r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3329
Expires: Tue, 15 Nov 2022 06:37:25 GMT
Date: Tue, 15 Nov 2022 05:41:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5805
Cache-Control: max-age=109566
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:41:56 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 12:08:02 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 15 Nov 2022 04:44:22 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3454
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5844
Expires: Tue, 15 Nov 2022 07:19:20 GMT
Date: Tue, 15 Nov 2022 05:41:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dQYjfJOubWhskfKtF7gBlOBbkFZ3WdSt/gcuVzWeBuQuE4ImIcFLw+CQtrLc65i/mJcLDuOyoSw=
x-amz-request-id: G6EMDQC39G3XEW9X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 15 Nov 2022 04:51:25 GMT
age: 3031
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 15 Nov 2022 05:41:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
kgjft.com/
154.209.56.150301 Moved Permanently 0 B IP 154.209.56.150:0
ASN #132839 POWER LINE DATACENTER
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: kgjft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 15 Nov 2022 05:42:29 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.kgjft.com/index.php
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 15 Nov 2022 04:44:48 GMT
cache-control: public,max-age=3600
age: 3428
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5289
Cache-Control: max-age=103993
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:41:56 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:35:09 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.159.206101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.159.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y0sa4oYrZP/i98G7ra9XHg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +l+YYHiWEpYu8Pas8voQjJzaaCM=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2241
Expires: Tue, 15 Nov 2022 06:19:19 GMT
Date: Tue, 15 Nov 2022 05:41:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2241
Expires: Tue, 15 Nov 2022 06:19:19 GMT
Date: Tue, 15 Nov 2022 05:41:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2241
Expires: Tue, 15 Nov 2022 06:19:19 GMT
Date: Tue, 15 Nov 2022 05:41:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2241
Expires: Tue, 15 Nov 2022 06:19:19 GMT
Date: Tue, 15 Nov 2022 05:41:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F818b8415-26b4-4768-a1f1-8eafa6e11c16.webp
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F818b8415-26b4-4768-a1f1-8eafa6e11c16.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b76f3ae29d447b9c8938462c4adb6463
f22e89c145d1ede9e3d731e6748bfe338c1a0d6b
b5bf1a0416425ffef9f3b0954c7c4659e33ab1dacfb812e8308e2095dd1bc409
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F818b8415-26b4-4768-a1f1-8eafa6e11c16.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7414
x-amzn-requestid: ff411645-d77f-4ef2-a175-c534bcd21f28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bM2cjFwqIAMFxgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63683783-552038846aadb8be53bb3ea1;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 22:38:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ivVEyCNKURmHSP1rbwcmv3mUrpIJ13B7LGsFzYYufJIMx2I5aZXY3g==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 10:03:33 GMT
age: 70705
etag: "f22e89c145d1ede9e3d731e6748bfe338c1a0d6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c5f45accbd2d3551103631fa77deee8f
7295ef4c52bcea1be24b963d7ff170ef5bacf713
495e2cef9d9ebec66f1ddcf478512af7e37a301b562d7b75e5d28bb7753d2290
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9311
x-amzn-requestid: ccbd88f7-a72f-4f7c-868d-907b2dbea1ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ9_UEQ4IAMFmzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d76c8-4c0b800d7bf5064346932e15;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 22:10:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bJa_vwFYVNizWkPP2aLO8cOJiMqMfZmD34-hAnOlmJ0K2OO3dghWvw==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 05:54:07 GMT
age: 85671
etag: "7295ef4c52bcea1be24b963d7ff170ef5bacf713"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4af82634a56d0978c9b4689c8b7eb8ae
4b40ef08bd37cabfcb937053dd58012abdd6620f
476a9f850cfbe41adea1d699fdf4f04424674c53b268681fa6fc0e226bed0797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6318
x-amzn-requestid: 6469c84d-fc45-470e-a438-2fb81dae70c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhPtyHpXoAMFfWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63705ff1-53ab9291301773c048f69696;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:09:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wqcEh0RSwy9RNH7gsYRXlweR2UEaMMHPH4zIg-kY58Lfsx2wVcOKBA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 04:26:39 GMT
age: 4519
etag: "4b40ef08bd37cabfcb937053dd58012abdd6620f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lp5eW92D8SbFtcQLk-LRSaSKNMNFYCW7XTALdNdrJxN6ebgdH8_1Dw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:52:43 GMT
age: 28155
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94c82cd0e4204ea23b9bd86a3f576fa8
1651325ad361d1c86a4b81edb6b75af27f490a39
0173a565be87e87b2a8fccb3bfe4f237ddd9fdafa5711e79f0c4381882238886
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b1ce583-5604-4223-b88e-880659fdc0e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8025
x-amzn-requestid: c876c502-bde1-4c03-a946-7af2117240ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bg3EUF0foAMFfyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63703881-0594a8076fb64f570f824ad1;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 00:21:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eWpoQ8Bkfez0fw2HBZVlPIWIrtjeS6i6V-Dn0NthrKeeDYQEYq62kQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:49:06 GMT
etag: "1651325ad361d1c86a4b81edb6b75af27f490a39"
content-type: image/jpeg
age: 28372
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9459d8c5ec4b22476e1470e5476f70f7
78118517bfffe997c85f08bd9b7b7ac9270d9b02
647d0898ed6a38191ff91ca316e90a72d9a5ce563c3602a8d4c477c64f096be4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7504
x-amzn-requestid: 553a2ee3-9dcb-44ac-b0e1-e8ea660eedcc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOAmqGAyoAMFv5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae2a-7af9fba56c5ae9ca5f513668;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:05:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Bunxhv8a_oArMEcm7xSLMb3WzYV9xwg7Htdp09E_aT01f3tOH3yAZw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 03:32:43 GMT
age: 7755
etag: "78118517bfffe997c85f08bd9b7b7ac9270d9b02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.kgjft.com/index.php
154.209.56.150200 OK 555 B IP 154.209.56.150:0
ASN #132839 POWER LINE DATACENTER
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (760), with CRLF line terminators
Hash 6ebaca3667b6cb8ac429570789e70cb2
5079d61b49e13af3a0ab679f416b517a13ca8736
9361d0ba83a7a24a492c6babd6ed83371c4d1e1de72a3a45ee02b7558ef97b0d
GET /index.php HTTP/1.1
Host: www.kgjft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 05:42:34 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kgjft.com/common.js
154.209.56.150200 OK 688 B IP 154.209.56.150:0
ASN #132839 POWER LINE DATACENTER
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash b87ccbac6cde358fd5fb3a3cef258144
d1fd43bdd5d958e1f7c67f090a716dfc94b5f2b2
8a48895d3fab5096ea88385d5b45e3c019be2be5f29f1a90766004d80a3bd3d3
GET /common.js HTTP/1.1
Host: www.kgjft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kgjft.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 05:42:35 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.kgjft.com/tj.js
154.209.56.150200 OK 258 B IP 154.209.56.150:0
ASN #132839 POWER LINE DATACENTER
File type ASCII text, with CRLF line terminators
Hash 3d20a6f25a5603e5ca4d22f84ac94eaa
660c191a71e07a310756146c71a1257b868d0d89
46ffd81d1828f0649e2aea582b7963065d1d9af158cf2864bcc4746cb54e77cf
GET /tj.js HTTP/1.1
Host: www.kgjft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kgjft.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 05:42:35 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/4q68jonJkxg
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/4q68jonJkxg
IP 142.250.74.35:0
Hash 459c38f5ddd87001133b5d75f72825ed
b0bca126e8222f4ca737dd801ae828c6dd5b8c2a
bbf6648f4ce386311c948003c13a3983112f81cb5e0e2ecf87e03a7de72c4b2b
POST /s/gts1p5/4q68jonJkxg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:42:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kgjft.com/favicon.ico
154.209.56.150200 OK 1.2 kB URL HTTP/1.1 www.kgjft.com/favicon.ico
IP 154.209.56.150:0
ASN #132839 POWER LINE DATACENTER
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.kgjft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kgjft.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 15 Nov 2022 05:42:35 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sun, 20 Nov 2022 05:42:35 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash bedecf2c1fe05c14e6e05a99caaa4f07
efd39f43a87ccfd6b2b918b6b84c9d0da7705fc1
e7b61e849e051dbf8722dca362c8e6c0476f5a455fc3c2f845f0ceab11698797
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 05:42:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 19 Nov 2022 02:11:55 GMT
ETag: "efd39f43a87ccfd6b2b918b6b84c9d0da7705fc1"
Last-Modified: Tue, 15 Nov 2022 02:11:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2000
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a5a94b581f0b06-OSL
ocsp.pki.goog/s/gts1p5/4q68jonJkxg
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/4q68jonJkxg
IP 142.250.74.35:0
Hash 459c38f5ddd87001133b5d75f72825ed
b0bca126e8222f4ca737dd801ae828c6dd5b8c2a
bbf6648f4ce386311c948003c13a3983112f81cb5e0e2ecf87e03a7de72c4b2b
POST /s/gts1p5/4q68jonJkxg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:42:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ak-d.tripcdn.com/images/0Z04w2215cypajtv4D874.gif
96.6.16.143200 OK 822 kB URL HTTP/2 ak-d.tripcdn.com/images/0Z04w2215cypajtv4D874.gif
IP 96.6.16.143:0
File type GIF image data, version 89a, 980 x 160\012- data
Size 822 kB (822268 bytes)
Hash afd83017be5796dcce9eec4d0c13f999
8ba32adeee35b9beba1bbc5231a4ab1c12a2b308
69b99a3c32e542df27bcb8e56212eede186335d51164a69fa055f84518468d79
GET /images/0Z04w2215cypajtv4D874.gif HTTP/1.1
Host: ak-d.tripcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 822268
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7728505
expires: Sun, 12 Feb 2023 16:30:28 GMT
date: Tue, 15 Nov 2022 05:42:03 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?1f4899542d8ce1942e547994d9ebe77d
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1f4899542d8ce1942e547994d9ebe77d
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash 1c1750c3e9d2473439163a532acacf4a
80751ed2c6a8c8636666fd25daffc80b032f86dd
e9bba0260429b92e1741ce986f18fd17a44480c654135255f6fa4643c0fe9cca
GET /hm.js?1f4899542d8ce1942e547994d9ebe77d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kgjft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11337
Content-Type: application/javascript
Date: Tue, 15 Nov 2022 05:42:03 GMT
Etag: a177d075e077040645b9669eba1a5607
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=471962771A2B7728; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
www.dayu208.xyz/Template/A9PCWAP/img/profile.png
104.21.48.136200 OK 2.5 kB URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/img/profile.png
IP 104.21.48.136:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash a2fda06965894edd5d39e67e43c96bf0
fd5a9ba3d3151e3263eb7dcbe8083112870e1f38
8f7ed2b170076a0e71a58379ea3171698ae6f367969cb74b40d8f485365665b3
GET /Template/A9PCWAP/img/profile.png HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: image/png
content-length: 2466
last-modified: Tue, 17 Dec 2019 10:22:42 GMT
etag: "5df8ac72-9a2"
expires: Thu, 15 Dec 2022 05:42:04 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AtUuG4Qj0V%2FktSYY9%2B4LMPrZsAlpAdEVhAoaXVM%2BG2CWUhYxp428FRismg%2B7Xh6%2BY%2F4MuZCTjiVOZQLspA0Lhsk5GR%2BJkW%2BQQ%2F5zw1wkQAbStaLpTny9EwxxTjTwuATTeOs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5a951a95cb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1923075683&si=1f4899542d8ce1942e547994d9ebe77d&v=1.2.97&lv=1&sn=35359&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kgjft.com%2Findex.php&tt=%E5%86%85%E8%92%99%E5%8F%A4%E8%AE%A4%E8%85%94%E4%BF%A1%E6%81%AF%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1923075683&si=1f4899542d8ce1942e547994d9ebe77d&v=1.2.97&lv=1&sn=35359&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kgjft.com%2Findex.php&tt=%E5%86%85%E8%92%99%E5%8F%A4%E8%AE%A4%E8%85%94%E4%BF%A1%E6%81%AF%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1923075683&si=1f4899542d8ce1942e547994d9ebe77d&v=1.2.97&lv=1&sn=35359&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.kgjft.com%2Findex.php&tt=%E5%86%85%E8%92%99%E5%8F%A4%E8%AE%A4%E8%85%94%E4%BF%A1%E6%81%AF%E7%A7%91%E6%8A%80%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kgjft.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 15 Nov 2022 05:42:04 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=B78576355E1E2B1E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
www.dayu208.xyz/Template/A9PCWAP/js/jquery.js
104.21.48.136404 Not Found 598 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/js/jquery.js
IP 104.21.48.136:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 506c380e815bd38165c175beb1e2d128
ab244e77de991c8121b5881fa6ee72ea691fb888
0332df43627ead2c70c9ff6949e0f8d1d8b7861b23371081b79f392222597964
GET /Template/A9PCWAP/js/jquery.js HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8jD%2B0uI9S2i%2FXb6O92W48A4EGvOtWVWuekuGJ7omnBYpJKJf9KViFbDkNjNswLR8pHAo9R6MHiB5mHGE7QDT13K72Kjcz9UvRy9%2BqAY0ij1kyJ7XHqVSgervGBD5ILY06h4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5a951893cb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvmaa.com/54aeaa2c1c7062050261b2e3ccba72aa.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kvmaa.com/54aeaa2c1c7062050261b2e3ccba72aa.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /54aeaa2c1c7062050261b2e3ccba72aa.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/54aeaa2c1c7062050261b2e3ccba72aa.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/css/main.css
104.21.48.136200 OK 958 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/css/main.css
IP 104.21.48.136:0
File type ASCII text, with CRLF line terminators
Hash 481b3da93169b47026d7c737145057a0
8ee8aa2142d89bc429241606a67ae117ba35e618
6e4dcf9123d90fa42ec97634e2d4ae5233b7f8bb663d0ca70873c436f7cc3292
GET /Template/A9PCWAP/css/main.css HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 17:42:48 GMT
vary: Accept-Encoding
etag: W/"63597198-734"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uXV5s6qa7SiylcmLkaZOE4okTJumi%2BI5QvzlXI1r4oWAx%2BTzgFueGMzZcLzO9ohe8nyfgt44QWJYCRmjuI9zwCza6T6rQQ%2BzACyt8zcl%2F5HyRQEQDtAPxI7v8SyLZFbHqlA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a5a9517926b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash de5e9cf2f6a9f2d2b05741bac310431d
530c0ba78f21075318ee9d83599f5323b96b5326
6e55f60602828b1a96d4f64898ae8b560275d8322a2deff9c3ec677eae7a39f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=88584
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:42:04 GMT
Etag: "6371ddb4-118"
Expires: Wed, 16 Nov 2022 06:18:28 GMT
Last-Modified: Mon, 14 Nov 2022 06:18:28 GMT
Server: nginx
Content-Length: 280
r3.o.lencr.org/
23.36.77.32200 OK 1.0 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5b9764ab2f05639d96ab91f3f6a9860a
eaaccf0569cf4e8f483bf3d1a043974634e2cfc9
8fd5196a529706e046206645b90f945bcb2ab807cc4b75649e992ff1f581bf71
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "227F5F11C19BC9F3D9D6E428E77E5769D9BE21597218EB240DA0FB4EA62CDF18"
Last-Modified: Sun, 13 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2553
Expires: Tue, 15 Nov 2022 06:24:37 GMT
Date: Tue, 15 Nov 2022 05:42:04 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 569be4ccc0da6ccbf051136426e012ad
eb22f4a7d074e248ec650a474796a80de05811fc
9c3f23416257c683e83610ae22547f7b569041bc5213f4a86526c8cc769c9593
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143761
Date: Tue, 15 Nov 2022 05:42:04 GMT
Etag: "6372a83d-1d7"
Expires: Wed, 16 Nov 2022 21:38:05 GMT
Last-Modified: Mon, 14 Nov 2022 20:42:37 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S26R5CEnvsFLkU1aV2zExbLdV1KIFr8eVfmCINd4e_vl7wBZ-5GVfw==
Age: 3328
imagetupian.nypd520.com/uploads/2021/05/20210910474.jpg
54.230.111.65200 OK 77 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/05/20210910474.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 608x342, components 3\012- data
Hash 98f78f2a045fbb800135f9847ef1694f
a58c84bbfc3b1d19cfcb2cef5a6951299e39d210
a0124497aadf4dd5f658a283ed0999202a1f33e7337092425891edfa8fd5064e
GET /uploads/2021/05/20210910474.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 76902
Connection: keep-alive
Server: X
Last-Modified: Fri, 10 Sep 2021 08:12:03 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "613b1353-12c66"
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xeJs9Tv0zGIR5BvGVe_ZGU7oD_kWiXW06KMQv1KoDPmai2lymj1fKQ==
Age: 10026
Vary: Accept-Encoding, Origin
imagetupian.nypd520.com/uploads/2021/05/20210910475.jpg
54.230.111.65200 OK 63 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2021/05/20210910475.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 608x408, components 3\012- data
Hash 27e0f07f8504ca5877d31abffb0b6d1c
6c077482f6323ea14f8ae066e1441f00034e4a75
706c78c03ffb4937b6bf287444319931d6cb251846f650dce7358bac468c7dc8
GET /uploads/2021/05/20210910475.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 62827
Connection: keep-alive
Server: X
Last-Modified: Fri, 10 Sep 2021 08:12:03 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "613b1353-f56b"
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QmRSohLzdABu53eZ54is1ej-11Zt5r-i6OyCr9QvMgfQW1SFYz1YeQ==
Age: 7338
Vary: Accept-Encoding, Origin
www.dayu208.xyz/Template/A9PCWAP/js/discor.js
104.21.48.136200 OK 4.0 kB URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/js/discor.js
IP 104.21.48.136:0
File type HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 59f959dd48c12c15268fc4f00feea02e
1d0de7fea4da6d30adf33a0fd54ec3b0abfe3165
c7b53585b78bb096ffc0895aa92f31cc0a69efe26e86fae33a69dfd85ab8d966
GET /Template/A9PCWAP/js/discor.js HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: application/javascript
last-modified: Fri, 07 Oct 2022 16:02:05 GMT
vary: Accept-Encoding
etag: W/"63404d7d-44f9"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X7b%2BaWpvULm6T6RaW%2BbP9vksFsQfc6Oc28i6XcS4jrwqDhlFppiutslWuw85NzwFUzX%2FdCJtj7%2FapQghoqg2HMdLe0uScUwZrbztslviWID2%2BUPtByoqSflwHY6XP%2FjUF10%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a5a9519957b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
imagetupian.nypd520.com/uploads/2022/01/220620ym459.jpg
54.230.111.65200 OK 86 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2022/01/220620ym459.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 840x472, components 3\012- data
Hash ea4b886abaedc9b27457bfeb9ac216dd
708e2b0f6fa5decc86836a741321e91107f809e9
a40ae868e9b71c5e87aa721cfb9e86a69250160f1d29d9e0058ef8965fd8d157
GET /uploads/2022/01/220620ym459.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 85468
Connection: keep-alive
Server: X
Last-Modified: Tue, 20 Sep 2022 00:56:08 GMT
Accept-Ranges: bytes
Date: Mon, 14 Nov 2022 08:52:35 GMT
ETag: "63290fa8-14ddc"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MoWN971HCUUPToEmd7TaNosLy-Sc6Ch2jBSVKp9uwB6V4gJ35tJtRQ==
Age: 74969
Vary: Accept-Encoding, Origin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 034d66071745c984641c88875983a76b
61e1f2515ccd1298a186c34672c9489bc0de1bd0
227f5f11c19bc9f3d9d6e428e77e5769d9be21597218eb240da0fb4ea62cdf18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "227F5F11C19BC9F3D9D6E428E77E5769D9BE21597218EB240DA0FB4EA62CDF18"
Last-Modified: Sun, 13 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2403
Expires: Tue, 15 Nov 2022 06:22:07 GMT
Date: Tue, 15 Nov 2022 05:42:04 GMT
Connection: keep-alive
imagetupian.nypd520.com/uploads/2022/01/220620ym458.jpg
54.230.111.65200 OK 159 kB URL HTTP/1.1 imagetupian.nypd520.com/uploads/2022/01/220620ym458.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 840x475, components 3\012- data
Size 159 kB (159438 bytes)
Hash 284a90af65ff8ddc52d0a91e19b79029
6a015ea5c46eb62477fdd7669badc5babbad48e2
b4fd5cf1e4592097a1ca84dd9fc4546fadf8f7624fcaaf7175ecaf1377bc70b9
GET /uploads/2022/01/220620ym458.jpg HTTP/1.1
Host: imagetupian.nypd520.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 159438
Connection: keep-alive
Server: X
Last-Modified: Tue, 20 Sep 2022 00:56:08 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 03:05:23 GMT
ETag: "63290fa8-26ece"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fMIEOWu3BudcMb5wQWuz0ioW5IaVNb5DT2t0lGgEidulbpqsCBplgg==
Age: 9401
Vary: Accept-Encoding, Origin
img2.xiangbinjun.com/new/202201/220327a0484.mp4.jpg
54.230.111.65200 OK 67 kB URL HTTP/1.1 img2.xiangbinjun.com/new/202201/220327a0484.mp4.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=24753ths 253rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 812x612, components 3\012- data
Hash a44bbc3736af28c2b0d37c6aab83d4dc
9726a5a041387fc0313b1a93f145c913fefed210
2a117a84e6a9490851da13e281b76ddd9aaa101dc25931264403d3799d79b2ee
GET /new/202201/220327a0484.mp4.jpg HTTP/1.1
Host: img2.xiangbinjun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 66939
Connection: keep-alive
Server: X
Last-Modified: Sat, 26 Mar 2022 16:54:10 GMT
Accept-Ranges: bytes
Date: Mon, 14 Nov 2022 07:00:10 GMT
ETag: "623f4532-1057b"
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BGUy6n9qSjxV_zHrzL5IPLr8roqXTfkvYfmvkXDMq_Vkyb_TzeONnQ==
Age: 81714
Vary: Accept-Encoding, Origin
img2.xiangbinjun.com/new/202201/220327a1336.mp4.jpg
54.230.111.65200 OK 74 kB URL HTTP/1.1 img2.xiangbinjun.com/new/202201/220327a1336.mp4.jpg
IP 54.230.111.65:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=25605ths 253rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 812x612, components 3\012- data
Hash f3c7ba3ab25780cf9552cb1a3505ae6d
9cf51ba0b8f6251a618bfcd5de86810508833586
85e9433e1867279e48927d954dd96f5f22974ed9c248beb4b662a0b432bcbdbb
GET /new/202201/220327a1336.mp4.jpg HTTP/1.1
Host: img2.xiangbinjun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 73929
Connection: keep-alive
Server: X
Last-Modified: Sat, 26 Mar 2022 16:54:38 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 01:48:55 GMT
ETag: "623f454e-120c9"
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8uogoF1-KEb_TBn_UX1lGnDYv9PZ-GE90tvXW6Za1wEJ05-nAoSKSg==
Age: 13989
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/29dmbj00035.jpg
54.230.111.93200 OK 163 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/29dmbj00035.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 163 kB (163348 bytes)
Hash 3a1d4bf2ba90d81a3ed53a4befbc6224
db15761cb54cac76f5338286aa09fc0b39a47a43
886b35179ce40e98bf7e382dad88904eb53d2fc8fe377a339c3d0c17542ffe59
GET /2022/01/29dmbj00035.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 163348
Connection: keep-alive
Server: X
Date: Tue, 15 Nov 2022 04:48:09 GMT
Last-Modified: Mon, 05 Sep 2022 16:34:47 GMT
ETag: "63162527-27e14"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZBHJZJYKQqNC9nklOIfFCeKaCRSoBiJfsBueEfPAf_XXFcKOKbDHsw==
Age: 3235
Vary: Accept-Encoding, Origin
img3.lltaohuaxiang.com/f2dgc/20221011/123.jpg
54.230.111.17200 OK 22 kB URL HTTP/1.1 img3.lltaohuaxiang.com/f2dgc/20221011/123.jpg
IP 54.230.111.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x258, components 3\012- data
Hash 65341381cae44e1af00e417f627f3b5b
756743889a204f5f8aba010475693f8a3c08d305
c9f2bed3c5a3119d62a48c8d38c3f3e0af53f9ef05539ed7c012ec07a5946aaf
GET /f2dgc/20221011/123.jpg HTTP/1.1
Host: img3.lltaohuaxiang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 21631
Connection: keep-alive
Server: X
Last-Modified: Tue, 11 Oct 2022 13:42:04 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "634572ac-547f"
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PzlpSkhSzYzgC2xUjvQi11sYjADb8PHoZfYInitp5lHXl3FKRC-zTQ==
Age: 73386
Vary: Accept-Encoding, Origin
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 569be4ccc0da6ccbf051136426e012ad
eb22f4a7d074e248ec650a474796a80de05811fc
9c3f23416257c683e83610ae22547f7b569041bc5213f4a86526c8cc769c9593
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143968
Date: Tue, 15 Nov 2022 05:42:04 GMT
Etag: "6372a83d-1d7"
Expires: Wed, 16 Nov 2022 21:41:32 GMT
Last-Modified: Mon, 14 Nov 2022 20:42:37 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O9skjnVxKl6QY8QUFS14q9HzyOzb8wcaJPe382KmcofRZYuSK1hubg==
Age: 3535
kzett.com/65e7e65f41ad1c2cb20bb39e08e6b041.gif
64.32.13.142301 Moved Permanently 162 B URL HTTP/2 kzett.com/65e7e65f41ad1c2cb20bb39e08e6b041.gif
IP 64.32.13.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /65e7e65f41ad1c2cb20bb39e08e6b041.gif HTTP/1.1
Host: kzett.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/html
content-length: 162
location: https://kvtccc.top/65e7e65f41ad1c2cb20bb39e08e6b041.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img3.lltaohuaxiang.com/f2dgc/20221011/127.jpg
54.230.111.17200 OK 45 kB URL HTTP/1.1 img3.lltaohuaxiang.com/f2dgc/20221011/127.jpg
IP 54.230.111.17:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 460x258, components 3\012- data
Hash 5ea9990189061963cd1c8ff4e25aa95f
0d87d92e47a2712d7cc9a74cb173208afd5c478f
47b3ef88c273c84e753072d96fe14972bd711632378fcf60104965d146bdfd6b
GET /f2dgc/20221011/127.jpg HTTP/1.1
Host: img3.lltaohuaxiang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 45172
Connection: keep-alive
Server: X
Last-Modified: Tue, 11 Oct 2022 13:42:07 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "634572af-b074"
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: T6yi0VlNa42gcCOa_xt7SsF0Liw3blQB4uMW4TwljVm5tdd3oC2jhQ==
Age: 7047
Vary: Accept-Encoding, Origin
jc.8f23aa8.com/2022/01/29dmbj00047.jpg
54.230.111.93200 OK 168 kB URL HTTP/1.1 jc.8f23aa8.com/2022/01/29dmbj00047.jpg
IP 54.230.111.93:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x536, components 3\012- data
Size 168 kB (167666 bytes)
Hash 8b5a00d10ac7837b3277a2b2a17ee51a
a0967e1aaec1ce68b54242f3fa7d0c053252a3ca
e21a28701bf3400b1835629e247318b93d9e91bbcd178be2cda43bccad00adb2
GET /2022/01/29dmbj00047.jpg HTTP/1.1
Host: jc.8f23aa8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 167666
Connection: keep-alive
Server: X
Last-Modified: Mon, 05 Sep 2022 16:34:47 GMT
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "63162527-28ef2"
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZZ-N-AjZvmo7LBVYPa2X_jXCtGWp2OtuzUAkL7khRUF4pLfMrvJH4Q==
Age: 83958
Vary: Accept-Encoding, Origin
www.pytgo.com/pic/uploadimg/20220701news/2022100617.jpg
54.230.111.26200 OK 213 kB URL HTTP/1.1 www.pytgo.com/pic/uploadimg/20220701news/2022100617.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x538, components 3\012- data
Size 213 kB (212706 bytes)
Hash a833b0e013e91a90808e7faff3008b75
026499538c8ecf24cda1bdfdd1346952fd47aaea
034dfff409b9dba5bbf2dd2081c01bac713ae62e548c7240003dc5273553cb31
GET /pic/uploadimg/20220701news/2022100617.jpg HTTP/1.1
Host: www.pytgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 212706
Connection: keep-alive
Server: X
Last-Modified: Wed, 05 Oct 2022 05:25:05 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 00:23:29 GMT
ETag: "633d1531-33ee2"
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wYW96hX3EEhkaIth0-gByVGoeKYOe09c0CFYjJVamRo1akvHynb4Qg==
Age: 19115
Vary: Accept-Encoding, Origin
www.pytgo.com/pic/uploadimg/20220701news/2022100914.jpg
54.230.111.26200 OK 243 kB URL HTTP/1.1 www.pytgo.com/pic/uploadimg/20220701news/2022100914.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Size 243 kB (243248 bytes)
Hash 95052c25547909ae096d463ef0998f0e
bfe9b19994c43370b62e63d456cc8962483f3c9c
626bd03ba8aa14ab44b128957ef60a2c8188eb9d978fbaadbfe194b6d4ccc577
GET /pic/uploadimg/20220701news/2022100914.jpg HTTP/1.1
Host: www.pytgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 243248
Connection: keep-alive
Server: X
Last-Modified: Sat, 08 Oct 2022 04:58:43 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "63410383-3b630"
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3Lyd82t_P9LhOIAGONPDjiPBEhKNKUzQYINHqCzgT6yZDAcI_xeS0g==
Age: 84888
Vary: Accept-Encoding, Origin
bbs.sezytp.com/pic/uploadimg/20220701news/41bndv00420.jpg
54.230.111.17200 OK 169 kB URL HTTP/1.1 bbs.sezytp.com/pic/uploadimg/20220701news/41bndv00420.jpg
IP 54.230.111.17:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x600, components 3\012- data
Size 169 kB (169414 bytes)
Hash c002bf894383cb589d62507583a2a106
2b342932cffa864638e240fc11b7da4232688001
8abbca98120722b532ee6a8c54918e58a3f063ca27dfb75cb5987da9d7fa7591
GET /pic/uploadimg/20220701news/41bndv00420.jpg HTTP/1.1
Host: bbs.sezytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 169414
Connection: keep-alive
Server: X
Date: Tue, 15 Nov 2022 03:23:31 GMT
Last-Modified: Wed, 14 Sep 2022 06:29:44 GMT
ETag: "632174d8-295c6"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LAc_-AVr6oyhQMUJ932LtpF2zFTQzjHR9EaG8EnDtqZZN8XWjVzXeA==
Age: 8313
Vary: Accept-Encoding, Origin
www.pytgo.com/pic/uploadimg/20220701news/2022100913.jpg
54.230.111.26200 OK 239 kB URL HTTP/1.1 www.pytgo.com/pic/uploadimg/20220701news/2022100913.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x540, components 3\012- data
Size 239 kB (238608 bytes)
Hash 02618cfc1cf1b6e8cf3fb570b94eef3d
f5a8d78f33aded29b9adb756a26422a9e260ec11
ba6b0ae69fa0b6acdb8761029c16e1e422d1234919cbdd2675365100a9615980
GET /pic/uploadimg/20220701news/2022100913.jpg HTTP/1.1
Host: www.pytgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 238608
Connection: keep-alive
Server: X
Last-Modified: Sat, 08 Oct 2022 04:58:42 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "63410382-3a410"
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RMik-KrVejZIprKBd4EqnN-3skbPHxoAu1Z8kUk2JuyIr0JSJsPlHQ==
Age: 13294
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202210/2022-10-13/2022101343.jpg
54.230.111.53200 OK 30 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202210/2022-10-13/2022101343.jpg
IP 54.230.111.53:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=www.meitu.com, datetime=2022:10:12 22:32:34], baseline, precision 8, 300x450, components 3\012- data
Hash d29fd91b6de87a559834d138f5fb452c
919c6030365c3487cd8a6fd8563081549726346f
0eee4f02b9af3d1089f6e8b02ceb3ea47d81b3f7cb0bdd1c2e9f3ce2386f37a9
GET /upload/vod/202210/2022-10-13/2022101343.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 30540
Connection: keep-alive
Server: X
Last-Modified: Fri, 14 Oct 2022 21:40:53 GMT
Accept-Ranges: bytes
Date: Mon, 14 Nov 2022 07:11:44 GMT
ETag: "6349d765-774c"
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: E7lPdDjfVY46TN1vJ4NcIav1J0I84sKAEk6zmoIuvnfaGSTH7GIsxg==
Age: 81020
Vary: Accept-Encoding, Origin
www.pytgo.com/pic/uploadimg/20220701news/2022100618.jpg
54.230.111.26200 OK 206 kB URL HTTP/1.1 www.pytgo.com/pic/uploadimg/20220701news/2022100618.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x537, components 3\012- data
Size 206 kB (205611 bytes)
Hash 890c7340ca7fa35bfb44d6f254ecc0cd
bc7dda655f31d4d0b6a7085b0a652c4350b9d051
f4a5ab49a7851c01b171c7c6510977102b312704d6693ab07549ad4a6764c4fe
GET /pic/uploadimg/20220701news/2022100618.jpg HTTP/1.1
Host: www.pytgo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 205611
Connection: keep-alive
Server: X
Last-Modified: Wed, 05 Oct 2022 05:25:06 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "633d1532-3232b"
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qSYCrKfJhGwJ0YtBEwoVe9smap10px7o9a0nO1KuJdEUCHA4MHAj3Q==
Age: 1537
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202210/2022-10-13/2022101345.jpg
54.230.111.53200 OK 32 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202210/2022-10-13/2022101345.jpg
IP 54.230.111.53:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=www.meitu.com, datetime=2022:10:12 22:29:15], baseline, precision 8, 300x450, components 3\012- data
Hash 85e89b6df717bbb4f6f2060176b0a146
e904397a598d74e40c3859012e5131fd909f799d
e39bca59f282262b16e5c772f5f0db744526335a146d6ec667f61c3d67b00a48
GET /upload/vod/202210/2022-10-13/2022101345.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 31726
Connection: keep-alive
Server: X
Last-Modified: Fri, 14 Oct 2022 21:40:53 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 00:31:27 GMT
ETag: "6349d765-7bee"
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZqKeybgIoV3FWXW8ZsengA9UOkRr5yOJ7idumi7tOwUVaKIhcRvlMw==
Age: 18637
Vary: Accept-Encoding, Origin
img.bttimg.com/upload/vod/202210/2022-10-13/2022101344.jpg
54.230.111.53200 OK 28 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202210/2022-10-13/2022101344.jpg
IP 54.230.111.53:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=www.meitu.com, datetime=2022:10:12 22:29:16], baseline, precision 8, 300x450, components 3\012- data
Hash 3832bb4906208b1952602dd46fe722ca
e770b809840fdeb051e97caffce917f0b5307f2f
9cdb8ef853f06ef0a2a3de5d7d2bea388ee1bf9deca76b9db97066b0662c4a7e
GET /upload/vod/202210/2022-10-13/2022101344.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 27742
Connection: keep-alive
Server: X
Last-Modified: Fri, 14 Oct 2022 21:40:53 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "6349d765-6c5e"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jt9WXbMiZQfRQHULR9d-w0p8Wh_nM5agRgYIo5bVcaig66QTtzYJLA==
Age: 1756
Vary: Accept-Encoding, Origin
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash c775238fd1836148471338723a97a747
fc4e4f07a2a9a7d3fde4413244350d198e778f8f
798aad0156d92e7cc80ba737bdd40761c84996eddb3a6cb39741cfd82490e8f7
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 05:42:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 19 Nov 2022 05:07:10 GMT
ETag: "fc4e4f07a2a9a7d3fde4413244350d198e778f8f"
Last-Modified: Tue, 15 Nov 2022 05:07:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 67
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a5a9583bdcb4ed-OSL
img.bttimg.com/upload/vod/202210/2022-10-13/2022101342.jpg
54.230.111.53200 OK 32 kB URL HTTP/1.1 img.bttimg.com/upload/vod/202210/2022-10-13/2022101342.jpg
IP 54.230.111.53:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=www.meitu.com, datetime=2022:10:12 22:32:33], baseline, precision 8, 300x450, components 3\012- data
Hash ff0517b7a6068e82d9eb50d15404c479
b46180bfaa3673b432393a8498e87f71edc29323
18a9601f7a716ebab418f4d5841871687fc9735fb3f085409ad2ebde63059f98
GET /upload/vod/202210/2022-10-13/2022101342.jpg HTTP/1.1
Host: img.bttimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 31890
Connection: keep-alive
Server: X
Last-Modified: Fri, 14 Oct 2022 21:40:53 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:04 GMT
ETag: "6349d765-7c92"
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mgyRnonFvASllMS8zIzqY5AW7YtMw0U8-bHEa4ihgIW4dSsy_BGfdQ==
Age: 4142
Vary: Accept-Encoding, Origin
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5e81f89ef169d4aa19adc88cddc46a1a
298400c0b06a7881e20d7982906ba2e5969d79d0
93557a5ef5f37fa2fbde44b56a638fdffa5b8e6651f721225992bc7e370eb176
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 05:42:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 18:26:17 GMT
Expires: Mon, 21 Nov 2022 18:26:16 GMT
Etag: "298400c0b06a7881e20d7982906ba2e5969d79d0"
Cache-Control: max-age=563651,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a5a9583c6cb517-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 109f72c29d1a9bb181ee8c712efdec16
8281fa96daf43d784997261a5a656686332cf9f7
718528a824f0a0530ec279123ea9ba428c4ffcc07aae815b613db6b78498379c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=118835
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:42:04 GMT
Etag: "637253df-117"
Expires: Wed, 16 Nov 2022 14:42:39 GMT
Last-Modified: Mon, 14 Nov 2022 14:42:39 GMT
Server: nginx
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash becf6b0b539002f2ab7b6b29bed46920
acc9772e8b8fef04f3c4a170c00e46defe5462b8
35963f6149968d7f86b2777172622577e3b6ede30c5fdea3196c4b21c7d2b4e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35963F6149968D7F86B2777172622577E3B6EDE30C5FDEA3196C4B21C7D2B4E9"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15299
Expires: Tue, 15 Nov 2022 09:57:03 GMT
Date: Tue, 15 Nov 2022 05:42:04 GMT
Connection: keep-alive
nvhbbb.top/54aeaa2c1c7062050261b2e3ccba72aa.gif
172.67.170.188200 OK 702 kB URL HTTP/2 nvhbbb.top/54aeaa2c1c7062050261b2e3ccba72aa.gif
IP 172.67.170.188:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 702 kB (701845 bytes)
Hash 2e4429eb606a5af67d27ae6b0371fa49
d6aaa35ca52729e4bc0104c065d8d8bdb3169409
8494b7c96497c44fef88cd2faf91f69fa0099e65df8dadf31b3afdc2661b1d53
GET /54aeaa2c1c7062050261b2e3ccba72aa.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dayu208.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: image/gif
content-length: 701845
last-modified: Mon, 29 Aug 2022 09:47:24 GMT
etag: "630c8b2c-ab595"
expires: Mon, 12 Dec 2022 07:18:26 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 253418
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WGRTjNIEkOIa9Mo5mNQxMi%2Fl2%2Fo7rzhmoQq8XAixrYs4KAKmXYsVefux0IFgxzEI2drutL0dbVmNwABs6J4snyxUbLewosyQ4Ywrk7etQNpHGKIW34COcsvzEMe3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5a958bb320b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 1c3840739b7ade8587e3a95fdbe5f968
79a2ee4595e306ddab67cebc6328a1c31db42a7e
eda4c227c37ed7e6eed9f87f434c97e020c294975b3337a815fbcbd1d6571b95
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 05:42:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 17:02:15 GMT
Expires: Sat, 19 Nov 2022 17:02:14 GMT
Etag: "79a2ee4595e306ddab67cebc6328a1c31db42a7e"
Cache-Control: max-age=385809,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a5a958bdabb506-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b1a35e80ad1f187dc234fe51d1ab8d1
1ef6a353048e5a1637e939a647a97a0614588295
6737f6109903ac16bdad4d97902e344ced1857581513d9b9d7d9c8d328f11949
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6737F6109903AC16BDAD4D97902E344CED1857581513D9B9D7D9C8D328F11949"
Last-Modified: Sun, 13 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13559
Expires: Tue, 15 Nov 2022 09:28:03 GMT
Date: Tue, 15 Nov 2022 05:42:04 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 569be4ccc0da6ccbf051136426e012ad
eb22f4a7d074e248ec650a474796a80de05811fc
9c3f23416257c683e83610ae22547f7b569041bc5213f4a86526c8cc769c9593
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=140433
Date: Tue, 15 Nov 2022 05:42:04 GMT
Etag: "6372a83d-1d7"
Expires: Wed, 16 Nov 2022 20:42:37 GMT
Last-Modified: Mon, 14 Nov 2022 20:42:37 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zdNcrFUtrn7ct4tPRb6Bn2kGcb8eQlDOTLtVqXXqADi2G-P0vTaUaA==
dimg04.c-ctrip.com/images/0101c120009texk0w2379.gif?proc=autoorient
104.110.17.24200 OK 406 kB URL HTTP/2 dimg04.c-ctrip.com/images/0101c120009texk0w2379.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 406 kB (405949 bytes)
Hash 236d9ac1c1f404b46f6c4f59e2f73204
391d66392ee11e4574873f110ff70e2e65033c1c
0b5b5037b59900b8f72c5c1c66e9428db41c9178fd974e41eab0cc70dff1cabc
GET /images/0101c120009texk0w2379.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 405949
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7356366
expires: Wed, 08 Feb 2023 09:08:11 GMT
date: Tue, 15 Nov 2022 05:42:05 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfe73af-53c0-4706-a320-987a036d5df3.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfe73af-53c0-4706-a320-987a036d5df3.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11b09e0954b0c369b17157cbec3a9faa
e58d41c729265821354d74bf3ede201367c26520
10c5a9996520f504c1fd3e0b7f3d534e67e062067f5708c92ab6bea92f252653
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cfe73af-53c0-4706-a320-987a036d5df3.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13491
x-amzn-requestid: c1c11381-c73e-4068-aafd-4a2e9db024f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blxEFG06IAMFk8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63722ee6-5b5137ae63a9d76c3d4d0957;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 12:04:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: l-W-3M52mBUbg8k0CXZzw836bKHu01r3i_7z4CgLbrEneahWNR2n1Q==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 12:17:03 GMT
age: 62702
etag: "e58d41c729265821354d74bf3ede201367c26520"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5e81f89ef169d4aa19adc88cddc46a1a
298400c0b06a7881e20d7982906ba2e5969d79d0
93557a5ef5f37fa2fbde44b56a638fdffa5b8e6651f721225992bc7e370eb176
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 05:42:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 18:26:17 GMT
Expires: Mon, 21 Nov 2022 18:26:16 GMT
Etag: "298400c0b06a7881e20d7982906ba2e5969d79d0"
Cache-Control: max-age=563651,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a5a95858bf0b3d-OSL
bbs.sezytp.com/pic/uploadimg/20220701news/41bndv00615.jpg
54.230.111.17200 OK 161 kB URL HTTP/1.1 bbs.sezytp.com/pic/uploadimg/20220701news/41bndv00615.jpg
IP 54.230.111.17:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x535, components 3\012- data
Size 161 kB (160978 bytes)
Hash 6cd13669ef053105cb0a2f0d5761f8db
114b1faa9c129c6503e6717ca032ae0ec5e6488a
df22916c138e38cb398f24194df7b2aaad8b6bc949b79cdb0d632c574c27d211
GET /pic/uploadimg/20220701news/41bndv00615.jpg HTTP/1.1
Host: bbs.sezytp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 160978
Connection: keep-alive
Server: X
Last-Modified: Thu, 15 Sep 2022 05:41:19 GMT
Accept-Ranges: bytes
Date: Tue, 15 Nov 2022 05:42:05 GMT
ETag: "6322baff-274d2"
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uhMjF4Bkrck1fuEUH46O1AtPEWKj5SHTRe_IGwIb1LP6m4WFEcs9yQ==
Age: 18756
Vary: Accept-Encoding, Origin
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 08e72b74327dc68995f495f816d9ddef
3903a6070fdaa061b0b1d1ee5830aeb741e61314
c601d41047601ede40b0e565e3546f9bc845c80df84c4f312fffc24ea852c97a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 05:42:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 15:57:15 GMT
Expires: Sat, 19 Nov 2022 15:57:14 GMT
Etag: "3903a6070fdaa061b0b1d1ee5830aeb741e61314"
Cache-Control: max-age=381908,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a5a9589cb1b517-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 8084ee212ed570c762dbe95f22e2fce5
2eca79a6c31c6f23cefd5b6cc28b33f97de3884d
2b7947b6695d2be9104e81e98f9abf27d47a45a047bc878a40665cf81db26198
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 15 Nov 2022 05:42:05 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 00:51:34 GMT
Expires: Sat, 19 Nov 2022 00:51:33 GMT
Etag: "2eca79a6c31c6f23cefd5b6cc28b33f97de3884d"
Cache-Control: max-age=327567,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a5a958ba110b55-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6bcad610c1b8e081a38a6f650e5fc847
12b6981818047fe891485954bde8dfd49d9980f1
0ab4491d2c16e7a46e24a78c84910730928d9324ea40fc885e372726b07f82e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=97257
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:42:05 GMT
Etag: "6371ff96-117"
Expires: Wed, 16 Nov 2022 08:43:02 GMT
Last-Modified: Mon, 14 Nov 2022 08:43:02 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 109f72c29d1a9bb181ee8c712efdec16
8281fa96daf43d784997261a5a656686332cf9f7
718528a824f0a0530ec279123ea9ba428c4ffcc07aae815b613db6b78498379c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=118834
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:42:05 GMT
Etag: "637253df-117"
Expires: Wed, 16 Nov 2022 14:42:39 GMT
Last-Modified: Mon, 14 Nov 2022 14:42:39 GMT
Server: nginx
Content-Length: 279
statuse.digitalcertvalidation.com/
93.184.220.29200 OK 471 B URL HTTP/1.1 statuse.digitalcertvalidation.com/
IP 93.184.220.29:0
Hash f19a843f574379ac3989e8944144a31f
284109b89092a8d9d63041b6c584beae7f9985ab
f906902bac61590f4815ae97ac79331431493b8e623055607305f4a80f890fdb
POST / HTTP/1.1
Host: statuse.digitalcertvalidation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=147288
Content-Type: application/ocsp-response
Date: Tue, 15 Nov 2022 05:42:05 GMT
Etag: "6372c305-1d7"
Expires: Wed, 16 Nov 2022 22:36:53 GMT
Last-Modified: Mon, 14 Nov 2022 22:36:53 GMT
Server: nginx
Content-Length: 471
375772rug.com/7b9ddba254d64364a334644496e14f87.gif
103.170.15.93200 OK 0 B URL HTTP/1.1 375772rug.com/7b9ddba254d64364a334644496e14f87.gif
IP 103.170.15.93:0
ASN #7483 Skycloud Computing co., Ltd.
Analyzer Verdict Alert quad9 Sinkholed
GET /7b9ddba254d64364a334644496e14f87.gif HTTP/1.1
Host: 375772rug.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "635a5523-17fe94"
Date: Thu, 27 Oct 2022 10:39:17 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Thu, 27 Oct 2022 09:53:39 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-23
Content-Length: 1572500
taiwtp1.com/xin/200200.gif
220.128.218.220200 OK 0 B URL HTTP/2 taiwtp1.com/xin/200200.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
GET /xin/200200.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 15 Nov 2022 05:39:47 GMT
content-type: image/gif
content-length: 65592
last-modified: Thu, 20 Oct 2022 07:11:02 GMT
etag: "6350f486-10038"
expires: Thu, 15 Dec 2022 05:39:47 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/css/line-awesome-font-awesome.css
104.21.48.136200 OK 0 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/css/line-awesome-font-awesome.css
IP 104.21.48.136:0
GET /Template/A9PCWAP/css/line-awesome-font-awesome.css HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 10:22:20 GMT
vary: Accept-Encoding
etag: W/"5df8ac5c-8125"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wXTo%2FYkctxXqxzApPYSCONuR1cgQMoHNS9QNRAA9P8KSApDG0a1W6X%2FaRDJes2Ua1QoLsOwjV6VmLyx40o87g8nrn8gKWDTrStcLkXbKQ3JZpz%2BiYwlJr1pZWotaOF5xCmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a5a9516908b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/css/owl.carousel.min.css
104.21.48.136200 OK 0 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/css/owl.carousel.min.css
IP 104.21.48.136:0
GET /Template/A9PCWAP/css/owl.carousel.min.css HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 10:22:22 GMT
vary: Accept-Encoding
etag: W/"5df8ac5e-b78"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iM1SIdICADKCizbEHJ1lE5c892fs%2Bw%2FU7c9IhfpSu4cmbjn%2FXQ1sZ5i6tiqFiOC0xY6NDJkU8Gadg66yO3uEVND0IZfw%2BX9SCek12OGzNQ6aDjigMeXJ5sR9AFJ%2FfKGhTSU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a5a951791eb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aa.fsadcx1.com/tu/yy1.gif
23.224.193.190200 OK 0 B URL HTTP/2 aa.fsadcx1.com/tu/yy1.gif
IP 23.224.193.190:0
GET /tu/yy1.gif HTTP/1.1
Host: aa.fsadcx1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: image/gif
content-length: 205005
last-modified: Fri, 13 May 2022 09:49:47 GMT
etag: "627e29bb-320cd"
expires: Thu, 15 Dec 2022 05:42:04 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/css/owl.theme.default.min.css
104.21.48.136200 OK 0 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/css/owl.theme.default.min.css
IP 104.21.48.136:0
GET /Template/A9PCWAP/css/owl.theme.default.min.css HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 10:22:24 GMT
etag: W/"5df8ac60-3a8"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cEA0E6wmSMzRn7yepV1YfvxKAPHUAlVAZ0wivFI%2FmqynsegKEJSZYmUyqXLRJjAl0XLgbNTVRskmOdEt1lsXB%2FlsQdeU4VC1rBFfP5LPzEKndRFZ7r0PVi7aEoa3yUkM3po%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5a9518937b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/img/bg-user.jpg
104.21.48.136200 OK 0 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/img/bg-user.jpg
IP 104.21.48.136:0
GET /Template/A9PCWAP/img/bg-user.jpg HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: image/jpeg
content-length: 161593
last-modified: Tue, 17 Dec 2019 10:22:42 GMT
etag: "5df8ac72-27739"
expires: Thu, 15 Dec 2022 05:42:04 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FNw%2Fl4bxQO2vej2NX3NfQciw1yXCRssiFe2vQZ8UEhM45uuxC6%2FpQmmO9p0sT2DtnYil6%2FKuLbg5p3QELQk7fmsSpM0yetlXC%2Fe1u42uCecrloVl9hac5mJFZwzjG71eeYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5a951a959b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/css/materialize.css
104.21.48.136200 OK 0 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/css/materialize.css
IP 104.21.48.136:0
GET /Template/A9PCWAP/css/materialize.css HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 00:43:43 GMT
vary: Accept-Encoding
etag: W/"6359d43f-2c56a"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JZ5x%2FZdrzK4yUfPImZ%2FY1rI74O8iEtqwmJKVdQQIEhlGicInMOozau9THa5x4ax%2BUXKqksxuvi1JxOIFs7ZrmOELX5Ntn6ziWmSOZuKxs7ZJ5AaOTC8Rb5PfQkDUKBd5yOI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a5a95148efb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/css/loaders.css
104.21.48.136200 OK 0 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/css/loaders.css
IP 104.21.48.136:0
GET /Template/A9PCWAP/css/loaders.css HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 10:22:14 GMT
etag: W/"5df8ac56-2d5"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWCWGLebIojohZNVYvJ2ZQbqA%2BvJWfvyV8RA8mtRwBs8eVezUqljp6i%2FECA%2BKBwld1%2BQXVn6ZlEWsTTisOIZtaLVj5TJUmZufmstJQkPL0%2BTw%2B0vjZbZlc%2FEdCimRpPRobE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a5a95158f8b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dayu208.xyz/
104.21.48.136200 OK 0 B IP 104.21.48.136:0
GET / HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kgjft.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:03 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MvKCUib2bqjrWezANvPyD4WJp672YpvhXeNQb1OeWmfFAQBbn8HH2zFI0hU1rWDcg6CR54S330%2BHpT5mKTu6je2yvBMuzTpWrGNGCkiZ%2FqykSXIW155poBsaBTtwxzP%2BUM0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a5a9480b71b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dayu208.xyz/Template/A9PCWAP/css/style.css
104.21.48.136200 OK 0 B URL HTTP/2 www.dayu208.xyz/Template/A9PCWAP/css/style.css
IP 104.21.48.136:0
GET /Template/A9PCWAP/css/style.css HTTP/1.1
Host: www.dayu208.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dayu208.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 15 Nov 2022 05:42:04 GMT
content-type: text/css
last-modified: Sat, 12 Nov 2022 15:08:50 GMT
vary: Accept-Encoding
etag: W/"636fb702-514d"
expires: Tue, 15 Nov 2022 17:42:04 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Duz1DqEy2xSANCocOIP9JIo1xv6Vid8cUGKaEQkUWbnJTZPh871P5jyntdRAyoftPD5QQhJ5EkPsKNQRHwMOJzEuxoMWFPruPIzBerGllmSXTxVVSJq9ZT6g%2BLILvAir43g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76a5a951893bb503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2