xZvCdipMRIr_E7NmhqskhBfu3o0zsPl7fcRD_bPEA==
media.smooch.io/apps/6285f2169b5df200f527f3e4/conversations/e88b1c6777de326b00e3a948/plC-iEObyjniaCdcFFIraTEc/900-200-6.gif
54.230.111.22200 OK 709 kB URL HTTP/2 media.smooch.io/apps/6285f2169b5df200f527f3e4/conversations/e88b1c6777de326b00e3a948/plC-iEObyjniaCdcFFIraTEc/900-200-6.gif
IP 54.230.111.22:0
File type GIF image data, version 89a, 900 x 200\012- data
Size 709 kB (709110 bytes)
Hash c2fe161673b4bc8b2d0cc4b742addb84
397260688ca654ab32ef69217b70d299ee822bc4
9fe15e6834a3a60f3adf5c0d4cc64efab21e74388265dd402377ca0f068d5923
GET /apps/6285f2169b5df200f527f3e4/conversations/e88b1c6777de326b00e3a948/plC-iEObyjniaCdcFFIraTEc/900-200-6.gif HTTP/1.1
Host: media.smooch.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 709110
date: Tue, 07 Feb 2023 00:48:31 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 20 Oct 2022 12:13:28 GMT
etag: "c2fe161673b4bc8b2d0cc4b742addb84"
cache-control: max-age=315532800
x-amz-version-id: ghGYWYsEueSB5NVEZBqhO6bNo2tE4_U3
accept-ranges: bytes
server: AmazonS3
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
age: 178167
x-content-type-options: nosniff
x-robots-tag: noindex
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: maGMFxAx1o_WWEI6Ij80Ekjy0fWO4i6ncmSCpi0DERs__ePKJoHAQA==
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/351t5VZFA4M
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/351t5VZFA4M
IP 142.250.74.163:0
Hash 6ca741a79f79a303c43c8197df791aa5
657b556144d9510f2dcbe98f716ab658c459d429
a1d5aa9de84c37c6ac3103a77eb0a7729d6a827559d4935d96a0c6360ec3acaf
POST /s/gts1p5/351t5VZFA4M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a37a8e1029fd7da91b4c441e6806c1c
328d64c3deab516890e3f2bdfa6b5e21b685f02a
c03cb27955f6da278545978fb6107d4db9bdc85673a20975700f4c1d4f1a0cef
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "C03CB27955F6DA278545978FB6107D4DB9BDC85673A20975700F4C1D4F1A0CEF"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 09 Feb 2023 08:17:58 GMT
Date: Thu, 09 Feb 2023 02:17:58 GMT
Connection: keep-alive
tupkku.top/logotp/bbzy7.gif
172.67.178.134200 OK 111 kB URL HTTP/2 tupkku.top/logotp/bbzy7.gif
IP 172.67.178.134:0
File type GIF image data, version 89a, 108 x 108\012- data
Size 111 kB (110624 bytes)
Hash e3240f80fa3623e4bc4675c955beb241
fb5f06e85933d6e6a8e0f98e28c16b44844b3ae3
d595e4b9e1341db392c7d348474e94c200802c5e35290b7e4f9a4a4ad653bd1d
GET /logotp/bbzy7.gif HTTP/1.1
Host: tupkku.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:17:58 GMT
content-type: image/gif
content-length: 110624
last-modified: Sun, 19 Jun 2022 13:14:29 GMT
etag: "62af2135-1b020"
expires: Mon, 06 Mar 2023 03:13:20 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 428535
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I2Y8S%2Fzu67Uv%2FTbUUBtvRF0tkj6o9NgrBjxK1R%2BlaWiD1uRWlLE8T5vFC%2B4rBessJMLE5CPjreuwMWg8OY17kcMrhxzh0ysOULcX4Z6ZQvCJWE4rYhbokpuoBk6U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79691c9bbe290afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
IP 142.250.74.163:0
Hash 1c116ed61fd59d3f386dd95f530cfc1b
633de826916e15f3e06d55bd6fc51c01d4a292f5
84333e25954015404a2f9b1eca97bb445fa2ddc868085a173a0a52e999a3a479
POST /s/gts1p5/IOl1ekfxYGk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nvyouyazi.xyz/static/js/home.js
104.233.156.154200 OK 717 kB URL HTTP/2 www.nvyouyazi.xyz/static/js/home.js
IP 104.233.156.154:0
Size 717 kB (717053 bytes)
Hash 743d4b08449548e54489574f3b713edc
1ea0db2c5027af28b305cb9bdc5b82d2deaa4524
a2b9bbaadfc937774e11321c0100198562ead00bac313031ebb22e5c3ea59fdd
GET /static/js/home.js HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: application/javascript
last-modified: Tue, 24 Aug 2021 06:28:32 GMT
vary: Accept-Encoding
etag: W/"61249190-95a5"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/assets/js/jquery.base.js
104.233.156.154200 OK 111 kB URL HTTP/2 www.nvyouyazi.xyz/static/assets/js/jquery.base.js
IP 104.233.156.154:0
Size 111 kB (110846 bytes)
Hash 360fc10e6fc6518fdbcd656287da1f53
1589e2c92e65f82dfc8e36d2f92aaf294422930d
f11b509298aafe848a1e7e34ebddb0260f8a9e45698bc9c7303607b62631c8eb
GET /static/assets/js/jquery.base.js HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 15:05:56 GMT
vary: Accept-Encoding
etag: W/"6283b9d4-1835"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/assets/js/jquery.superslide.js
104.233.156.154200 OK 3.3 kB URL HTTP/2 www.nvyouyazi.xyz/static/assets/js/jquery.superslide.js
IP 104.233.156.154:0
Hash dd926a8fcf2dc100029cea88661ea23d
fda25b60e7ca9822a1b6375fb1062a029a12e06d
daacd9cebd6490174874a245026e1f5d7b6be63986696ed53c35e3258a28452f
GET /static/assets/js/jquery.superslide.js HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 15:05:57 GMT
vary: Accept-Encoding
etag: W/"6283b9d5-24d8"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
sv1.stor.petaexpress.com/dfegfegeg/1.jpg
199.180.101.116200 OK 14 kB URL HTTP/1.1 sv1.stor.petaexpress.com/dfegfegeg/1.jpg
IP 199.180.101.116:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 650x96, components 3\012- data
Hash db2dbdc216703ec86bc6d75d652e7007
a2610252e80c359f3026f6bf3b744c23c3d4cb98
48dc2e5f86c223bdcfdf820eeb1ddef2840c9789dabd79ef2cf8bd67b0f22eb8
GET /dfegfegeg/1.jpg HTTP/1.1
Host: sv1.stor.petaexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 Feb 2023 02:17:58 GMT
Content-Type: image/jpeg
Content-Length: 14485
Connection: keep-alive
Accept-Ranges: bytes
Etag: "db2dbdc216703ec86bc6d75d652e7007"
Last-Modified: Fri, 23 Dec 2022 09:12:12 GMT
x-qs-request-id: 63ffd067f3bf43d4
x-qs-storage-class: STANDARD
ocsp.pki.goog/s/gts1p5/tBJxb47aP_U
142.250.74.163200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/tBJxb47aP_U
IP 142.250.74.163:0
Hash 1e732e8663ac0d64ba69ae4cb4afe69f
307a91f4216e45acc6ac8809cf43897883fe1929
52194b0be3b7265d58e43910e7ee431a43c1e91b930ee7b5bb5769d27a8dc765
POST /s/gts1p5/tBJxb47aP_U HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hm.baidu.com/hm.js?7a3389e90bc644392baa05bd3db255ad
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7a3389e90bc644392baa05bd3db255ad
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 3d1c98d76010cf13b13977aa79199cd0
c20889af8fd67197e1d2c4e54201b9ec1d01b8b8
fe9abcd41cd8b41649b1f2008f46a9e57ee49d221295196a09cb4ffe2e44c196
GET /hm.js?7a3389e90bc644392baa05bd3db255ad HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Thu, 09 Feb 2023 02:17:58 GMT
Etag: 693a5934a99d05f3792c1ecdb9c70b45
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=227D7A4399667D35; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
142.250.74.163200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/IOl1ekfxYGk
IP 142.250.74.163:0
Hash 1c116ed61fd59d3f386dd95f530cfc1b
633de826916e15f3e06d55bd6fc51c01d4a292f5
84333e25954015404a2f9b1eca97bb445fa2ddc868085a173a0a52e999a3a479
POST /s/gts1p5/IOl1ekfxYGk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 39d35ceb6b940cac8983edbf19f73b0d
80c7068606f08dfe9d48b45fe267ae6b6e6acc49
ccfa163e89cdaafa24727c3d04306cb825e63190c120b6c4a6113f08802f6e5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CCFA163E89CDAAFA24727C3D04306CB825E63190C120B6C4A6113F08802F6E5F"
Last-Modified: Tue, 07 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21385
Expires: Thu, 09 Feb 2023 08:14:23 GMT
Date: Thu, 09 Feb 2023 02:17:58 GMT
Connection: keep-alive
kvthhh.top/b837372ece624904ca818f92a63102a4.gif
104.21.235.66200 OK 490 kB URL HTTP/2 kvthhh.top/b837372ece624904ca818f92a63102a4.gif
IP 104.21.235.66:0
File type GIF image data, version 89a, 960 x 70\012- data
Size 490 kB (490535 bytes)
Hash 5c438a6ee62cf815245fd3549ef1b023
5ca68bea7eef3782c85398c4823df1985aafd592
9c379119b81e3ea86fe37bdd1f6db1452696bedfa75fa5e5da28cce9ff3932dc
GET /b837372ece624904ca818f92a63102a4.gif HTTP/1.1
Host: kvthhh.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nvyouyazi.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:17:58 GMT
content-type: image/gif
content-length: 490535
last-modified: Fri, 06 Jan 2023 09:58:03 GMT
etag: "63b7f0ab-77c27"
expires: Sun, 05 Mar 2023 15:43:16 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 470082
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tBwrIVP3i9Ne02VCPMmJgQ75lXqzZiYKLFd%2BICbgrPZ7uNJGRvciTqr1EasqxSejx3Q%2FG367uhYXX632hZm9Bq9%2Fg%2FAjCDroZPE0JOLa%2B2DHv0r%2B8mgDNI%2FpeT84"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79691c9ce818778c-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 5ba5f92bd899010968aa0edfe7e1056c
52f4d705f0d8beb4717ceab37db30dcc2c467c64
907d19d33940d46419f116ee6f3dbc61a2422a777bae8a03270872f52806fbc0
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Thu, 09 Feb 2023 02:17:58 GMT
Last-Modified: Thu, 09 Feb 2023 00:18:50 GMT
ETag: "63e43bea-1d7"
Expires: Sat, 11 Feb 2023 00:18:50 GMT
Cache-Control: max-age=165652
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1675909078
Via: cache19.l2de2[297,296,200-0,M], cache19.l2de2[297,0], cache7.se1[320,320,200-0,M], cache7.se1[321,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Thu, 09 Feb 2023 02:17:58 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9b16759090783456122e
ocsp.pki.goog/s/gts1p5/tBJxb47aP_U
142.250.74.163200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/tBJxb47aP_U
IP 142.250.74.163:0
Hash 1e732e8663ac0d64ba69ae4cb4afe69f
307a91f4216e45acc6ac8809cf43897883fe1929
52194b0be3b7265d58e43910e7ee431a43c1e91b930ee7b5bb5769d27a8dc765
POST /s/gts1p5/tBJxb47aP_U HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
si1.go2yd.com/get-image/0xmAGT9KS9C
163.171.140.79200 OK 118 kB URL HTTP/2 si1.go2yd.com/get-image/0xmAGT9KS9C
IP 163.171.140.79:0
ASN #54994 QUANTILNETWORKS
File type GIF image data, version 89a, 640 x 200\012- data
Size 118 kB (117593 bytes)
Hash c4caa37b717580e8594587f32ca86470
a645ec82581a0b18f67444b62a062059adf78aa6
208bafb1df6fa8b7929896b30415514e2dc59312332ec26aff058767fa81f269
GET /get-image/0xmAGT9KS9C HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:17:58 GMT
content-type: image/gif
content-length: 117593
server: Tengine
x-application-context: application
x-kss-request-id: 9a211df897c146b99866a236ff549e2f
etag: "c4caa37b717580e8594587f32ca86470"
content-md5: xMqje3F1gOhZRYfzLKhkcA==
last-modified: Thu, 10 Feb 2022 15:30:06 GMT
accept-ranges: bytes
age: 1
x-via: 1.1 PSbjwjBGP2ih137:4 (Cdn Cache Server V2.0), 1.1 PSzjnbsxkx232:7 (Cdn Cache Server V2.0), 1.1 tb118:13 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1cc96:12 (Cdn Cache Server V2.0)
x-ws-request-id: 63e457d6_PShlamstdAMS1vj92_18182-54948
access-control-allow-origin: *
ws-s2h-acc-level: 1
X-Firefox-Spdy: h2
kvhnn.com/4075a2d03c2b841cb1541c1421314d41.gif
45.150.164.88301 Moved Permanently 162 B URL HTTP/2 kvhnn.com/4075a2d03c2b841cb1541c1421314d41.gif
IP 45.150.164.88:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /4075a2d03c2b841cb1541c1421314d41.gif HTTP/1.1
Host: kvhnn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 09 Feb 2023 02:17:58 GMT
content-type: text/html
content-length: 162
location: https://kvkooo.top/4075a2d03c2b841cb1541c1421314d41.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash fb708d14167f9a253599b05c32588130
4deb4a4bf61646a23c585c446ae63a36dd553e9f
85e910e7386a2e0a625cde3fa3dc52b47c8c9731ed3926945a8f398dfd6703c4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:17:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 12 Feb 2023 22:44:17 GMT
ETag: "4deb4a4bf61646a23c585c446ae63a36dd553e9f"
Last-Modified: Wed, 08 Feb 2023 22:44:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3193
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79691c9ed8fb0b4d-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash fb708d14167f9a253599b05c32588130
4deb4a4bf61646a23c585c446ae63a36dd553e9f
85e910e7386a2e0a625cde3fa3dc52b47c8c9731ed3926945a8f398dfd6703c4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:17:58 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 12 Feb 2023 22:44:17 GMT
ETag: "4deb4a4bf61646a23c585c446ae63a36dd553e9f"
Last-Modified: Wed, 08 Feb 2023 22:44:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3193
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79691c9ed8fc0b4d-OSL
www.nvyouyazi.xyz/static/js/base1.js
104.233.156.154200 OK 15 kB URL HTTP/2 www.nvyouyazi.xyz/static/js/base1.js
IP 104.233.156.154:0
Hash fc9007f14b09f40918e88b3846b4e73b
5c34fd7a0d919190be66cffd6af192c2dcc8aa5f
2325b690c6e9b5bd428dd32643f793ffc089da893802ac61a9bcb9b16653ee63
GET /static/js/base1.js HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2023 07:29:23 GMT
vary: Accept-Encoding
etag: W/"63e1fdd3-4d30"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a5607b13d6f08b25a67528d5b3fc5cd1
1b27673db9469f8c835b6518320afc901008a83c
600b679eb60e38187babeadf0f56e03ba0a869448ee10f99cd3935ff933f607f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4843
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:17:58 GMT
Etag: "63e33eae-117"
Last-Modified: Thu, 09 Feb 2023 00:57:15 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1340801073&si=7a3389e90bc644392baa05bd3db255ad&su=https%3A%2F%2Fzhong.xboxtalks.com%2F&v=1.3.0&lv=1&sn=48116&r=0&ww=1268&u=https%3A%2F%2Fwww.nvyouyazi.xyz%2F&tt=%E9%B8%AD%E5%AD%90TV%E8%A7%86%E9%A2%91%E7%BD%91%20%E5%9C%A8%E7%BA%BF%E5%85%8D%E8%B4%B9%E7%94%B5%E5%BD%B1
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1340801073&si=7a3389e90bc644392baa05bd3db255ad&su=https%3A%2F%2Fzhong.xboxtalks.com%2F&v=1.3.0&lv=1&sn=48116&r=0&ww=1268&u=https%3A%2F%2Fwww.nvyouyazi.xyz%2F&tt=%E9%B8%AD%E5%AD%90TV%E8%A7%86%E9%A2%91%E7%BD%91%20%E5%9C%A8%E7%BA%BF%E5%85%8D%E8%B4%B9%E7%94%B5%E5%BD%B1
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1340801073&si=7a3389e90bc644392baa05bd3db255ad&su=https%3A%2F%2Fzhong.xboxtalks.com%2F&v=1.3.0&lv=1&sn=48116&r=0&ww=1268&u=https%3A%2F%2Fwww.nvyouyazi.xyz%2F&tt=%E9%B8%AD%E5%AD%90TV%E8%A7%86%E9%A2%91%E7%BD%91%20%E5%9C%A8%E7%BA%BF%E5%85%8D%E8%B4%B9%E7%94%B5%E5%BD%B1 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Thu, 09 Feb 2023 02:17:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=3AFED9BEAE2E5E64; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
pic.azg118.buzz/wm1.gif
23.224.92.252200 OK 488 kB IP 23.224.92.252:0
File type GIF image data, version 89a, 900 x 200\012- data
Size 488 kB (488105 bytes)
Hash 2ec0093911aae432bb9bc8ada1ecda37
cb572b05aeead7e7f7ae7ba9e127c193a26ecb12
09c4ed18962e323d2e78e9f91c326768041ccd71f958198624336fe87fea02b6
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.buzz domain
GET /wm1.gif HTTP/1.1
Host: pic.azg118.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: Tengine
Date: Thu, 09 Feb 2023 02:17:58 GMT
Content-Type: image/gif
Content-Length: 488105
Last-Modified: Thu, 09 Feb 2023 02:16:55 GMT
Connection: keep-alive
ETag: "63e45797-772a9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 961bf7f378446cbf6acf12321149c39f
f84e1fd718634e5d77e05e6b2143101bd8f0a4ec
c92d3d414aa51fee2c85895db83ee48a4af95e09f508725661e9d2756ed187fc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C92D3D414AA51FEE2C85895DB83EE48A4AF95E09F508725661E9D2756ED187FC"
Last-Modified: Mon, 06 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8369
Expires: Thu, 09 Feb 2023 04:37:28 GMT
Date: Thu, 09 Feb 2023 02:17:59 GMT
Connection: keep-alive
kvkooo.top/4075a2d03c2b841cb1541c1421314d41.gif
104.21.9.78200 OK 306 kB URL HTTP/2 kvkooo.top/4075a2d03c2b841cb1541c1421314d41.gif
IP 104.21.9.78:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 306 kB (305844 bytes)
Hash deaf6726e132abcd76037da8a2bb456f
688436bcd8028785c66b7a3bc16815fe6bcadaa3
c35dc81fcc77502aa08be2b48aefea14bbbbebdac1a8c411c501877c06748013
GET /4075a2d03c2b841cb1541c1421314d41.gif HTTP/1.1
Host: kvkooo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nvyouyazi.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:17:59 GMT
content-type: image/gif
content-length: 305844
last-modified: Sun, 08 Jan 2023 13:40:07 GMT
etag: "63bac7b7-4aab4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1713
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ulE9QxmpUr2iWNCZUTX%2BwNIcHcsHfGJQCaZydBmHRAGdAds7bXeVItYupaKEHo1xXVcYDAy%2FeYoss0s%2BqoRV5q5zK9%2BSxffB1wx6oo4SYM698%2BreBPqgUW7xuOWT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79691c9fe8bf0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 961bf7f378446cbf6acf12321149c39f
f84e1fd718634e5d77e05e6b2143101bd8f0a4ec
c92d3d414aa51fee2c85895db83ee48a4af95e09f508725661e9d2756ed187fc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C92D3D414AA51FEE2C85895DB83EE48A4AF95E09F508725661E9D2756ED187FC"
Last-Modified: Mon, 06 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8369
Expires: Thu, 09 Feb 2023 04:37:28 GMT
Date: Thu, 09 Feb 2023 02:17:59 GMT
Connection: keep-alive
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 44c2fd7bea47e2e26d29cc4da1851356
146d6ae65fcab37992d2a1f1d19357c49abb51fb
21d88dba1cc56a4f0223d71164ee00a59097916b79df9769ba0e1981f734210b
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 09 Feb 2023 02:02:01 GMT
last-modified: Tue, 07 Feb 2023 17:47:56 GMT
expires: Tue, 14 Feb 2023 17:47:55 GMT
etag: "146d6ae65fcab37992d2a1f1d19357c49abb51fb"
cache-control: max-age=601235,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7969053f7b44382e-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675908121
via: cache15.l2de2[0,0,304-0,H], cache9.l2de2[1,0], cache1.se1[84,83,200-0,H], cache5.se1[85,0], cache5.se1[86,0]
age: 958
x-cache: HIT TCP_REFRESH_HIT dirn:2:16818483
x-swift-savetime: Thu, 09 Feb 2023 02:17:59 GMT
x-swift-cachetime: 842
timing-allow-origin: *, *
eagleid: 2ff62c9916759090790393233e, 2ff62c9916759090790393233e
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 44c2fd7bea47e2e26d29cc4da1851356
146d6ae65fcab37992d2a1f1d19357c49abb51fb
21d88dba1cc56a4f0223d71164ee00a59097916b79df9769ba0e1981f734210b
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Thu, 09 Feb 2023 02:02:01 GMT
last-modified: Tue, 07 Feb 2023 17:47:56 GMT
expires: Tue, 14 Feb 2023 17:47:55 GMT
etag: "146d6ae65fcab37992d2a1f1d19357c49abb51fb"
cache-control: max-age=601235,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 7969053f7b44382e-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1675908121
via: cache15.l2de2[0,0,304-0,H], cache3.l2de2[1,0], cache5.se1[90,90,200-0,H], cache5.se1[91,0], cache1.se1[93,0]
age: 958
x-cache: HIT TCP_REFRESH_HIT dirn:1:352059395
x-swift-savetime: Thu, 09 Feb 2023 02:17:59 GMT
x-swift-cachetime: 842
timing-allow-origin: *, *
eagleid: 2ff62c9516759090790367517e, 2ff62c9516759090790367517e
img.8918a.com/images/63a069cad9e6cc95320e0950.gif
3.36.126.81302 Found 727 B URL HTTP/2 img.8918a.com/images/63a069cad9e6cc95320e0950.gif
IP 3.36.126.81:0
Hash 17706694b71b4c834aa31650e184eda8
c755ca1a0dab45f28af033864fc8b58ded5a073a
c6746039ee58110676fda9817531a2a61aaf53bcbad9c2a9bae88dfcfa0d7210
GET /images/63a069cad9e6cc95320e0950.gif HTTP/1.1
Host: img.8918a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 52f23e23c3700c1d3ca26002020de5c1
289da818755757930f3fceea0fb4c8ad9677ef9c
a1f2df2929933f5d5cf9ee7c1b59f5a5f2477ffa43f2cab7f09af9032c4eb5bb
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:17:59 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:34:27 GMT
Expires: Wed, 15 Feb 2023 13:34:26 GMT
Etag: "289da818755757930f3fceea0fb4c8ad9677ef9c"
Cache-Control: max-age=558386,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79691ca08bf3b503-OSL
help.ifeng.com/datas/feedback/20221217/639d86e9b6b6d.gif
49.51.190.27200 OK 167 kB URL HTTP/1.1 help.ifeng.com/datas/feedback/20221217/639d86e9b6b6d.gif
IP 49.51.190.27:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 167 kB (166673 bytes)
Hash a76a21236cc656e7eaa83a578e926243
0a51bf94f4c75963785f61344458936e5e060cb3
b95a0b1af937e5c8b61ef3a67fa638a98024626041d96ec1bd2b033570ec5d1a
GET /datas/feedback/20221217/639d86e9b6b6d.gif HTTP/1.1
Host: help.ifeng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
server: openresty
date: Thu, 09 Feb 2023 02:17:58 GMT
content-type: image/gif
content-length: 166673
last-modified: Sat, 17 Dec 2022 09:07:53 GMT
etag: "639d86e9-28b11"
expires: Fri, 24 Feb 2023 02:17:58 GMT
cache-control: max-age=1296000
accept-ranges: bytes
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 80fffb7951dbd29265fb45cfea87b7d5
6b68296699999ec26c5a3409624fa361e948317f
ddab4d0c97958be188faedbb7c1bf04eefa63ad642ef36f73aa953d33a7d8261
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Thu, 09 Feb 2023 02:18:00 GMT
Connection: keep-alive
X-N: S
www.nvyouyazi.xyz/static/js/zxf.js
104.233.156.154200 OK 249 kB URL HTTP/2 www.nvyouyazi.xyz/static/js/zxf.js
IP 104.233.156.154:0
Size 249 kB (248846 bytes)
Hash fb6a7d39c8d8f9ed37ea59dd7e424cfa
2c669739f9c9a2b289acf95d8dda9f5b335f9b1b
70b652d20426e61b856a71a6479ff408b02b6489d4b2d96937fde5156e772ffb
GET /static/js/zxf.js HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: application/javascript
last-modified: Mon, 06 Feb 2023 17:03:21 GMT
vary: Accept-Encoding
etag: W/"63e132d9-9ff"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 7fda8365ffc37fb7e03545c9d73c6038
67565090b0fc727d97d11282b2d392988bb93dd8
133603086eb73948cad3284f2971635eabd87e4e4e8b2f027e9bcd0705fc0b33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6123
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:18:00 GMT
Etag: "63e41a38-2d7"
Last-Modified: Thu, 09 Feb 2023 00:35:57 GMT
Server: ECS (amb/6BBF)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 7fda8365ffc37fb7e03545c9d73c6038
67565090b0fc727d97d11282b2d392988bb93dd8
133603086eb73948cad3284f2971635eabd87e4e4e8b2f027e9bcd0705fc0b33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3654
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:18:00 GMT
Etag: "63e2c8b9-2d7"
Last-Modified: Thu, 09 Feb 2023 01:17:06 GMT
Server: ECS (amb/6B94)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 7fda8365ffc37fb7e03545c9d73c6038
67565090b0fc727d97d11282b2d392988bb93dd8
133603086eb73948cad3284f2971635eabd87e4e4e8b2f027e9bcd0705fc0b33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5362
Cache-Control: max-age=162386
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:18:00 GMT
Etag: "63e41a38-2d7"
Expires: Fri, 10 Feb 2023 23:24:26 GMT
Last-Modified: Wed, 08 Feb 2023 21:55:04 GMT
Server: ECS (amb/6BB9)
X-Cache: HIT
Content-Length: 727
p3.douyinpic.com/obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560
47.246.44.225200 OK 415 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 750 x 80\012- data
Size 415 kB (414979 bytes)
Hash ecd0f421a231299ffaa9117a67c1e38a
6dd0678ee6c2a91eca8db2428d8743f607360d3a
dbd0423b88c8d785dd015e2e80105d0bcd41e677c3588acbf34cf1ca542565c9
GET /obj/tos-cn-i-dy/9e8afd3907294526a42a854b0f4d7560 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 414979
date: Mon, 05 Dec 2022 07:16:52 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 05 Dec 2022 07:09:21 GMT
nw-session-id: 2022120515092101015013207630C082CC7t5wt01dy
nw-session-trace: 2022-12-05T15:09:21.716293741+08:00 48
x-bdcdn-cache-status: TCP_HIT
x-length: 414979
x-powered-by: ImageX
x-response-date: Mon, 05 Dec 2022 15:09:21 GMT
x-tt-logid: 2022120515092101015013207630C082CC
via: n204-100-053, cache12.l2de2[0,0,206-0,H], cache12.l2de2[2,0], cache12.l2de2[2,0], cache2.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc01:27:681::36
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01c70dab46e58f2ac949ece2051ac89e2dd2773be35d3e5369524bf1f9f46f4ea066e23b5378fe9943c2f968c40c38ced9fa128ef7bf579b1467b9a779eb22ac0c37e53b062293a8a1e8061f8daaf0ff7b4e0f99e8da2482833909c1ebdc2d578e
x-response-lb: image
ali-swift-global-savetime: 1670224612
age: 5684468
x-cache: HIT TCP_MEM_HIT dirn:6:60658080
x-swift-savetime: Wed, 11 Jan 2023 02:43:53 GMT
x-swift-cachetime: 28355579
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916759090800493670e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/121c33f4fb28408d850e1daf693615e2
47.246.44.225200 OK 475 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/121c33f4fb28408d850e1daf693615e2
IP 47.246.44.225:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 80\012- data
Size 475 kB (474754 bytes)
Hash 187c69beaa798211a2760f0e7944d8cc
645bc6d28abf2cf3756a014fb2fc9075d0f0fe20
50bc3ac7422522639cd47b65d6cb5683ba8f80395087ba0c105e47edb69b81d4
GET /obj/tos-cn-i-dy/121c33f4fb28408d850e1daf693615e2 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 474754
date: Sun, 20 Nov 2022 14:44:36 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Sun, 20 Nov 2022 08:46:34 GMT
nw-session-id: 202211201646340102100541412DE55E248wr9d01dy
nw-session-trace: 2022-11-20T16:46:34.499786194+08:00 48
x-bdcdn-cache-status: TCP_HIT
x-length: 474754
x-powered-by: ImageX
x-response-date: Sun, 20 Nov 2022 16:46:34 GMT
x-tt-logid: 202211201646340102100541412DE55E24
via: n150-055-208, cache5.l2de2[0,0,206-0,H], cache19.l2de2[4,0], cache19.l2de2[4,0], cache2.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc02:22:54::97
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01f613908a3097b69db0ac7de3a68e335bb6718fd5f76ca985daaf712382505d3e074ccd51651592ac9e0964d8056bb5bb70cf192311d7a1b3da3616eec224829a652e1ddda35860b680cca841a27fd1792c9c4f6a871271fcfc2aaa4af3cf50fb
x-response-lb: image
ali-swift-global-savetime: 1668955476
age: 6953604
x-cache: HIT TCP_MEM_HIT dirn:11:393154057
x-swift-savetime: Mon, 21 Nov 2022 05:59:34 GMT
x-swift-cachetime: 31481102
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916759090800653679e
X-Firefox-Spdy: h2
img.6381a.com/images/63a06a04d9e6cc95320e0952.gif
3.36.126.81302 Found 387 kB URL HTTP/2 img.6381a.com/images/63a06a04d9e6cc95320e0952.gif
IP 3.36.126.81:0
File type GIF image data, version 89a, 980 x 50\012- data
Size 387 kB (387399 bytes)
Hash e7d065ef2a6985ed17aaf2e2a1fbfeb8
4eb62ffd17a1b230475127248a816cdcc960419d
5c92d68894a97bfae6fe8d8ddb4998f715cbd6c069491bb4fa332c75cdbc997e
GET /images/63a06a04d9e6cc95320e0952.gif HTTP/1.1
Host: img.6381a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/121c33f4fb28408d850e1daf693615e2
X-Firefox-Spdy: h2
8499258.com/8499/960x160.gif
162.209.128.165200 OK 444 kB URL HTTP/2 8499258.com/8499/960x160.gif
IP 162.209.128.165:0
File type GIF image data, version 89a, 960 x 160\012- data
Size 444 kB (444020 bytes)
Hash 6da2b4114b68115269107c916110a525
f3173f3dfdff4d4b905b79cbc068aa3fb6a60891
e27ce8615a286f31afae3a6f5580deb2e30d2e9c0a4248a3b7e2d165a89f2cb5
GET /8499/960x160.gif HTTP/1.1
Host: 8499258.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:17:59 GMT
content-type: image/gif
content-length: 444020
last-modified: Sat, 24 Dec 2022 13:20:16 GMT
etag: "6c674-5f092c350014a"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
gtm-cn-j6730u6sd0b.gtm-a3b8.com/xpj960x60.gif
119.167.147.250200 OK 0 B URL HTTP/1.1 gtm-cn-j6730u6sd0b.gtm-a3b8.com/xpj960x60.gif
IP 119.167.147.250:0
ASN #4837 CHINA UNICOM China169 Backbone
GET /xpj960x60.gif HTTP/1.1
Host: gtm-cn-j6730u6sd0b.gtm-a3b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Etag: "4ebdabbf56c5ea36aeb13bc0dfb3cd1c"
Content-Type: image/gif
Date: Tue, 07 Feb 2023 11:35:12 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 357403910767134175
x-cos-request-id: NjNlMjM3NmZfOTU1NWU0MDlfNTE2Nl81OTk0Nzk=
Accept-Ranges: bytes
Last-Modified: Thu, 29 Dec 2022 12:11:22 GMT
Content-Length: 344832
X-NWS-LOG-UUID: 1901693760233430012
Connection: keep-alive
X-Cache-Lookup: Cache Hit, Hit From Inner Cluster
gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
119.167.147.250200 OK 0 B URL HTTP/1.1 gtm-cn-j6730u6sd0b.gtm-a3b8.com/ky960x60.gif
IP 119.167.147.250:0
ASN #4837 CHINA UNICOM China169 Backbone
GET /ky960x60.gif HTTP/1.1
Host: gtm-cn-j6730u6sd0b.gtm-a3b8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Etag: "4e1e4b8f46ac2e67539d5881785ba29a"
Content-Type: image/gif
Date: Mon, 06 Feb 2023 13:27:57 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 10945751995987991778
x-cos-request-id: NjNlMTAwNWRfYmQ0ZmI3MDlfNGRhOF8zZmZkNDg=
Accept-Ranges: bytes
Last-Modified: Thu, 29 Dec 2022 12:09:17 GMT
Content-Length: 399450
X-NWS-LOG-UUID: 9779824762603002256
Connection: keep-alive
X-Cache-Lookup: Cache Hit, Hit From Inner Cluster
zhong.xboxtalks.com/news/data.php
104.233.156.157200 OK 0 B URL HTTP/2 zhong.xboxtalks.com/news/data.php
IP 104.233.156.157:0
GET /news/data.php HTTP/1.1
Host: zhong.xboxtalks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zhong.xboxtalks.com/news/index.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
img.1137555.com/images/63c3f13ffcef5e947a0d2d10.gif
3.36.126.81302 Found 0 B URL HTTP/2 img.1137555.com/images/63c3f13ffcef5e947a0d2d10.gif
IP 3.36.126.81:0
GET /images/63c3f13ffcef5e947a0d2d10.gif HTTP/1.1
Host: img.1137555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/4c745f80c6834f6e893a8874585ce485
X-Firefox-Spdy: h2
www.nvyouyazi.xyz/static/assets/css/style.css
104.233.156.154200 OK 0 B URL HTTP/2 www.nvyouyazi.xyz/static/assets/css/style.css
IP 104.233.156.154:0
GET /static/assets/css/style.css HTTP/1.1
Host: www.nvyouyazi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:17:57 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 15:05:58 GMT
vary: Accept-Encoding
etag: W/"6283b9d6-55f0"
expires: Thu, 09 Feb 2023 14:17:57 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 09 Feb 2023 02:17:59 GMT
content-type: image/gif
content-length: 1607696
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:45 GMT
cache-control: max-age=2592000
x-delay: 104314 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1607696
chid: 0
fid: 0
x-nws-log-uuid: bddf7e1f-798a-4086-ad42-b0c5e843cfe5
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
43.129.255.47200 OK 0 B URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nvyouyazi.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Thu, 09 Feb 2023 02:17:59 GMT
content-type: image/gif
content-length: 1362871
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:47 GMT
cache-control: max-age=2592000
x-delay: 122623 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1362871
chid: 0
fid: 0
x-nws-log-uuid: 5876445b-60c3-4210-a882-8daf0cb0f177
X-Firefox-Spdy: h2