122.10.10.103 3.8 kB IP 122.10.10.103:0
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document, Unicode text, UTF-8 text, with very long lines (751)
Hash 3876617e876b741de554f38522675898
91698f40118376934f4dc41cc0efbcd9779b5769
ea637141325c6f8fb84e195c09c8588e2da053366a0dda9214cda0af9b392bad
GET / HTTP/1.1
Host: xmxfwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 21:31:27 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
xmxfwx.com/template/mb10/css/ate.css
122.10.10.103200 OK 6.0 kB URL GET HTTP/1.1 xmxfwx.com/template/mb10/css/ate.css
IP 122.10.10.103:80
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with CRLF line terminators
Hash b49992e1f195c8a7fae8874c7484979d
d061a88013db4f88c6e518f5a9aa17a308dee2f1
b2e1235651b1e3335d325cc40542cc55ed323f88d123a1ecf2356a9a9d77bc4d
GET /template/mb10/css/ate.css HTTP/1.1
Host: xmxfwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 21:31:28 GMT
Content-Type: text/css
Last-Modified: Fri, 07 May 2021 10:47:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60951ac6-126e4"
Expires: Wed, 24 Apr 2024 09:31:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
tupians1.com/hf/taosel.png
188.114.96.1200 OK 11 kB URL GET HTTP/2 tupians1.com/hf/taosel.png
IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjecttupians1.com
Fingerprint9F:F5:B7:12:D7:6A:B9:73:86:30:17:6D:06:7A:80:AE:0C:F6:B7:5B
ValidityWed, 17 Apr 2024 11:41:31 GMT - Tue, 16 Jul 2024 11:41:30 GMT
File type PNG image data, 187 x 76, 8-bit/color RGBA, non-interlaced
Hash d18805eca0c38dc42f3852e6e90eff1c
89cbd15c7834b24ddd5fa0cb61d3aa0b797f1185
70eec08455fe4caaa961004ff7276d047c2c8492d780df614b379987f584d72d
GET /hf/taosel.png HTTP/1.1
Host: tupians1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 23 Apr 2024 21:31:28 GMT
content-type: image/png
content-length: 10897
last-modified: Sun, 10 Dec 2023 15:24:53 GMT
etag: "6575d845-2a91"
expires: Thu, 23 May 2024 21:31:28 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bCTU0aZKKo2ENBcjKh20R9rKJhIbR4kxaXMONSAl6ASkJwM%2B8JUxUY8lr899OjPXe0axfMvvxxkH6O01dWVCZd%2FILQleB9ckLW52ZxjriuPwqevqau%2FpYQiuNySBmrs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8790f5ebba60712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
xmxfwx.com/template/mb10/css/zui.css
122.10.10.103200 OK 19 kB URL GET HTTP/1.1 xmxfwx.com/template/mb10/css/zui.css
IP 122.10.10.103:80
ASN #134548 DXTL Tseung Kwan O Service
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 31e3c7fe91421aa85f6e81b40f133af9
4c2ab8cf80c1cb2ad55eaa755ba3e147503e3cbc
c109ad0bd157dd93f3d304794c667e7a2197a7d246af80c989c6880340fd44c6
GET /template/mb10/css/zui.css HTTP/1.1
Host: xmxfwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 21:31:28 GMT
Content-Type: text/css
Last-Modified: Fri, 07 May 2021 10:47:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60951ac8-15cb7"
Expires: Wed, 24 Apr 2024 09:31:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
xmxfwx.com/static/js/jquery.js
122.10.10.103200 OK 37 kB URL GET HTTP/1.1 xmxfwx.com/static/js/jquery.js
IP 122.10.10.103:80
ASN #134548 DXTL Tseung Kwan O Service
File type JavaScript source, ASCII text, with very long lines (32089)
Hash 397754ba49e9e0cf4e7c190da78dda05
ae49e56999d82802727455f0ba83b63acd90a22b
c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4
GET /static/js/jquery.js HTTP/1.1
Host: xmxfwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 21:31:28 GMT
Content-Type: application/javascript
Last-Modified: Sun, 29 Oct 2023 15:08:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"653e755a-169d5"
Expires: Wed, 24 Apr 2024 09:31:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
tupians1.com/hf/960x120ali.gif
188.114.96.1200 OK 212 kB URL GET HTTP/3 tupians1.com/hf/960x120ali.gif
IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjecttupians1.com
Fingerprint9F:F5:B7:12:D7:6A:B9:73:86:30:17:6D:06:7A:80:AE:0C:F6:B7:5B
ValidityWed, 17 Apr 2024 11:41:31 GMT - Tue, 16 Jul 2024 11:41:30 GMT
File type GIF image data, version 89a, 960 x 120
Size 212 kB (212102 bytes)
Hash 911c7669f480a5fca01697f0496c55c1
0103a320caf9283c848b2882faecc008efb81ef9
74238b71682f29d743021c0566f20d264d1cec1b07a4096b1285c59efa4234b8
GET /hf/960x120ali.gif HTTP/1.1
Host: tupians1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:31:28 GMT
content-type: image/gif
content-length: 212102
last-modified: Thu, 04 Jan 2024 06:24:24 GMT
etag: "65964f18-33c86"
expires: Sun, 19 May 2024 02:20:13 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 414675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HG0I9iVX3xk%2BcjFz62rkOOd%2FkAr6x%2B37XtkXU9qBlF8R8jyeaa%2B85ycRjjT5HGgL26cC3vBzfiR21MNDMrKehC30zMrK5ngnQoNz5V%2FOc0mp6MEqoFqQEIim459QA4s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8790f5f179d15688-OSL
alt-svc: h3=":443"; ma=86400
tupians1.com/hf/shenyou.gif
188.114.96.1200 OK 318 kB URL GET HTTP/3 tupians1.com/hf/shenyou.gif
IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjecttupians1.com
Fingerprint9F:F5:B7:12:D7:6A:B9:73:86:30:17:6D:06:7A:80:AE:0C:F6:B7:5B
ValidityWed, 17 Apr 2024 11:41:31 GMT - Tue, 16 Jul 2024 11:41:30 GMT
File type GIF image data, version 89a, 980 x 120
Size 318 kB (318307 bytes)
Hash 164fc20f6b8da38e79e9794232669531
a05880046314fbcecbf4e4a90233056f30871a31
b295691d81c8673614170d2ae0ffa6707c702805a5a41f20396096dc04f327e0
GET /hf/shenyou.gif HTTP/1.1
Host: tupians1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:31:28 GMT
content-type: image/gif
content-length: 318307
last-modified: Sun, 03 Sep 2023 22:30:10 GMT
etag: "64f508f2-4db63"
expires: Sun, 19 May 2024 02:20:13 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 414675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5JFvNk%2BMex8VJi7lD9yfaMADGZvX7zKVcThWEe0vjMvVpS%2BufiCewucgTraYLUqaCz79JMxxouGo253XI4E%2BPBtdBelC6YhqjHBcmJ%2FBYkqUyggSNt%2BGpTQS8HjBfQg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8790f5f179d65688-OSL
alt-svc: h3=":443"; ma=86400
tupians1.com/nfyp/97ccd094e782c64495d9b3438b4b98a5.gif
188.114.96.1200 OK 105 kB URL GET HTTP/3 tupians1.com/nfyp/97ccd094e782c64495d9b3438b4b98a5.gif
IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjecttupians1.com
Fingerprint9F:F5:B7:12:D7:6A:B9:73:86:30:17:6D:06:7A:80:AE:0C:F6:B7:5B
ValidityWed, 17 Apr 2024 11:41:31 GMT - Tue, 16 Jul 2024 11:41:30 GMT
File type GIF image data, version 89a, 960 x 120
Size 105 kB (104937 bytes)
Hash 97ccd094e782c64495d9b3438b4b98a5
31421a4dad004c0710884cc8b1c9b4a6db6aaff4
1278e36837250a306cd5669deec1b6e57c7d4a9379c87147865c1e88e9a23344
GET /nfyp/97ccd094e782c64495d9b3438b4b98a5.gif HTTP/1.1
Host: tupians1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 23 Apr 2024 21:31:28 GMT
content-type: image/gif
content-length: 104937
last-modified: Sat, 22 Oct 2022 03:08:28 GMT
etag: "63535eac-199e9"
expires: Fri, 26 Apr 2024 17:04:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2348832
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EUbhnWCrD4mrssEVMkYSmEaYliSNSawHGk5GzjMuogkBcIyrky1ttpoWCILJ3Rsjvq7NaFvbrEgFSHm5H3Rnbz87OvOblHfYD3a2nFt%2BGGZpM4gL04Fl1gq7%2F%2BxAMFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8790f5f179d75688-OSL
alt-svc: h3=":443"; ma=86400
xmxfwx.com/template/mb10/images/video-mask.png
122.10.10.103200 OK 107 B URL GET HTTP/1.1 xmxfwx.com/template/mb10/images/video-mask.png
IP 122.10.10.103:80
ASN #134548 DXTL Tseung Kwan O Service
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/mb10/images/video-mask.png HTTP/1.1
Host: xmxfwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/template/mb10/css/zui.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 21:31:29 GMT
Content-Type: image/png
Content-Length: 107
Last-Modified: Fri, 07 May 2021 10:47:36 GMT
Connection: keep-alive
ETag: "60951ac8-6b"
Expires: Thu, 23 May 2024 21:31:29 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
xmxfwx.com/template/mb10/images/video-play.png
122.10.10.103200 OK 1.6 kB URL GET HTTP/1.1 xmxfwx.com/template/mb10/images/video-play.png
IP 122.10.10.103:80
ASN #134548 DXTL Tseung Kwan O Service
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/mb10/images/video-play.png HTTP/1.1
Host: xmxfwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/template/mb10/css/zui.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 21:31:29 GMT
Content-Type: image/png
Content-Length: 1567
Last-Modified: Fri, 07 May 2021 10:47:38 GMT
Connection: keep-alive
ETag: "60951aca-61f"
Expires: Thu, 23 May 2024 21:31:29 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
img.hgimg01.com/upload/vod/20240324-1/25c63a0654e36bc0398f4a1cc7822180.jpg
208.64.218.24200 OK 27 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/25c63a0654e36bc0398f4a1cc7822180.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 690x400, components 3
Hash a03a24de13648898f0096e73c57fbe35
c4c267d3a792e3fc6e4150ba7cdb761494f46bd0
b99deb31535eccbf5b9e298c19d9136faefe3f836c7ed19b47356212c1b8ace2
GET /upload/vod/20240324-1/25c63a0654e36bc0398f4a1cc7822180.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 27392
last-modified: Sun, 24 Mar 2024 09:03:40 GMT
etag: "65ffec6c-6b00"
expires: Thu, 09 May 2024 15:12:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/0420fadc97eaa0c50e2d39e659bc2e68.jpg
208.64.218.24200 OK 28 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/0420fadc97eaa0c50e2d39e659bc2e68.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 690x400, components 3
Hash fb1f771acbdb33ccbbe414e60f0615e6
a08d1987a80944a4488b99caf088a16f8f18a114
f37b388d8d24b70ed15fd2ce61894bf9724e5eb832b5eb95196d06adf345571c
GET /upload/vod/20240324-1/0420fadc97eaa0c50e2d39e659bc2e68.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 27856
last-modified: Sun, 24 Mar 2024 09:03:49 GMT
etag: "65ffec75-6cd0"
expires: Thu, 09 May 2024 15:12:00 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/a5d49e3960bb3311464b5d30707e3de2.jpg
208.64.218.24200 OK 21 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/a5d49e3960bb3311464b5d30707e3de2.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 463x274, components 3
Hash 9a31361e87cfdfc719db4723361ba8cd
fbc860a3fa932476a0033952580c2721279fe3e9
bc268def888a685e2d2fa935332db2c0b3aea1d74c0b5a1b8985a8aeae59cdc3
GET /upload/vod/20240324-1/a5d49e3960bb3311464b5d30707e3de2.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 20565
last-modified: Sun, 24 Mar 2024 08:59:03 GMT
etag: "65ffeb57-5055"
expires: Thu, 09 May 2024 15:12:49 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/5cca52540e4cf0df335dc7958468acdf.jpg
208.64.218.24200 OK 21 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/5cca52540e4cf0df335dc7958468acdf.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 466x273, components 3
Hash 5edb280c5729a926a0e58290a862ad61
9418b5cc18ecacbb91744e7df6773f678f13f5c9
a7b00c19e1f692c3535acf9f6adc2b50451f30ef728b3808150dcefec1be1408
GET /upload/vod/20240324-1/5cca52540e4cf0df335dc7958468acdf.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 21302
last-modified: Sun, 24 Mar 2024 08:59:04 GMT
etag: "65ffeb58-5336"
expires: Thu, 09 May 2024 15:12:51 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/b38a002d32d7fbe3ab9d423ccbd97864.jpg
208.64.218.24200 OK 22 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/b38a002d32d7fbe3ab9d423ccbd97864.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 473x275, components 3
Hash 33118a275e5e0f1b6f553d1695173d9f
4f8e081f732b74fca42b73f969b001e7f2d7de7b
2a48134fddf63bcbeb9ea9d0b352abc50daf5d5c6ee709c7720e74e3c32bf431
GET /upload/vod/20240324-1/b38a002d32d7fbe3ab9d423ccbd97864.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 21456
last-modified: Sun, 24 Mar 2024 08:59:05 GMT
etag: "65ffeb59-53d0"
expires: Thu, 09 May 2024 15:12:44 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/ca4ae141c2fd6235e7ff086185a4cbd5.jpg
208.64.218.24200 OK 24 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/ca4ae141c2fd6235e7ff086185a4cbd5.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 485x274, components 3
Hash a74eb3c81db4d695d0e8bd9f4e83f2ea
dc1c462a34e6aec63b04c519ef49ef45bddc433a
c77722815d14240db7e40e85a8fe5c23846803bd4ac2cad13520e57c1077afcb
GET /upload/vod/20240324-1/ca4ae141c2fd6235e7ff086185a4cbd5.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 24051
last-modified: Sun, 24 Mar 2024 08:59:06 GMT
etag: "65ffeb5a-5df3"
expires: Thu, 09 May 2024 15:11:58 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
sixgg.cheektowaganewyork.com/2023/img/news.gif
67.229.63.211200 OK 209 kB URL GET HTTP/2 sixgg.cheektowaganewyork.com/2023/img/news.gif
IP 67.229.63.211:443
ASN #4213 EVOCATIVE-GLOBAL
Certificate IssuerSectigo Limited
Subjectsixgg.cheektowaganewyork.com
FingerprintA9:79:EA:9C:5B:2E:C3:2C:15:1D:8C:17:17:63:94:58:81:60:C3:C2
ValidityThu, 25 May 2023 00:00:00 GMT - Fri, 24 May 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 80
Size 209 kB (209212 bytes)
Hash 559344f14d03251612597738e92acda5
e722f3950cdf6cbaea3664245dfc48c26c65b93e
1625b7cf711008d6f8ee41e1f36344205099e71edfa77440f613b2318860e990
GET /2023/img/news.gif HTTP/1.1
Host: sixgg.cheektowaganewyork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/gif
content-length: 209212
last-modified: Sun, 07 Apr 2024 07:27:38 GMT
etag: "66124aea-3313c"
expires: Thu, 23 May 2024 21:31:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/037697bf7ac5901aa6e85a40b1767224.jpg
208.64.218.24200 OK 23 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/037697bf7ac5901aa6e85a40b1767224.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 483x276, components 3
Hash 364dc325f92e2ca91a173a97f9c5c5d4
536a72b9e42af1a09f3be1a14258d280924556eb
1164d92098f927c024dad6352c9c07907cf6aed50694bb2d0d70c6320b57ec43
GET /upload/vod/20240324-1/037697bf7ac5901aa6e85a40b1767224.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 23444
last-modified: Sun, 24 Mar 2024 08:59:07 GMT
etag: "65ffeb5b-5b94"
expires: Thu, 09 May 2024 15:12:45 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/167db876115a5f58b9fd32c8e12a552e.jpg
208.64.218.24200 OK 20 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/167db876115a5f58b9fd32c8e12a552e.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 478x278, components 3
Hash 9c7a8aa4e14ea3c0d248f377fa26a9d8
490dfb34669b3ef4cc88e6f8c055b96814863ffd
d519dba484ee9d661305eba0ff283b1193d9810698daa91a208f01163476be75
GET /upload/vod/20240324-1/167db876115a5f58b9fd32c8e12a552e.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 20330
last-modified: Sun, 24 Mar 2024 08:59:08 GMT
etag: "65ffeb5c-4f6a"
expires: Thu, 09 May 2024 15:12:31 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/2aa3143c9cfd03299d944226fbf1c5bf.jpg
208.64.218.24200 OK 26 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/2aa3143c9cfd03299d944226fbf1c5bf.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 490x279, components 3
Hash 8c00456a3321a629cc1c6e669a6cfdae
2049fdd96a571d51dcd5a9fd0dfe35defcabd7f0
1759fab7cd8b88d23191333febe25d0414285f91daba63fa51fa0a00fa619b0c
GET /upload/vod/20240324-1/2aa3143c9cfd03299d944226fbf1c5bf.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 26401
last-modified: Sun, 24 Mar 2024 08:59:10 GMT
etag: "65ffeb5e-6721"
expires: Thu, 09 May 2024 15:12:51 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/00ce4c4c8c8d0c41edcaafd2f4d96ff4.jpg
208.64.218.24200 OK 26 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/00ce4c4c8c8d0c41edcaafd2f4d96ff4.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Generated by Snipaste", baseline, precision 8, 487x274, components 3
Hash 3fe035b91ad6fb2a3a2c7dde9442f0a0
58c2f4d141766d4b7cfba8ad4138600bad2df19d
5aff000755b24d29090802c67087d3c1af5d2709c42b5af106ea97f7e9c07580
GET /upload/vod/20240324-1/00ce4c4c8c8d0c41edcaafd2f4d96ff4.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 25695
last-modified: Sun, 24 Mar 2024 08:59:18 GMT
etag: "65ffeb66-645f"
expires: Thu, 09 May 2024 15:11:52 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/0d4284432cf8cb4f745c2761243bb82c.jpg
208.64.218.24200 OK 30 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/0d4284432cf8cb4f745c2761243bb82c.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 690x400, components 3
Hash 8ce78278b13f099a5ea4ae1e1dcde4c8
025ab5391f69ffb7640a04eac3b9ea4d71ab3d16
a0510934caa471a7de054a7af775b98598194c612682d0ba1907559712128fae
GET /upload/vod/20240324-1/0d4284432cf8cb4f745c2761243bb82c.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 30288
last-modified: Sun, 24 Mar 2024 09:03:35 GMT
etag: "65ffec67-7650"
expires: Thu, 09 May 2024 15:12:11 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?4d8870b6a9fd1f090e3878f107fe7070
14.215.183.79200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?4d8870b6a9fd1f090e3878f107fe7070
IP 14.215.183.79:443
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (620)
Hash 0fdad85309df7e6be50267e095e16372
3a8cb7f27d4130dfb40d080f0af3b0573ac16320
5641d7ad19ed9b2e30c93b1ba0105e4aa3271f207228df88d41c138bc46de09a
GET /hm.js?4d8870b6a9fd1f090e3878f107fe7070 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Tue, 23 Apr 2024 21:31:30 GMT
Etag: 0be293a3a24606a07b4f90e2e83e2d58
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D64377B79608BBCC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
img.hgimg01.com/upload/vod/20240324-1/b8bcabdb35380192990e03938f228640.jpg
208.64.218.24200 OK 56 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/b8bcabdb35380192990e03938f228640.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash 7383ce3f65b6ea2ef3f8ec0e2b3c1b21
f03fc18e0477c08fb2dde1d44251209e36120909
9416f2829ca741717980f5454ab79e3580f0f88f8792edc8e755233b0d63084d
GET /upload/vod/20240324-1/b8bcabdb35380192990e03938f228640.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 55840
last-modified: Sun, 24 Mar 2024 09:03:48 GMT
etag: "65ffec74-da20"
expires: Thu, 09 May 2024 15:11:55 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/d97d4db7693223c3618c6e157731110f.jpg
208.64.218.24200 OK 24 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/d97d4db7693223c3618c6e157731110f.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 690x400, components 3
Hash c03734690d8c84ea644204c75d629df7
c0ea50e77b9b6262f919bee4323b6b3126aaa655
e0670c49c1e436cd04df5b380b146e1f91c13f45f8523d5c6a20cffa479168c1
GET /upload/vod/20240324-1/d97d4db7693223c3618c6e157731110f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 24032
last-modified: Sun, 24 Mar 2024 09:03:36 GMT
etag: "65ffec68-5de0"
expires: Thu, 09 May 2024 15:11:55 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/574e96b3bae3e290fb61a550cc01b605.jpg
208.64.218.24200 OK 21 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/574e96b3bae3e290fb61a550cc01b605.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 690x400, components 3
Hash ce624256211ac7bb497bf7c3370b5c54
b8a6bc3abe563dd7b345c3a8f3b3c518ee2d961a
1dff4d46fd7a8624c921cbeec1289069149a151b1708c0954903fbcb1f17a4b7
GET /upload/vod/20240324-1/574e96b3bae3e290fb61a550cc01b605.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 21312
last-modified: Sun, 24 Mar 2024 09:03:41 GMT
etag: "65ffec6d-5340"
expires: Thu, 09 May 2024 15:11:52 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/82da17df8f406a114172819e7977b708.jpg
208.64.218.24200 OK 26 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/82da17df8f406a114172819e7977b708.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 690x400, components 3
Hash 3a39e59b3fa344a5171555b799ab3ae6
78673af4c78ac2f780c432f98427d744a406d732
f88a9d443000a3bb267ddd17dff43961a49107c5a765b02452a328ce686dcf47
GET /upload/vod/20240324-1/82da17df8f406a114172819e7977b708.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 26080
last-modified: Sun, 24 Mar 2024 09:03:46 GMT
etag: "65ffec72-65e0"
expires: Thu, 09 May 2024 15:11:54 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240324-1/8fa597d3e2f809863956f44b1240f06d.jpg
208.64.218.24200 OK 74 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240324-1/8fa597d3e2f809863956f44b1240f06d.jpg
IP 208.64.218.24:443
Certificate IssuerTrustAsia Technologies, Inc.
Subjectimg.hgimg01.com
Fingerprint0C:7D:DA:FE:45:AF:F8:E9:04:7D:6E:95:EB:01:9F:88:D3:AB:3A:40
ValidityMon, 01 May 2023 00:00:00 GMT - Tue, 30 Apr 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash a2be9e61d51c932abc484eef315da6e3
1d1791640c2a62a78c85b262b000b0d3f9a96ded
9fd64989740d9b26254453bd5bc9fdbf0f5d2f15919d09c7c98dac2835a64eec
GET /upload/vod/20240324-1/8fa597d3e2f809863956f44b1240f06d.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:29 GMT
content-type: image/jpeg
content-length: 73456
last-modified: Sun, 24 Mar 2024 09:03:42 GMT
etag: "65ffec6e-11ef0"
expires: Thu, 09 May 2024 15:12:49 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
666bbb333bbb.com/c5629f52aca249c3af4af73be9dcd7fe.gif
107.167.10.67200 OK 217 kB URL GET HTTP/1.1 666bbb333bbb.com/c5629f52aca249c3af4af73be9dcd7fe.gif
IP 107.167.10.67:443
Certificate IssuerLet's Encrypt
Subject222bbb888bbb.com
Fingerprint70:86:22:F0:75:47:81:37:A1:13:E3:C8:67:01:FE:E3:FB:FA:2D:B5
ValidityTue, 05 Mar 2024 12:26:32 GMT - Mon, 03 Jun 2024 12:26:31 GMT
File type GIF image data, version 89a, 750 x 100
Size 217 kB (217119 bytes)
Hash 10aaaecba85f1282fa17bd0a9b42ed7c
e5d027fceced012dd5c46569c045d8fad5f7c6c3
60c13ba0664fb92d50f8268af72722770972bda63b8803becb7f294883494765
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c5629f52aca249c3af4af73be9dcd7fe.gif HTTP/1.1
Host: 666bbb333bbb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 23 Apr 2024 21:31:29 GMT
Content-Type: image/gif
Content-Length: 217119
Connection: keep-alive
Last-Modified: Tue, 24 Oct 2023 08:22:56 GMT
ETag: "65377ee0-3501f"
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=990960975&si=4d8870b6a9fd1f090e3878f107fe7070&v=1.3.0&lv=1&sn=36570&r=0&ww=1280&u=http%3A%2F%2Fxmxfwx.com%2F&tt=%E9%AB%98%E8%B4%B5%E7%BE%8E%E4%BA%BA%E5%A6%BB%E4%BE%B5%E7%8A%AFK8%E7%BB%8F%E5%85%B8%2C%E4%B8%80%E7%BA%A7%E5%85%A8%E9%BB%84%E6%AC%A7%E7%BE%8E%E8%83%96%E5%A5%B3%E4%BA%BA%2C%E6%88%90%E4%BA%BA%E5%85%8D%E7%9C%8B%E4%B8%80%E7%BA%A7a%E4%B8%80%E7%89%87%E9%BB%84%2C%E6%88%90%E5%B9%B4%E7%94%B7%E4%BA%BA%E9%BB%84%E8%89%B2%E8%A7%86%E9%A2%91
14.215.183.79200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=990960975&si=4d8870b6a9fd1f090e3878f107fe7070&v=1.3.0&lv=1&sn=36570&r=0&ww=1280&u=http%3A%2F%2Fxmxfwx.com%2F&tt=%E9%AB%98%E8%B4%B5%E7%BE%8E%E4%BA%BA%E5%A6%BB%E4%BE%B5%E7%8A%AFK8%E7%BB%8F%E5%85%B8%2C%E4%B8%80%E7%BA%A7%E5%85%A8%E9%BB%84%E6%AC%A7%E7%BE%8E%E8%83%96%E5%A5%B3%E4%BA%BA%2C%E6%88%90%E4%BA%BA%E5%85%8D%E7%9C%8B%E4%B8%80%E7%BA%A7a%E4%B8%80%E7%89%87%E9%BB%84%2C%E6%88%90%E5%B9%B4%E7%94%B7%E4%BA%BA%E9%BB%84%E8%89%B2%E8%A7%86%E9%A2%91
IP 14.215.183.79:443
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=990960975&si=4d8870b6a9fd1f090e3878f107fe7070&v=1.3.0&lv=1&sn=36570&r=0&ww=1280&u=http%3A%2F%2Fxmxfwx.com%2F&tt=%E9%AB%98%E8%B4%B5%E7%BE%8E%E4%BA%BA%E5%A6%BB%E4%BE%B5%E7%8A%AFK8%E7%BB%8F%E5%85%B8%2C%E4%B8%80%E7%BA%A7%E5%85%A8%E9%BB%84%E6%AC%A7%E7%BE%8E%E8%83%96%E5%A5%B3%E4%BA%BA%2C%E6%88%90%E4%BA%BA%E5%85%8D%E7%9C%8B%E4%B8%80%E7%BA%A7a%E4%B8%80%E7%89%87%E9%BB%84%2C%E6%88%90%E5%B9%B4%E7%94%B7%E4%BA%BA%E9%BB%84%E8%89%B2%E8%A7%86%E9%A2%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 23 Apr 2024 21:31:30 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=3858794D7C0AC7EF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
mmn734.top/bb52a432dc96347e2ea3e184ad066e53.gif
107.148.40.140200 OK 153 kB URL GET HTTP/2 mmn734.top/bb52a432dc96347e2ea3e184ad066e53.gif
IP 107.148.40.140:443
Certificate IssuerLet's Encrypt
Subjectmmn734.top
FingerprintD7:16:7D:E5:27:7B:CC:B5:5B:84:82:76:A2:34:AB:53:3C:04:16:AD
ValidityTue, 19 Mar 2024 16:11:36 GMT - Mon, 17 Jun 2024 16:11:35 GMT
File type GIF image data, version 89a, 960 x 60
Size 153 kB (152585 bytes)
Hash 5afb3a44ea424e0e7a89ea747050b605
4df82fbf414f3cfd547b885e71ef0c6d6eb72d3e
cef431f4473b86bcc5e98e9dc947270730676b6038e38db7e70707b4d0d53976
GET /bb52a432dc96347e2ea3e184ad066e53.gif HTTP/1.1
Host: mmn734.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Tue, 23 Apr 2024 20:40:37 GMT
etag: "661423f8-25409"
expires: Thu, 23 May 2024 20:40:37 GMT
last-modified: Tue, 23 Apr 2024 20:40:37 GMT
server: nginx
x-cache: HIT, policy, disk
content-length: 152585
X-Firefox-Spdy: h2
zuzujjss.com/yhys/qq1.js
206.238.142.193200 OK 325 kB IP 206.238.142.193:443
Certificate IssuerLet's Encrypt
Subjectzuzujjss.com
FingerprintD9:8F:69:14:16:FE:1B:81:5A:37:A4:D7:1A:E9:29:47:85:7B:19:D4
ValidityMon, 18 Mar 2024 17:06:26 GMT - Sun, 16 Jun 2024 17:06:25 GMT
File type gzip compressed data, from Unix
Size 325 kB (325221 bytes)
Hash f892786ddbcf39bdb939f2ca6dd7f4d3
f51d7b1bfc7f8a57b959f48d7880cd21ac3ae8e1
993afd30ea7bf06b41fcbec73ba55368aaaf015f48a45cffa0efcd94e359406a
GET /yhys/qq1.js HTTP/1.1
Host: zuzujjss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 23 Apr 2024 21:31:31 GMT
content-type: application/javascript
last-modified: Tue, 23 Apr 2024 13:27:25 GMT
vary: Accept-Encoding
etag: W/"6627b73d-1207"
expires: Wed, 24 Apr 2024 09:31:31 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
m6690.top/d48317f8a5ae04949eaf4ce9217bb23b.gif
107.148.40.115200 OK 301 kB URL GET HTTP/2 m6690.top/d48317f8a5ae04949eaf4ce9217bb23b.gif
IP 107.148.40.115:443
Certificate IssuerLet's Encrypt
Subjectm6690.top
FingerprintC6:88:6E:CB:CD:69:E0:E7:F6:6D:3E:8F:A4:EA:F3:1D:E0:A2:F9:F7
ValidityThu, 21 Mar 2024 10:15:10 GMT - Wed, 19 Jun 2024 10:15:09 GMT
File type GIF image data, version 89a, 960 x 60
Size 301 kB (301255 bytes)
Hash 37614eab11833731ce10be9d979a7f6c
4fbd2fd3f42fac4e8ac024116229b10123c94483
ffb48f6266da7a3e0fba7ca592d003f29e3b1382d9cd7160fb9a3c250e10a21e
GET /d48317f8a5ae04949eaf4ce9217bb23b.gif HTTP/1.1
Host: m6690.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 118211
cache-control: max-age=2592000
cf-cache-status: HIT
cf-ray: 878fbb2d78ef0d0c-LAX
content-type: image/gif
date: Tue, 23 Apr 2024 17:56:36 GMT
etag: "66181219-498c7"
expires: Wed, 22 May 2024 09:06:25 GMT
last-modified: Tue, 23 Apr 2024 21:10:36 GMT
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=62aixcPRm8h9EptfaKMASM0b%2FMHwTQjVZjS0pr%2FZ8SgVfdFM1mzDy5vDuqM0Vn%2Bn6tSZSCzzOfTHqadOmW9vbZuanpH%2FhfUa8ZhniM6g6NbJyjs5NpKOs2JNUzH%2B"}],"group":"cf-nel","max_age":604800}
server: cloudflare
vary: Accept-Encoding
x-cache: HIT, policy, memory
content-length: 301255
X-Firefox-Spdy: h2
xmxfwx.com/template/mb10/css/favicon.ico
122.10.10.103200 OK 4.3 kB URL GET HTTP/1.1 xmxfwx.com/template/mb10/css/favicon.ico
IP 122.10.10.103:80
ASN #134548 DXTL Tseung Kwan O Service
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Hash 4c7c7c77978796fae99b7ad6d4107336
acc6ea7c8e499b6f00e875e6c2144ceaf50b8632
3a0cb652f52c9f17bf9a4368ecba8c5149deb19e04766884a16cb37b2a742a17
GET /template/mb10/css/favicon.ico HTTP/1.1
Host: xmxfwx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Cookie: Hm_lvt_4d8870b6a9fd1f090e3878f107fe7070=1713907890; Hm_lpvt_4d8870b6a9fd1f090e3878f107fe7070=1713907890
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 23 Apr 2024 21:31:31 GMT
Content-Type: image/x-icon
Content-Length: 4286
Last-Modified: Fri, 05 Jan 2024 08:07:20 GMT
Connection: keep-alive
ETag: "6597b8b8-10be"
Accept-Ranges: bytes
imgsrc.baidu.com/forum/pic/item/9e3df8dcd100baa110b4d3800110b912c8fc2e75.gif
104.193.88.109200 OK 248 kB URL GET HTTP/2 imgsrc.baidu.com/forum/pic/item/9e3df8dcd100baa110b4d3800110b912c8fc2e75.gif
IP 104.193.88.109:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 960 x 120
Size 248 kB (247573 bytes)
Hash 2ba91c584d2c5fd29803bfd80f098682
54266a6fd38246fff22643d97de79dc59efbe464
ae6a3e75a1deacd13142868334bb55e414f1e890a6e92331943054b144f7726e
GET /forum/pic/item/9e3df8dcd100baa110b4d3800110b912c8fc2e75.gif HTTP/1.1
Host: imgsrc.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 23 Apr 2024 21:31:32 GMT
content-type: image/gif
content-length: 247573
access-control-allow-origin: *
etag: 2ba91c584d2c5fd29803bfd80f098682
expires: Thu, 23 May 2024 21:31:32 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
imgsrc.baidu.com/forum/pic/item/503d269759ee3d6dd3f9daf705166d224f4adecb.gif
104.193.88.109200 OK 481 kB URL GET HTTP/2 imgsrc.baidu.com/forum/pic/item/503d269759ee3d6dd3f9daf705166d224f4adecb.gif
IP 104.193.88.109:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 960 x 120
Size 481 kB (481174 bytes)
Hash 5d03cfd0ae784de8ce6a43932c98b0af
cbdbc76716ef6a289b012ad4eed58c5346394cda
f725e33123858d9012edf423bc35c67634c932aa316a5f1ac343297548d6cdc8
GET /forum/pic/item/503d269759ee3d6dd3f9daf705166d224f4adecb.gif HTTP/1.1
Host: imgsrc.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 23 Apr 2024 21:31:32 GMT
content-type: image/gif
content-length: 481174
access-control-allow-origin: *
etag: 5d03cfd0ae784de8ce6a43932c98b0af
expires: Thu, 23 May 2024 21:31:32 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
imgsrc.baidu.com/forum/pic/item/3b292df5e0fe9925c243896a72a85edf8db171b9.jpg
104.193.88.109200 OK 311 kB URL GET HTTP/2 imgsrc.baidu.com/forum/pic/item/3b292df5e0fe9925c243896a72a85edf8db171b9.jpg
IP 104.193.88.109:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 960 x 80
Size 311 kB (310888 bytes)
Hash 2b19142af40e11102aa895256cc9241d
62bf50abd2ea4cbd5cbe2274c87a59a2b47611c9
679a13cb4b97d41269816f338157191f5d57d8433e05e962008665bd7830bc92
GET /forum/pic/item/3b292df5e0fe9925c243896a72a85edf8db171b9.jpg HTTP/1.1
Host: imgsrc.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 23 Apr 2024 21:31:32 GMT
content-type: image/gif
content-length: 310888
access-control-allow-origin: *
etag: 2b19142af40e11102aa895256cc9241d
expires: Thu, 23 May 2024 21:31:32 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
35.244.181.201 444 B URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP 35.244.181.201:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type XML 1.0 document, ASCII text, with very long lines (332)
Hash 3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=Xj2SLqP0fNhbmL7pzKlF0DfgsXR_E45dIDLNoe6ClMWRiwH0Fvm6cULyQWn3GmoaqU9bZT_VTagq5MVgKPjSyzwWS2uJgHvJgpb4V0uH8I7OGOoXP4-viEXP644IXLIH
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
content-length: 444
date: Tue, 23 Apr 2024 21:29:51 GMT
age: 114
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
cowm199.com/6672b4840cdbc929c56da0d2d32f7dce.gif
107.148.40.115200 OK 324 kB URL GET HTTP/2 cowm199.com/6672b4840cdbc929c56da0d2d32f7dce.gif
IP 107.148.40.115:443
Certificate IssuerLet's Encrypt
Subjectcowm199.com
FingerprintA5:6D:4D:3B:92:7F:E7:7A:30:EE:AB:1B:F6:77:87:F5:DF:17:21:DA
ValidityMon, 01 Apr 2024 13:06:07 GMT - Sun, 30 Jun 2024 13:06:06 GMT
File type GIF image data, version 89a, 960 x 80
Size 324 kB (324299 bytes)
Hash 4b824f5452a8379a4bb6fa2fb82e8f45
0f97bfec583629d21f1737c3c806ba51ab7c9293
92ba0c5c9930dc38fbd04c327b93437aba42e38f4fcc846b87a16b4df7ebfd45
GET /6672b4840cdbc929c56da0d2d32f7dce.gif HTTP/1.1
Host: cowm199.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://xmxfwx.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Tue, 23 Apr 2024 17:32:36 GMT
etag: "64e77690-4f2cb"
expires: Thu, 23 May 2024 17:32:36 GMT
last-modified: Tue, 23 Apr 2024 17:32:37 GMT
server: nginx
x-cache: HIT, policy, disk
content-length: 324299
X-Firefox-Spdy: h2