r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12341
Expires: Sun, 29 Jan 2023 19:53:51 GMT
Date: Sun, 29 Jan 2023 16:28:10 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14671
Expires: Sun, 29 Jan 2023 20:32:41 GMT
Date: Sun, 29 Jan 2023 16:28:10 GMT
Connection: keep-alive
www.jubileeac.com/
200 OK 629 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (1035), with CRLF line terminators
Hash 464c64893f7a78dfed1a581aea71d143
ec67ecb252fcfc6611bf6f8d59cf606dcfa7c7df
a2f40ddc6c6af99a4d2f700de15546e883e19b8764ea3741a98ea0640d0ec3a1
GET / HTTP/1.1
Host: www.jubileeac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 16:27:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 15:35:38 GMT
content-type: application/json
age: 3152
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7357
Expires: Sun, 29 Jan 2023 18:30:48 GMT
Date: Sun, 29 Jan 2023 16:28:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rJcQVFRFGXPTZ3cxuLiGyPCMrjKoPveHHNgnml+oQI/x5oNmylFTywqAFJHI54RPteNEBX7z1JA=
x-amz-request-id: 29NGM2VWPBXFT1HT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 16:21:27 GMT
age: 404
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:11 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.jubileeac.com/tj.js
200 OK 364 B IP
File type HTML document, ASCII text, with CRLF line terminators
Hash 7cc260cea1775c6f6346e06fb5fba6bc
a030111275973ac0016f88da0e0186759645f751
aac978963bc688ed068d58e6176fbc9e9c57d6f3f6592f4576fc45bfabe9e68c
GET /tj.js HTTP/1.1
Host: www.jubileeac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jubileeac.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 16:27:54 GMT
Content-Type: application/x-javascript
Content-Length: 364
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 15:41:41 GMT
age: 2790
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13202
Expires: Sun, 29 Jan 2023 20:08:13 GMT
Date: Sun, 29 Jan 2023 16:28:11 GMT
Connection: keep-alive
www.jubileeac.com/common.js
200 OK 1.9 kB URL HTTP/1.1 www.jubileeac.com/common.js
IP
File type HTML document text\012- HTML document, ISO-8859 text, with very long lines (443), with CRLF line terminators
Hash 4ac7517d9b301d42875832d989994928
8453e60d64dad9e3928ebbff6e507645a28e73ad
53c7d31a8a1180cc79874a34be18d97fcae0992bf110e664c5856f2ec55f919c
GET /common.js HTTP/1.1
Host: www.jubileeac.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.jubileeac.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 16:27:54 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: d5v1AXC6B9U0KE7qIzkOVw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lftN+nDB/b9LlPi9WFHmNnI6JSs=
209.73.159.134/chabi-common.php?val=chabi4&t=0.04187164137457733?v=09375651417316904
200 OK 89 B URL HTTP/1.1 209.73.159.134/chabi-common.php?val=chabi4&t=0.04187164137457733?v=09375651417316904
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 994286be183b86cb290324ce94338f76
0d3da37826d8c36386137a92420e67b948a29753
3c703083d583f110500bb12f2e816f2c553a95bc3181cccca5ba2d30a118ed64
Analyzer Verdict Alert quad9 Sinkholed
GET /chabi-common.php?val=chabi4&t=0.04187164137457733?v=09375651417316904 HTTP/1.1
Host: 209.73.159.134
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.jubileeac.com
Connection: keep-alive
Referer: http://www.jubileeac.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 16:28:12 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS,DELETE
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin
Content-Encoding: gzip
209.73.159.134/chabi-common.php?val=chabi4&t=0.12704382322177932?v=05132221059589356
200 OK 89 B URL HTTP/1.1 209.73.159.134/chabi-common.php?val=chabi4&t=0.12704382322177932?v=05132221059589356
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 994286be183b86cb290324ce94338f76
0d3da37826d8c36386137a92420e67b948a29753
3c703083d583f110500bb12f2e816f2c553a95bc3181cccca5ba2d30a118ed64
Analyzer Verdict Alert quad9 Sinkholed
GET /chabi-common.php?val=chabi4&t=0.12704382322177932?v=05132221059589356 HTTP/1.1
Host: 209.73.159.134
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.jubileeac.com
Connection: keep-alive
Referer: http://www.jubileeac.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 16:28:12 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS,DELETE
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type,Content-Length,Accept-Encoding,X-Requested-with, Origin
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash fd4038dd55e6f210c81d6ba0a7f1458b
1c0cdf25049a7c0d92210ba1ca4b8c8c6d5df2bd
6083a6f8e9644334fece2425f6462b12b934ed05bbb3bb882f73885efd11a1a6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 15:56:21 GMT
ETag: "1c0cdf25049a7c0d92210ba1ca4b8c8c6d5df2bd"
Last-Modified: Sun, 29 Jan 2023 15:56:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 16:28:12 GMT
Age: 1163
X-Served-By: cache-qpg1274-QPG, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 11, 1
X-Timer: S1675009693.692245,VS0,VE2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cf0fe82bda0bbe03935e6fd44c08785b
90a340c93d446c6b19b4653a28d820b5679df02d
471fff8108cbb1bfce058ede386173a00c519f7a941072192cac9e0c1f66dc7a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "471FFF8108CBB1BFCE058EDE386173A00C519F7A941072192CAC9E0C1F66DC7A"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Sun, 29 Jan 2023 22:07:20 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cf0fe82bda0bbe03935e6fd44c08785b
90a340c93d446c6b19b4653a28d820b5679df02d
471fff8108cbb1bfce058ede386173a00c519f7a941072192cac9e0c1f66dc7a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "471FFF8108CBB1BFCE058EDE386173A00C519F7A941072192CAC9E0C1F66DC7A"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Sun, 29 Jan 2023 22:07:20 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cf0fe82bda0bbe03935e6fd44c08785b
90a340c93d446c6b19b4653a28d820b5679df02d
471fff8108cbb1bfce058ede386173a00c519f7a941072192cac9e0c1f66dc7a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "471FFF8108CBB1BFCE058EDE386173A00C519F7A941072192CAC9E0C1F66DC7A"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Sun, 29 Jan 2023 22:07:20 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cf0fe82bda0bbe03935e6fd44c08785b
90a340c93d446c6b19b4653a28d820b5679df02d
471fff8108cbb1bfce058ede386173a00c519f7a941072192cac9e0c1f66dc7a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "471FFF8108CBB1BFCE058EDE386173A00C519F7A941072192CAC9E0C1F66DC7A"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Sun, 29 Jan 2023 22:07:20 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cf0fe82bda0bbe03935e6fd44c08785b
90a340c93d446c6b19b4653a28d820b5679df02d
471fff8108cbb1bfce058ede386173a00c519f7a941072192cac9e0c1f66dc7a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "471FFF8108CBB1BFCE058EDE386173A00C519F7A941072192CAC9E0C1F66DC7A"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Sun, 29 Jan 2023 22:07:20 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash cf0fe82bda0bbe03935e6fd44c08785b
90a340c93d446c6b19b4653a28d820b5679df02d
471fff8108cbb1bfce058ede386173a00c519f7a941072192cac9e0c1f66dc7a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "471FFF8108CBB1BFCE058EDE386173A00C519F7A941072192CAC9E0C1F66DC7A"
Last-Modified: Fri, 27 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20347
Expires: Sun, 29 Jan 2023 22:07:20 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
cb.learning8809.com/yPS7hqfHgkFauS2djb/xtb.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/xtb.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /yPS7hqfHgkFauS2djb/xtb.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
content-length: 0
last-modified: Fri, 23 Dec 2022 09:01:16 GMT
etag: "63a56e5c-0"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IpV8GTgjxMTgmc0tWmHWKIOlsyHrsAn2viR7sC95XCaT7O%2FbAr95G42JtUEadal0U9K%2FLfO9d870z6vQWpM9O17tsniX8Yg%2FExCOhOIo%2BNBuNvponI%2BgD9nX2Onym9ARbdDGsA14"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f84c7d0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3161
Expires: Sun, 29 Jan 2023 17:20:54 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3161
Expires: Sun, 29 Jan 2023 17:20:54 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3161
Expires: Sun, 29 Jan 2023 17:20:54 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
cb.learning8809.com/yPS7hqfHgkFauS2djb/xx3.js
200 OK 5.8 kB URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/xx3.js
IP
File type HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 923c8e41221bc71654d77972ebfcbf83
deb7c6f695971e8a6f0f20ffd45ba57c71e1a3a9
5b4ed03398ce03d6015616908ac771039c553c75c2bfd85ddd8d8c7a11cd1c7f
GET /yPS7hqfHgkFauS2djb/xx3.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:49:04 GMT
etag: W/"63ca5580-136"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CYmCbJ2XuTGtQKoZXPVLzVGF60IWIEBEB29aX5VLOALMIVS7efFMgU0l401Kl%2FdYlk%2FZWw16yEP34rQ0gbCu8ozG%2FGI63XjrxfwdGq9myntJDm5IAB1IpGVlwQ%2Bf0ZqiBc8g%2FSPM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f598c60b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:24:09 GMT
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
age: 39844
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:12:28 GMT
age: 62145
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3161
Expires: Sun, 29 Jan 2023 17:20:54 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
cb.learning8809.com/yPS7hqfHgkFauS2djb/zylm.js
200 OK 9.5 kB URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/zylm.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash a4fcef0510046ecf5b5e54135ed18c29
0a5161fa1c86206b23c5551e31eb74a75bfc24e0
1a9bb8b9e958d0199c8e513de7a78df42abfd7fe8c3b71166523428284d63481
GET /yPS7hqfHgkFauS2djb/zylm.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Wed, 15 Jun 2022 05:42:15 GMT
etag: W/"62a97137-3b7"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PDGu5RNivyu1FXzeEFnca%2BSyOWhDv5ANRfN2cOBYxcv8fvdfwPZZwE8L0ZsoXTUtI5c9eBQq1rVyN3txwBdFuxdgT5cgRsOEOc4aNR5mTOOIxm7jyxkQ%2FfBgHFaQlL6GfgN%2FX1d3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f598c40b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/foot.js
200 OK 11 kB URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/foot.js
IP
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash da62a5191829bc23887242c98de66cc6
e41e38993b48c4439e5695211b7b1731a0853742
81e54e8c269602ae1631792ba6583881a1cc9a147387510ac2b8e0e777dab34e
GET /yPS7hqfHgkFauS2djb/foot.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Tue, 22 Mar 2022 07:39:03 GMT
vary: Accept-Encoding
etag: W/"62397d17-449"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IrTcO%2BpzGP1zPm7274KdIdJGrGCEoRl8rbUxl14aax0cxlmnlr8vBQPjlMlHal4JhD5GsjMbZ8T6PkW%2FDaZGJmuGihP7DcRjydtEXFXsC006BAUs2NJu4p8OW8RLEl%2FqGTIF%2Fvve"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f598c80b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3161
Expires: Sun, 29 Jan 2023 17:20:54 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b89720fb9396477c035c95f40fbf2b3e
247e702420be9c62b1b4adf904fbaf40dc31252b
f15eda966a069973210119455d56784d5274536873c3fa663e570a5302ca4009
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F15EDA966A069973210119455D56784D5274536873C3FA663E570A5302CA4009"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21579
Expires: Sun, 29 Jan 2023 22:27:52 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9eddbad3af1ea46c4f03f94c3e4fdd1d
388ccc91bdd96c2b031ca85da3d376856ff9dea8
bd32e1c1e5e329b59bd98da641022c7d8c9debf59215329fd28a8aaaafd23cea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD32E1C1E5E329B59BD98DA641022C7D8C9DEBF59215329FD28A8AAAAFD23CEA"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20425
Expires: Sun, 29 Jan 2023 22:08:38 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b89720fb9396477c035c95f40fbf2b3e
247e702420be9c62b1b4adf904fbaf40dc31252b
f15eda966a069973210119455d56784d5274536873c3fa663e570a5302ca4009
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F15EDA966A069973210119455D56784D5274536873C3FA663E570A5302CA4009"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Sun, 29 Jan 2023 22:28:09 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9eddbad3af1ea46c4f03f94c3e4fdd1d
388ccc91bdd96c2b031ca85da3d376856ff9dea8
bd32e1c1e5e329b59bd98da641022c7d8c9debf59215329fd28a8aaaafd23cea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD32E1C1E5E329B59BD98DA641022C7D8C9DEBF59215329FD28A8AAAAFD23CEA"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21579
Expires: Sun, 29 Jan 2023 22:27:52 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9eddbad3af1ea46c4f03f94c3e4fdd1d
388ccc91bdd96c2b031ca85da3d376856ff9dea8
bd32e1c1e5e329b59bd98da641022c7d8c9debf59215329fd28a8aaaafd23cea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD32E1C1E5E329B59BD98DA641022C7D8C9DEBF59215329FD28A8AAAAFD23CEA"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21547
Expires: Sun, 29 Jan 2023 22:27:20 GMT
Date: Sun, 29 Jan 2023 16:28:13 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash b8c57d663b4b6db23a07f6a9dac703be
e4a4a12cc40daf77e4fe0829f66eeeffca979959
b7f3802f3c17b6457a2414e8da287a9939f6da57c2e061389ea42d67cbd1bf5d
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 13:25:08 GMT
ETag: "e4a4a12cc40daf77e4fe0829f66eeeffca979959"
Last-Modified: Sun, 29 Jan 2023 13:25:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 16:28:13 GMT
Age: 4958
X-Served-By: cache-qpg1230-QPG, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 97, 1
X-Timer: S1675009694.863727,VS0,VE1
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 62209
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash b8c57d663b4b6db23a07f6a9dac703be
e4a4a12cc40daf77e4fe0829f66eeeffca979959
b7f3802f3c17b6457a2414e8da287a9939f6da57c2e061389ea42d67cbd1bf5d
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 13:25:08 GMT
ETag: "e4a4a12cc40daf77e4fe0829f66eeeffca979959"
Last-Modified: Sun, 29 Jan 2023 13:25:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 16:28:13 GMT
Age: 4958
X-Served-By: cache-qpg1230-QPG, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 97, 2
X-Timer: S1675009694.879070,VS0,VE0
www.gg123456789gg.com//upload/vod/20230127-1/04dda5f323e1cab9899a0ef84db8e3b4.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/04dda5f323e1cab9899a0ef84db8e3b4.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash b0cc63ead098ac272ccd3c3b3f4d8073
96dfc7e1ba3bc9168daf718de0b5907cb27a0705
be2929919754cf33405d613e106c8f1a541025d6c2ad1ad8d32d8609a95c1bb5
GET //upload/vod/20230127-1/04dda5f323e1cab9899a0ef84db8e3b4.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 11142
last-modified: Fri, 27 Jan 2023 11:30:04 GMT
etag: "63d3b5bc-2b86"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/f4d1d061bb05cc64311fc240527b0d13.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/f4d1d061bb05cc64311fc240527b0d13.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 8bb7c2d6c0b432381b16c5af1f45c1c2
4b64f7262c3c9318081440adb643c525b3026151
d633275b7f9b8676d790c646351cfb3c01f53e085fd179d631a937ac6a7abce8
GET //upload/vod/20230127-1/f4d1d061bb05cc64311fc240527b0d13.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 12054
last-modified: Fri, 27 Jan 2023 11:30:04 GMT
etag: "63d3b5bc-2f16"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/e1c242f98a8936ba4d2672b573ce117a.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/e1c242f98a8936ba4d2672b573ce117a.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash a73b4031a49da8208f6faefa5101f2c1
15dd3da6a440516cda806d06edccd711c69c4998
662bba098c55fadeef7f92b2a032f0ef93c625a6c59d867ee41d1f3a6821c557
GET //upload/vod/20230127-1/e1c242f98a8936ba4d2672b573ce117a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 11229
last-modified: Fri, 27 Jan 2023 11:30:04 GMT
etag: "63d3b5bc-2bdd"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
js.users.51.la/21278777.js
200 OK 2.3 kB URL HTTP/1.1 js.users.51.la/21278777.js
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type ASCII text, with very long lines (4898)
Hash de9e807c58439b7f1dcfd07aef92a952
60e9ecde5e0aa2ff63056ef1d217bb518d639c17
d7502b3ebb842a7c57646468874ae513c47e00c97649bc722ca1d350588dae97
GET /21278777.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: CloudWAF
Date: Sun, 29 Jan 2023 16:28:14 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: HWWAFSESID=0cab865875b3bbb72de; path=/
HWWAFSESTIME=1675009690677; path=/
Cache-Control: max-age=360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
www.gg123456789gg.com//upload/vod/20230127-1/91f12a3fb77aaf556842f69274b7c8e0.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/91f12a3fb77aaf556842f69274b7c8e0.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 13db304d816943f86245709301be8e05
bd088bf7bc07307d86cd3b169dd8b1c8c200cfcb
1fc62b42b7806fb9b7103cddfcd13a25ceff07b7ac4e2539e5a365cc8de4b9df
GET //upload/vod/20230127-1/91f12a3fb77aaf556842f69274b7c8e0.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 10944
last-modified: Fri, 27 Jan 2023 11:30:03 GMT
etag: "63d3b5bb-2ac0"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/5a955ac4098fd93e067e4371dff74ef5.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/5a955ac4098fd93e067e4371dff74ef5.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 8db134ec77da26b5251c652e59d495ae
d17263747f7c734c189fab16762659aaa6f0c854
0af4e4ad02262c1da0befaec51222cb2393c56e4906159d457d1f79c1d1a185b
GET //upload/vod/20230127-1/5a955ac4098fd93e067e4371dff74ef5.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 10328
last-modified: Fri, 27 Jan 2023 11:30:05 GMT
etag: "63d3b5bd-2858"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/620316eb169ebe14c8a9c90eaa0213f5.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/620316eb169ebe14c8a9c90eaa0213f5.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 3271650c037b85e9f6a00b8004ed44ab
49d31af2ad6817778a6172888a7a891db23b0368
caeddd0aaf98ebcc0d5710ace6533fc3ee4c0fc756432525d73804b4b1405c11
GET //upload/vod/20230127-1/620316eb169ebe14c8a9c90eaa0213f5.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 10047
last-modified: Fri, 27 Jan 2023 11:30:05 GMT
etag: "63d3b5bd-273f"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/c8257babdf808ec6d10e8aa39a63cd61.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/c8257babdf808ec6d10e8aa39a63cd61.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash c3c00f9898351c96f09f4c074d0a540a
4bc6c14b8a1b9f56cd5371953702a5a4221c82e5
645a42e0d0005c9629697ed9280bc0176f74e5212f99aa8d9b5c49275e463c94
GET //upload/vod/20230127-1/c8257babdf808ec6d10e8aa39a63cd61.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 12199
last-modified: Fri, 27 Jan 2023 11:30:03 GMT
etag: "63d3b5bb-2fa7"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/a1e74d748a2c1ee759e9d449bbb42d78.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/a1e74d748a2c1ee759e9d449bbb42d78.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 12f96eb25064c0170bacb90a19016036
78c1c8c561350d488599a9d9c4b0184be9366231
8c94957fab90a52936b944610e6e24a334cd64945cf7e920c732cfcf1565435c
GET //upload/vod/20230127-1/a1e74d748a2c1ee759e9d449bbb42d78.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 13415
last-modified: Fri, 27 Jan 2023 11:30:08 GMT
etag: "63d3b5c0-3467"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/3e378a3fd8f648f21ae979b18c60de04.jpg
200 OK 14 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/3e378a3fd8f648f21ae979b18c60de04.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 71139b0dd059ea306310aa8a693f1cad
6ebcc977202f755842955366d2c8124063b5bcde
0a673a758ab02f2ffec153cef209d62c49f352c868664c401aeffb822784fe2e
GET //upload/vod/20230127-1/3e378a3fd8f648f21ae979b18c60de04.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 14336
last-modified: Fri, 27 Jan 2023 11:30:08 GMT
etag: "63d3b5c0-3800"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/e70b93d3f917f1ebe4abfbed959a2f5d.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/e70b93d3f917f1ebe4abfbed959a2f5d.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 0d82e6bc2ff355e73bc45477f2abc9fc
42b406f7ea7d73ab153024949fe0c68bc77b5822
e74ffc4ad999ab74cbf17d45a82c7b9982ca95a134f20462e7ae1861f317dd53
GET //upload/vod/20230127-1/e70b93d3f917f1ebe4abfbed959a2f5d.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: image/jpeg
content-length: 12744
last-modified: Fri, 27 Jan 2023 11:30:08 GMT
etag: "63d3b5c0-31c8"
expires: Tue, 28 Feb 2023 16:28:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/c488f04d04b65d6a7fe6dcc92980c683.jpg
200 OK 20 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/c488f04d04b65d6a7fe6dcc92980c683.jpg
IP
Hash 704168357c2c0a2e9cba65aa9c995a94
f56610214b44d473ae0fe59fb5fc56ac6a5e65b0
7af9934dc7a36aab4e9d0ae6db37f082679c75e43120500b1242c52433fdad5e
GET //upload/vod/20230127-1/c488f04d04b65d6a7fe6dcc92980c683.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 14921
last-modified: Fri, 27 Jan 2023 11:30:08 GMT
etag: "63d3b5c0-3a49"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
klx2.zhgmjglh808k.com/
200 OK 19 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (302), with CRLF line terminators
Hash d7c686e09213d641156d85c87bda3edc
2258440132e1ce1b9c62d92a8bc09aba1fcac8f3
f170f64406e5b5a3c02f268c326e0a0908fa9e40ee2fb6d537d246c5493b7d1b
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: klx2.zhgmjglh808k.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jubileeac.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:12 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2LLjuDShfyvDTzzZYQ0AUj946KJacpkSPOEO5bnoCSqaCGkTIRtWEmxEinLXJaO7j4sTXnvpP74fPYEImM3gZ6j%2Fr1MEP2j0W9WrEJ6XIuPEPWQLrp8MDO28Z4QsLE958sGJsh5JvJo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f0dc57b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/5fce7fa20e551e089c1a81e12d91341a.jpg
200 OK 29 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/5fce7fa20e551e089c1a81e12d91341a.jpg
IP
Hash 05b094bb05d1279a86ec79ee0a19b253
f02c965f16189ec2facb75ffb77eb671fb8c859a
b47c81b96ec49a8508de98ade4f04cc4b4bc8f5fae1a2f7160b7af6cecd35a6a
GET //upload/vod/20230127-1/5fce7fa20e551e089c1a81e12d91341a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12295
last-modified: Fri, 27 Jan 2023 11:30:07 GMT
etag: "63d3b5bf-3007"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/a52ec999815f0af1d162dd5083cfafe0.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/a52ec999815f0af1d162dd5083cfafe0.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash a400cbe612577fe4060c4d1be7614b0e
6758938805864baba995934b4de8984d3f3ffe57
0d13a3d81be1a21b50ebf41aa778ed74b62a86eed46f3b7d48337d33178170f3
GET //upload/vod/20230127-1/a52ec999815f0af1d162dd5083cfafe0.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 13110
last-modified: Fri, 27 Jan 2023 11:30:07 GMT
etag: "63d3b5bf-3336"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/0ee6fd14835d24d5417e799411a01d62.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/0ee6fd14835d24d5417e799411a01d62.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 3dc3e22245530c65e316fa74dacd1d3e
12e46c44bb7be65fcaf6078cbf3bdd1427bc4867
f297c0d21dfb33120b41b4d573ef0f61879b78538e8a7f2b5be0525bb1f332c9
GET //upload/vod/20230127-1/0ee6fd14835d24d5417e799411a01d62.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 13440
last-modified: Fri, 27 Jan 2023 11:30:07 GMT
etag: "63d3b5bf-3480"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/c7f1ee65c14f403675c8e108e2ece682.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/c7f1ee65c14f403675c8e108e2ece682.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash fc84006a6c25943bedfd49de8bb6efa5
6ced52845639f16179b875f549b9c6f6c3be4a05
8b77cf4cb45dbcdaa3c20bf7aec0c6d6193b845ddd24f86ea2f8ac499cf68521
GET //upload/vod/20230127-1/c7f1ee65c14f403675c8e108e2ece682.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 10354
last-modified: Fri, 27 Jan 2023 11:30:07 GMT
etag: "63d3b5bf-2872"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/a2a86da8d5b148fdf70aa3a5a503feeb.jpg
200 OK 8.6 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/a2a86da8d5b148fdf70aa3a5a503feeb.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash c01de90cfb86a7e8504a77c28b1df6cd
f77b0845731f4d3b02671f90e01ade8a76cacc70
616b8a7cb3e05ef1de0bd737a8fd4e5298fb08f3c8d2accae969a866e3c0ea1b
GET //upload/vod/20230127-1/a2a86da8d5b148fdf70aa3a5a503feeb.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 8585
last-modified: Fri, 27 Jan 2023 11:30:06 GMT
etag: "63d3b5be-2189"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/075b92ffc500a10b78d9991baf431f10.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/075b92ffc500a10b78d9991baf431f10.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash f8007885f595d52613592195ee8239c0
2a1a1c80851c4d89e99b7b25805633604ffd643b
ad941654353e4b79b0bb697d3944a96bff8fd186acf419bfe41e12198fee2bc9
GET //upload/vod/20230103-1/075b92ffc500a10b78d9991baf431f10.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 10882
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-2a82"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/57d47750bedf989be975e0bc11c84952.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/57d47750bedf989be975e0bc11c84952.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 2c46854204976d228296e50013abc02b
f02f7982af39ec08b8edfb80bd3368def83469f5
eb6303d55ab5015cb35e9d90ac8604e5193a5e25b6008fe9059423d5528d4c5c
GET //upload/vod/20230103-1/57d47750bedf989be975e0bc11c84952.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12630
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-3156"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/39500d2d0dee6f775109a788429bb6f1.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/39500d2d0dee6f775109a788429bb6f1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash f2fc8f397aa6dac1cd9cf7babcb580e7
9980cc3e78f9868bb2f11a864a3535f44249499f
a7154a336ce23bfc207d860e051865b6143ff15fdad0f86962126579437a77b4
GET //upload/vod/20230103-1/39500d2d0dee6f775109a788429bb6f1.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 11848
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-2e48"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/8e4e79ebd6b033567704c61c9e994648.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/8e4e79ebd6b033567704c61c9e994648.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 5ace24fa8cfd29138634aca8f27b0182
6343ba02b84fff6c3b310380ac6e2b6c7561e8be
974e05a4ba4e0f73958b1bf222f961f2e19ad42047b9bc7541f93d38e51313a5
GET //upload/vod/20230103-1/8e4e79ebd6b033567704c61c9e994648.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 10201
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-27d9"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230103-1/451f846caf1463d47aee3cd41190dfb1.jpg
200 OK 9.7 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230103-1/451f846caf1463d47aee3cd41190dfb1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 73d6f95c5e2d7606b3c7fd3c37543d39
5aea58d812e5a9d2ef1294a2ffca797449d38597
151d473ac5d6aa56a773468d45a054d68c67cae73892c022365e22125f0a7070
GET //upload/vod/20230103-1/451f846caf1463d47aee3cd41190dfb1.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 9693
last-modified: Tue, 03 Jan 2023 02:30:02 GMT
etag: "63b3932a-25dd"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/5c78eb2da436e09a511a048417a9f9c9.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/5c78eb2da436e09a511a048417a9f9c9.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash b508e881a78c521c20ace081ef3f1648
82053dbeae5e7127845e07b99b19caba260a52d7
4554e1fe63a3955780450c29983b7ada310375f38e01eff016691a7273a22f1a
GET //upload/vod/20230102-1/5c78eb2da436e09a511a048417a9f9c9.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12008
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-2ee8"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/9cd9f7c2a3ac2832e855e0af45f90f5a.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/9cd9f7c2a3ac2832e855e0af45f90f5a.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 0dcdca48e51426f6fb0475c95ac04ff2
87021f3d0fdcb5af9fcb6c43ae3150ed753567a1
421f5253b8c55f77607ed9aa71a0e17a29f728fdd0878076e6d918a9e9e54c1e
GET //upload/vod/20230102-1/9cd9f7c2a3ac2832e855e0af45f90f5a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 11492
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-2ce4"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/c67a0ef87a151654bf8a4d5312ce50a2.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/c67a0ef87a151654bf8a4d5312ce50a2.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash d93ac08f039a9440c7ebf21192cd64b6
f0efd394c83d791b95f67821ef00e9367d328923
58abd7ec60cdc5d0b79c820dd76184c07c4c4acaf320d814d6b1bdedbc4554d7
GET //upload/vod/20230102-1/c67a0ef87a151654bf8a4d5312ce50a2.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12796
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-31fc"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/fb8f33e2d45291f55742c65af433e472.jpg
200 OK 8.6 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/fb8f33e2d45291f55742c65af433e472.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash f5af197da3c9e7247ac0fed61ed85c40
ab4688ca92d510fd3c647bc82a1577c300f5c899
44fe9d5c0b08d272c153938aa7b7b6c8af752bbb99d0dbae00e9754f32c62100
GET //upload/vod/20230102-1/fb8f33e2d45291f55742c65af433e472.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 8568
last-modified: Mon, 02 Jan 2023 04:30:05 GMT
etag: "63b25dcd-2178"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230102-1/107f62761d40d7242305f172b6bf74d4.jpg
200 OK 10 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230102-1/107f62761d40d7242305f172b6bf74d4.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash d347fd9450e5f44f461496672bbe3eeb
f45ee1b3fc9e74004bdf7517b9ffda321eb6d201
e925627d776916305c6fb4108e6c945d244916ae682c73816ebfd46721ab3b6c
GET //upload/vod/20230102-1/107f62761d40d7242305f172b6bf74d4.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 10358
last-modified: Mon, 02 Jan 2023 04:30:04 GMT
etag: "63b25dcc-2876"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/14595639230d61251e7f23b12b9b31bb.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/14595639230d61251e7f23b12b9b31bb.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 3f10b23fee14373d918fcd90f9824d65
c3eef576a4e6e967f1389d9fd186fd57ce176e9a
ebb4fa75d4641dab2578c42ac3ccec3dd0ab90ae060cf62242a7e7abe1f71e75
GET //upload/vod/20230127-1/14595639230d61251e7f23b12b9b31bb.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12012
last-modified: Fri, 27 Jan 2023 11:30:12 GMT
etag: "63d3b5c4-2eec"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/06df1a6eb51583ac324a3afa1e2004d3.jpg
200 OK 9.9 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/06df1a6eb51583ac324a3afa1e2004d3.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 34b54d3b1a502c90c679f45afa9d8dc3
4f32a84319ae86edb72c20e2c1a1e06707707cce
60db378e0912d5a22b517666defcfb43fdd46b1cc9235ce0a7f8eb3bfe725f28
GET //upload/vod/20230127-1/06df1a6eb51583ac324a3afa1e2004d3.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 9872
last-modified: Fri, 27 Jan 2023 11:30:12 GMT
etag: "63d3b5c4-2690"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/0915569eb7f75f3b57dfa1167e7ead03.jpg
200 OK 6.2 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/0915569eb7f75f3b57dfa1167e7ead03.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 743d746f986ab5fc716503c09d6df759
6d7b4f31c3cdc0a03e7fea2591ee61e52d4ef79a
e107a372b53daedbf1e33d642c588d4b78cc8afc2032941fb7a8430500f0e1ed
GET //upload/vod/20230127-1/0915569eb7f75f3b57dfa1167e7ead03.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 6164
last-modified: Fri, 27 Jan 2023 11:30:12 GMT
etag: "63d3b5c4-1814"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/0bae52ce533cfd054cafec3a26616071.jpg
200 OK 8.1 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/0bae52ce533cfd054cafec3a26616071.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 1f3e779feb42ce5fa74f35eea1056b5c
ed6e85e14975bd59595ac5a68a56f2dd544822d7
22dbe6fc80fc9a6a6ed8a4b19e03369217d72acf85d5620b32ec63361e2cf034
GET //upload/vod/20230127-1/0bae52ce533cfd054cafec3a26616071.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 8054
last-modified: Fri, 27 Jan 2023 11:30:12 GMT
etag: "63d3b5c4-1f76"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/01c3f4b7a1786592c7028713e419909b.jpg
200 OK 8.5 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/01c3f4b7a1786592c7028713e419909b.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash eb76b364bfb55d88f101bfe2ed7eb376
15d15448aad40a8dabbc943d8b93366d9badddbd
b5a618389c917c4bae9589127f97c4caee7ab3291e9f9c70bd74612c202669ad
GET //upload/vod/20230127-1/01c3f4b7a1786592c7028713e419909b.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 8537
last-modified: Fri, 27 Jan 2023 11:30:12 GMT
etag: "63d3b5c4-2159"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/8ebe979f649cd00305860239c25b91c8.jpg
200 OK 15 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/8ebe979f649cd00305860239c25b91c8.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash eca6cb91515261cbe7c1e186b6297949
281b489015ce4b0810a982ce6b1e8190c7418b05
941d68d4ee3591afc492631f1b90e5990f62bbf11690aefb43aa89ecdd85974a
GET //upload/vod/20230127-1/8ebe979f649cd00305860239c25b91c8.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 15294
last-modified: Fri, 27 Jan 2023 11:30:11 GMT
etag: "63d3b5c3-3bbe"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 9037f7c86c214680c13d407224d86973
71e9614b01866d140afdc99ac27f772ed4499103
7c46e7d9fdba34cf0f56965e5c5f26d65afb45763d8936172618617841fcdcdc
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 16:28:14 GMT
Etag: "63d581cd-1d7"
Last-Modified: Sun, 29 Jan 2023 15:21:47 GMT
Server: ECS (dcb/7F15)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GEs2PpuLGjHol1gIb3gdhrx03x9g7Tgk75dTCx5pcPaL9_XFZK3sfw==
Age: 3987
www.gg123456789gg.com//upload/vod/20230127-1/1ea4e164cc45e5567f116662e281cae4.jpg
200 OK 18 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/1ea4e164cc45e5567f116662e281cae4.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash dcd0e65832fd66d045fad59862386ab4
ca9bc7afb3bd7ac53072e83d0416994c544af253
3478a124f5b9c79d8bb759a26e4205c330191ea0cbf5742c6e884418430e4ac9
GET //upload/vod/20230127-1/1ea4e164cc45e5567f116662e281cae4.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 17637
last-modified: Fri, 27 Jan 2023 11:30:11 GMT
etag: "63d3b5c3-44e5"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/cbf95de858e22bd559498f5ff80c45e3.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/cbf95de858e22bd559498f5ff80c45e3.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash ac061d14292ed236b188ce8501f1f4ef
4626eebff1d313b8559ac15f53113d7d284de0d4
2579f0c0219618adff8860ec1dba5a71ea9e18e6fb914346b7a7ff2a39349557
GET //upload/vod/20230127-1/cbf95de858e22bd559498f5ff80c45e3.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 11614
last-modified: Fri, 27 Jan 2023 11:30:11 GMT
etag: "63d3b5c3-2d5e"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/b731c124cf3b536c6a14b98e91ecabc8.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/b731c124cf3b536c6a14b98e91ecabc8.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash ecb83efa5716e9550ea66c62833b9d36
bcb322ee68ec9658027afcad505e38c86dbb80e1
8c9a62e8ba10bd55da1a2696c7eec4de510870e81f1cbee2375295ed42bd3892
GET //upload/vod/20230127-1/b731c124cf3b536c6a14b98e91ecabc8.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12641
last-modified: Fri, 27 Jan 2023 11:30:11 GMT
etag: "63d3b5c3-3161"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/53ec96bfac2d244e1af23d626747a544.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/53ec96bfac2d244e1af23d626747a544.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash db9f4df65379d8fd5e7e301b3f8f04f2
7c8282f87c2da4587ed3b81c980692ef84d3cfe3
3e196cfddbd9c65b3530b95ebe037587eed30c22356aecca2be5e2e7bf0acc17
GET //upload/vod/20230127-1/53ec96bfac2d244e1af23d626747a544.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12708
last-modified: Fri, 27 Jan 2023 11:30:11 GMT
etag: "63d3b5c3-31a4"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/01ccac4252e4e9a67ffe796b242d95e5.jpg
200 OK 11 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/01ccac4252e4e9a67ffe796b242d95e5.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash c21b58ddfd607497a865b61ca335987a
a1db98ec2ee1698d5b3473fa6bbca4429930c222
7a065f0960fee80e474c3eac27356d9635ac3f6fe914df00749f05d0e5edbddb
GET //upload/vod/20230101-1/01ccac4252e4e9a67ffe796b242d95e5.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 11183
last-modified: Sun, 01 Jan 2023 03:30:08 GMT
etag: "63b0fe40-2baf"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/d364f585f932055e820377aa1772a456.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/d364f585f932055e820377aa1772a456.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 892501b11da0dd26c880495a184cb019
a006d4b4473b569ec07ae0c345ac05921cd51880
ed19991ef19aad5885b397bd28b9e82605d8615cce1fd47efe716334715ddcaf
GET //upload/vod/20230101-1/d364f585f932055e820377aa1772a456.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12039
last-modified: Sun, 01 Jan 2023 03:30:07 GMT
etag: "63b0fe3f-2f07"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/f6b9be234a35551b0d5b971ac893d6ca.jpg
200 OK 13 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/f6b9be234a35551b0d5b971ac893d6ca.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 3762a33287d79e324f5fc2272524ed43
860945fa8ff6c3a1d69e3b89213d3fa401a985cb
d84822e9165350f6247acde6fb1503ea1dae8c0a28f3d7fe3e43a3eabfc156f5
GET //upload/vod/20230101-1/f6b9be234a35551b0d5b971ac893d6ca.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 13005
last-modified: Sun, 01 Jan 2023 03:30:07 GMT
etag: "63b0fe3f-32cd"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/5380897fbd9d2f3cad2415a2d1914753.jpg
200 OK 9.0 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/5380897fbd9d2f3cad2415a2d1914753.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash af4ca605229d9fa0cbaccb0b8c312620
8868fcd076812da0f821ee764435dde797725c40
b771f20928e1169d795f96cd6366317330bd811edf8266c092123e30491995fb
GET //upload/vod/20230101-1/5380897fbd9d2f3cad2415a2d1914753.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 9019
last-modified: Sun, 01 Jan 2023 03:30:07 GMT
etag: "63b0fe3f-233b"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/99b256f02a2cc20ca5d2e6d92c06e6b3.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/99b256f02a2cc20ca5d2e6d92c06e6b3.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 3fbba986576004f5b76c7c86b0d1fa9e
8331711c31c3a4079421de3f18ae7153f71df84c
cc8631dcc863371ffa20657dfde87317d4d7a89fe502ecf473f924222d416904
GET //upload/vod/20230101-1/99b256f02a2cc20ca5d2e6d92c06e6b3.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12385
last-modified: Sun, 01 Jan 2023 03:30:07 GMT
etag: "63b0fe3f-3061"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/3ed727db9a9594362721a4370fbdd7ac.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/3ed727db9a9594362721a4370fbdd7ac.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 713e39a66c42cf37807df01315c8f0b4
80c0d1e06e087a09ba33c8c2474b875d294a532b
b2122c25b81d5aca51493758c8f9d1bc2979785cbd07e09bfbfe3f6bf1651121
GET //upload/vod/20230101-1/3ed727db9a9594362721a4370fbdd7ac.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 11534
last-modified: Sun, 01 Jan 2023 03:30:07 GMT
etag: "63b0fe3f-2d0e"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/0aef1bedf8b2824c10b32512d070a65f.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/0aef1bedf8b2824c10b32512d070a65f.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash ca52890268968b0c71c5fcfe1cd6751f
2bad721ce09af1cdf1b77550cf90987b43a0ea2d
5a392d25baf700f88f3b2672916cf9da53265857b7e694df5688ebf1b5dc1188
GET //upload/vod/20230101-1/0aef1bedf8b2824c10b32512d070a65f.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12527
last-modified: Sun, 01 Jan 2023 03:30:06 GMT
etag: "63b0fe3e-30ef"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230101-1/ae017b816922a8865c6f531db5b7ed35.jpg
200 OK 14 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230101-1/ae017b816922a8865c6f531db5b7ed35.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash c13a052f7f13251bfbbb2c06a2b68c96
1b82b2b562975a8d1edf8010cf4ce3b9254aab9b
60e67394246b0c1faa8321661b823c5147e49b4ac130f31fb079a1eb3eaef99e
GET //upload/vod/20230101-1/ae017b816922a8865c6f531db5b7ed35.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 13619
last-modified: Sun, 01 Jan 2023 03:30:06 GMT
etag: "63b0fe3e-3533"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20221231-1/7e642029f0c76bb8668a14daaa00874a.jpg
200 OK 9.9 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20221231-1/7e642029f0c76bb8668a14daaa00874a.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 4039f2f7906db8a7c8ecb3660cf2e2c0
f06eed92e7390345e0933502f0bf2854019dcda3
8f493bae1a1535aebfa1af5afdf1186b38f38cd4d65f9fe7727f9354340152b3
GET //upload/vod/20221231-1/7e642029f0c76bb8668a14daaa00874a.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 9924
last-modified: Sat, 31 Dec 2022 06:30:10 GMT
etag: "63afd6f2-26c4"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20221231-1/d477de3347f37ebc4e84e881910744ae.jpg
200 OK 8.8 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20221231-1/d477de3347f37ebc4e84e881910744ae.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 320x240, components 3\012- data
Hash 0753159ee8ec6a11ac1775a4de857216
384c7793a21948070cce2ce332dd0ece15e85d0e
f5f62afa5ca526d3ce00750750a60ba6145f1c7d073e899205abc3e006dcd9da
GET //upload/vod/20221231-1/d477de3347f37ebc4e84e881910744ae.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 8786
last-modified: Sat, 31 Dec 2022 06:30:10 GMT
etag: "63afd6f2-2252"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/0a3bae07f6833f8f64862f88df4e5fcc.jpg
200 OK 8.0 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/0a3bae07f6833f8f64862f88df4e5fcc.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 06d4ed7f35f655a53b903cb79667d363
09c4d4cb5a43706ca8c2ea51686d2f148631f63b
c4d51a35b9f0206a7edcae3bed4e6976db14740523a65e346721c912fada255b
GET //upload/vod/20230127-1/0a3bae07f6833f8f64862f88df4e5fcc.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 7955
last-modified: Fri, 27 Jan 2023 11:30:04 GMT
etag: "63d3b5bc-1f13"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/be8f93f515dc459770b78c991967257e.jpg
200 OK 14 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/be8f93f515dc459770b78c991967257e.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 15a4c9162966832854afe2c57d8b4f01
31c8cf3174c2877884cb6a689b6f404fae80e2a3
2f344b860ca7240b66416e27d596d65a89d62a62873bf943cb4c30480cb562bb
GET //upload/vod/20230127-1/be8f93f515dc459770b78c991967257e.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 14361
last-modified: Fri, 27 Jan 2023 11:30:05 GMT
etag: "63d3b5bd-3819"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.gg123456789gg.com//upload/vod/20230127-1/d0b1c0ff3b2d03da9f8f26262608ce37.jpg
200 OK 12 kB URL HTTP/2 www.gg123456789gg.com//upload/vod/20230127-1/d0b1c0ff3b2d03da9f8f26262608ce37.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 240x320, components 3\012- data
Hash 32ea7e57008b33b0eb06d6fbac1e3942
db1c619c87471e7a7bbc3a5e8a850f7baaa56e10
d6dd6d30ef47cf4fc42c4b2aa7acc63a8df28a655200d0e3989a33f297e3ff33
GET //upload/vod/20230127-1/d0b1c0ff3b2d03da9f8f26262608ce37.jpg HTTP/1.1
Host: www.gg123456789gg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 16:28:14 GMT
content-type: image/jpeg
content-length: 12448
last-modified: Fri, 27 Jan 2023 11:30:05 GMT
etag: "63d3b5bd-30a0"
expires: Tue, 28 Feb 2023 16:28:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?1138ebd140b7eb3f7d7147d4a8915456
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1138ebd140b7eb3f7d7147d4a8915456
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (615)
Hash c37307f5bce395ba286e0a9dcce11b33
09eec8d0426d0a8672378442545f6d25993defe3
7cb1e9b7b9be1f11423ff2c1ff90040907147841526325509c6ba5bb6b9886fa
GET /hm.js?1138ebd140b7eb3f7d7147d4a8915456 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11253
Content-Type: application/javascript
Date: Sun, 29 Jan 2023 16:28:14 GMT
Etag: 8076204a40d0afa60ef4bbb824f85444
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=5A6F630646B7BC52; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash d983e81fdaa6163ae3bab3b1756f2bb0
5eb764af351f767f0a0800aa19f71f2af3f1d1ff
b5b65b4963ba3f90426e883e57dfd8c51b18694bfdcbeb68ca72ef81b5f1d5b4
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 13:59:04 GMT
ETag: "5eb764af351f767f0a0800aa19f71f2af3f1d1ff"
Last-Modified: Sun, 29 Jan 2023 13:59:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 16:28:15 GMT
Age: 1718
X-Served-By: cache-qpg1233-QPG, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 51, 1
X-Timer: S1675009695.161193,VS0,VE1
u25022.com/80425b77b9bd0cff2005378bab6643ed.gif
200 OK 1.2 MB URL HTTP/2 u25022.com/80425b77b9bd0cff2005378bab6643ed.gif
IP
File type GIF image data, version 89a, 960 x 240\012- data
Size 1.2 MB (1217913 bytes)
Hash c705096a9fde58f82d85c91bbe72924a
52a49d3a5df458538c61fe3b8d50c12cc09796e4
be2b36a7353b79c2578b4ac0704ae20bb8441147fc2810b88e01dd156a52d66b
GET /80425b77b9bd0cff2005378bab6643ed.gif HTTP/1.1
Host: u25022.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 1217913
last-modified: Mon, 19 Dec 2022 09:01:07 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 29 Jan 2023 05:41:07 GMT
etag: "c705096a9fde58f82d85c91bbe72924a"
x-cache: Hit from cloudfront
via: 1.1 db75d9999621c662b2eccf4f496b12aa.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: dv7wAoa6Z2mC62agWN2pkARfPkEfYI7-vfr4TvN0ZZ2vKJ-aPH_kyg==
age: 38828
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=900379024&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.jubileeac.com%2F&v=1.3.0&lv=1&sn=638&r=0&ww=1268&u=https%3A%2F%2Fklx2.zhgmjglh808k.com%2F&tt=chabiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=900379024&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.jubileeac.com%2F&v=1.3.0&lv=1&sn=638&r=0&ww=1268&u=https%3A%2F%2Fklx2.zhgmjglh808k.com%2F&tt=chabiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=900379024&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.jubileeac.com%2F&v=1.3.0&lv=1&sn=638&r=0&ww=1268&u=https%3A%2F%2Fklx2.zhgmjglh808k.com%2F&tt=chabiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 29 Jan 2023 16:28:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=20F869F53EC99634; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?1138ebd140b7eb3f7d7147d4a8915456
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1138ebd140b7eb3f7d7147d4a8915456
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (615)
Hash 5ae3d70eb68079dd0f7eafc60492982c
188ce4af6dcc5fcbaa4317cc1208fbb52d6e09ef
4a851b7970a6099e72873745a518932e9bd0d9534fa2599e692d44a7f2de0c3c
GET /hm.js?1138ebd140b7eb3f7d7147d4a8915456 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 8076204a40d0afa60ef4bbb824f85444
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11253
Content-Type: application/javascript
Date: Sun, 29 Jan 2023 16:28:15 GMT
Etag: bcb291e046eb7061f2a5628235eac5d4
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=20E8BA63E9F974DF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0<=1675009703&rnd=1054063758&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.jubileeac.com%2F&v=1.3.0&lv=2&sn=638&r=0&ww=1268&u=https%3A%2F%2Fklx2.zhgmjglh808k.com%2F&tt=chabiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0<=1675009703&rnd=1054063758&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.jubileeac.com%2F&v=1.3.0&lv=2&sn=638&r=0&ww=1268&u=https%3A%2F%2Fklx2.zhgmjglh808k.com%2F&tt=chabiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0<=1675009703&rnd=1054063758&si=1138ebd140b7eb3f7d7147d4a8915456&su=http%3A%2F%2Fwww.jubileeac.com%2F&v=1.3.0&lv=2&sn=638&r=0&ww=1268&u=https%3A%2F%2Fklx2.zhgmjglh808k.com%2F&tt=chabiav.com-%E5%85%8D%E8%B4%B9%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sun, 29 Jan 2023 16:28:15 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=ED56CE0D3D027965; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ia.51.la/go1?id=21278777&rt=1675009702344&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1675009702344&tt=chabiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx2.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.jubileeac.com%252F
200 0 B URL HTTP/1.1 ia.51.la/go1?id=21278777&rt=1675009702344&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1675009702344&tt=chabiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx2.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.jubileeac.com%252F
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21278777&rt=1675009702344&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1675009702344&tt=chabiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx2.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.jubileeac.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Sun, 29 Jan 2023 16:28:15 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=83fcbaf949130f5f87f; path=/
HWWAFSESTIME=1675009694132; path=/
ia.51.la/go1?id=21278777&rt=1675009702351&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1675009702351&tt=chabiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx2.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.jubileeac.com%252F
200 0 B URL HTTP/1.1 ia.51.la/go1?id=21278777&rt=1675009702351&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1675009702351&tt=chabiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx2.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.jubileeac.com%252F
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go1?id=21278777&rt=1675009702351&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=0&cd=24&ds=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9&ing=1&ekc=&sid=1675009702351&tt=chabiav.com-%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591&kw=10000%25E6%258B%258D%25E6%258B%258D18%25E5%258B%25BF%25E5%2585%25A5%25E5%2585%258D%25E8%25B4%25B9%25E8%25A7%2586%25E9%25A2%2591-%25E7%25B2%25BE%25E5%2593%2581%25E4%25B8%2580%25E5%258C%25BA%25E4%25BA%258C%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%2585%258D%25E8%25B4%25B9-av%25E5%25A4%25A9%25E5%25A0%2582%25E4%25BA%259A%25E6%25B4%25B2%25E5%258C%25BA%25E6%2597%25A0%25E7%25A0%2581%25E5%25B0%258F%25E6%25AC%25A1%25E9%2583%258E-%25E7%25B2%25BE%25E5%2593%2581%25E5%259B%25BD%25E4%25BA%25A7%25E9%25A6%2599%25E8%2595%2589%25E4%25BC%258A%25E6%2580%259D%25E4%25BA%25BA%25E5%259C%25A8%25E7%25BA%25BF&cu=https%253A%252F%252Fklx2.zhgmjglh808k.com%252F&pu=http%253A%252F%252Fwww.jubileeac.com%252F HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Server: CloudWAF
Date: Sun, 29 Jan 2023 16:28:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=c32564d2d637eb099d5; path=/
HWWAFSESTIME=1675009695654; path=/
cb.learning8809.com/yPS7hqfHgkFauS2djb/252.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/252.js
IP
GET /yPS7hqfHgkFauS2djb/252.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:42:36 GMT
etag: W/"63b7b4cc-3f1"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8UaHjts5VDIxPcZSDRzkNQhyNEJppGJJpiz2mVgiIkkBGcC3aLlzjrbTexrbr%2FUizEAFIU%2FoFrN%2FXlw%2B7VAkgW95KBSbx3lriWMjqrCRAfhDfD5XRyRAUKKr5hH3RhuYFGcFT0L1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f598bc0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/250.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/250.js
IP
GET /yPS7hqfHgkFauS2djb/250.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:42:36 GMT
etag: W/"63b7b4cc-3f3"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hJKr6E7wPcRPv6t8mrEYZ4IdNOK7wGj9H72Od4%2BBuXGAtcTKPEU6yUj5taOJGGg%2Fo796FZISQL7d9PB7VNJycqEPcWGh1KacKA8WAR7W1%2Bc3JOLT%2B6tiiDyNjk1DlYv%2BRtmHHXlt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f82c610b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/251.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/251.js
IP
GET /yPS7hqfHgkFauS2djb/251.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:49:04 GMT
vary: Accept-Encoding
etag: W/"63ca5580-427"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l57%2Bl8OMQTBRurmZaHEf0bA8Q2Q3A%2BKEttiGRnD6jIxZrFUPIU1NEVOltp312cUda%2BXLUfWvLGMA2IoH%2BIO6PT2XHZap%2Fl%2Bo9MAN6UXfD%2B2e%2FawRafvwVIffjdT1assuNapoWmqO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f598ba0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/254.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/254.js
IP
GET /yPS7hqfHgkFauS2djb/254.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:42:36 GMT
etag: W/"63b7b4cc-3f2"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FP0qSN4QrONnFCUyGdVrNqlfOh9UEcDILYWsK7obQ23Sm%2Fg8d6tm1V5n4kjhpANOzMiFckn2zQ7kp2rmBq88H03JLg6I1%2FZB7obGzGsMMG2g%2BSMlewDL41t1TdC2yHIxBi33%2FjlR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f598be0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/dh1.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/dh1.js
IP
GET /yPS7hqfHgkFauS2djb/dh1.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Wed, 05 Oct 2022 08:46:22 GMT
vary: Accept-Encoding
etag: W/"633d445e-972"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2TgJC5daPgk%2BuQnH8N9M3JQe0M%2BY4VgEGmstYKRW1Y0oHZxwUzrNGxaptaTp4hU61r2azvWsS7I7zQHTI%2BGLcy74tux%2BB28b%2BP%2Bq%2BZWDeAjc1f6EDY%2F7BiXQjBogmhliiBFqveSl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f5a8cf0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
klx2.zhgmjglh808k.com/
200 OK 0 B IP
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: klx2.zhgmjglh808k.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.jubileeac.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R4aF6C%2BDfAmk%2FzUFGlC%2FyS6westyKmlDoPp0XSxV%2BVBlR9ZrFe%2BmtZ7D8I5IMkYxfjRyoNwx%2FWu8jyxZuvfjxa0CEoZhhxRoVA6PraGq6Nec%2BWws%2Fxl0eEV%2FAtYjjU3Qg7MFFdiK%2F0M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f408f7b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/dh.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/dh.js
IP
GET /yPS7hqfHgkFauS2djb/dh.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:42:36 GMT
vary: Accept-Encoding
etag: W/"63b7b4cc-196f"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wd2j638I1jni6Kjp%2BuRfoj6nmOwsojsYMaUu10RegtEcIFaLkxVASg9knlLp1m3aCdCSexlUo2Qs%2B8jd2TOiPN7X1B5VWUEVBruveO8NYXpH6tN8plcGh53lAJi2kOkKaaroIXhJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f598b80b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/wz1.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/wz1.js
IP
GET /yPS7hqfHgkFauS2djb/wz1.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:42:36 GMT
etag: W/"63b7b4cc-1b5"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hz9LJxHXKXcQCHhwFogRliHJZn2FuTkQUUXdpP2pqzJyRxkJ%2BSKaCjVEJ6YKqJywh1WFw4sMB6cIIo2GGRPNszGiYGzIiQpnWQoNxxq4HvIWsPhOcQJKbtqQm7gVf3MKRej4xa9O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f598c20b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/253.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/253.js
IP
GET /yPS7hqfHgkFauS2djb/253.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:49:04 GMT
vary: Accept-Encoding
etag: W/"63ca5580-421"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v6WlXazr7ANdN42OKHQlLqGwqKC4co%2B1WnXRRpel5xGGFATcDbwVNp2cDm1KBC0I2ZuehMDUDGE2ouB%2BNMN%2Bq0JUik5qBTRTp8HC8HJWRLDhKxJW30%2BH%2BZ72BFjtAuDX%2BAWJtnlZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f598bd0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/xx2.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/xx2.js
IP
GET /yPS7hqfHgkFauS2djb/xx2.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:49:04 GMT
etag: W/"63ca5580-136"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WlDREGy5BAHAQTZP%2FlZs4wMRrjaIBo9pMiWOExXpZa4nnOPf21ztBytM3A1J6nBY1%2BZgQW9qoOtUWaLTcJG7QOi8NUiOT8q7nN2novlA40eUy5LWeCMq8xbYlzKTjEYhPBMXH3k%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f81c470b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/xx1.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/xx1.js
IP
GET /yPS7hqfHgkFauS2djb/xx1.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 20 Jan 2023 08:49:13 GMT
vary: Accept-Encoding
etag: W/"63ca5589-405"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9ubnMWgOn%2F68Hvd7XuQYGsLapJbDy7yZKyonH3QRYbkHZIO6cLep7KMV2xQYoPuR5AI2cTtxm1gtZ1SphGnNTh7IdoKYWTx3OxOnXlvGCMWHtmjpWzbjC%2FMuQsrIYiZgphKU%2F4qu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791356f80c360b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cb.learning8809.com/yPS7hqfHgkFauS2djb/wz.js
200 OK 0 B URL HTTP/2 cb.learning8809.com/yPS7hqfHgkFauS2djb/wz.js
IP
GET /yPS7hqfHgkFauS2djb/wz.js HTTP/1.1
Host: cb.learning8809.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://klx2.zhgmjglh808k.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 16:28:13 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 05:42:36 GMT
etag: W/"63b7b4cc-1a4"
expires: Sun, 29 Jan 2023 22:42:43 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20730
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wq9I8V7JvoSf8RfWcrofeIMEdQGcjEOH%2FC0rhoD4MPEN6lmUq%2B2LsfzovIM5LMCCzSaEXxxqhuD4v6jqOr1LvSB0peG4D2lZf0cyZwgO5uvWMF2Yomch4U22EYTSPZ6kW9IS92zw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791356f598bf0b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
38.54.148.198
23.33.119.27
104.21.86.153
103.235.46.191
103.143.19.103
188.114.97.1