83668.net/
160.202.101.237301 Moved Permanently 0 B IP 160.202.101.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 83668.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Dec 2022 22:55:24 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.83668.net/index.php
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3380
Expires: Tue, 06 Dec 2022 23:51:44 GMT
Date: Tue, 06 Dec 2022 22:55:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8629
Expires: Wed, 07 Dec 2022 01:19:13 GMT
Date: Tue, 06 Dec 2022 22:55:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4407
Cache-Control: max-age=132561
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 22:55:24 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 11:44:45 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hypBygwbX6fWvzviNL3hzfftyRUQ/8ia2qiFmUqO8yybJeoVzxUpuMhbm3wRt+tMxmzitAPNnJk=
x-amz-request-id: P9PCS9C871VZZMJ7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 22:49:08 GMT
age: 376
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 22:18:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2203
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 22:11:20 GMT
cache-control: public,max-age=3600
age: 2645
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4382
Cache-Control: max-age=127467
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 22:55:25 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 10:19:52 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.94.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.94.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: i2sXA4r2d2MulGTGTVRqpg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ku7uRxdY4hiBj7VmaIN8rDf3fog=
www.83668.net/index.php
160.202.101.237200 OK 508 B IP 160.202.101.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (623), with CRLF line terminators
Hash 05b7d2199a480f47e97fe760f568ebf9
b541d9c4bd2d9afbac30823224ae5865ae8e26ca
caee37cbc5c280c12137d7347fa9486c5c363de74b5bd446bbe0882441b2f4d5
GET /index.php HTTP/1.1
Host: www.83668.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 22:55:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.83668.net/common.js
160.202.101.237200 OK 676 B IP 160.202.101.237:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1292), with no line terminators
Hash a0b5e4297805ba39e2405a7fea6545d2
2f6c5162f40ca84e50b50c2ced15c4db46c5fa1f
146849b0fa8bc79eb50a6ef895a79296db1d29dc464f097033a684bf7864a78f
GET /common.js HTTP/1.1
Host: www.83668.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.83668.net/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 22:55:26 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3464
Expires: Tue, 06 Dec 2022 23:53:10 GMT
Date: Tue, 06 Dec 2022 22:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3464
Expires: Tue, 06 Dec 2022 23:53:10 GMT
Date: Tue, 06 Dec 2022 22:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3464
Expires: Tue, 06 Dec 2022 23:53:10 GMT
Date: Tue, 06 Dec 2022 22:55:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3464
Expires: Tue, 06 Dec 2022 23:53:10 GMT
Date: Tue, 06 Dec 2022 22:55:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98d2cf29c710d25bd2f03ff216fdd369
b8eb2e11f9655f19334befc036f21489a6473827
614c9b4a7ace908c1ef807964709cb292b33b48ce1d81ccbd2959c2c0ee156ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F079bc299-d390-4250-a91a-db3c535c9ca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8351
x-amzn-requestid: 607d07ab-6833-4001-82ed-699ea91f84c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlitFk9oAMFakQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb611-3e5f14f833b332647ef7358d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0w5Usq-LJMNHxw9UrwUqSslSVROXVHTmY_UhSHNaGh4k4xqh-FSa0A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:19 GMT
etag: "b8eb2e11f9655f19334befc036f21489a6473827"
content-type: image/jpeg
age: 3487
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2ae931d0f14a81013f782d43b8c7b85
9ec84996b63362ad370ff67b0fd8136a343c1bbf
9b4a2b3e5e2d2b4fac094135fed10a3040598f1208f6b2ec52d95d10aca66ed5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9891
x-amzn-requestid: f15dc6ba-901b-4ef6-8589-d8918fe84173
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csU8lF3MoAMF47g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6850-496d269b228065a365a67eea;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:53:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PeQWrtcQx_ZzQ4WNPzeiPoHXbxVcdLo9ulplJSlL1GmEpuC0qGkElw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 13:33:28 GMT
age: 33718
etag: "9ec84996b63362ad370ff67b0fd8136a343c1bbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 08:32:46 GMT
age: 51760
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8e8fa64-7cd3-460d-9040-af3ca0e2a5f5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8e8fa64-7cd3-460d-9040-af3ca0e2a5f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b6f4dd03deb6114fec01808b034a711c
c74d29bba44dbb09158da4b9e1b490112c7db915
ddc6721d8a42821c458cf6d5c64ebd10ca0002c95a275be1732cd9ade7bf1b6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8e8fa64-7cd3-460d-9040-af3ca0e2a5f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10567
x-amzn-requestid: b9b16cdf-bfa2-4e3c-b00f-1704dd3473d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgIC6EgLoAMF3hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638986df-3945eea57676d3f91f8f2b3c;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 05:02:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jq1EHQBqVeb9KBozcSUpieXUDHhouxr6YkJrhiqqZ4VP1ZwPV6LHEA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:36:00 GMT
age: 1166
etag: "c74d29bba44dbb09158da4b9e1b490112c7db915"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5025a35-c128-4d8f-a429-7148aaebb3b1.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5025a35-c128-4d8f-a429-7148aaebb3b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f38ce0fb35ef0fc66b61cafd2b09eeb6
aded2fe97a129dc820ba9d6d7605aeadfe17c15c
39bcb5e0c3a9cd39c0fcefbffd9e6f949bb9d85f0bee2b0b7c5cb999b508b1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5025a35-c128-4d8f-a429-7148aaebb3b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9781
x-amzn-requestid: 24355473-a83a-42b6-bdf3-ae2c39f7f3eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ccq48GfKoAMFjmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63882505-2f58dd012665cb131ceff8f2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 03:52:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VySWUb7U2HlkyL8T1PCOzSDXNSDJDRIIF1PAnwaK2DHiGJFGGzRCOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:30:30 GMT
age: 1496
etag: "aded2fe97a129dc820ba9d6d7605aeadfe17c15c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0f0782df385287698881f1c19e79b96
5a25f245b594f6cbf2fdaeed2463ac5fbc08068a
4f795cd2286e194cd96751e6a4e3bd0da09c6db5344182e51986b65149e75cd7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8579
x-amzn-requestid: 0efa303a-364e-488d-beac-24836c7c1e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlirE2KoAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb610-5564a0c0264ed36f0497e17e;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xpzGji_JAWkUjhXLouXWlin6rV-44shz6Z_STqo7uK7ZUV2PWs7Zpg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:19 GMT
etag: "5a25f245b594f6cbf2fdaeed2463ac5fbc08068a"
content-type: image/jpeg
age: 3487
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.83668.net/tj.js
160.202.101.237200 OK 258 B IP 160.202.101.237:0
File type ASCII text, with CRLF line terminators
Hash 82580326564b4b7a32a3cc39e45bed35
41a4b0262562eded67b2743c59f8e599d208d19c
347f726fc9084b8fda390fdee1d9ff947934591a0cf013f535bcfa112501c03f
GET /tj.js HTTP/1.1
Host: www.83668.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.83668.net/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 22:55:27 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.83668.net/favicon.ico
160.202.101.237200 OK 1.2 kB URL HTTP/1.1 www.83668.net/favicon.ico
IP 160.202.101.237:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.83668.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.83668.net/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 22:55:27 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sun, 11 Dec 2022 22:55:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 4d8979b580f9a6c9b4660e41f0bef4c5
97acb985f7e150bc5077979a18d1c443d7df22f0
08a2342e767e94a269b479e389d8415f55e8a1722ed74549e675297516951ae6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Dec 2022 21:36:42 GMT
ETag: "97acb985f7e150bc5077979a18d1c443d7df22f0"
Last-Modified: Tue, 06 Dec 2022 21:36:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1487
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77589bf569bdb518-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fee33d9e76456e7df0b2b63de40ab210
88d46087c45a6e3ced1f7b2196d061fe4fa4b668
8f3ec78c74f8fcc9619353928a939075a1672c49693ccd94b635fa0013f3725d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F3EC78C74F8FCC9619353928A939075A1672C49693CCD94B635FA0013F3725D"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21567
Expires: Wed, 07 Dec 2022 04:54:54 GMT
Date: Tue, 06 Dec 2022 22:55:27 GMT
Connection: keep-alive
pkff79.xyz/template/meizhuama/ads/
104.223.155.208403 Forbidden 146 B URL HTTP/2 pkff79.xyz/template/meizhuama/ads/
IP 104.223.155.208:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9fe3cb2b7313dc79bb477bc8fde184a7
4d7b3cb41e90618358d0ee066c45c76227a13747
32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
GET /template/meizhuama/ads/ HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
pkff79.xyz/template/web/app1.js
104.223.155.208200 OK 842 B URL HTTP/2 pkff79.xyz/template/web/app1.js
IP 104.223.155.208:0
File type HTML document, Unicode text, UTF-8 text
Hash 4f7bd5d4ffefc50c5cabf400d8ed81b9
f0b1f68b666a460f0c85b23f1d1a979a7659428b
8818d8c5a061a6086790eca3e392fb717315cca8b9178c062c4092ddf0ce49f5
GET /template/web/app1.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
content-length: 842
last-modified: Tue, 06 Dec 2022 03:23:05 GMT
etag: "638eb599-34a"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/app2.js
104.223.155.208200 OK 776 B URL HTTP/2 pkff79.xyz/template/web/app2.js
IP 104.223.155.208:0
File type HTML document, Unicode text, UTF-8 text
Hash 740a4cf7f43fbc4e054c43c0f7527ace
db59cf24d2536a176967a49f80ee66cf3f0a97bd
21343dd5bffa6b2c83eb57bee8310010fe846e600113ba605d4860c1cff13be1
GET /template/web/app2.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
content-length: 776
last-modified: Wed, 30 Nov 2022 15:57:11 GMT
etag: "63877d57-308"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/meizhuama/css/ate.css
104.223.155.208200 OK 6.5 kB URL HTTP/2 pkff79.xyz/template/meizhuama/css/ate.css
IP 104.223.155.208:0
Hash 5e16bb9a81d568eb9d17dbbcbeb0cb05
ba4945506764e3ace7680a3e91f6cf97105b4282
9e2300dcd1991b2a14e314f302c5aa3d82574d15dcb7d615c220e53d6cc7a8ae
GET /template/meizhuama/css/ate.css HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: text/css
last-modified: Sun, 06 Mar 2022 14:12:24 GMT
vary: Accept-Encoding
etag: W/"6224c148-126e4"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51a4d111681f2d7940600e48d7e6c45a
8c9d5a9ca41fea2e7f2bc8e88576918b2499e33d
3b75d99b0fe9509fd882890f3c3833557a78f0e7859ff37d6cbc8e484db66dbe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B75D99B0FE9509FD882890F3C3833557A78F0E7859FF37D6CBC8E484DB66DBE"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11401
Expires: Wed, 07 Dec 2022 02:05:29 GMT
Date: Tue, 06 Dec 2022 22:55:28 GMT
Connection: keep-alive
pkff79.xyz/template/web/dh2.js
104.223.155.208200 OK 1.8 kB URL HTTP/2 pkff79.xyz/template/web/dh2.js
IP 104.223.155.208:0
Hash 29265f6db5bf2e505930f984c115576d
cab987a573ae44a825dc63b86125a35dc29c407c
cd7dd60c746d46376ae6fb3cb295b1ac73e4b9d99612b33e424632cf300166bb
GET /template/web/dh2.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 03:24:20 GMT
vary: Accept-Encoding
etag: W/"638eb5e4-23b6"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
pkff79.xyz/template/web/dh1.js
104.223.155.208200 OK 1.9 kB URL HTTP/2 pkff79.xyz/template/web/dh1.js
IP 104.223.155.208:0
Hash c3aedebb21946eee37b1d294dd75d0a3
b624183ebd3b606f865fa9f4f9341d0099243214
5aad56fb9950240f7a4e202f7300c5da6047604836088365c3bc0d2ead20419b
GET /template/web/dh1.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 03:23:58 GMT
vary: Accept-Encoding
etag: W/"638eb5ce-2cc8"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7ba55ac063184822aa03799e4751308a
ba7993482eb080e102c68fe5a38bdc177577ec6f
68638405d81852fd7499c10ee77cf1cfc3520d6b1255f9ca5e9daa0672e2182c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68638405D81852FD7499C10EE77CF1CFC3520D6B1255F9CA5E9DAA0672E2182C"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11770
Expires: Wed, 07 Dec 2022 02:11:38 GMT
Date: Tue, 06 Dec 2022 22:55:28 GMT
Connection: keep-alive
hm.baidu.com/hm.js?582c0445542633a961bce7d4e9f64e62
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?582c0445542633a961bce7d4e9f64e62
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (623)
Hash f37e1d47e9091e72cc61288f4d304c22
76b7c5d1c525116b5c1bdb93e2503885f2ec3920
ef0044de423a0cffd2aaffee6cccf64509be50d3cc0408d7e37ebb08f4bbd5de
GET /hm.js?582c0445542633a961bce7d4e9f64e62 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.83668.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11261
Content-Type: application/javascript
Date: Tue, 06 Dec 2022 22:55:28 GMT
Etag: e50f918b2fba683a3faf7ff13c5efc39
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A07241828F4644FC; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
pkff79.xyz/template/web/GG/1111.gif
104.223.155.208200 OK 193 kB URL HTTP/2 pkff79.xyz/template/web/GG/1111.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 193 kB (192775 bytes)
Hash 2a8473b0751f565a9a92cff0d0525eb4
a9e7aa97e687466a338bf16b6c8a3e1338c1defa
907d459d656772bdeab141f597576780409e89554081ee074d2c62f9948a85b9
GET /template/web/GG/1111.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: image/gif
content-length: 192775
last-modified: Sun, 13 Mar 2022 08:36:46 GMT
etag: "622dad1e-2f107"
expires: Thu, 05 Jan 2023 22:55:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/meizhuama/ads/
104.223.155.208403 Forbidden 146 B URL HTTP/2 pkff79.xyz/template/meizhuama/ads/
IP 104.223.155.208:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9fe3cb2b7313dc79bb477bc8fde184a7
4d7b3cb41e90618358d0ee066c45c76227a13747
32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
GET /template/meizhuama/ads/ HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/88492.gif
104.223.155.208200 OK 331 kB URL HTTP/2 pkff79.xyz/template/web/GG/88492.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /template/web/GG/88492.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: image/gif
content-length: 331043
last-modified: Sat, 12 Nov 2022 08:46:52 GMT
etag: "636f5d7c-50d23"
expires: Thu, 05 Jan 2023 22:55:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/meizhuama/ads/
104.223.155.208403 Forbidden 146 B URL HTTP/2 pkff79.xyz/template/meizhuama/ads/
IP 104.223.155.208:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9fe3cb2b7313dc79bb477bc8fde184a7
4d7b3cb41e90618358d0ee066c45c76227a13747
32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
GET /template/meizhuama/ads/ HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 403 Forbidden
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
ttzytp1.com/upload/vod/20221121-1/c32278527a5d35f1f2003a6de4aa8cde.jpg
23.224.136.188200 OK 38 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/c32278527a5d35f1f2003a6de4aa8cde.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x268, components 3\012- data
Hash 242efdafe923fe93fce6709ac1db4c7a
45c9d203b0e2b2e8db64ee601475981d09e3a7ab
f3f4975d41313e42f9c3e8aa8255aff1d6bfb3528c2a613fe7531eaa713759c6
GET /upload/vod/20221121-1/c32278527a5d35f1f2003a6de4aa8cde.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:28 GMT
Content-Type: image/jpeg
Content-Length: 38127
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:30 GMT
ETag: "637b6156-94ef"
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1994895259&si=582c0445542633a961bce7d4e9f64e62&v=1.3.0&lv=1&sn=11249&r=0&ww=1280&u=http%3A%2F%2Fwww.83668.net%2Findex.php&tt=%E6%8B%89%E8%90%A8%E6%8A%95%E7%BC%B4%E8%A3%85%E4%BF%AE%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1994895259&si=582c0445542633a961bce7d4e9f64e62&v=1.3.0&lv=1&sn=11249&r=0&ww=1280&u=http%3A%2F%2Fwww.83668.net%2Findex.php&tt=%E6%8B%89%E8%90%A8%E6%8A%95%E7%BC%B4%E8%A3%85%E4%BF%AE%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1994895259&si=582c0445542633a961bce7d4e9f64e62&v=1.3.0&lv=1&sn=11249&r=0&ww=1280&u=http%3A%2F%2Fwww.83668.net%2Findex.php&tt=%E6%8B%89%E8%90%A8%E6%8A%95%E7%BC%B4%E8%A3%85%E4%BF%AE%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.83668.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 06 Dec 2022 22:55:28 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C07E24F48E403E90; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8163c2a0d2b7b032295fdc97a7c1a6fb
17bc02a19f2dcbc04d941b76c1567a08b04f63df
9a7b6e298af4e2e3cdf503fe4f81cb8f7594d2210ec07a8820804f13b6774c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A7B6E298AF4E2E3CDF503FE4F81CB8F7594D2210EC07A8820804F13B6774C34"
Last-Modified: Mon, 05 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2684
Expires: Tue, 06 Dec 2022 23:40:13 GMT
Date: Tue, 06 Dec 2022 22:55:29 GMT
Connection: keep-alive
ttzytp1.com/upload/vod/20221121-1/d1ed3799ae5cbc0252794d18cd1d418c.jpg
23.224.136.188200 OK 48 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/d1ed3799ae5cbc0252794d18cd1d418c.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x268, components 3\012- data
Hash 3eaba4b6e73c4f63cd47ee5f56755b37
e9292cdacd0e42d781d171a851a2f520a409ff14
e8138dd59861d8e08268b06429b49e6c44413a068095e903181456ad64018c2d
GET /upload/vod/20221121-1/d1ed3799ae5cbc0252794d18cd1d418c.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:28 GMT
Content-Type: image/jpeg
Content-Length: 48338
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:30 GMT
ETag: "637b6156-bcd2"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/2d74c9ab3b03cb4e9319f2982a8059b3.jpg
23.224.136.188200 OK 53 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/2d74c9ab3b03cb4e9319f2982a8059b3.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x268, components 3\012- data
Hash e30dd64fbf408aa1cbd2db6c2d7c5625
9ef26a592bc99a9db5286b51c84ad641da84176a
1aefaaeed1aff14548ab6f5e88e0bb7d399453ef4b78f680ce2eddff43dd6e25
GET /upload/vod/20221121-1/2d74c9ab3b03cb4e9319f2982a8059b3.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:28 GMT
Content-Type: image/jpeg
Content-Length: 52810
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:30 GMT
ETag: "637b6156-ce4a"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/72a4ba6956ecb2d4a059baf11b852a8e.jpg
23.224.136.188200 OK 74 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/72a4ba6956ecb2d4a059baf11b852a8e.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 400x267, components 3\012- data
Hash 61bbee4df89754c67dcbacf87b47d927
1c8892c8cc05e9e8bc6dab2fbb57e5e31203ea76
88eb3185a75ac1ab67bd98b059c9404a111ba3ce52a0d8f152ac08672878f2ee
GET /upload/vod/20221121-1/72a4ba6956ecb2d4a059baf11b852a8e.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:28 GMT
Content-Type: image/jpeg
Content-Length: 74241
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:29 GMT
ETag: "637b6155-12201"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/2b1eef295917cd23e47faa5a94f57d1e.jpg
23.224.136.188200 OK 46 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/2b1eef295917cd23e47faa5a94f57d1e.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x267, components 3\012- data
Hash d6a5463fb7ec277826918c699a93a5fd
593091ded05c95cfccd69651ef600f1ac839ea34
993d1797ecf403dcdb33f3352b55e320966add00dc7b44c78e0adb32feca73d5
GET /upload/vod/20221121-1/2b1eef295917cd23e47faa5a94f57d1e.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:28 GMT
Content-Type: image/jpeg
Content-Length: 45656
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:30 GMT
ETag: "637b6156-b258"
Accept-Ranges: bytes
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e322c41316bc2b0dd35ff525eab9e795
c76445e368c56cafc1946111f6c400799b876ebd
b7bc50de35064596e8cf322e83af9e68a7c1dcfb0f2fda8664a40064e5887e90
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "B7BC50DE35064596E8CF322E83AF9E68A7C1DCFB0F2FDA8664A40064E5887E90"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21205
Expires: Wed, 07 Dec 2022 04:48:54 GMT
Date: Tue, 06 Dec 2022 22:55:29 GMT
Connection: keep-alive
ttzytp1.com/upload/vod/20221121-1/a9e7f110ff0dd768aada74eb51b89397.jpg
23.224.136.188200 OK 58 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/a9e7f110ff0dd768aada74eb51b89397.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x267, components 3\012- data
Hash 8d127c27e524465c2fbaf045eca095e3
733f26192094fe0f5c66c967afca8225cd878937
db068e316dbbd7f144f119e4508f21b8fb9416959a17744c2a846f974f7e969d
GET /upload/vod/20221121-1/a9e7f110ff0dd768aada74eb51b89397.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:28 GMT
Content-Type: image/jpeg
Content-Length: 58206
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:30 GMT
ETag: "637b6156-e35e"
Accept-Ranges: bytes
tupkku.top/hf/xincha.gif
172.67.178.134200 OK 287 kB IP 172.67.178.134:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 287 kB (287106 bytes)
Hash bf69a23dccde7e62074b6300ea402b95
dd009214a977991f1ce608f209962267a2db1e2c
6e329ba63b5b8b6493317c2c2f140b49bc76cb72d5eb06793d5f32e87ac308fb
GET /hf/xincha.gif HTTP/1.1
Host: tupkku.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 287106
last-modified: Mon, 06 Jun 2022 10:46:28 GMT
etag: "629ddb04-46182"
expires: Sun, 01 Jan 2023 14:32:13 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 375791
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=036JZezOlV%2FB%2BetNElOH7xL27vKXiU9%2BFOFFNOEbQY4F9OKoO0k3IVCxsa4fc7FZcaYGDsr7OMsUBu%2BA5Q2dih4%2FLnVb%2FHhfHWob071fORem9uD4qc6qmUVwWe7x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77589bffcbd2b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pkff79.xyz/template/web/xx3.js
104.223.155.208200 OK 1.7 kB URL HTTP/2 pkff79.xyz/template/web/xx3.js
IP 104.223.155.208:0
Hash 1b5798522cfc47c7e4b7a1437e84bdc8
8db71a4dc74b36e4b7d09a6a8eb3d32fe26bc0fa
f1de0cac0d4317b50f50713173e19dae7d13a3c0dfb20e855b2a2a0b6f26eea9
GET /template/web/xx3.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Mon, 05 Dec 2022 14:08:05 GMT
vary: Accept-Encoding
etag: W/"638dfb45-2b38"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e322c41316bc2b0dd35ff525eab9e795
c76445e368c56cafc1946111f6c400799b876ebd
b7bc50de35064596e8cf322e83af9e68a7c1dcfb0f2fda8664a40064e5887e90
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "B7BC50DE35064596E8CF322E83AF9E68A7C1DCFB0F2FDA8664A40064E5887E90"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21205
Expires: Wed, 07 Dec 2022 04:48:54 GMT
Date: Tue, 06 Dec 2022 22:55:29 GMT
Connection: keep-alive
ttzytp1.com/upload/vod/20221121-1/413e24b794569c43d9cd13fc64e49500.jpg
23.224.136.188200 OK 51 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/413e24b794569c43d9cd13fc64e49500.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x268, components 3\012- data
Hash 68c85812c0532cf9e7991ec37bdb15fa
bde99b6dc75d7cdd051688f3ca8c0b22b221fa58
152bfeccea1d5f4d9bc95ce951d38c52200d26622b2d788b74e54778c94f7f6a
GET /upload/vod/20221121-1/413e24b794569c43d9cd13fc64e49500.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 51072
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:29 GMT
ETag: "637b6155-c780"
Accept-Ranges: bytes
pkff79.xyz/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
104.223.155.208404 Not Found 146 B URL HTTP/2 pkff79.xyz/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
IP 104.223.155.208:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pkff79.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
pkff79.xyz/template/meizhuama/images/video-play.png
104.223.155.208200 OK 1.6 kB URL HTTP/2 pkff79.xyz/template/meizhuama/images/video-play.png
IP 104.223.155.208:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/meizhuama/images/video-play.png HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/png
content-length: 1567
last-modified: Sun, 06 Mar 2022 14:17:50 GMT
etag: "6224c28e-61f"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp1.com/upload/vod/20221121-1/79fccf2aeb065ff255300a682309f8a1.jpg
23.224.136.188200 OK 10 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/79fccf2aeb065ff255300a682309f8a1.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 56882288b88ea3ecaf998d78be6cafaa
a4e1fe14af26093d143023f2633006c56e58412c
c76db29ce9dc5c0c32deda537fa9b551112b40a0f170fed39b1c6991cabf5bc7
GET /upload/vod/20221121-1/79fccf2aeb065ff255300a682309f8a1.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 10442
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:58 GMT
ETag: "637b6172-28ca"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/7fb392c63becbbfc1a32a11207fb6261.jpg
23.224.136.188200 OK 9.4 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/7fb392c63becbbfc1a32a11207fb6261.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 2368b2b31a3651840559a1a4945e0d7a
b689293084c28a762256e00f40eb670daf816174
8820194eb708544df364eef780770b13cf485bc272be736f459a11ed6092df9c
GET /upload/vod/20221121-1/7fb392c63becbbfc1a32a11207fb6261.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 9429
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:58 GMT
ETag: "637b6172-24d5"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/dfa4bca15b85e9f7b5c39d97f625259e.jpg
23.224.136.188200 OK 7.9 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/dfa4bca15b85e9f7b5c39d97f625259e.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 131b0791a56b79a0563efd349a7243dc
9822eb255d06a620cfec29e50e3adfbafa98e5cc
975ca11e84609012b2edf34654e21f62913afcd45a1fd6e61cff902da12eb0a2
GET /upload/vod/20221121-1/dfa4bca15b85e9f7b5c39d97f625259e.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 7944
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:31:03 GMT
ETag: "637b6177-1f08"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/fde07d0665711dcb6929975655ba2607.jpg
23.224.136.188200 OK 54 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/fde07d0665711dcb6929975655ba2607.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x268, components 3\012- data
Hash df982d612ea076f35fa4da60ddb039ab
4493f4f6c983024391ed3809e1817eb80c3de637
4cfaa8b064e9fc5e30308179f18c8c3f96786729e84527962b79da876f02f3bc
GET /upload/vod/20221121-1/fde07d0665711dcb6929975655ba2607.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 54450
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:29 GMT
ETag: "637b6155-d4b2"
Accept-Ranges: bytes
pkff79.xyz/template/web/zyxf.js
104.223.155.208200 OK 57 kB URL HTTP/2 pkff79.xyz/template/web/zyxf.js
IP 104.223.155.208:0
Hash d59b3bcbf25e94b3d3dc1018f6931b11
b32fa1d13098ab83a754d048867334a55bf97b27
0c25fe1a6222c9c40003b15597f4682273fb793d435ff44cc25ed2c6609b6804
GET /template/web/zyxf.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Sun, 04 Dec 2022 10:58:18 GMT
vary: Accept-Encoding
etag: W/"638c7d4a-666"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/1563.gif
104.223.155.208200 OK 61 kB URL HTTP/2 pkff79.xyz/template/web/GG/1563.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 128 x 128\012- data
Hash 6576f07bc04b2f0b45441e6896f12ed2
13829b8dd5c7d47a2c2bffe98c39868b769b41fc
2d935d278f215b8ea453c15752987157534a608f7d6133f7569b26d2d4a4ca37
GET /template/web/GG/1563.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 61117
last-modified: Mon, 20 Jun 2022 05:38:15 GMT
etag: "62b007c7-eebd"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp1.com/upload/vod/20221121-1/c1a2b5b9841da90571e263ef324c8322.jpg
23.224.136.188200 OK 8.5 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/c1a2b5b9841da90571e263ef324c8322.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3ac3dc3cdb2074190767ad5b14320705
20e51c6892bbbbca3a2fca7c302120b717f7b0f0
3ac58d565eb5f9092e385e5abea24c1f49b8e7c35d6291757253d636ec0f092e
GET /upload/vod/20221121-1/c1a2b5b9841da90571e263ef324c8322.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 8488
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:31:08 GMT
ETag: "637b617c-2128"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/50ef159593d69f9df8a5c6d5369474d4.jpg
23.224.136.188200 OK 5.8 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/50ef159593d69f9df8a5c6d5369474d4.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 53x40, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 245b2c58a66e9b44be0ca683a49ca7f6
efd41649eb87f738aba28189b44bbe44bcab4f87
8da00ab0966aec68ab6195ac6df852224494b17a6412e0385f8eb0eba04dbe1a
GET /upload/vod/20221121-1/50ef159593d69f9df8a5c6d5369474d4.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 5821
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:31:08 GMT
ETag: "637b617c-16bd"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/998715df56cf51635670537a7d114aa9.jpg
23.224.136.188200 OK 13 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/998715df56cf51635670537a7d114aa9.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 877e0f0c679e84fe6a9f11e3545d1dab
b772d4224a19878745aebf3eaebefb4516c97ed2
e9b9076bde2ae1cd42246016c437d7b99044ac2e5460168cc4554fcbbb6673fe
GET /upload/vod/20221121-1/998715df56cf51635670537a7d114aa9.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 12635
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:31:08 GMT
ETag: "637b617c-315b"
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d4cc6f2ef805bef2ad7f2c23783d3891
9abedd5c54d26d73229edca399d87301b44da90e
2839281af858b798897a4764ab8486ec439594d1013f475ee2cbab9564d8f578
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 02:25:53 GMT
Expires: Mon, 12 Dec 2022 02:25:52 GMT
Etag: "9abedd5c54d26d73229edca399d87301b44da90e"
Cache-Control: max-age=444022,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c01bd2bb523-OSL
ttzytp1.com/upload/vod/20221121-1/2f43e24b3143eb671558916cb58699ab.jpg
23.224.136.188200 OK 10 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/2f43e24b3143eb671558916cb58699ab.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 46963081a9082e80a0cf20fa946be3b4
8ccc93ab2d1105ee626236abf3750cceb4e8b50e
a2b975b32d6603c48de153fc90716ed811720e01f37fa326b5ba003372d438cc
GET /upload/vod/20221121-1/2f43e24b3143eb671558916cb58699ab.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 10414
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:31:08 GMT
ETag: "637b617c-28ae"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6b01eae18a5eb17fd2d1f9961686fdcf
97130a353c64d619be3680dd85cb80dcc0edd437
b5e27355918c3598ea4cc487b1c4be795dd92e422d57a38ee8a8c2517a169e44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5E27355918C3598EA4CC487B1C4BE795DD92E422D57A38EE8A8C2517A169E44"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6436
Expires: Wed, 07 Dec 2022 00:42:45 GMT
Date: Tue, 06 Dec 2022 22:55:29 GMT
Connection: keep-alive
ttzytp1.com/upload/vod/20221121-1/91fe96a3cc406a61686ac37c519db6ee.jpg
23.224.136.188200 OK 11 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/91fe96a3cc406a61686ac37c519db6ee.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f73062d62ec82d9f464df475b8e4e26a
48379f1a6171603e7eaee0d31c4a9d020b4aa1a4
33bf0d7dce8282527b4b3314618d126c38e2da34edfb0940748abf3c3fd6b506
GET /upload/vod/20221121-1/91fe96a3cc406a61686ac37c519db6ee.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 10669
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:31:08 GMT
ETag: "637b617c-29ad"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/f6de17246ae41fc9538af4aceee74892.jpg
23.224.136.188200 OK 47 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/f6de17246ae41fc9538af4aceee74892.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash b9bd2437e27def5ecbf56c762dcb76ea
004c9496bca8fdfa4f50f38a552230692b45d023
4907a0a7c23aebfb50da48268e89cc62ee697827845b423cd69ce44ce3bf4356
GET /upload/vod/20221121-1/f6de17246ae41fc9538af4aceee74892.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 47355
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:44 GMT
ETag: "637b6164-b8fb"
Accept-Ranges: bytes
pkff79.xyz/template/web/GG/250.gif
104.223.155.208200 OK 14 kB URL HTTP/2 pkff79.xyz/template/web/GG/250.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 80 x 80\012- data
Hash 30958f0ded41d9ecdda597fb0f67efc7
0f5f6baea56fd26f79eb2325ae01478ca6010e9b
6b2b1f6737c5c5146c61dcc3bebcd337979f457765aa4346f625303ae94badf7
GET /template/web/GG/250.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 13764
last-modified: Sun, 22 May 2022 16:40:02 GMT
etag: "628a6762-35c4"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/150X.gif
104.223.155.208200 OK 26 kB URL HTTP/2 pkff79.xyz/template/web/GG/150X.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 150 x 150\012- data
Hash 8416ddf7504de5bd29e4507db1333fb8
34257cd5fdd8aeba693ecc8b5e6851ed008301c7
c61251bc3501c5b1397a2a18ea1becb27a55e9d897096444c6694f60fb5e5bb9
GET /template/web/GG/150X.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 26187
last-modified: Mon, 16 May 2022 07:02:21 GMT
etag: "6281f6fd-664b"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/599.gif
104.223.155.208200 OK 55 kB URL HTTP/2 pkff79.xyz/template/web/GG/599.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash cdcad94f14cf66c6ef925cc7955f9988
114115753e7a2392a860f2e2eebd9249ad4c403a
522241287f2818f90a4d4addbeb265de91414a1a537debae00ae716de17fc8ca
GET /template/web/GG/599.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 55242
last-modified: Tue, 21 Jun 2022 13:36:22 GMT
etag: "62b1c956-d7ca"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/101.gif
104.223.155.208200 OK 43 kB URL HTTP/2 pkff79.xyz/template/web/GG/101.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 300 x 100\012- data
Hash 38c465ae0d76a2122359410f1f95e23b
269756d127e90fd69c292881d48c2d27fb3e98cc
157de88ef9f6a8fb995bb29e146b41ba7cd11eed923d0a5d47e496d1e2af8d00
GET /template/web/GG/101.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 42782
last-modified: Sat, 22 Oct 2022 11:57:34 GMT
etag: "6353daae-a71e"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/ok11.jpg
104.223.155.208200 OK 34 kB URL HTTP/2 pkff79.xyz/template/web/GG/ok11.jpg
IP 104.223.155.208:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Hash d753fbec50b57f3c41b8aa53d54948f4
4776c462134e65d6b4f3dec6c0346c3f44fda795
3404984aaa27cbc69a8b00389b2914caf0fde5d1c700eb943fdb1c15f1b12b93
GET /template/web/GG/ok11.jpg HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/jpeg
content-length: 34030
last-modified: Wed, 31 Aug 2022 05:54:37 GMT
etag: "630ef79d-84ee"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/3-144.gif
104.223.155.208200 OK 830 kB URL HTTP/2 pkff79.xyz/template/web/GG/3-144.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 144 x 144\012- data
Size 830 kB (829961 bytes)
Hash a1efda7796f0fbfdcbe6b08bb18a639c
786daad3715bc1ba25d1b5fd76e9f4df9f78aa46
797f52b2e61d11f38513e84f4f9c7a1d4fdb6885d5a607f62aeeb30704392c15
GET /template/web/GG/3-144.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 829961
last-modified: Sun, 12 Jun 2022 07:52:28 GMT
etag: "62a59b3c-caa09"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp1.com/upload/vod/20221121-1/9d3ba71262c458967f75fd087801c745.jpg
23.224.136.188200 OK 47 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/9d3ba71262c458967f75fd087801c745.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash 528f14998271247f1fe67b02ef7574ed
4c09f76d2aa46dd56a81796ab9afba805c364a13
7dbea173fde6969a58f3336d3b7ad38cda2f722c3d673d5255f88ab66095c4eb
GET /upload/vod/20221121-1/9d3ba71262c458967f75fd087801c745.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 46888
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:45 GMT
ETag: "637b6165-b728"
Accept-Ranges: bytes
pkff79.xyz/template/web/GG/4.gif
104.223.155.208200 OK 427 kB URL HTTP/2 pkff79.xyz/template/web/GG/4.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 427 kB (427313 bytes)
Hash 0abb26a25a3de816b3cbf4bbe10c6b83
9538a2c7d4793144c89b1aee60ce1091856cea2b
95fac97b45588f9ba29b60c468d8be1f28b61660843dfcbe838cdfe7be0e7180
GET /template/web/GG/4.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 427313
last-modified: Wed, 11 May 2022 04:40:35 GMT
etag: "627b3e43-68531"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/d2.gif
104.223.155.208200 OK 74 kB URL HTTP/2 pkff79.xyz/template/web/GG/d2.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 120 x 120\012- data
Hash 5b4e72d18de28282b1d5d1dea7107ded
150f7f68aca2c046083e233aedeede50fb239c62
1798fc289463c275efca9b0de502a7912b5d821edecbdb7c4d1fd7d7ef15aa94
GET /template/web/GG/d2.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 74088
last-modified: Wed, 11 May 2022 04:54:41 GMT
etag: "627b4191-12168"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/77777.gif
104.223.155.208200 OK 115 kB URL HTTP/2 pkff79.xyz/template/web/GG/77777.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 180 x 180\012- data
Size 115 kB (114978 bytes)
Hash 3c9e95a9db732ac71d81286b1c192754
565e4379ef9377f2d17abfdfaa774de9d4a3004c
167e29a1512c3e710bdbb8121d3926ec8205b0b51ad9874a23c300a937d5c810
GET /template/web/GG/77777.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 114978
last-modified: Sat, 12 Nov 2022 12:36:59 GMT
etag: "636f936b-1c122"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/js8.gif
104.223.155.208200 OK 131 kB URL HTTP/2 pkff79.xyz/template/web/GG/js8.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 131 kB (130902 bytes)
Hash 6179a193590bb24eaa36ebf361eeefc9
c38607726a6448e688a70e4495b877e501959939
f9e86721182cba557a2c72a9ce9a278bdb7bfee989f1bf2f79626cf6a9d24580
GET /template/web/GG/js8.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 130902
last-modified: Sat, 26 Nov 2022 03:07:12 GMT
etag: "638182e0-1ff56"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/t1.gif
104.223.155.208200 OK 106 kB URL HTTP/2 pkff79.xyz/template/web/GG/t1.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 106 kB (106327 bytes)
Hash 2336a96779cb2e08b66270ceb110a6a9
b6e76df32721200d2b1e4ec51ec4d95fae6b28cf
cc652b77b9e8d3fc27d200dec560e0723f563a14bf5e761ad1286c30813ed8e9
GET /template/web/GG/t1.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 106327
last-modified: Thu, 12 May 2022 13:31:57 GMT
etag: "627d0c4d-19f57"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/2347.gif
104.223.155.208200 OK 73 kB URL HTTP/2 pkff79.xyz/template/web/GG/2347.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 6ce732040d4d9750ef120f2a4221f362
f3114f09ed27718c62d54d6fbe08847421429a00
bf4e102a698f9d805b4d4209c8ca62ca20565344a8949d0efeedc6a720026c5b
GET /template/web/GG/2347.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 73223
last-modified: Sun, 22 May 2022 16:36:36 GMT
etag: "628a6694-11e07"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/200200.gif
104.223.155.208200 OK 75 kB URL HTTP/2 pkff79.xyz/template/web/GG/200200.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 200 x 200\012- data
Hash 03c13356e00c2033df2c88cb919251eb
f3a334a0366ddda6a87034f7d6c889c4d159dc8d
0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe
GET /template/web/GG/200200.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 75259
last-modified: Fri, 22 Apr 2022 06:46:29 GMT
etag: "62624f45-125fb"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/2.gif
104.223.155.208200 OK 90 kB URL HTTP/2 pkff79.xyz/template/web/GG/2.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 750 x 376\012- data
Hash 35e51480209a5443d388b3728be96bd9
79052ce459c623c6346aba47dcd39fc3a2f0786d
91c013dceb04d882ae73fadab5f5e42fa1508ac952b23d6fc3e009843a521e7a
GET /template/web/GG/2.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 90163
last-modified: Thu, 12 May 2022 05:35:20 GMT
etag: "627c9c98-16033"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/250-7.gif
104.223.155.208200 OK 618 kB URL HTTP/2 pkff79.xyz/template/web/GG/250-7.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 618 kB (618431 bytes)
Hash 8d17fae2a46ee77c255f069c708f80e5
cacfcb380e7f8247929866737b3d0bcbdb209cb1
a886230e44621d23fe4ef9fc5d56a6e54446f905d8b4529e0abe93dfae002535
GET /template/web/GG/250-7.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 618431
last-modified: Wed, 11 May 2022 04:44:27 GMT
etag: "627b3f2b-96fbf"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ttzytp1.com/upload/vod/20221121-1/365ef10f550cc01f1a0385ce7dbbb646.jpg
23.224.136.188200 OK 48 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/365ef10f550cc01f1a0385ce7dbbb646.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash bf11c701b02963af06038c006a4448f4
90945bf7b156016453d5985939fa553fc9da464d
6e7d3e3caa529a3dcaa6477d5cc470b8711f342865db4402727a3e0936b3893c
GET /upload/vod/20221121-1/365ef10f550cc01f1a0385ce7dbbb646.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 48350
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:45 GMT
ETag: "637b6165-bcde"
Accept-Ranges: bytes
pkff79.xyz/template/meizhuama/js/jquery.min.js
104.223.155.208200 OK 34 kB URL HTTP/2 pkff79.xyz/template/meizhuama/js/jquery.min.js
IP 104.223.155.208:0
Hash 0d89719bb1e24bd1da2039e0b06a5d5f
10bbcac846a6e9c8e7b88f66ae620ee3282c03f9
5599c2214dd7d7a8bea8c03fb60390d763bd6b052c257e19e80dab26bf745609
GET /template/meizhuama/js/jquery.min.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 07:24:38 GMT
vary: Accept-Encoding
etag: W/"638856b6-1538f"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 853dbec9937f0a572cef3297cbf66520
8a27ab226f84e46795bc10d95714e5b075878f04
4e5ade82281820e652ac0b8af16258f5061386f7b9926ce41dbc376f82072a8d
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 23:09:48 GMT
Expires: Mon, 12 Dec 2022 23:09:47 GMT
Etag: "8a27ab226f84e46795bc10d95714e5b075878f04"
Cache-Control: max-age=518657,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c015f940b55-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e4bf8a885a5ec991fcf6e014fc1d6740
8efab3def95c4cb55654bf3b849e8917ece1d187
bc58d200048ea0deb518cf7151af6608f70c2b84233bf55018d40b063faf79bb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 17:58:49 GMT
Expires: Sun, 11 Dec 2022 17:58:48 GMT
Etag: "8efab3def95c4cb55654bf3b849e8917ece1d187"
Cache-Control: max-age=413598,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c01d9b41c16-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3960daffa64cbbe8f5b79572fd5afa5d
cc7971d8c6fd8e0d32020ed78ad353e49506ff53
cdce9c3d81ecf904467bd08e2e19ea6b7e4e82582a497a3a5e1797c2ca69fb52
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 00:59:23 GMT
Expires: Mon, 12 Dec 2022 00:59:22 GMT
Etag: "cc7971d8c6fd8e0d32020ed78ad353e49506ff53"
Cache-Control: max-age=438832,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c01dd55fac4-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3960daffa64cbbe8f5b79572fd5afa5d
cc7971d8c6fd8e0d32020ed78ad353e49506ff53
cdce9c3d81ecf904467bd08e2e19ea6b7e4e82582a497a3a5e1797c2ca69fb52
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 00:59:23 GMT
Expires: Mon, 12 Dec 2022 00:59:22 GMT
Etag: "cc7971d8c6fd8e0d32020ed78ad353e49506ff53"
Cache-Control: max-age=438832,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c01e9bb1c16-OSL
ttzytp1.com/upload/vod/20221121-1/5d63780826c7256bd4a1c34a25a8acd0.jpg
23.224.136.188200 OK 56 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/5d63780826c7256bd4a1c34a25a8acd0.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash eeac9567864954e49c9d5e05fdb358e6
49ffad369e6a08ccec884bf1f3280fb667e02300
72d669670ab2e0b9aac7ef17d8ef04725047a2796fa91b74d04a439efdad2cd8
GET /upload/vod/20221121-1/5d63780826c7256bd4a1c34a25a8acd0.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 55481
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:49 GMT
ETag: "637b6169-d8b9"
Accept-Ranges: bytes
ttzytp1.com/upload/vod/20221121-1/2e97a87478a7abc6adf034c58933075e.jpg
23.224.136.188200 OK 52 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/2e97a87478a7abc6adf034c58933075e.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash 1bb0f99a2e969059895c60903b83b7cf
e12cc537f064d212484b5c6d3c034b27c710aca7
3856d4d4875ed204caeb594aa5dac894fe6c835a5e22fdd8063db573ed3b4e56
GET /upload/vod/20221121-1/2e97a87478a7abc6adf034c58933075e.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 52406
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:39 GMT
ETag: "637b615f-ccb6"
Accept-Ranges: bytes
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash e01f39e37f5ba49729fbe9abcc54c9d2
1ee4ab8580b8537b3250f65250902ba00bd44e46
7a7b229f58dbec5e264f32e3be1352880cb273be0dc7a37d28f4eaf8c4035a61
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 06 Dec 2022 14:07:17 GMT
Expires: Wed, 07 Dec 2022 14:07:17 GMT
ETag: "1ee4ab8580b8537b3250f65250902ba00bd44e46"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ttzytp1.com/upload/vod/20221121-1/6546d2d9e97f00889bae4378b5068731.jpg
23.224.136.188200 OK 45 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/6546d2d9e97f00889bae4378b5068731.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash cff0cdc31051dfe744be65b263f42297
48fff4dadb3abda26a5c05b6f69ce6223ac2d1ee
774063a7ed7a0c786c2a648b700ae963617e54188d849b22c09e7a710621ba7c
GET /upload/vod/20221121-1/6546d2d9e97f00889bae4378b5068731.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 44574
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:49 GMT
ETag: "637b6169-ae1e"
Accept-Ranges: bytes
hm.baidu.com/hm.js?d01a7156ce2d125c8328c50aca92de5d
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?d01a7156ce2d125c8328c50aca92de5d
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash d1145b8b8b3622211acc25af569a6b50
24924f7c9856a23d979264e6d0bf43540501358d
a6920a49cfbb68cef76a045835d43dbf4fd0bfef0b555b6b3e1ba7f038b50535
GET /hm.js?d01a7156ce2d125c8328c50aca92de5d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Tue, 06 Dec 2022 22:55:29 GMT
Etag: b05696e597227095aae273540e67495c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=66B9734FFEEEEB1D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
2599qq.com/80bf5abe2ca6413a96d893dd97116ea3.gif
45.61.212.225200 OK 20 kB URL HTTP/1.1 2599qq.com/80bf5abe2ca6413a96d893dd97116ea3.gif
IP 45.61.212.225:0
File type GIF image data, version 89a, 180 x 180\012- data
Hash 8cfb25e3db03d9ecd14a077cc189fe25
0aaa8cae625d7ddfe85192ca0ba1964c9432f50d
56dfaabecf830964bc2225b38737611d7841b962d29728817a256a93d667a9a6
GET /80bf5abe2ca6413a96d893dd97116ea3.gif HTTP/1.1
Host: 2599qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "637cd890-4c60"
Date: Tue, 06 Dec 2022 05:04:16 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 22 Nov 2022 14:11:28 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-25
Content-Length: 19552
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash dae750546bb982e1fe2a8a43def15b5e
2a338dc30d4fcc62c667756d2a95fb1f6b60d46c
11e9b7c279a9cb92e8cf51161be2dcfb5cab92350b7d0dbe05c97aaa325b0543
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 14:12:35 GMT
Expires: Mon, 12 Dec 2022 14:12:34 GMT
Etag: "2a338dc30d4fcc62c667756d2a95fb1f6b60d46c"
Cache-Control: max-age=486424,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c03d92c0b55-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash dae750546bb982e1fe2a8a43def15b5e
2a338dc30d4fcc62c667756d2a95fb1f6b60d46c
11e9b7c279a9cb92e8cf51161be2dcfb5cab92350b7d0dbe05c97aaa325b0543
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 14:12:35 GMT
Expires: Mon, 12 Dec 2022 14:12:34 GMT
Etag: "2a338dc30d4fcc62c667756d2a95fb1f6b60d46c"
Cache-Control: max-age=486424,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c03eff4b4f3-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash dae750546bb982e1fe2a8a43def15b5e
2a338dc30d4fcc62c667756d2a95fb1f6b60d46c
11e9b7c279a9cb92e8cf51161be2dcfb5cab92350b7d0dbe05c97aaa325b0543
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 14:12:35 GMT
Expires: Mon, 12 Dec 2022 14:12:34 GMT
Etag: "2a338dc30d4fcc62c667756d2a95fb1f6b60d46c"
Cache-Control: max-age=486424,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c03ead31c02-OSL
ttzytp1.com/upload/vod/20221121-1/9f79506769809beda8b7b0abfee4c461.jpg
23.224.136.188200 OK 52 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/9f79506769809beda8b7b0abfee4c461.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash 20745fd4c3004c124751ce90773d2768
2a28400ced1f56ed843c9f555b636931ef91ef7d
27fbf9be4b63891291f4d7bb68d41b89c56b84a54c8a00bd1c744d883aa5cdec
GET /upload/vod/20221121-1/9f79506769809beda8b7b0abfee4c461.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 51498
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:45 GMT
ETag: "637b6165-c92a"
Accept-Ranges: bytes
ocsp.pki.goog/s/gts1p5/KzhrJKWHgbg
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/KzhrJKWHgbg
IP 142.250.74.131:0
Hash eee300a10ca092130953bbb2052ed73d
6cc1bfd14924bb54f8443104e6606b4cdcc12014
046928a343c97b78e07ab16c18ef68bff48e8a99c3263ea385fe54a0dc545e0f
POST /s/gts1p5/KzhrJKWHgbg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 22:55:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8e0e4b61c3b52531ff09a0f2f56cacbf
52c434d3b04a1cfdcc3122e3297e9d853b2d6f4b
c57a0f988ebb5417e87f56924ee3fe32496480e7fb43ebdedf52bc4f34db08da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57A0F988EBB5417E87F56924EE3FE32496480E7FB43EBDEDF52BC4F34DB08DA"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17077
Expires: Wed, 07 Dec 2022 03:40:06 GMT
Date: Tue, 06 Dec 2022 22:55:29 GMT
Connection: keep-alive
pkff79.xyz/template/meizhuama/fonts/iconfont.woff
104.223.155.208200 OK 525 B URL HTTP/2 pkff79.xyz/template/meizhuama/fonts/iconfont.woff
IP 104.223.155.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/meizhuama/fonts/iconfont.woff HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://pkff79.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: font/woff
content-length: 525
last-modified: Sun, 06 Mar 2022 14:12:36 GMT
etag: "6224c154-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/d3.gif
104.223.155.208200 OK 156 kB URL HTTP/2 pkff79.xyz/template/web/GG/d3.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 156 kB (156311 bytes)
Hash c1cd6fbcc60e4242fb31eb894d7d9450
1b0a2ba85f38fa452a391250067e916ac7b61345
aca31490b0e0478395648fb5f6ce318b56a4a443c7a64e069c71cee6c0f0bb44
GET /template/web/GG/d3.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 156311
last-modified: Wed, 18 May 2022 05:46:29 GMT
etag: "62848835-26297"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/4523.gif
104.223.155.208200 OK 167 kB URL HTTP/2 pkff79.xyz/template/web/GG/4523.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 167 kB (166626 bytes)
Hash a644e0164396e4fab83828dd224e899e
5d7970fc6ec361828598b3281945670c1ac09202
6a150be88eddb354b86cc1c37d056ee539740012b23692641c7e5d6bfe1029be
GET /template/web/GG/4523.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 166626
last-modified: Sat, 26 Nov 2022 06:16:35 GMT
etag: "6381af43-28ae2"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/8499.gif
104.223.155.208200 OK 135 kB URL HTTP/2 pkff79.xyz/template/web/GG/8499.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 135 kB (134747 bytes)
Hash 48c8ab8ae6b52201e71decda0b783d26
5817a61ac305b0b96542b5aced965e79cf67d010
011e88ae2efb7e2c7a98115adcc443c2b965206d34a45c98f7012d476de9aeb8
GET /template/web/GG/8499.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 134747
last-modified: Sun, 04 Dec 2022 11:41:45 GMT
etag: "638c8779-20e5b"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/qw12.gif
104.223.155.208200 OK 167 kB URL HTTP/2 pkff79.xyz/template/web/GG/qw12.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 167 kB (167104 bytes)
Hash 9387415ad469299bf6e3bb5c1bbc77e2
cc52974b6ed2239afbbd4088c675fceb0d75cd22
912ce0aceb7de66266542ec85454be033b0a285c975dd7fc8f0d43eecb8716ce
GET /template/web/GG/qw12.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 167104
last-modified: Wed, 08 Jun 2022 07:31:21 GMT
etag: "62a05049-28cc0"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/qw11.gif
104.223.155.208200 OK 167 kB URL HTTP/2 pkff79.xyz/template/web/GG/qw11.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 167 kB (167104 bytes)
Hash 9387415ad469299bf6e3bb5c1bbc77e2
cc52974b6ed2239afbbd4088c675fceb0d75cd22
912ce0aceb7de66266542ec85454be033b0a285c975dd7fc8f0d43eecb8716ce
GET /template/web/GG/qw11.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 167104
last-modified: Wed, 08 Jun 2022 07:31:09 GMT
etag: "62a0503d-28cc0"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/x.jpg
104.223.155.208200 OK 9.2 kB URL HTTP/2 pkff79.xyz/template/web/GG/x.jpg
IP 104.223.155.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /template/web/GG/x.jpg HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 01 Dec 2022 07:29:24 GMT
etag: "638857d4-23ce"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/x6.gif
104.223.155.208200 OK 1.0 MB URL HTTP/2 pkff79.xyz/template/web/GG/x6.gif
IP 104.223.155.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 1.0 MB (1009518 bytes)
Hash 1bc7c48ea317dbe9480cee084232011b
3c8b5e2e6c0f9056a4acf5ab45c7ce147c6d70c9
9940272022aacd8b8a60afc0f45476ecaee8918484cd21e37c262115127cf166
GET /template/web/GG/x6.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 1009518
last-modified: Wed, 09 Mar 2022 10:15:27 GMT
etag: "62287e3f-f676e"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a57cce53df3b1532bdfdbaf582301a9d
aec9e9c46ac94f14c919dcaf3b6173d1bcf7e3f9
b9ed10673dc5edf17b97015a426823dc1f5a24885239a3b1bb8649c7f5ae03b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9ED10673DC5EDF17B97015A426823DC1F5A24885239A3B1BB8649C7F5AE03B1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14901
Expires: Wed, 07 Dec 2022 03:03:51 GMT
Date: Tue, 06 Dec 2022 22:55:30 GMT
Connection: keep-alive
pkff79.xyz/template/web/GG/dp1.gif
104.223.155.208200 OK 141 kB URL HTTP/2 pkff79.xyz/template/web/GG/dp1.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 141 kB (141174 bytes)
Hash 2846430b1663c942a9d2a92c559667cd
2b7d07a004fa13af572b8d5d6317594c1eee9eec
b1357936607e4478fa840a29b58e6714f0063f4a90e28571bd8c8be4e175d74e
GET /template/web/GG/dp1.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 141174
last-modified: Sat, 25 Jun 2022 05:41:21 GMT
etag: "62b6a001-22776"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 123b3386757e7444328f1602ca3dab3e
30c29143c37b335beaa97d0eb82a90d0915b4b13
53693c2368f66f37f921ace419774cb21fe9b1e5296482c1e91d0cd75fe9fea6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 10 Dec 2022 20:08:42 GMT
ETag: "30c29143c37b335beaa97d0eb82a90d0915b4b13"
Last-Modified: Tue, 06 Dec 2022 20:08:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3368
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77589c04c941b518-OSL
ttzytp1.com/upload/vod/20221121-1/74b3a27329123ad7f014428d88c00b57.jpg
23.224.136.188200 OK 51 kB URL HTTP/1.1 ttzytp1.com/upload/vod/20221121-1/74b3a27329123ad7f014428d88c00b57.jpg
IP 23.224.136.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 400x269, components 3\012- data
Hash fd391fd32933f3c284507f25c32e19d1
a5089b7a6690113dc8f553c5d4b35db488efb4fa
97db6b5cf03866615ac39c9c1d0ea0ad3f0f978aadee07bdb6a3b3edd9c5ffa9
GET /upload/vod/20221121-1/74b3a27329123ad7f014428d88c00b57.jpg HTTP/1.1
Host: ttzytp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 06 Dec 2022 22:55:29 GMT
Content-Type: image/jpeg
Content-Length: 51251
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 11:30:50 GMT
ETag: "637b616a-c833"
Accept-Ranges: bytes
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash dae750546bb982e1fe2a8a43def15b5e
2a338dc30d4fcc62c667756d2a95fb1f6b60d46c
11e9b7c279a9cb92e8cf51161be2dcfb5cab92350b7d0dbe05c97aaa325b0543
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 14:12:35 GMT
Expires: Mon, 12 Dec 2022 14:12:34 GMT
Etag: "2a338dc30d4fcc62c667756d2a95fb1f6b60d46c"
Cache-Control: max-age=486424,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c041c9d0b45-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash dae750546bb982e1fe2a8a43def15b5e
2a338dc30d4fcc62c667756d2a95fb1f6b60d46c
11e9b7c279a9cb92e8cf51161be2dcfb5cab92350b7d0dbe05c97aaa325b0543
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 14:12:35 GMT
Expires: Mon, 12 Dec 2022 14:12:34 GMT
Etag: "2a338dc30d4fcc62c667756d2a95fb1f6b60d46c"
Cache-Control: max-age=486423,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c041f1e0af6-OSL
kvkmmm.top/082641934c5fa55c29cb6cef6f47ade6.gif
172.67.211.77200 OK 522 kB URL HTTP/2 kvkmmm.top/082641934c5fa55c29cb6cef6f47ade6.gif
IP 172.67.211.77:0
File type GIF image data, version 89a, 1280 x 60\012- data
Size 522 kB (521778 bytes)
Hash 20dd068dfddc9d4e0ebccd15712f1107
fe0d9ce2d1bd6f33883f8632c94dd62713da3e13
000376a3a5c8aa656fc044b43504a36483175ef37b0fa81dd7c98e9561481ae6
Analyzer Verdict Alert quad9 Sinkholed
GET /082641934c5fa55c29cb6cef6f47ade6.gif HTTP/1.1
Host: kvkmmm.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pkff79.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: image/gif
content-length: 521778
last-modified: Mon, 02 May 2022 19:20:23 GMT
etag: "62702ef7-7f632"
expires: Thu, 05 Jan 2023 15:52:08 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 25402
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4UHi9ego2ePQlMTit64o7g1CASQq%2BBNW4KxXpH6P4peav8kLAZYO%2Fd8CW1QNbi6%2BYZRA3OcdNEP6z%2BZPF1XGNj9Pt5T%2BNrqDLyDaMl3FeT8Y%2BgUlWKcMVZQYnuqV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77589c055b750afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/dp2.gif
104.223.155.208200 OK 767 kB URL HTTP/2 pkff79.xyz/template/web/GG/dp2.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 766938
last-modified: Sat, 25 Jun 2022 05:40:57 GMT
etag: "62b69fe9-bb3da"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
66663aaa.com/d366a9eea354409086b665663a9c34b6.gif
103.170.15.90200 OK 13 kB URL HTTP/1.1 66663aaa.com/d366a9eea354409086b665663a9c34b6.gif
IP 103.170.15.90:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 180 x 180\012- data
Hash 852407ed092fa686e2cfb1414826b66c
5238df63f754ba5d2f4abda96e2b5793b50ffab1
dc5162092ed9c58899e9c79a86cc1b64a2f3714252a3d6bed0fb4562a234451f
Analyzer Verdict Alert quad9 Sinkholed
GET /d366a9eea354409086b665663a9c34b6.gif HTTP/1.1
Host: 66663aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "638250df-33ac"
Date: Mon, 28 Nov 2022 18:10:02 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 26 Nov 2022 17:46:07 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-20
Content-Length: 13228
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6bdb27af3677102a6779deb4a48e1ed8
6ed4bac178230d123155adb2043c6befd120b9af
f13425e6dd8acb962b47851ba96d09871f690dfe7e77c2ecd058cc88e2106d70
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 17:12:55 GMT
Expires: Sun, 11 Dec 2022 17:12:54 GMT
Etag: "6ed4bac178230d123155adb2043c6befd120b9af"
Cache-Control: max-age=410843,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c057c3e1c16-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 6bdb27af3677102a6779deb4a48e1ed8
6ed4bac178230d123155adb2043c6befd120b9af
f13425e6dd8acb962b47851ba96d09871f690dfe7e77c2ecd058cc88e2106d70
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 17:12:55 GMT
Expires: Sun, 11 Dec 2022 17:12:54 GMT
Etag: "6ed4bac178230d123155adb2043c6befd120b9af"
Cache-Control: max-age=410843,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c049fd7b523-OSL
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 0a2d079aba514cb1f2e4fa7350095835
42a0f36117103b4b51269a081d653ddec662ffac
a8ace68f7887c0d201c14260cd2530d141ce277ca8497546bde48e3bd6c25350
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3985
Cache-Control: max-age=86759
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 22:55:30 GMT
Etag: "638e68b8-2d7"
Expires: Wed, 07 Dec 2022 23:01:29 GMT
Last-Modified: Mon, 05 Dec 2022 21:55:04 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 727
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 32fc76d2a6e9f2a4f2253abbfd1560a9
89fcbde3fdd44632efcb62f8d732bef9fe211c36
daa731c72b3891d14db1ff65f0bb66d7b182e5473af2213eda529df9b4a09f23
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "DAA731C72B3891D14DB1FF65F0BB66D7B182E5473AF2213EDA529DF9B4A09F23"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8958
Expires: Wed, 07 Dec 2022 01:24:48 GMT
Date: Tue, 06 Dec 2022 22:55:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 10f2346d1574683ab6aef77d1eb919d0
2bc15639c0789900b174d4be74a2f8141400b0b4
2728fcf4680ddba2228a7119848ac23adcf592fe7ab07d43d322ca4f8f797b11
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2728FCF4680DDBA2228A7119848AC23ADCF592FE7AB07D43D322CA4F8F797B11"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1738
Expires: Tue, 06 Dec 2022 23:24:28 GMT
Date: Tue, 06 Dec 2022 22:55:30 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/KzhrJKWHgbg
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/KzhrJKWHgbg
IP 142.250.74.131:0
Hash eee300a10ca092130953bbb2052ed73d
6cc1bfd14924bb54f8443104e6606b4cdcc12014
046928a343c97b78e07ab16c18ef68bff48e8a99c3263ea385fe54a0dc545e0f
POST /s/gts1p5/KzhrJKWHgbg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 22:55:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1010706474&si=d01a7156ce2d125c8328c50aca92de5d&su=http%3A%2F%2Fwww.83668.net%2F&v=1.3.0&lv=1&sn=11250&r=0&ww=1268&u=https%3A%2F%2Fpkff79.xyz%2F&tt=%E8%8D%89%E8%8E%93%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1010706474&si=d01a7156ce2d125c8328c50aca92de5d&su=http%3A%2F%2Fwww.83668.net%2F&v=1.3.0&lv=1&sn=11250&r=0&ww=1268&u=https%3A%2F%2Fpkff79.xyz%2F&tt=%E8%8D%89%E8%8E%93%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1010706474&si=d01a7156ce2d125c8328c50aca92de5d&su=http%3A%2F%2Fwww.83668.net%2F&v=1.3.0&lv=1&sn=11250&r=0&ww=1268&u=https%3A%2F%2Fpkff79.xyz%2F&tt=%E8%8D%89%E8%8E%93%E8%B5%84%E6%BA%90%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 06 Dec 2022 22:55:30 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=31B1CBFB3C9BD374; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
pkff79.xyz/template/web/GG/dp4.gif
104.223.155.208200 OK 747 kB URL HTTP/2 pkff79.xyz/template/web/GG/dp4.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 746571
last-modified: Tue, 10 May 2022 07:07:15 GMT
etag: "627a0f23-b644b"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
98.126.214.50301 Moved Permanently 162 B URL HTTP/2 kzeaa.com/92f0c144d76dd785f7c04f84ae149b33.gif
IP 98.126.214.50:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kzeaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: text/html
content-length: 162
location: https://kvkeee.top/92f0c144d76dd785f7c04f84ae149b33.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/25bbc4f3f3c14938b4a124f66ab71ee9
47.246.44.229200 OK 571 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/25bbc4f3f3c14938b4a124f66ab71ee9
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 70\012- data
Size 571 kB (570812 bytes)
Hash 291d932e82cee0f4cb4df244f2544bd6
8c5d232bdcc5b889f19df07617e985a8e4fbdc99
f3bfcf12830f6bdd2e6fc24d0dd55cbfa4acbd128adb55e9ecdbc64cd400e158
GET /obj/tos-cn-i-dy/25bbc4f3f3c14938b4a124f66ab71ee9 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 570812
date: Mon, 05 Dec 2022 07:38:12 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 05 Dec 2022 07:38:12 GMT
nw-session-id: 202212051538120101351600234FBA2EE8crvv603dy
nw-session-trace: 2022-12-05T15:38:12.079495256+08:00 54
x-bdcdn-cache-status: TCP_MISS
x-length: 570812
x-powered-by: ImageX
x-response-date: Mon, 05 Dec 2022 15:38:12 GMT
x-tt-logid: 202212051538120101351600234FBA2EE8
via: n132-090-149, cache19.l2de2[323,323,206-0,M], cache11.l2de2[325,0], cache11.l2de2[325,0], cache8.se1[0,0,200-0,H], cache1.se1[1,0]
x-request-ip: fdbd:dc03:8:577::23
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 015753073c6eb795804c878ce4635158b04b44aefe71cfff406be3e3cf3810354826042faa06cd5309cb1898c743a27c1b7c3ffb03f7003f547ea8c09e37e04f0f10afe4bc58f397916ef2ddede27ac8cad7f0b52072b3d014e859cf69921ac4e2
x-response-lb: image
ali-swift-global-savetime: 1670225892
age: 141438
x-cache: HIT TCP_MEM_HIT dirn:1:308634398 mlen:0
x-swift-savetime: Mon, 05 Dec 2022 07:38:12 GMT
x-swift-cachetime: 31536000
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516703673302605418e
X-Firefox-Spdy: h2
kvhooo.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
172.67.139.162200 OK 919 kB URL HTTP/2 kvhooo.top/6fb5deabda1e984b6bd49b2baa8dfa10.gif
IP 172.67.139.162:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 919 kB (918679 bytes)
Hash 956582dd3aa22ca9b19bdd1d5e091e24
c2d80e05f59981f6ed58a8231f502bd990894d6b
88e686882e64a0e199c79bd83b7102885b67242b5d0b49a1f37674c0bb3ddd8e
GET /6fb5deabda1e984b6bd49b2baa8dfa10.gif HTTP/1.1
Host: kvhooo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pkff79.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: image/gif
content-length: 918679
last-modified: Thu, 01 Dec 2022 15:44:20 GMT
etag: "6388cbd4-e0497"
expires: Wed, 04 Jan 2023 16:57:21 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 107889
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y7%2B1WtRy2HX49%2ByizJb1u4XSx3DjFmTmxs7s8svs20IAcVvyjFs4pqSRQmhnBG7hRF50b1yAjdYefILxc0bGgGFLkG6DKxf6X2eiVtsP8TwsWSn5GdtDPZPPNUyY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77589c067aa3b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 51d5efa9ea42dbb79a96e22763074ad8
889591919bf7f5411ee703f24539aff2dd75737b
0ab841294b908bf66ea42a812d0f86550e75a809b9629926d14d2bbe5d0e04e4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 16:45:14 GMT
Expires: Mon, 12 Dec 2022 16:45:13 GMT
Etag: "889591919bf7f5411ee703f24539aff2dd75737b"
Cache-Control: max-age=495582,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c065cc31c16-OSL
p3.douyinpic.com/obj/tos-cn-i-dy/1422b17333c1484e8fb738a8d886a91a
47.246.44.229200 OK 440 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/1422b17333c1484e8fb738a8d886a91a
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 440 kB (439790 bytes)
Hash 07ad6948d174b603a75e166a521bbb04
d08af2d0fc9693ce636e66cbb89277875d7954f4
40853d1d4eb09490225dfe79a563bcc574195734b42387a2a4043f854bc3ca2b
GET /obj/tos-cn-i-dy/1422b17333c1484e8fb738a8d886a91a HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 439790
date: Fri, 25 Nov 2022 15:37:49 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Fri, 25 Nov 2022 15:25:32 GMT
nw-session-id: 202211252325320101381722024C50A2F09qdns03dy
nw-session-trace: 2022-11-25T23:25:32.687911418+08:00 41
x-bdcdn-cache-status: TCP_HIT
x-length: 439790
x-powered-by: ImageX
x-response-date: Fri, 25 Nov 2022 23:25:32 GMT
x-tt-logid: 202211252325320101381722024C50A2F0
via: n204-099-020, cache14.l2de2[0,0,206-0,H], cache17.l2de2[1,0], cache17.l2de2[1,0], cache5.se1[0,0,200-0,H], cache1.se1[2,0]
x-request-ip: fdbd:dc01:26:265::25
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01e06076938e0d6d24dd94223a89976c75c574de524b847f65d8648eded86c2e969e500aa82a0a15a409b807e47950aed297094631195dd364b35d7ad3d6c8b2050f6c28a0044808d6fbb162aff434e9629bc984eb2bc935476af24cba9d70b5d6
x-response-lb: image
ali-swift-global-savetime: 1669390669
age: 976661
x-cache: HIT TCP_MEM_HIT dirn:1:185043737
x-swift-savetime: Fri, 25 Nov 2022 16:45:44 GMT
x-swift-cachetime: 31531925
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516703673302615419e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/1594d44b66f44b5786a2f0f9e6cb6498
47.246.44.229200 OK 530 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/1594d44b66f44b5786a2f0f9e6cb6498
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 1200 x 60\012- data
Size 530 kB (530369 bytes)
Hash 40200e8020168e6078b996c76c10229f
d36d2d65417d87733e8323ef5229dec7d9bb9d4d
4f047d792deccfb5200da5f744384ffab69f05cd0ec29dd653d34adde864d662
GET /obj/tos-cn-i-dy/1594d44b66f44b5786a2f0f9e6cb6498 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 530369
date: Mon, 05 Dec 2022 14:10:29 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 05 Dec 2022 12:31:42 GMT
nw-session-id: 2022120520314201015013814519D80398v8j9r02dy
nw-session-trace: 2022-12-05T20:31:42.82947968+08:00 46
x-bdcdn-cache-status: TCP_HIT
x-length: 530369
x-powered-by: ImageX
x-response-date: Mon, 05 Dec 2022 20:31:42 GMT
x-tt-logid: 2022120520314201015013814519D80398
via: n150-056-076, cache9.l2de2[0,0,206-0,H], cache14.l2de2[2,0], cache14.l2de2[3,0], cache4.se1[0,0,200-0,H], cache1.se1[1,0]
x-request-ip: fdbd:dc02:22:591::130
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 0142024916ff5549603e3559a534de93537c07793497ad620a5d85fcae5661ac516c8a053f0b2102e88249de909499b42aeb325f8ef5a628c6719a49058f78bfe187c4c226fcc353b6ae621edee46633aab59a0c6cb6db7fe99fc8a8329f340cd5
x-response-lb: image
ali-swift-global-savetime: 1670249429
age: 117901
x-cache: HIT TCP_MEM_HIT dirn:4:17372561 mlen:0
x-swift-savetime: Mon, 05 Dec 2022 14:16:16 GMT
x-swift-cachetime: 31535653
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516703673303275454e
X-Firefox-Spdy: h2
kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kvegg.com/241ffcf0a5007067dad148a90c317e01.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /241ffcf0a5007067dad148a90c317e01.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: text/html
content-length: 162
location: https://kvtooo.top/241ffcf0a5007067dad148a90c317e01.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 32fc76d2a6e9f2a4f2253abbfd1560a9
89fcbde3fdd44632efcb62f8d732bef9fe211c36
daa731c72b3891d14db1ff65f0bb66d7b182e5473af2213eda529df9b4a09f23
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "DAA731C72B3891D14DB1FF65F0BB66D7B182E5473AF2213EDA529DF9B4A09F23"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8958
Expires: Wed, 07 Dec 2022 01:24:48 GMT
Date: Tue, 06 Dec 2022 22:55:30 GMT
Connection: keep-alive
img.9316x.com/images/638dc4be8f3963d46af13145.gif
185.239.226.87302 Found 471 B URL HTTP/2 img.9316x.com/images/638dc4be8f3963d46af13145.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
Hash 18599a7792df1077684b81da9d0783e7
a9801b3e4b4aa5d7cdec854367fd78f0d909ab51
b8ee2c4c1470ce53df8baee2557c88c02fa5bf99c08d3c3079ea9cc2773d2c48
GET /images/638dc4be8f3963d46af13145.gif HTTP/1.1
Host: img.9316x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/25bbc4f3f3c14938b4a124f66ab71ee9
X-Firefox-Spdy: h2
267827wnc.com/a1c9e7b6c7d945d7850553404503c757.gif
45.61.212.220200 OK 21 kB URL HTTP/1.1 267827wnc.com/a1c9e7b6c7d945d7850553404503c757.gif
IP 45.61.212.220:0
File type GIF image data, version 89a, 150 x 150\012- data
Hash 7e8df542bc7bd96a503e1e8f18db36d5
9a0f2c76a2757a95a4fbad1b46ecda849eede9ea
411f1f71b77def02061bdbe09b6a20ada75c2ffaf52b091c4da20ed9daa1bf61
Analyzer Verdict Alert quad9 Sinkholed
GET /a1c9e7b6c7d945d7850553404503c757.gif HTTP/1.1
Host: 267827wnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6374cdd3-5330"
Date: Wed, 30 Nov 2022 04:38:43 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 16 Nov 2022 11:47:31 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-20
Content-Length: 21296
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4d7409c16be014a4f8929050b5da3a26
8d2edbcdb4eea3abb81fea1b10fed67d3fbf67da
9dcb8642329c8f6046790a26ebeb1d684b6e6c5b65465aa87f66d03c0ae27224
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "9DCB8642329C8F6046790A26EBEB1D684B6E6C5B65465AA87F66D03C0AE27224"
Last-Modified: Sun, 04 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15352
Expires: Wed, 07 Dec 2022 03:11:22 GMT
Date: Tue, 06 Dec 2022 22:55:30 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f8b76b242fd2e8879cdfc7fbd1415faf
1871f8392aa2d3c3e8578d55db36191afc9327ec
361971753f91e7cad9e1bddef1c21a30753abbfb3b7f1cec82c8031700224ec1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 23:53:08 GMT
Expires: Sat, 10 Dec 2022 23:53:07 GMT
Etag: "1871f8392aa2d3c3e8578d55db36191afc9327ec"
Cache-Control: max-age=348456,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77589c07add61c16-OSL
img.1180555.com/images/638df7f0caa2bdc0a4c47e1f.gif
185.239.226.87302 Found 344 B URL HTTP/2 img.1180555.com/images/638df7f0caa2bdc0a4c47e1f.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
Hash 18c56f15b047c0179c6b122f65fe8287
53f2dee8e6feba33432797ac7862a9ec9b34dc7b
b48f7195c6a2d2f98cca84376d6384dd75c0cbac4030e34cd0c3beb60ba6ca52
GET /images/638df7f0caa2bdc0a4c47e1f.gif HTTP/1.1
Host: img.1180555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/1594d44b66f44b5786a2f0f9e6cb6498
X-Firefox-Spdy: h2
kvtooo.top/241ffcf0a5007067dad148a90c317e01.gif
188.114.97.1200 OK 153 kB URL HTTP/2 kvtooo.top/241ffcf0a5007067dad148a90c317e01.gif
IP 188.114.97.1:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 153 kB (152944 bytes)
Hash e123b1db93fe85cdb6fac876a0c8e7e0
a53eefc6b115c80c1a86df90893831449c1b1468
ec066be9d1a0688679676cb0d8c3f307dc358085473c4b3cf1b263db64fa4e2a
GET /241ffcf0a5007067dad148a90c317e01.gif HTTP/1.1
Host: kvtooo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pkff79.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: image/gif
content-length: 152944
last-modified: Tue, 06 Dec 2022 08:43:58 GMT
etag: "638f00ce-25570"
expires: Thu, 05 Jan 2023 16:54:51 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 21639
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AYbp9Sh11d1Sv992PcZQdC8gZg5sFMnldXkKATi4xUfbyEPdj1B794p%2BzOGATty95TJGpcfL1Mwc%2BYHifeZXFqApPzUQXsVwgsxblnmWIcLpN0hMnF642Ne8wRc3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77589c082d02b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4d7409c16be014a4f8929050b5da3a26
8d2edbcdb4eea3abb81fea1b10fed67d3fbf67da
9dcb8642329c8f6046790a26ebeb1d684b6e6c5b65465aa87f66d03c0ae27224
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "9DCB8642329C8F6046790A26EBEB1D684B6E6C5B65465AA87F66D03C0AE27224"
Last-Modified: Sun, 04 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15352
Expires: Wed, 07 Dec 2022 03:11:22 GMT
Date: Tue, 06 Dec 2022 22:55:30 GMT
Connection: keep-alive
kvkeee.top/92f0c144d76dd785f7c04f84ae149b33.gif
188.114.96.1200 OK 354 kB URL HTTP/2 kvkeee.top/92f0c144d76dd785f7c04f84ae149b33.gif
IP 188.114.96.1:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 354 kB (354278 bytes)
Hash c6442fd82dd00372e745f394887172f2
dc8ce1d9b050eb7b70c1e47e815169c8ffdc77b9
813a5a49ef0682cdb74754e84f7b5d0159392b1fef69ec06e2875388e97d8843
Analyzer Verdict Alert quad9 Sinkholed
GET /92f0c144d76dd785f7c04f84ae149b33.gif HTTP/1.1
Host: kvkeee.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pkff79.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: image/gif
content-length: 354278
last-modified: Fri, 02 Dec 2022 09:18:24 GMT
etag: "6389c2e0-567e6"
expires: Sun, 01 Jan 2023 09:26:26 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 394144
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aro05lHL0WxeXA92a9ZPweJPNTcoYq7wQCRDkEGtLQqjkKQ3H4XTuYiSDp%2F594FHRa1QygD9ZsylNWFbywdLssJnLreAAk1iJGnRRlh8Rhr5IPPR0cVQocd6HhdS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77589c085bd1b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18c56f15b047c0179c6b122f65fe8287
53f2dee8e6feba33432797ac7862a9ec9b34dc7b
b48f7195c6a2d2f98cca84376d6384dd75c0cbac4030e34cd0c3beb60ba6ca52
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B48F7195C6A2D2F98CCA84376D6384DD75C0CBAC4030E34CD0C3BEB60BA6CA52"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12870
Expires: Wed, 07 Dec 2022 02:30:00 GMT
Date: Tue, 06 Dec 2022 22:55:30 GMT
Connection: keep-alive
8499483.com/8499/960x60.gif
172.247.50.227200 OK 331 kB URL HTTP/2 8499483.com/8499/960x60.gif
IP 172.247.50.227:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /8499/960x60.gif HTTP/1.1
Host: 8499483.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 331043
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "50d23-5ed03aef4304d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/55.gif
104.223.155.208200 OK 2.1 MB URL HTTP/2 pkff79.xyz/template/web/GG/55.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 250 x 368\012- data
Size 2.1 MB (2071506 bytes)
Hash 832978230181be84d01dd943c2170d3d
178ec5da2212453ebb974aa5d5b8f384fb62ebd9
a9bb5c8550ad70b2031697541f8805b4eaa505856b095631e308fd1c3c16ab39
GET /template/web/GG/55.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 2071506
last-modified: Wed, 11 May 2022 04:58:39 GMT
etag: "627b427f-1f9bd2"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/cc.jpg
104.223.155.208200 OK 458 kB URL HTTP/2 pkff79.xyz/template/web/GG/cc.jpg
IP 104.223.155.208:0
File type GIF image data, version 89a, 512 x 512\012- data
Size 458 kB (458138 bytes)
Hash 28d18a1e2254e0444c490ac0406f4775
6e07ae02d4a9cc0ef6253b8eff7a6da9303292c2
e1e83f340b221fa32755fa74eae03c1e8ed7d82913ff339ca8d61b0c794356d3
GET /template/web/GG/cc.jpg HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/jpeg
content-length: 458138
last-modified: Sat, 12 Nov 2022 04:22:00 GMT
etag: "636f1f68-6fd9a"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/zxbf.js
104.223.155.208200 OK 852 kB URL HTTP/2 pkff79.xyz/template/web/zxbf.js
IP 104.223.155.208:0
Size 852 kB (852384 bytes)
Hash ffaa656e56793a95b8e3bdbf4fe6d3eb
7bda76d7c8a187d85ebea0aba7dbd0b3dbfea117
18499048f84db0cf84085f0a379e5d644cfa20c79cd47e6933a822c8f81be8dc
GET /template/web/zxbf.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 03:25:20 GMT
vary: Accept-Encoding
etag: W/"638eb620-901"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
taiwtp1.com/img/96060.gif
220.128.218.220200 OK 47 kB URL HTTP/2 taiwtp1.com/img/96060.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 60\012- data
Hash 2b9c30b086d03d90a45a9174aef7b408
e87dbe76669e2f402826dd598bb047d793b1e20c
f1eb3044b464fb4b4b8f3e081295bc19cc4cddc9361adb34ad7fb73b93b25de6
GET /img/96060.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:52:59 GMT
content-type: image/gif
content-length: 46855
last-modified: Wed, 09 Mar 2022 07:10:56 GMT
etag: "62285300-b707"
expires: Thu, 05 Jan 2023 22:52:59 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/meizhuama/fonts/iconfont.ttf
104.223.155.208200 OK 1.2 kB URL HTTP/2 pkff79.xyz/template/meizhuama/fonts/iconfont.ttf
IP 104.223.155.208:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/meizhuama/fonts/iconfont.ttf HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: application/octet-stream
content-length: 1163
last-modified: Sun, 06 Mar 2022 14:17:48 GMT
etag: "6224c28c-48b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pkff79.xyz/template/web/xx2.js
104.223.155.208200 OK 759 kB URL HTTP/2 pkff79.xyz/template/web/xx2.js
IP 104.223.155.208:0
Size 759 kB (759079 bytes)
Hash 5e9cbf0be09177d01fded7c2d73c1ed7
251fb1c2803edbc9d3d50ba68f45a7a382c1ce9a
90b154bf4914adc356d12c46b772a25a17650e6f94594c2548e617f3370212dc
GET /template/web/xx2.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 02:21:23 GMT
vary: Accept-Encoding
etag: W/"638ea723-462"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
pkff79.xyz/template/web/GG/3.gif
104.223.155.208200 OK 678 kB URL HTTP/2 pkff79.xyz/template/web/GG/3.gif
IP 104.223.155.208:0
File type GIF image data, version 89a, 270 x 160\012- data
Size 678 kB (677521 bytes)
Hash 94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84
GET /template/web/GG/3.gif HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:29 GMT
content-type: image/gif
content-length: 677521
last-modified: Wed, 09 Mar 2022 10:04:29 GMT
etag: "62287bad-a5691"
expires: Thu, 05 Jan 2023 22:55:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/ad4dbd523eaf446095252b9601cd7b4d
47.246.44.229200 OK 170 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/ad4dbd523eaf446095252b9601cd7b4d
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 170 kB (170254 bytes)
Hash 7341043b7b2e076b0d173c2c5879ba46
d15954c05a2a600592ab6d2a8a6ec8058dfaa910
b1a7c619848a153fde460351bc0e28e7175c8241a9461b7b82c8270fbe42af8a
GET /obj/tos-cn-i-dy/ad4dbd523eaf446095252b9601cd7b4d HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 170254
date: Mon, 05 Dec 2022 14:32:51 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 05 Dec 2022 11:45:00 GMT
nw-session-id: 2022120519450001015010722745CD50C49q5wb01dy
nw-session-trace: 2022-12-05T19:45:00.049401634+08:00 28
x-bdcdn-cache-status: TCP_HIT
x-length: 170254
x-powered-by: ImageX
x-response-date: Mon, 05 Dec 2022 19:45:00 GMT
x-tt-logid: 2022120519450001015010722745CD50C4
via: n128-134-083, cache2.l2de2[0,0,206-0,H], cache26.l2de2[1,0], cache26.l2de2[1,0], cache3.se1[0,0,200-0,H], cache1.se1[1,0]
x-request-ip: fdbd:dc03:15:316::209
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=1
x-tt-trace-host: 01212efc3b96e5dfe156f1b56617c8cfccd69fe620f76961c57d3c472d4c2902bb4b87dd2610349c962d63cc07384ad4009bd5b981c18e107fea5fabd776934b00c746509ff25e59866eb8a07c1738f8affdca9b17852cb4c3c3958ac0551db006
x-response-lb: image
ali-swift-global-savetime: 1670250771
age: 116559
x-cache: HIT TCP_MEM_HIT dirn:11:410577415
x-swift-savetime: Mon, 05 Dec 2022 16:27:15 GMT
x-swift-cachetime: 31529136
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9516703673309225815e
X-Firefox-Spdy: h2
66663aaa.com/417342061bea42c9832ddeb2aefc17b2.gif
103.170.15.90200 OK 735 kB URL HTTP/1.1 66663aaa.com/417342061bea42c9832ddeb2aefc17b2.gif
IP 103.170.15.90:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 100\012- data
Size 735 kB (734938 bytes)
Hash 644931c74d5ccd9a33f3b33c4b7b3c29
7bc3342a7cd6944b99c3a4e66b10c429948c32d4
66995a5aed54ccd066e24cc948d6c38db9bec31b20dc1278bd022a9824330b59
Analyzer Verdict Alert quad9 Sinkholed
GET /417342061bea42c9832ddeb2aefc17b2.gif HTTP/1.1
Host: 66663aaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6382f18f-b36da"
Date: Mon, 28 Nov 2022 18:10:00 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 27 Nov 2022 05:11:43 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-20
Content-Length: 734938
267827wnc.com/dd4b08cf021949d1942c476252396e87.gif
45.61.212.220200 OK 452 kB URL HTTP/1.1 267827wnc.com/dd4b08cf021949d1942c476252396e87.gif
IP 45.61.212.220:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 452 kB (452273 bytes)
Hash df16374d7e4ccf1c7ff3814012167dad
bf7f89f135684b9182f4dc5bd4dd296060427eef
670f99c726a10b701a44db00b29b694b79a4461185e623e3e8b5f766d287a54f
Analyzer Verdict Alert quad9 Sinkholed
GET /dd4b08cf021949d1942c476252396e87.gif HTTP/1.1
Host: 267827wnc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6374cdfa-6e6b1"
Date: Wed, 30 Nov 2022 04:38:35 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 16 Nov 2022 11:48:10 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us3-cdnb-20
Content-Length: 452273
pkff79.xyz/template/web/dipiao.js
104.223.155.208200 OK 178 kB URL HTTP/2 pkff79.xyz/template/web/dipiao.js
IP 104.223.155.208:0
Size 178 kB (178452 bytes)
Hash 52815f3cf5ffdf1112fed8881c1eca75
93d726d9065b01e1882f64c081472dd83f4fd759
fa24cf77aa61c171395d054a0dbb11ecfece94a84c00448a13e69f5b59d1ca95
GET /template/web/dipiao.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Wed, 29 Jun 2022 10:28:30 GMT
vary: Accept-Encoding
etag: W/"62bc294e-81a"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894256451036.gif
154.82.110.77200 OK 259 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894256451036.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 259 kB (258804 bytes)
Hash 70649fd49138ca6897fe0c9365470117
f0cbcec39497ab084adb72c03a6225c2144c6866
48f51d425b1ad9363336bc2edf9009cbfd17d0c24f817fe60fec9e6ed258e5b0
GET /static/uploads/image/x22/20221004/1664894256451036.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:39 GMT
ETag: "1669734461"
Expires: Thu, 29 Dec 2022 15:07:39 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:41 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894322248517.gif
154.82.110.77200 OK 258 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894322248517.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 258 kB (257993 bytes)
Hash 038ba2e11d90524678f7762f4628513f
a41054637ff263d13570f7eec83a3286957edc80
51d5f69d306345589b0c376bcff99c50c48bda07e3d61a5d3c1a96181acefa71
GET /static/uploads/image/x22/20221004/1664894322248517.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:40 GMT
ETag: "1669734461"
Expires: Thu, 29 Dec 2022 15:07:40 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:41 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 543d3335de178aa3b472485b0d14a8fe
4ec1fc531ef71a5059412060cd1aabaf5043400f
3a88f11f26775a2edd5e246a93df0fc3e9b35edc1f08e201a10be3d39d04c8bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A88F11F26775A2EDD5E246A93DF0FC3E9B35EDC1F08E201A10BE3D39D04C8BF"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13264
Expires: Wed, 07 Dec 2022 02:36:35 GMT
Date: Tue, 06 Dec 2022 22:55:31 GMT
Connection: keep-alive
n0600.com/1daa2a9f095147a5aaf25edd0233636b.gif
20.222.165.74200 OK 59 kB URL HTTP/1.1 n0600.com/1daa2a9f095147a5aaf25edd0233636b.gif
IP 20.222.165.74:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 960 x 60\012- data
Hash 695bc4df64c75ea597fe27ad7cc0a4dd
79d2119600da904806cc1583f7659b3c66f823bd
b4a93fa00323d4bd7c28a6362e38c088db937b418debda95f97c6d6f0af753d6
GET /1daa2a9f095147a5aaf25edd0233636b.gif HTTP/1.1
Host: n0600.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 29 Nov 2022 10:42:54 GMT
ETag: W/"6385e22e-352e2"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
sysupload.csiteadmin.com/static/uploads/image/x51/20221111/1668166428315380.gif
154.82.110.77200 OK 212 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x51/20221111/1668166428315380.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 212 kB (211695 bytes)
Hash 0b39ec7c3e074e11a5629819f3aa4700
df59dbbb9d99b72d01f518d9c8484cd188440f0f
f89a04cd56e853388cad8b34084879771c6f49885033bb0a5c51402e60d468c8
GET /static/uploads/image/x51/20221111/1668166428315380.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:41 GMT
ETag: "1669734461"
Expires: Thu, 29 Dec 2022 15:07:41 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:41 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
tpkj2222.com/img/k80m/oJ8rVeomP.gif
66.203.152.230200 OK 213 kB URL HTTP/1.1 tpkj2222.com/img/k80m/oJ8rVeomP.gif
IP 66.203.152.230:0
ASN #59371 Dimension Network & Communication Limited
File type GIF image data, version 89a, 960 x 80\012- data
Size 213 kB (212917 bytes)
Hash d1931dd316b9ac2d1bd98a9c89bb2c77
5660ca5156b14a4b0df59089738774977eab5357
48886aed2c4e673776c75db728e4fddc8647a559dee0d8f3549cc6d7a5062053
GET /img/k80m/oJ8rVeomP.gif HTTP/1.1
Host: tpkj2222.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"423944-1669660103000"
Last-Modified: Mon, 28 Nov 2022 18:28:23 GMT
Expires: Wed, 21 Dec 2022 22:55:30 GMT
Cache-Control: max-age=1296000
Content-Encoding: gzip
Nginx-Cache: HIT, HIT
kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
137.175.13.78301 Moved Permanently 162 B URL HTTP/2 kzeoo.com/0e243abb7057b68d7362544cbbe032ba.gif
IP 137.175.13.78:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /0e243abb7057b68d7362544cbbe032ba.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 06 Dec 2022 22:55:37 GMT
content-type: text/html
content-length: 162
location: https://kvteee.top/0e243abb7057b68d7362544cbbe032ba.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894189710457.gif
154.82.110.77200 OK 261 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894189710457.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 261 kB (261015 bytes)
Hash 68ca80e6c19384277e66f07f304b6ed7
680dea475bf73401cd981b5d64f81a23c5536fed
cdbf4e9a6e9fd6b14415c2039f70aef83ec4067c4d82510246096432cd8b93a8
GET /static/uploads/image/x26/20221004/1664894189710457.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:39 GMT
ETag: "1669734470"
Expires: Thu, 29 Dec 2022 15:07:39 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:50 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894286620122.gif
154.82.110.77200 OK 132 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894286620122.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 132 kB (131724 bytes)
Hash 6815a174b1da262bb85e17910991d3ed
cbf03ab57a46f9301dac7cd0f7cf99c777b686c7
d0089533769022907251b9dd2fbd0c51fbd14b1326dda3cc2d990c1931fabc01
GET /static/uploads/image/x26/20221004/1664894286620122.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:40 GMT
ETag: "1669734460"
Expires: Thu, 29 Dec 2022 15:07:40 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:40 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894599409102.gif
154.82.110.77200 OK 252 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894599409102.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 252 kB (251962 bytes)
Hash feb5419ef22c0a10470f6cfe2b0f1517
412e6b8e6f4244071851549b9d5ba5fdf9a5b631
d889e702650ec0543cef9a6d281f576366872f31463f3b707498aac5cef2ae07
GET /static/uploads/image/x22/20221004/1664894599409102.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:41 GMT
ETag: "1669734461"
Expires: Thu, 29 Dec 2022 15:07:41 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:41 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894243920576.gif
154.82.110.77200 OK 133 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x26/20221004/1664894243920576.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 133 kB (133073 bytes)
Hash f44f18314d520e89498d1f67557c2697
bbdd1041f6be7316f0a565d525761a902959b6e6
303b74f93a5d4a4d3232e66f67e7e0f3f7a034495afdb766585e1aef792bded8
GET /static/uploads/image/x26/20221004/1664894243920576.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:40 GMT
ETag: "1669734460"
Expires: Thu, 29 Dec 2022 15:07:40 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:40 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e5ec0ec59c91099a30802a06122bcffb
9b37c67820744ac4a73e12dc51e6b4fc3c6d0174
9eb862c5ff6a96e1c12bc5390903bc02ebe251b2cc282bf882b8949edbcad997
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 22:55:31 GMT
Etag: "638ebfe1-117"
Server: ECS (amb/6B84)
Content-Length: 279
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894518194257.gif
154.82.110.77200 OK 279 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894518194257.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 279 kB (278909 bytes)
Hash cbbb3d8ff70b59b11fd1182f7e5d77e9
06af5df2b2aeaa07b578979ee331b52e1f298323
f62a633b62c1dea5bca396206d4956bf14db30141e6e524bf3a00e3588c1c893
GET /static/uploads/image/x22/20221004/1664894518194257.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:38 GMT
ETag: "1669734459"
Expires: Thu, 29 Dec 2022 15:07:38 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:39 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894380503898.gif
154.82.110.77200 OK 245 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894380503898.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 245 kB (245365 bytes)
Hash 15b01b59267acae7726f30675e79d8bf
7449390411869cdc7b1b4ae6bee7e4fb7e893675
3c17fb36844b4fc9ead50ffc421dba8367ff08b4e307195f72323a2d9edec46d
GET /static/uploads/image/x22/20221004/1664894380503898.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:41 GMT
ETag: "1669734461"
Expires: Thu, 29 Dec 2022 15:07:41 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:41 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e5ec0ec59c91099a30802a06122bcffb
9b37c67820744ac4a73e12dc51e6b4fc3c6d0174
9eb862c5ff6a96e1c12bc5390903bc02ebe251b2cc282bf882b8949edbcad997
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 22:55:32 GMT
Last-Modified: Tue, 06 Dec 2022 22:55:31 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 279
kvteee.top/0e243abb7057b68d7362544cbbe032ba.gif
104.21.233.124200 OK 270 kB URL HTTP/2 kvteee.top/0e243abb7057b68d7362544cbbe032ba.gif
IP 104.21.233.124:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 270 kB (270145 bytes)
Hash 2e0432b5ead77702ac433d71c5caeeb4
91f7f7320673eb770bd2b82c82d898fa6ed5de97
63ccf288b83f2c2d1995165c5f15cf3980c947cff737800d8119cdad406d3c7a
GET /0e243abb7057b68d7362544cbbe032ba.gif HTTP/1.1
Host: kvteee.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pkff79.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:31 GMT
content-type: image/gif
content-length: 270145
last-modified: Wed, 26 Oct 2022 13:37:18 GMT
etag: "6359380e-41f41"
expires: Thu, 05 Jan 2023 08:43:22 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 51129
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yCFJKaXOK8c9RK07TC1Zu7TLHVKRB2fGe9Dg%2FMQYFztuvF2V4inQH2UPs9TmxJ6KQjBGLdLtNOyIKhHTEGX8ma1Wbu9KKh%2BEoymdmvea4nYeZPxMqjb5ohdn3P1d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77589c107fa6718d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894417817771.gif
154.82.110.77200 OK 212 kB URL HTTP/1.1 sysupload.csiteadmin.com/static/uploads/image/x22/20221004/1664894417817771.gif
IP 154.82.110.77:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 212 kB (212163 bytes)
Hash 14c76e87c5da9f7226cf412026035c9d
a6cbebd6fd70a1975c7900dbacea379c7722bf94
b1cd2e21b685362b7688cc2444535ff135de009483da19cb9b5de4a0624eb9a4
GET /static/uploads/image/x22/20221004/1664894417817771.gif HTTP/1.1
Host: sysupload.csiteadmin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Encoding: gzip
Content-Type: image/gif
Date: Tue, 29 Nov 2022 15:07:40 GMT
ETag: "1669734461"
Expires: Thu, 29 Dec 2022 15:07:40 GMT
Last-Modified: Tue, 29 Nov 2022 15:07:41 GMT
Server: nginx
Vary: Accept-Encoding
X-Cache: HIT, server, disk
Transfer-Encoding: chunked
kjimg10.360buyimg.com/ott/jfs/t1/189066/1/30475/1197751/6380d2d3E76f8142d/68bdb767b760041f.gif
182.140.218.3200 OK 1.2 MB URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/189066/1/30475/1197751/6380d2d3E76f8142d/68bdb767b760041f.gif
IP 182.140.218.3:0
ASN #38283 CHINANET SiChuan Telecom Internet Data Center
File type GIF image data, version 89a, 960 x 80\012- data
Size 1.2 MB (1197751 bytes)
Hash 6938343bc2a842c4d2c9c96f4dde0298
00e2b1b902b196b3c005facb934c10e2a2ca1961
5ccc1726994dfc6d2667e13bf946785f79bb01401fedb59db1cbdf6942dbaee6
GET /ott/jfs/t1/189066/1/30475/1197751/6380d2d3E76f8142d/68bdb767b760041f.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: image/gif
content-length: 1197751
cache-control: max-age=315360000
expires: Mon, 22 Nov 2032 14:50:06 GMT
last-modified: Fri, 25 Nov 2022 14:36:03 GMT
age: 979524
via: http/1.1 ORI-CLOUD-HUN-MIX-117 (jcs [cRs f ]), http/1.1 SCchengdu-CT-11-MIX-26 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1669387806409-0-0-0-35-35;200;200-1669395701684-0-0-0-1-1;200-1670367330287-0-0-0-1-1
X-Firefox-Spdy: h2
tpkj2222.com/img/k80m/oJ8gSN3XG.gif
66.203.152.230200 OK 411 kB URL HTTP/1.1 tpkj2222.com/img/k80m/oJ8gSN3XG.gif
IP 66.203.152.230:0
ASN #59371 Dimension Network & Communication Limited
File type GIF image data, version 89a, 960 x 80\012- data
Size 411 kB (411242 bytes)
Hash 972dff9020b5183d3bbc1bef7a735ff3
3105e896ca256fd9960e60529d48e098bd7e6caf
c67fabbd022197da96eaf18631d6e23b1ea3331706df28e643ee7fb24ffcc374
GET /img/k80m/oJ8gSN3XG.gif HTTP/1.1
Host: tpkj2222.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 22:55:30 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"573283-1669660290000"
Last-Modified: Mon, 28 Nov 2022 18:31:30 GMT
Expires: Wed, 21 Dec 2022 22:55:30 GMT
Cache-Control: max-age=1296000
Content-Encoding: gzip
Nginx-Cache: HIT, HIT
n0499.com/02b5e6c74e9c43bfac30cdaa7c091027.gif
20.222.166.98200 OK 0 B URL HTTP/2 n0499.com/02b5e6c74e9c43bfac30cdaa7c091027.gif
IP 20.222.166.98:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /02b5e6c74e9c43bfac30cdaa7c091027.gif HTTP/1.1
Host: n0499.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 22:55:30 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:42:38 GMT
etag: W/"6385e21e-4002e"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pkff79.xyz/template/meizhuama/css/seyuav-ui.css
104.223.155.208200 OK 0 B URL HTTP/2 pkff79.xyz/template/meizhuama/css/seyuav-ui.css
IP 104.223.155.208:0
GET /template/meizhuama/css/seyuav-ui.css HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: text/css
last-modified: Thu, 01 Dec 2022 07:24:07 GMT
vary: Accept-Encoding
etag: W/"63885697-8a77"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
img.1163555.com/images/638df851caa2bdc0a4c47e23.gif
185.239.226.87302 Found 0 B URL HTTP/2 img.1163555.com/images/638df851caa2bdc0a4c47e23.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
GET /images/638df851caa2bdc0a4c47e23.gif HTTP/1.1
Host: img.1163555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/ad4dbd523eaf446095252b9601cd7b4d
X-Firefox-Spdy: h2
pkff79.xyz/template/web/app.js
104.223.155.208200 OK 0 B URL HTTP/2 pkff79.xyz/template/web/app.js
IP 104.223.155.208:0
GET /template/web/app.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 03:26:17 GMT
vary: Accept-Encoding
etag: W/"638eb659-272f"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
pkff79.xyz/template/web/xx1.js
104.223.155.208200 OK 0 B URL HTTP/2 pkff79.xyz/template/web/xx1.js
IP 104.223.155.208:0
GET /template/web/xx1.js HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pkff79.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:28 GMT
content-type: application/javascript
last-modified: Mon, 05 Dec 2022 14:08:33 GMT
vary: Accept-Encoding
etag: W/"638dfb61-2b44"
expires: Wed, 07 Dec 2022 10:55:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
pkff79.xyz/
104.223.155.208200 OK 0 B IP 104.223.155.208:0
GET / HTTP/1.1
Host: pkff79.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.83668.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 22:55:27 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2