www.wdwpasses.com/
154.221.123.142 563 B IP 154.221.123.142:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (721), with CRLF line terminators
Hash 70f6692f013fae2dd69a1211785c5cd6
a5e2db6fb1466b79f2b34577d908ba79a09fd982
43a07a8ca3e3873eef6129a8ba99d5f120b487b654b69137e1d1e44fc61cc3ed
GET / HTTP/1.1
Host: www.wdwpasses.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Jun 2023 22:42:34 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
154.221.123.142 563 B URL User Request GET www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
IP 154.221.123.142:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (721), with CRLF line terminators
Hash 70f6692f013fae2dd69a1211785c5cd6
a5e2db6fb1466b79f2b34577d908ba79a09fd982
43a07a8ca3e3873eef6129a8ba99d5f120b487b654b69137e1d1e44fc61cc3ed
GET /~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/ HTTP/1.1
Host: www.wdwpasses.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Jun 2023 22:42:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.wdwpasses.com/common.js
154.221.123.142200 OK 683 B URL GET HTTP/1.1 www.wdwpasses.com/common.js
IP 154.221.123.142:80
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Requested by http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash c5be9642e347469990ad2521aae3d27a
60680c70faa662326eb551cd98cc18305975ca40
e4bc8e9130b957039aaa7350699a90fbf33e84d32b2cc79e8f14bd8765000873
GET /common.js HTTP/1.1
Host: www.wdwpasses.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Jun 2023 22:42:35 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.wdwpasses.com/tj.js
154.221.123.142200 OK 520 B IP 154.221.123.142:80
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Requested by http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
File type ASCII text, with very long lines (520), with no line terminators
Hash 02e665a23e3f18c5385454a3099b4849
d018df880f2e3675abdea3e7a033b8bd1f9b58ee
3adef08ef8b447328252ac2245674c69a99ea0c71dd8c60678e8d94bed6bafd0
GET /tj.js HTTP/1.1
Host: www.wdwpasses.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Jun 2023 22:42:35 GMT
Content-Type: application/x-javascript
Content-Length: 520
Connection: keep-alive
www.wdwpasses.com/favicon.ico
154.221.123.142200 OK 1.2 kB URL GET HTTP/1.1 www.wdwpasses.com/favicon.ico
IP 154.221.123.142:80
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Requested by http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.wdwpasses.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Jun 2023 22:42:36 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Wed, 07 Jun 2023 22:42:36 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
sdk.51.la/js-sdk-pro.min.js
42.236.73.206200 OK 13 kB URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 42.236.73.206:80
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
File type Unicode text, UTF-8 text, with very long lines (34110)
Hash 24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.wdwpasses.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 02 Jun 2023 22:42:21 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 15 May 2023 03:19:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6461a4bd-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
collect-v6.51.la/v6/collect?dt=4
47.106.172.21200 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 47.106.172.21:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Certificate IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 467
Origin: http://www.wdwpasses.com
DNT: 1
Connection: keep-alive
Referer: http://www.wdwpasses.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Fri, 02 Jun 2023 22:42:37 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://www.wdwpasses.com
Access-Control-Allow-Credentials: true
sdk.51.la/event/js-sdk-event.min.js?u=K1yUNIAYH5ctnmjl
42.236.73.206200 OK 22 kB URL GET HTTP/1.1 sdk.51.la/event/js-sdk-event.min.js?u=K1yUNIAYH5ctnmjl
IP 42.236.73.206:80
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
File type Unicode text, UTF-8 text, with very long lines (65308)
Hash 5b2d813e4bfc861988a078082199b9de
aa0be99256f9bb6f12c1e47838e6f822714a380c
927638eed00ada53b754ddd8c200a30ed317d3606f5219d553b2c84eaf992041
GET /event/js-sdk-event.min.js?u=K1yUNIAYH5ctnmjl HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.wdwpasses.com
DNT: 1
Connection: keep-alive
Referer: http://www.wdwpasses.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 02 Jun 2023 22:42:22 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 15 May 2023 03:19:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6461a4bb-127d3"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
sta2.imgclh.com/imgs/2023/04/06/7d02da6f273478b1.gif
104.21.66.6200 OK 122 kB URL GET HTTP/2 sta2.imgclh.com/imgs/2023/04/06/7d02da6f273478b1.gif
IP 104.21.66.6:443
Certificate IssuerGoogle Trust Services LLC
Subject*.imgclh.com
Fingerprint11:E5:EB:41:47:74:97:1E:2D:DB:2B:D3:AD:43:59:B2:70:9F:BD:33
ValidityThu, 06 Apr 2023 12:52:40 GMT - Wed, 05 Jul 2023 12:52:39 GMT
File type GIF image data, version 89a, 960 x 100\012- data
Size 122 kB (121853 bytes)
Hash 7bf6035d86b7ca04e8bec086083f05f6
814842e50a427dcb57f421381497d3a0f112df40
5b35b0f3ac11f743528e692118680d1817045d81baec6ce9742f86b097d599c2
GET /imgs/2023/04/06/7d02da6f273478b1.gif HTTP/1.1
Host: sta2.imgclh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 121853
last-modified: Thu, 06 Apr 2023 09:02:15 GMT
etag: "642e8a97-1dbfd"
expires: Sun, 02 Jul 2023 10:38:40 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 43436
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=37TlErIlrQ7T2SjeR246GsRsxvL4p9Ne%2BJc5hibhQ4E5QfQ5I2%2BYgu%2FDzZjyENgBg%2BAL8bQlJ3aLUiRgXAnljxPl4LO17%2BdJXpvyBi7fwowH15bLJKXa%2B4%2BEYxyg1bXU2C8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d1335e6ddd80b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
sta2.imgclh.com/imgs/2023/04/03/a9b26e1b6f31fd90.gif
104.21.66.6200 OK 357 kB URL GET HTTP/2 sta2.imgclh.com/imgs/2023/04/03/a9b26e1b6f31fd90.gif
IP 104.21.66.6:443
Certificate IssuerGoogle Trust Services LLC
Subject*.imgclh.com
Fingerprint11:E5:EB:41:47:74:97:1E:2D:DB:2B:D3:AD:43:59:B2:70:9F:BD:33
ValidityThu, 06 Apr 2023 12:52:40 GMT - Wed, 05 Jul 2023 12:52:39 GMT
File type GIF image data, version 89a, 650 x 350\012- data
Size 357 kB (357073 bytes)
Hash 4fe951110e55fa339226ad9c22b5b580
b59ee5f42071050a19b36a60cfd83c593fab885e
ac92e0fad684b2b090976e51bb07256c958ad45bf36fc5dce09a562eae5b4c30
GET /imgs/2023/04/03/a9b26e1b6f31fd90.gif HTTP/1.1
Host: sta2.imgclh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 357073
last-modified: Mon, 03 Apr 2023 09:16:50 GMT
etag: "642a9982-572d1"
expires: Sat, 01 Jul 2023 06:15:41 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 145616
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PxyMdWxJO0IXuW3S9LU2fr%2BK%2FfFF3ukePMBMz0xa0N1dCjMzSSZm3V7BHzvA7rxDyP3Rh2GlNo7jMaji1MpaSrGM2zHA713MgjDwSDX3gf8ayyWV59NXIormnXEE3yZSyXY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d1335e6ddd90b41-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tukudhgg.vip/lm/spk320.gif
172.67.208.179200 OK 137 kB URL GET HTTP/2 tukudhgg.vip/lm/spk320.gif
IP 172.67.208.179:443
Certificate IssuerGoogle Trust Services LLC
Subjecttukudhgg.vip
FingerprintD3:D6:7D:29:00:CC:5C:F1:53:4F:2F:EB:73:F3:27:C4:67:B7:64:76
ValidityTue, 18 Apr 2023 02:25:23 GMT - Mon, 17 Jul 2023 02:25:22 GMT
File type GIF image data, version 89a, 720 x 428\012- data
Size 137 kB (136930 bytes)
Hash 8ee25a766c10b2ade919dad65e1c9b37
a1d17bdfcda79dbf1ff41eed3e899db67c6c16c6
b9720e5b3ae93583e8e915eddc4c9c00d915c81be0ca0f20069443f18f37c0bb
GET /lm/spk320.gif HTTP/1.1
Host: tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 136930
last-modified: Thu, 15 Sep 2022 09:25:05 GMT
etag: "6322ef71-216e2"
expires: Sun, 02 Jul 2023 09:18:20 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 48248
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3yGTi0bP9m8LKgUIPqZ1fcRevcpdh7QjeV2GWPkfHoj%2BMnna%2BHrZuXa5N0ZTimjp8zj76oHyLdhSMomtkN1bDdx5hspMwF5dalQ3vFWSgaWRinIMRQwkCilaTtG5cV4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d1335e87a2b1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s2.loli.net/2023/05/09/AGhsHodnUayL8ZX.jpg
104.26.0.190200 OK 26 kB URL GET HTTP/2 s2.loli.net/2023/05/09/AGhsHodnUayL8ZX.jpg
IP 104.26.0.190:443
Certificate IssuerCloudflare, Inc.
Subjectloli.net
FingerprintE3:84:D8:6C:17:7E:44:60:E3:01:5E:E6:32:E6:90:08:4D:87:12:B1
ValidityWed, 05 Apr 2023 00:00:00 GMT - Thu, 04 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 377x377, components 3\012- data
Hash 02a4d9ad73513ae9d5362ccf613c5036
2c97aaa5ab72549ab4cfa7383ce9fe32f1bd69cc
18905b5f4816bb3fee1262156b40e9ac4f93da2805f8f6cb820c9dc4b6778593
GET /2023/05/09/AGhsHodnUayL8ZX.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/jpeg
content-length: 25689
last-modified: Mon, 08 May 2023 16:02:52 GMT
etag: "64591d2c-6459"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8apIJhJTDI7lJrFx1dWtfcOBuuGp%2BMPFy1l4HxfRR%2BPqyjUYei5yiGe5BayI9RRcUwyi6SoKyFXVhZt%2F6YcYP%2FuEBD%2BR1dYIlVFEGqzBxvSuLrbxCuKPwO16%2FdSK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d1335e9eb9bb51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/html9/ads/youce.js
137.220.168.194200 OK 854 B URL GET HTTP/2 66.tjvip1.com/template/m1938pc/html9/ads/youce.js
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (507)
Hash fafb5235c73373423d103e9b0adb51b0
1bcd5cc6974bab3335d945aa3bfa26fc4917e0d0
0e61d3c4955b8f7dc9d71e66b9dc19902f5a2856e6757fd8404ae2722e21cb57
GET /template/m1938pc/html9/ads/youce.js HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: application/javascript
content-length: 854
last-modified: Wed, 24 May 2023 15:33:58 GMT
etag: "646e2e66-356"
expires: Sat, 03 Jun 2023 10:42:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/ads/img/1.gif
137.220.168.194200 OK 254 B URL GET HTTP/2 66.tjvip1.com/template/m1938pc/ads/img/1.gif
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/ads/img/1.gif HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 254
last-modified: Thu, 21 Apr 2022 12:25:50 GMT
etag: "62614d4e-fe"
expires: Sun, 02 Jul 2023 22:42:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/mcsutjjndmb.jpg
172.67.28.138200 OK 8.1 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/mcsutjjndmb.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3a0a45aa5f749559bb0045312e5dab1c
77075c32f6cb84e84639b1a3a6702035dc8e1381
8e99f2a7afe5deeb507e17c4865f6f1e22f179551e31d4b7fb0e8fea8b8d6db6
GET /upload/vod/2023/02/mcsutjjndmb.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 8116
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8511
content-disposition: inline; filename="mcsutjjndmb.webp"
etag: "63de04be-213f"
last-modified: Sat, 04 Feb 2023 07:09:50 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e79b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/1dlrjezjghd.jpg
172.67.28.138200 OK 6.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/1dlrjezjghd.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b8c3ee0955c5bd977563f503a9ef4683
399f04094f3039d09ea5134525de696614731904
e51e6159d8acf4b08d0bb8101c6feb842ad83d7f09482108c7f91d832870af5e
GET /upload/vod/2023/02/1dlrjezjghd.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 6482
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7586
content-disposition: inline; filename="1dlrjezjghd.webp"
etag: "63ddffc2-1da2"
last-modified: Sat, 04 Feb 2023 06:48:34 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e90b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/24r4qwx3ggm034824r4qwx3ggm3911.jpg
172.67.28.138200 OK 8.8 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/24r4qwx3ggm034824r4qwx3ggm3911.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65170fabf31a61acce04be09a4dac73e
3b4446cf9ba869f8c2f1dd58f5e856f22d3fbcc9
f7b5fa992fcaebe53d807933a5e2be83dd61dbc9ee61b21469ef71a2bba4f0c2
GET /upload/vod/2020/03-27/03/24r4qwx3ggm034824r4qwx3ggm3911.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 8820
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9722
content-disposition: inline; filename="24r4qwx3ggm034824r4qwx3ggm3911.webp"
etag: "5e7d0717-25fa"
last-modified: Thu, 26 Mar 2020 19:48:39 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e6fb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/fog1l0v2lil.jpg
172.67.28.138200 OK 6.3 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/fog1l0v2lil.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3b4572e2ec7ab23218ef13591b1b3c29
e8c940ac739834e23528ae890563515a263b2631
6b49a6f49c604be8d07f92e4f54eb9914e780eaa80364b245d099e9ed0c50f82
GET /upload/vod/2023/02/fog1l0v2lil.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 6266
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8973
content-disposition: inline; filename="fog1l0v2lil.webp"
etag: "63de04c8-230d"
last-modified: Sat, 04 Feb 2023 07:10:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e7eb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/51ylsmtgyps034851ylsmtgyps4825.jpg
172.67.28.138200 OK 6.7 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/51ylsmtgyps034851ylsmtgyps4825.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 17ef8b5f232a0fd3a3758603f3bdf2f5
4b0cfd83f6ddbd9a2439c8efbd3cd147ddcdf646
9e525ef59a3f48c3406e28efd051448e9559a460baaa6592df8999c73f0aa98f
GET /upload/vod/2020/03-27/03/51ylsmtgyps034851ylsmtgyps4825.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 6678
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7898
content-disposition: inline; filename="51ylsmtgyps034851ylsmtgyps4825.webp"
etag: "5e7d0720-1eda"
last-modified: Thu, 26 Mar 2020 19:48:48 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e77b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/cd5kpzb1onj0348cd5kpzb1onj4115.jpg
172.67.28.138200 OK 9.7 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/cd5kpzb1onj0348cd5kpzb1onj4115.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc6a0c8bbe16e2758d29b4f06a1a52ec
a9e13aa99d229db275a28b22cb87f889794b9a80
7c95073aff927b81ab39a49508d70b12777f65ed08fa10d33b53bbd4cb1c9e07
GET /upload/vod/2020/03-27/03/cd5kpzb1onj0348cd5kpzb1onj4115.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 9690
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10494
content-disposition: inline; filename="cd5kpzb1onj0348cd5kpzb1onj4115.webp"
etag: "5e7d0719-28fe"
last-modified: Thu, 26 Mar 2020 19:48:41 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e71b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/yv54ti5voxa.jpg
172.67.28.138200 OK 7.8 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/yv54ti5voxa.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 687037f8d6cca684228f6e8589aa2337
855b1bc7f28aabd90fb25de03dad384fe90c718e
29f852b5439dfbdfacded14ee54a819fda17cd678c37246d0b5268e516083828
GET /upload/vod/2023/02/yv54ti5voxa.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 7836
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8949
content-disposition: inline; filename="yv54ti5voxa.webp"
etag: "63de04d2-22f5"
last-modified: Sat, 04 Feb 2023 07:10:10 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e87b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/ghx4inf50fk.jpg
172.67.28.138200 OK 9.2 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/ghx4inf50fk.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 630007fbb0537f95aadbd119d53f10fc
44c61db843d862e673a7988e98093e133efd2a78
a734e06eb5a0368880ca4ffd3dd5d534ca9e0884ef507f90a621ba723a5e60f6
GET /upload/vod/2023/02/ghx4inf50fk.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 9214
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9826
content-disposition: inline; filename="ghx4inf50fk.webp"
etag: "63de04cd-2662"
last-modified: Sat, 04 Feb 2023 07:10:05 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e86b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/thj3wuyp5de.jpg
172.67.28.138200 OK 5.7 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/thj3wuyp5de.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 88fb8c13fdac8606c22094aacfe3d49b
21d7ec4e1c9b5de91c36a148294690a8ae9e8939
f9c40f5948c3e6b3c30479905afe7026ccb9d634def9667651cc78087083694a
GET /upload/vod/2023/02/thj3wuyp5de.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 5734
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6827
content-disposition: inline; filename="thj3wuyp5de.webp"
etag: "63de04c3-1aab"
last-modified: Sat, 04 Feb 2023 07:09:55 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e7cb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/mgag5uz5aqq.jpg
172.67.28.138200 OK 6.4 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/mgag5uz5aqq.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 465104130c5b3ae9e2f9ba24073f98ad
4a0265a23742220c2f27a001b2723694d499733c
b3a7285a6982164494885d6ce1e900cce7b06dbd005dd8277e1f208b351e9a30
GET /upload/vod/2023/02/mgag5uz5aqq.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 6444
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7601
content-disposition: inline; filename="mgag5uz5aqq.webp"
etag: "63ddffd3-1db1"
last-modified: Sat, 04 Feb 2023 06:48:51 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e6db4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/x2zlshw5aqb0348x2zlshw5aqb4217.jpg
172.67.28.138200 OK 11 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/x2zlshw5aqb0348x2zlshw5aqb4217.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2f1c8e7f820cd395e6399d2e69bd07d3
0590562ac370118dd769aec56bebcedab32757d6
8f3a45455f0c44be235b2dd38a112b3152183a06abd10fc9ea40c1ed8bda04c2
GET /upload/vod/2020/03-27/03/x2zlshw5aqb0348x2zlshw5aqb4217.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 10576
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11459
content-disposition: inline; filename="x2zlshw5aqb0348x2zlshw5aqb4217.webp"
etag: "5e7d071a-2cc3"
last-modified: Thu, 26 Mar 2020 19:48:42 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e73b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/ohykpm12hc40348ohykpm12hc44419.jpg
172.67.28.138200 OK 8.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/ohykpm12hc40348ohykpm12hc44419.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 13d5cfc62c0dd046721391922cc3dbe5
b566db649e0a767fcc0426e260ff81f594450dd5
e8dd1503a46c8df658f06da87cc90b549ea79ba124c5cc1b837171e64d68ba96
GET /upload/vod/2020/03-27/03/ohykpm12hc40348ohykpm12hc44419.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 8520
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9742
content-disposition: inline; filename="ohykpm12hc40348ohykpm12hc44419.webp"
etag: "5e7d071c-260e"
last-modified: Thu, 26 Mar 2020 19:48:44 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e74b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/bkiyh0lfmyz.jpg
172.67.28.138200 OK 6.7 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/bkiyh0lfmyz.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 495f3857b477a07f666d32014a14ba9b
b508f8ac1a9463d58f4425ace73ab2623fe7b2dc
9579fbc6ff5fdaf5c705f38711184443333139e077a0a2a599aa6ffce0265d07
GET /upload/vod/2023/02/bkiyh0lfmyz.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 6674
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8718
content-disposition: inline; filename="bkiyh0lfmyz.webp"
etag: "63ddffcf-220e"
last-modified: Sat, 04 Feb 2023 06:48:47 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea0e6ab4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/gld0hrewkl30348gld0hrewkl34623.jpg
172.67.28.138200 OK 7.1 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/gld0hrewkl30348gld0hrewkl34623.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7a678a21f060a35a816daa45036edeaa
cb13c80cd006a81ac19792d39200f9ff115a337f
75b143ba588a5c2bd9735b75eeb8ffbc85d352f9f9c423c78068cec0589f9fe1
GET /upload/vod/2020/03-27/03/gld0hrewkl30348gld0hrewkl34623.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 7120
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8946
content-disposition: inline; filename="gld0hrewkl30348gld0hrewkl34623.webp"
etag: "5e7d071f-22f2"
last-modified: Thu, 26 Mar 2020 19:48:47 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e76b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/xnsmjlwfvlk.jpg
172.67.28.138200 OK 4.0 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/xnsmjlwfvlk.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash da4b52d4bc0a4a52994475815f3be481
089bb3848c045c75f576cd3207b7b237fc70aae9
529d90856958db2dec232623c604b8e408e7a90291341f55d57a61fc49a5cd84
GET /upload/vod/2023/02/xnsmjlwfvlk.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 3980
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6014
content-disposition: inline; filename="xnsmjlwfvlk.webp"
etag: "63de04db-177e"
last-modified: Sat, 04 Feb 2023 07:10:19 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e8ab4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/avyek0gqvxs0348avyek0gqvxs4927.jpg
172.67.28.138200 OK 6.3 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/avyek0gqvxs0348avyek0gqvxs4927.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0050a06fe3620417ebb449cb81b1bbba
4614753f9d1deac990d89da6518ace6f4547f501
abf6406a35871686f9269d32241463ff5691c5d11b089557fbc1800649c5f1cf
GET /upload/vod/2020/03-27/03/avyek0gqvxs0348avyek0gqvxs4927.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 6274
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7392
content-disposition: inline; filename="avyek0gqvxs0348avyek0gqvxs4927.webp"
etag: "5e7d0721-1ce0"
last-modified: Thu, 26 Mar 2020 19:48:49 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e78b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/tzsahhptnjl.jpg
172.67.28.138200 OK 4.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/tzsahhptnjl.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 55e933e89607cb2ebd9f1750ae170074
884bb522ad8263a55e154a37dc054721fe48b332
3e34c6315e7c2415b05e06578c836caa62114de5f8f556f63f8be36fd604c491
GET /upload/vod/2023/02/tzsahhptnjl.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 4512
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6764
content-disposition: inline; filename="tzsahhptnjl.webp"
etag: "63ddffca-1a6c"
last-modified: Sat, 04 Feb 2023 06:48:42 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e8bb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/kqdhoyte2zy.jpg
172.67.28.138200 OK 5.4 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/kqdhoyte2zy.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c835f6fc1cc9a1d663b53217b33eedb0
6d3cfd36eb7550eb27e8e598633c2ee0452cb046
3984ef7334bbc5ddd7d43fc8c3f1198c26404fd5dab65c8f34cf19910111006e
GET /upload/vod/2023/02/kqdhoyte2zy.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 5392
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6835
content-disposition: inline; filename="kqdhoyte2zy.webp"
etag: "63ddffbf-1ab3"
last-modified: Sat, 04 Feb 2023 06:48:31 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e8cb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/sjvljh3fjny.jpg
172.67.28.138200 OK 6.9 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/sjvljh3fjny.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cad579dfb2959f021fac5b96778b647b
bdb88b4d4f8b6d4d67a6d1eabee8c0dd4a18582d
53791ae40500a4b415021ec928ba32e0f05526fc5ec9cdef2a855eeffad9edfc
GET /upload/vod/2023/02/sjvljh3fjny.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 6902
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7687
content-disposition: inline; filename="sjvljh3fjny.webp"
etag: "63ddffc6-1e07"
last-modified: Sat, 04 Feb 2023 06:48:38 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e8db4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/osx053qzbwi0348osx053qzbwi4521.jpg
172.67.28.138200 OK 5.9 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/osx053qzbwi0348osx053qzbwi4521.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 69f1efceb22e68840e7ea314ccc8bb03
f1585deb4e7fc5eac65f42c3acfdce169b7c1421
ae85af886e38ccd6ae4e6929d00fbdef7dff3c539974ac1dc11987a7b695b133
GET /upload/vod/2020/03-27/03/osx053qzbwi0348osx053qzbwi4521.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 5916
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8451
content-disposition: inline; filename="osx053qzbwi0348osx053qzbwi4521.webp"
etag: "5e7d071d-2103"
last-modified: Thu, 26 Mar 2020 19:48:45 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e75b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/aqfhvnrfyqt.jpg
172.67.28.138200 OK 4.5 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/aqfhvnrfyqt.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 714131918004924e31ee28cec9e94a48
ca18904423ee9a217963eb8d03f3b38cd9ec3d49
39b87e703afe6e5e833818f032bf67c7aaf3ce9d5f1334b8f08d259131721fcd
GET /upload/vod/2023/02/aqfhvnrfyqt.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 4510
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6703
content-disposition: inline; filename="aqfhvnrfyqt.webp"
etag: "63ddffd8-1a2f"
last-modified: Sat, 04 Feb 2023 06:48:56 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e6eb4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/03-27/03/2aurywi2lsx03482aurywi2lsx4013.jpg
172.67.28.138200 OK 11 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/03-27/03/2aurywi2lsx03482aurywi2lsx4013.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0d2117b9b821ef4c46f78689614957e5
4add804eddd217ffa0906ace8ccc9bd9688d3747
d52d8f0ea38b25262afe5e13b056db2729ec06b356565274c46d00655d1c9e64
GET /upload/vod/2020/03-27/03/2aurywi2lsx03482aurywi2lsx4013.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 11002
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11865
content-disposition: inline; filename="2aurywi2lsx03482aurywi2lsx4013.webp"
etag: "5e7d0718-2e59"
last-modified: Thu, 26 Mar 2020 19:48:40 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e70b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/psnd3tija2d.jpg
172.67.28.138200 OK 7.6 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/psnd3tija2d.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 02ab1a00a5aa0f65ac845d0a5fc0921c
279f4f9d1fb875341970ae91c0a63f153208b707
c3ac5d9d0944d2f15e8b8fa5c7a706661021aad371983fffa62624b207f330a4
GET /upload/vod/2023/02/psnd3tija2d.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 7602
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8920
content-disposition: inline; filename="psnd3tija2d.webp"
etag: "63de04d6-22d8"
last-modified: Sat, 04 Feb 2023 07:10:14 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e89b4ed-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/wgld3xzcdzh.jpg
172.67.28.138200 OK 4.8 kB URL GET HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/wgld3xzcdzh.jpg
IP 172.67.28.138:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint73:1B:25:EC:DF:B3:82:66:80:70:9A:1E:BE:37:62:E7:29:F1:4D:00
ValidityThu, 02 Feb 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7cb3525075ad75bcb7bb62b0b5e18605
01a5357f577ac4593d5977fee5f3e35bb512dfc4
34458516299dd83570286ca189684868968195ea3171a704c3cc788ad26c0e6e
GET /upload/vod/2023/02/wgld3xzcdzh.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/webp
content-length: 4818
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6968
content-disposition: inline; filename="wgld3xzcdzh.webp"
etag: "63ddffbb-1b38"
last-modified: Sat, 04 Feb 2023 06:48:27 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 7d1335ea1e8fb4ed-OSL
X-Firefox-Spdy: h2
z4a.net/images/2023/01/11/150_150.gif
104.21.234.234200 OK 33 kB URL GET HTTP/2 z4a.net/images/2023/01/11/150_150.gif
IP 104.21.234.234:443
Certificate IssuerGoogle Trust Services LLC
Subjectz4a.net
FingerprintB5:5E:DB:E5:77:14:50:B5:73:54:43:73:76:D4:A6:82:96:30:B0:B1
ValiditySat, 06 May 2023 01:04:20 GMT - Fri, 04 Aug 2023 01:04:19 GMT
File type GIF image data, version 89a, 195 x 195\012- data
Hash f0ecbfca9c233ac749a8375ed44ead7d
b6c2b8c7b8e982bda0e1ee2bb217eef0e0bbd728
28ab3c4ae5a5343b6ea6774960fced7f7d9c8212b9042cce6072f3e4c48ad94b
GET /images/2023/01/11/150_150.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/gif
content-length: 32784
expires: Mon, 15 Apr 2024 22:41:11 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 4060886
last-modified: Sun, 16 Apr 2023 22:41:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XcYbPoHcY9bRpjqaVUIJqZuVcw84G4%2BCP8%2FTQYYXrzDvokqYPcuPdOk3QrC8GCWp4NqJX7WeERbtSEMQj0vQkFgO5KWbM5zxrAT408eagkBS1%2BFII7b7genV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d1335ec7e6c7744-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
104.26.0.190200 OK 9.2 kB URL GET HTTP/3 s2.loli.net/2022/05/21/zAxwCKkLnFjlaQ8.jpg
IP 104.26.0.190:443
Certificate IssuerCloudflare, Inc.
Subjectloli.net
FingerprintE3:84:D8:6C:17:7E:44:60:E3:01:5E:E6:32:E6:90:08:4D:87:12:B1
ValidityWed, 05 Apr 2023 00:00:00 GMT - Thu, 04 Apr 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /2022/05/21/zAxwCKkLnFjlaQ8.jpg HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 02 Jun 2023 22:42:38 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Sat, 21 May 2022 11:42:12 GMT
etag: "6288d014-23ce"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept, Accept-Encoding
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: BYPASS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1tm%2FY%2Bkkxt1Hsj%2BaVYGtjZovVvygG1cPTXwUT0q5%2FM5%2F3HxOaO5uvvxjghoNDsnc%2BaauOrr7HneyeHBDWtm8y4l28XW1EZtmDYjtKnqtWW863vg1OA86y9kxw0Vs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d1335ebcd0d0b51-OSL
alt-svc: h3=":443"; ma=86400
66.tjvip1.com/template/m1938pc/picture/hengfutu3.gif
137.220.168.194200 OK 56 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/picture/hengfutu3.gif
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Hash 2006e569d447c3b9333b77c8cd358cd5
52bc905491f1853e5db4caffc9ab774fe8c585c1
ef170697496c29dfe85f544672b7ef64a0e93bff4caf3940dea4d388f44eb324
GET /template/m1938pc/picture/hengfutu3.gif HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 55462
last-modified: Sun, 19 Feb 2023 09:42:42 GMT
etag: "63f1ef12-d8a6"
expires: Sun, 02 Jul 2023 22:42:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
66.tjvip1.com/index.files/index_151.jpg
137.220.168.194404 Not Found 146 B URL GET HTTP/2 66.tjvip1.com/index.files/index_151.jpg
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /index.files/index_151.jpg HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/images/video-play.png
137.220.168.194200 OK 1.6 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/images/video-play.png
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/png
content-length: 1567
last-modified: Thu, 21 Apr 2022 12:26:08 GMT
etag: "62614d60-61f"
expires: Sun, 02 Jul 2023 22:42:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
sdk.51.la/js-sdk-pro.min.js
42.236.73.206200 OK 13 kB URL GET HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP 42.236.73.206:80
ASN #4837 CHINA UNICOM China169 Backbone
Requested by http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
File type Unicode text, UTF-8 text, with very long lines (34110)
Hash 24bb520e9517f2ed3ed987b46aeaf723
846723563d7dd2bff3954f93633b11af0103adc8
d1f1bfe698f2ffb7b3e7a885a301d58f9554d45df0a31c3e8b53c84b33c80d27
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 02 Jun 2023 22:42:23 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Mon, 15 May 2023 03:19:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6461a4bd-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
66.tjvip1.com/template/m1938pc/html9/ads/img/spk7.gif
137.220.168.194404 Not Found 146 B URL GET HTTP/2 66.tjvip1.com/template/m1938pc/html9/ads/img/spk7.gif
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/m1938pc/html9/ads/img/spk7.gif HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/picture/hengfutu1.gif
137.220.168.194200 OK 136 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/picture/hengfutu1.gif
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Size 136 kB (135687 bytes)
Hash 4ec1070c87d6971b6c11ca1037fb4a6b
3a04e4b6153048122b528874efca30ad0e5270a7
dc210e45646fd472e7d963f64d1e07c67e9e243b4fb81cde902ac5324040cbd1
GET /template/m1938pc/picture/hengfutu1.gif HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 135687
last-modified: Sun, 19 Feb 2023 09:43:27 GMT
etag: "63f1ef3f-21207"
expires: Sun, 02 Jul 2023 22:42:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
1886kj.com/k/11s.html
156.232.92.210200 OK 2.0 kB IP 156.232.92.210:443
Certificate IssuerSectigo Limited
Subject1886kj.com
Fingerprint2D:62:44:F4:A9:60:0E:C8:EC:8B:DC:B1:74:17:F5:10:09:07:3B:5F
ValiditySun, 03 Jul 2022 00:00:00 GMT - Mon, 03 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 57be50e3a8662305e567a4885553ac35
477510686c2282313e8c84b62a8266687e1346b1
ef4f721007926c43eeb1ee779933c0268f4ef851e472efbfbfae1121051d582d
GET /k/11s.html HTTP/1.1
Host: 1886kj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-encoding: gzip
last-modified: Sun, 03 Jul 2022 07:03:35 GMT
accept-ranges: bytes
etag: "15a5653ab8ed81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Fri, 02 Jun 2023 22:47:28 GMT
content-length: 1957
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/picture/hengfutu5.gif
137.220.168.194200 OK 488 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/picture/hengfutu5.gif
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type GIF image data, version 89a, 900 x 200\012- data
Size 488 kB (488105 bytes)
Hash 2ec0093911aae432bb9bc8ada1ecda37
cb572b05aeead7e7f7ae7ba9e127c193a26ecb12
09c4ed18962e323d2e78e9f91c326768041ccd71f958198624336fe87fea02b6
GET /template/m1938pc/picture/hengfutu5.gif HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 488105
last-modified: Sun, 19 Feb 2023 09:45:40 GMT
etag: "63f1efc4-772a9"
expires: Sun, 02 Jul 2023 22:42:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/picture/hengfutu4.gif
137.220.168.194200 OK 212 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/picture/hengfutu4.gif
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type GIF image data, version 89a, 960 x 160\012- data
Size 212 kB (211725 bytes)
Hash 26d09ba3a55b8b2390beeb47ae1ef42a
8e8a10925ade67dddd5be0dd75ed25194e459a4a
a7d5d8ca2e3df3ca55e0d9f6a844df7f969cb8555be8b1ace4049464aa5b2100
GET /template/m1938pc/picture/hengfutu4.gif HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 211725
last-modified: Sun, 19 Feb 2023 09:43:50 GMT
etag: "63f1ef56-33b0d"
expires: Sun, 02 Jul 2023 22:42:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/picture/spt7.gif
137.220.168.194200 OK 285 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/picture/spt7.gif
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type GIF image data, version 89a, 640 x 350\012- data
Size 285 kB (285431 bytes)
Hash 34f083a2c2cc9407e8eeb71b8db40872
ed175cf37f3b9003af5137942ba11f66af4fbf90
ef708e9ee5f2b084e8009e4c2067dad8b93d974bb0f2a9efde3bb334f4df8f85
GET /template/m1938pc/picture/spt7.gif HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: image/gif
content-length: 285431
last-modified: Sun, 19 Feb 2023 10:13:21 GMT
etag: "63f1f641-45af7"
expires: Sun, 02 Jul 2023 22:42:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hdt-88.oss-cn-hongkong.aliyuncs.com/ky6688/960-60.gif
47.75.18.5200 OK 52 kB URL GET HTTP/1.1 hdt-88.oss-cn-hongkong.aliyuncs.com/ky6688/960-60.gif
IP 47.75.18.5:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerGlobalSign nv-sa
Subjectoss-cn-hongkong.aliyuncs.com
Fingerprint5C:54:6A:2A:0F:08:BF:7D:08:9D:A9:9B:21:2F:00:47:89:4F:59:91
ValiditySun, 23 Apr 2023 03:01:18 GMT - Fri, 24 May 2024 03:01:17 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Hash 55b2c2fde34e2f57583572553593cce5
d57f09e2f08f9d814b2ef48a624a7a01407676f8
84e3322e33bbe0ad54e1f8e94057993cf76c9138ff0ce0e81ed9c3c400b42667
GET /ky6688/960-60.gif HTTP/1.1
Host: hdt-88.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 02 Jun 2023 22:42:38 GMT
Content-Type: image/gif
Content-Length: 52430
Connection: keep-alive
x-oss-request-id: 647A705E8F26183135EC88E9
Accept-Ranges: bytes
ETag: "55B2C2FDE34E2F57583572553593CCE5"
Last-Modified: Tue, 07 Mar 2023 09:00:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 8978660409360798312
x-oss-storage-class: Standard
Content-MD5: VbLC/eNOL1dYNXJVNZPM5Q==
x-oss-server-time: 2
zhibo.chong0123.com:777/
43.201.222.0200 OK 13 kB IP 43.201.222.0:777
Certificate IssuerZeroSSL
Subject*.sjkj.com
FingerprintC1:38:A5:FC:E3:41:3A:7B:B0:80:54:E5:C1:28:8B:C1:EB:0B:D4:E8
ValidityFri, 10 Mar 2023 00:00:00 GMT - Thu, 08 Jun 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (3407), with CRLF line terminators
Hash 30318b8cb45fa1620e47abc2172b850e
5b47616942cb59aee7209cc7388f8f9cd2b8638c
dab8336c95a372fdb7cda53b1293432669184ae9f86cab9c0208375f436a506e
GET / HTTP/1.1
Host: zhibo.chong0123.com:777
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-encoding: gzip
last-modified: Thu, 19 Jan 2023 05:55:50 GMT
accept-ranges: bytes
etag: "0f7c9aeca2bd91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 02 Jun 2023 22:42:28 GMT
content-length: 13270
X-Firefox-Spdy: h2
ky6688.oss-ap-southeast-1.aliyuncs.com/pl-t/spk.gif
161.117.118.8200 OK 56 kB URL GET HTTP/1.1 ky6688.oss-ap-southeast-1.aliyuncs.com/pl-t/spk.gif
IP 161.117.118.8:443
ASN #45102 Alibaba US Technology Co., Ltd.
Certificate IssuerGlobalSign nv-sa
Subject*.oss-ap-southeast-1.aliyuncs.com
Fingerprint87:C3:25:71:80:AD:02:68:68:C0:9E:90:98:92:D9:8C:2F:53:1D:00
ValidityMon, 30 Jan 2023 02:31:25 GMT - Sat, 02 Mar 2024 02:31:24 GMT
File type GIF image data, version 89a, 220 x 150\012- data
Hash 8ce8b640ab3e40d62bdad269aeae5863
c57f6157302ef3641bfe4731e77d0efcc855c63b
ec200dffc754a7fc193ba0b468b868f1538d79f84b39584166d8d25c5824e2b0
GET /pl-t/spk.gif HTTP/1.1
Host: ky6688.oss-ap-southeast-1.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 02 Jun 2023 22:42:38 GMT
Content-Type: image/gif
Content-Length: 56203
Connection: keep-alive
x-oss-request-id: 647A705EB223FC363222FDD5
Accept-Ranges: bytes
ETag: "8CE8B640AB3E40D62BDAD269AEAE5863"
Last-Modified: Sun, 16 Apr 2023 12:26:58 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15268965845647360785
x-oss-storage-class: Standard
Content-MD5: jOi2QKs+QNYr2tJprq5YYw==
x-oss-server-time: 1
vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com/640x350.gif
47.110.178.68200 OK 130 kB URL GET HTTP/1.1 vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com/640x350.gif
IP 47.110.178.68:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Certificate IssuerGlobalSign nv-sa
Subject*.oss-cn-hangzhou.aliyuncs.com
Fingerprint1D:79:0F:5A:99:E6:4D:DC:A2:70:A6:80:16:6D:82:2B:62:EA:34:B8
ValidityWed, 15 Feb 2023 06:06:07 GMT - Mon, 18 Mar 2024 06:06:06 GMT
File type GIF image data, version 89a, 640 x 350\012- data
Size 130 kB (130070 bytes)
Hash c692ec6d2d4404adde43e209c6269a25
603aa43a65017a20ca0dde84be2cb16ac8e5b407
9af4c3dee012c450894df4738c9da257f584ed560e02e94b13a70182eb899243
GET /640x350.gif HTTP/1.1
Host: vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 02 Jun 2023 22:42:38 GMT
Content-Type: image/gif
Content-Length: 130070
Connection: keep-alive
x-oss-request-id: 647A705EEAC5D230307A883D
Accept-Ranges: bytes
ETag: "C692EC6D2D4404ADDE43E209C6269A25"
Last-Modified: Wed, 05 Apr 2023 06:42:15 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16235462672140976583
x-oss-storage-class: Standard
x-oss-ec: 0048-00000105
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: xpLsbS1EBK3eQ+IJxiaaJQ==
x-oss-server-time: 1
vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com/882-960x80.gif
47.110.178.68200 OK 250 kB URL GET HTTP/1.1 vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com/882-960x80.gif
IP 47.110.178.68:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Certificate IssuerGlobalSign nv-sa
Subject*.oss-cn-hangzhou.aliyuncs.com
Fingerprint1D:79:0F:5A:99:E6:4D:DC:A2:70:A6:80:16:6D:82:2B:62:EA:34:B8
ValidityWed, 15 Feb 2023 06:06:07 GMT - Mon, 18 Mar 2024 06:06:06 GMT
File type GIF image data, version 89a, 960 x 80\012- data
Size 250 kB (250356 bytes)
Hash 782f1eaf936342eb06b81643ed729d79
72c2a74a7b0d2414f719abde06117ee783bab8b3
bf5bbe7ca20750cd6a00e690f4726ae7a1f0f125e98736c50b599bb1b65351f7
GET /882-960x80.gif HTTP/1.1
Host: vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 02 Jun 2023 22:42:38 GMT
Content-Type: image/gif
Content-Length: 250356
Connection: keep-alive
x-oss-request-id: 647A705E565BBE333883FFF8
Accept-Ranges: bytes
ETag: "782F1EAF936342EB06B81643ED729D79"
Last-Modified: Wed, 08 Feb 2023 06:25:09 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10008971337816098083
x-oss-storage-class: Standard
x-oss-ec: 0048-00000105
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: eC8er5NjQusGuBZD7XKdeQ==
x-oss-server-time: 1
lxbd2.com/3f6c267af65714f8a9c2c5055a876df7.gif
172.83.155.45200 OK 103 kB URL GET HTTP/2 lxbd2.com/3f6c267af65714f8a9c2c5055a876df7.gif
IP 172.83.155.45:443
ASN #201106 Spartan Host Ltd
Certificate IssuerLet's Encrypt
Subjectlxbd2.com
FingerprintBD:68:BB:10:EC:8E:2A:1F:A1:F9:FA:FF:FA:77:AD:C7:B1:FE:FE:D2
ValiditySat, 27 May 2023 09:34:51 GMT - Fri, 25 Aug 2023 09:34:50 GMT
File type GIF image data, version 89a, 960 x 120\012- data
Size 103 kB (102604 bytes)
Hash 5f07fb40ef02a1f00a49be9b4df81c8d
cd013c535369fe236b4825e8e3b0fff50098172d
40dd6460995464907e97c4e392a5cfbe514767e51259a87914b47cf3c692b5b3
GET /3f6c267af65714f8a9c2c5055a876df7.gif HTTP/1.1
Host: lxbd2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:39 GMT
content-type: image/gif
content-length: 102604
last-modified: Fri, 31 Mar 2023 06:51:33 GMT
etag: "642682f5-190cc"
expires: Sat, 03 Jun 2023 10:42:39 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 19
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IfPO18XCSSfFVCGKMssHGZfIXTn2%2FPj7bfaA2jA6xe8PpmzpltCkxRb8fg4VNjH2V2LREUECUOCIPZ4nFmw7oUzJ94tS%2Br6CTSTkUm2T%2B5R3Wd%2FFX0HnfvMXz%2Bvn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-ray: 7d1065568ab06822-SEA
alt-svc: h3=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
lxbd2.com/7b35c6e1dd36e3cc0cbe489479c70598.gif
172.83.155.45200 OK 100 kB URL GET HTTP/2 lxbd2.com/7b35c6e1dd36e3cc0cbe489479c70598.gif
IP 172.83.155.45:443
ASN #201106 Spartan Host Ltd
Certificate IssuerLet's Encrypt
Subjectlxbd2.com
FingerprintBD:68:BB:10:EC:8E:2A:1F:A1:F9:FA:FF:FA:77:AD:C7:B1:FE:FE:D2
ValiditySat, 27 May 2023 09:34:51 GMT - Fri, 25 Aug 2023 09:34:50 GMT
File type GIF image data, version 89a, 420 x 240\012- data
Size 100 kB (100416 bytes)
Hash 40a1ec9624adc7f58bbf41c44eb53925
5d372be63849bfb2aa1fe930b73ceed9169d2548
cb074e7ebdfc46a50627cdd3e7645fd552f1b6d3e12f1ab40382e7e2f18e18dc
GET /7b35c6e1dd36e3cc0cbe489479c70598.gif HTTP/1.1
Host: lxbd2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:39 GMT
content-type: image/gif
content-length: 100416
last-modified: Fri, 31 Mar 2023 06:50:41 GMT
etag: "642682c1-18840"
expires: Sat, 03 Jun 2023 10:42:39 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 20
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1DK1e4E2uVXquOHo3Yjj5jY1OorWuJhkOPj0KUqKtIhv0YP1CfTyHib%2Fvs8pAVbEIjBnXvvExMVRX2EoGFcCuEjfJ6%2FHuYYty8xwa71bEI818p1rgwgyi1sTGKjE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-ray: 7d1065751d093082-SEA
alt-svc: h3=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
1886kj.com/k/jquery.min.js
156.232.92.210200 OK 189 kB URL GET HTTP/2 1886kj.com/k/jquery.min.js
IP 156.232.92.210:443
Requested by https://1886kj.com/k/11s.html
Certificate IssuerSectigo Limited
Subject1886kj.com
Fingerprint2D:62:44:F4:A9:60:0E:C8:EC:8B:DC:B1:74:17:F5:10:09:07:3B:5F
ValiditySun, 03 Jul 2022 00:00:00 GMT - Mon, 03 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32089), with CRLF line terminators
Size 189 kB (189241 bytes)
Hash 9cc05f89e2125c34116f864b5325be0b
299d73c2cfb39467816116c1dcc807e236050ef7
279ddf4b2892bd5eeb84bd15135663058414cc92c71eb27b91dfdb3f9d98f5de
GET /k/jquery.min.js HTTP/1.1
Host: 1886kj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1886kj.com/k/11s.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 10 Apr 2023 06:45:10 GMT
accept-ranges: bytes
etag: "f4c6fefe776bd91:0"
server: Microsoft-IIS/10.0
date: Fri, 02 Jun 2023 22:47:29 GMT
content-length: 189241
X-Firefox-Spdy: h2
1886kj.com/k/bmjs.js
156.232.92.210404 Not Found 1.2 kB IP 156.232.92.210:443
Requested by https://1886kj.com/k/11s.html
Certificate IssuerSectigo Limited
Subject1886kj.com
Fingerprint2D:62:44:F4:A9:60:0E:C8:EC:8B:DC:B1:74:17:F5:10:09:07:3B:5F
ValiditySun, 03 Jul 2022 00:00:00 GMT - Mon, 03 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /k/bmjs.js HTTP/1.1
Host: 1886kj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1886kj.com/k/11s.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
date: Fri, 02 Jun 2023 22:47:29 GMT
content-length: 1163
X-Firefox-Spdy: h2
1886kj.com/k/bmjs.js
156.232.92.210404 Not Found 1.2 kB IP 156.232.92.210:443
Requested by https://1886kj.com/k/11s.html
Certificate IssuerSectigo Limited
Subject1886kj.com
Fingerprint2D:62:44:F4:A9:60:0E:C8:EC:8B:DC:B1:74:17:F5:10:09:07:3B:5F
ValiditySun, 03 Jul 2022 00:00:00 GMT - Mon, 03 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /k/bmjs.js HTTP/1.1
Host: 1886kj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1886kj.com/k/11s.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
date: Fri, 02 Jun 2023 22:47:30 GMT
content-length: 1163
X-Firefox-Spdy: h2
collect-v6.51.la/v6/collect?dt=4
47.106.172.21200 0 B URL POST HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP 47.106.172.21:443
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
Certificate IssuerGlobalSign nv-sa
Subject*.51.la
Fingerprint9E:F3:EB:9A:59:E9:6D:6E:48:13:64:78:3C:33:1D:AA:79:52:5B:79
ValidityThu, 20 Apr 2023 01:12:57 GMT - Tue, 21 May 2024 01:12:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 254
Origin: https://66.tjvip1.com
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Fri, 02 Jun 2023 22:42:40 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: https://66.tjvip1.com
Access-Control-Allow-Credentials: true
xiod.xyz/wns960x120.gif
112.84.131.135200 OK 99 kB IP 112.84.131.135:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerSectigo Limited
Subjectxiod.xyz
Fingerprint41:40:C0:80:95:01:9F:C3:D4:37:B2:6C:A8:13:1B:F9:4C:A2:DB:49
ValidityMon, 20 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 120\012- data
Hash 6c63aa40c49e5a60775e3111fdf7ab56
7c4e8c26fb4c6805cf68aafb23931532863e6241
03b5a8b1e5d46f5674dbbb0f077e346f0410007607c06e87b37798a6fcb57b01
GET /wns960x120.gif HTTP/1.1
Host: xiod.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Last-Modified: Thu, 29 Dec 2022 12:11:20 GMT
Etag: "6c63aa40c49e5a60775e3111fdf7ab56"
Content-Type: image/gif
Date: Sun, 28 May 2023 14:30:55 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 1413771629825434221
x-cos-request-id: NjQ3MzY1OWZfNjA1MGI3MDlfMTAzMjZfYmYyODhiYw==
Content-Length: 98557
Accept-Ranges: bytes
X-NWS-LOG-UUID: 6700926318641405744
Connection: keep-alive
X-Cache-Lookup: Cache Hit
Cache-Control: max-age=86400
1886kj.com/k/bms.js
156.232.92.210200 OK 8.5 kB IP 156.232.92.210:443
Requested by https://1886kj.com/k/11s.html
Certificate IssuerSectigo Limited
Subject1886kj.com
Fingerprint2D:62:44:F4:A9:60:0E:C8:EC:8B:DC:B1:74:17:F5:10:09:07:3B:5F
ValiditySun, 03 Jul 2022 00:00:00 GMT - Mon, 03 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (12205), with CRLF line terminators
Hash eefba53f38474b5eb0fd8dc469826687
01a7e816751edbd0c484e43c8f40b6f4dcd20a2b
e7efc53f7ef15e552afb4de52c22124c570aac0f21db369b6ffe37eb66da1ab5
GET /k/bms.js HTTP/1.1
Host: 1886kj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1886kj.com/k/11s.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 14:59:54 GMT
accept-ranges: bytes
etag: "011c8593b2fd91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Fri, 02 Jun 2023 22:47:30 GMT
content-length: 8453
X-Firefox-Spdy: h2
1886kj.com/K/bmjg.js?_=1685745759480
156.232.92.210200 OK 200 B URL GET HTTP/2 1886kj.com/K/bmjg.js?_=1685745759480
IP 156.232.92.210:443
Requested by https://1886kj.com/k/11s.html
Certificate IssuerSectigo Limited
Subject1886kj.com
Fingerprint2D:62:44:F4:A9:60:0E:C8:EC:8B:DC:B1:74:17:F5:10:09:07:3B:5F
ValiditySun, 03 Jul 2022 00:00:00 GMT - Mon, 03 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash f35fcd7dc1a6e23f6a7dc1afd53a8dfb
30dfcf08a92da481821943d7c91485620022522e
b232c34f77bc2cf84ea3fa096fb4c1c42e1b7c8a085c329d32aaf351d43fc41b
GET /K/bmjg.js?_=1685745759480 HTTP/1.1
Host: 1886kj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1886kj.com/k/11s.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 02 Jun 2023 13:36:48 GMT
accept-ranges: bytes
etag: "2592f4475795d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Fri, 02 Jun 2023 22:47:30 GMT
content-length: 200
X-Firefox-Spdy: h2
66.tjvip1.com/
137.220.168.194200 OK 597 kB IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Requested by http://www.wdwpasses.com/~freol/hhhh00000/870dcac37e414745bc4bf25f50508247/
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type gzip compressed data, from Unix\012- data
Size 597 kB (597322 bytes)
Hash e3cd88dcead607ed43def6f51c83339b
063ae1aebbd20ed9e3e497a536fa49b8a817e615
f564f6bbc376b3e5c4017e22cc409eba51d67f95af9e0b6730ac30e04c194469
GET / HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.wdwpasses.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:36 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.15.101 728 B URL zerossl.ocsp.sectigo.com/
IP 104.18.15.101:0
Hash 3d83e27ae141007870c01b523693198f
7663e8030c4b4a73888e4d1bcc3d3c265fa16caf
9c46170b88641ab8c7a610f4e3f6380977897bdfa7a4d3c1afa1b109a5f8aa40
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 22:42:41 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 14:22:57 GMT
Expires: Thu, 08 Jun 2023 14:22:56 GMT
Etag: "7663e8030c4b4a73888e4d1bcc3d3c265fa16caf"
Cache-Control: max-age=487814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d1336003ca1b4ed-OSL
uu9681uu.com/75878df60f3446fb88dd71a17e5bf0d8.gif
103.189.109.64200 OK 50 kB URL GET HTTP/1.1 uu9681uu.com/75878df60f3446fb88dd71a17e5bf0d8.gif
IP 103.189.109.64:443
Certificate IssuerSectigo Limited
Subjectuu9681uu.com
Fingerprint7A:14:46:F3:A9:C4:B1:74:00:69:FA:5D:00:54:3B:F0:B8:08:D9:84
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 320 x 185\012- data
Hash e12c1a7cf8648432020ec6316dea272e
30999d9e0eed16eac5a9cf51b05b4b218d97993e
b9ba306c09575a04e2a7079368309f1025c1000a43f5676a429ebdee83a65698
GET /75878df60f3446fb88dd71a17e5bf0d8.gif HTTP/1.1
Host: uu9681uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6479ec64-c38c"
Date: Fri, 02 Jun 2023 14:18:28 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 02 Jun 2023 13:19:32 GMT
Accept-Ranges: bytes
X-Cache: HIT from ty8z2-cdnb109-054
Content-Length: 50060
87ei7plz.com/66159890860671405.jpg
20.239.83.94200 OK 20 B URL GET HTTP/1.1 87ei7plz.com/66159890860671405.jpg
IP 20.239.83.94:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://1886kj.com/k/11s.html
Certificate IssuerZeroSSL
Subject87ei7plz.com
FingerprintC7:2F:55:51:78:4A:77:9F:4D:FC:3F:6E:3E:7B:17:77:9A:2F:87:E1
ValidityTue, 30 May 2023 00:00:00 GMT - Mon, 28 Aug 2023 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /66159890860671405.jpg HTTP/1.1
Host: 87ei7plz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1886kj.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 22:42:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: X-Requested-With
Access-Control-Allow-Methods: GET,POST,OPTIONS
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: CDN
X-Cache-Status: MISS
apps.bdimg.com/libs/jquery/1.10.2/jquery.min.js
36.99.50.49200 OK 33 kB URL GET HTTP/2 apps.bdimg.com/libs/jquery/1.10.2/jquery.min.js
IP 36.99.50.49:443
ASN #137687 Luoyang, Henan Province, P.R.China.
Requested by https://zhibo.chong0123.com:777/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint48:6A:ED:D1:68:52:E5:97:4F:A0:92:46:B3:3C:56:46:3D:D9:9C:D5
ValidityTue, 05 Jul 2022 05:16:02 GMT - Sun, 06 Aug 2023 05:16:01 GMT
File type gzip compressed data, from Unix\012- data
Hash dac89dc682873c8cca00a7ab106c8664
aecf716bacac97cef6ab32d5b2ababb604f1cf8b
54fb9c9f0842f76cb2b1ae1b1c2e24c6c1ad8d876145bd4ce4957c935405ff34
GET /libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: apps.bdimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zhibo.chong0123.com:777/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Fri, 02 Jun 2023 22:42:41 GMT
content-type: application/x-javascript
expires: Sat, 24 Jun 2023 04:15:39 GMT
last-modified: Wed, 07 Jan 2015 09:16:30 GMT
cache-control: max-age=2592000
content-encoding: gzip
age: 649248
accept-ranges: bytes
vary: Accept-Encoding
ohc-global-saved-time: Thu, 25 May 2023 04:15:38 GMT
ohc-cache-hit: zz6ct63 [2], jnctcache63 [2]
ohc-response-time: 1 0 0 0 0 0
X-Firefox-Spdy: h2
bbs.xbiao.com/forum.php?mod=image&aid=4741967&size=300x300&key=fa3b6b31ded1bfbc&nocache=yes&type=fixnone
60.188.66.35403 Forbidden 152 B URL GET HTTP/1.1 bbs.xbiao.com/forum.php?mod=image&aid=4741967&size=300x300&key=fa3b6b31ded1bfbc&nocache=yes&type=fixnone
IP 60.188.66.35:443
ASN #136190 JINHUA, ZHEJIANG Province, P.R.China.
Certificate IssuerDigiCert, Inc.
Subject*.xbiao.com
Fingerprint8F:27:12:4A:19:B5:24:D3:BC:CD:1C:8C:F0:69:EF:D9:D7:50:F6:93
ValidityMon, 04 Jul 2022 00:00:00 GMT - Tue, 04 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 5551e7d57e0e5f49f57555e455714647
28dbe88dd5232a47e4d8f1620002bde48c3157ed
5b1448238914740bc51ad7181264ba7cf994e454f03e1098f304ecfbb7be3706
GET /forum.php?mod=image&aid=4741967&size=300x300&key=fa3b6b31ded1bfbc&nocache=yes&type=fixnone HTTP/1.1
Host: bbs.xbiao.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: JSP3/2.0.14
Date: Fri, 02 Jun 2023 22:42:41 GMT
Content-Type: text/html
Content-Length: 152
Connection: keep-alive
X-Cache-Status: MISS
X-Error-Info: RefererWhite
uu9681uu.com/d706a63f0afd430783ef062af9506b27.gif
103.189.109.64200 OK 1.2 MB URL GET HTTP/1.1 uu9681uu.com/d706a63f0afd430783ef062af9506b27.gif
IP 103.189.109.64:443
Certificate IssuerSectigo Limited
Subjectuu9681uu.com
Fingerprint7A:14:46:F3:A9:C4:B1:74:00:69:FA:5D:00:54:3B:F0:B8:08:D9:84
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 100\012- data
Size 1.2 MB (1228996 bytes)
Hash 3826d17149a3044b12f0e522c866a63a
f55a49106ef71945c058d52fc23558507f5f8a50
a16ff5183de01c73ffa725d41338c0cd1196d22ab9bf923bd6086c0a44b760a0
GET /d706a63f0afd430783ef062af9506b27.gif HTTP/1.1
Host: uu9681uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6479ec80-12c0c4"
Date: Fri, 02 Jun 2023 14:18:27 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 02 Jun 2023 13:20:00 GMT
Accept-Ranges: bytes
X-Cache: HIT from ty8z2-cdnb109-054
Content-Length: 1228996
1886kj.com/K/bmjg.js?_=1685745759481
156.232.92.210 200 B URL GET 1886kj.com/K/bmjg.js?_=1685745759481
IP 156.232.92.210:0
Requested by https://1886kj.com/k/11s.html
Certificate IssuerSectigo Limited
Subject1886kj.com
Fingerprint2D:62:44:F4:A9:60:0E:C8:EC:8B:DC:B1:74:17:F5:10:09:07:3B:5F
ValiditySun, 03 Jul 2022 00:00:00 GMT - Mon, 03 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash f35fcd7dc1a6e23f6a7dc1afd53a8dfb
30dfcf08a92da481821943d7c91485620022522e
b232c34f77bc2cf84ea3fa096fb4c1c42e1b7c8a085c329d32aaf351d43fc41b
GET /K/bmjg.js?_=1685745759481 HTTP/1.1
Host: 1886kj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://1886kj.com/k/11s.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 02 Jun 2023 13:36:48 GMT
accept-ranges: bytes
etag: "2592f4475795d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Fri, 02 Jun 2023 22:47:37 GMT
content-length: 200
X-Firefox-Spdy: h2
record.511511144.com/960-60.gif
0.0.0.0 0 B URL GET record.511511144.com/960-60.gif
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /960-60.gif HTTP/1.1
Host: record.511511144.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
66.tjvip1.com/template/m1938pc/css/zui.css
137.220.168.194200 OK 99 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/css/zui.css
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: text/css
last-modified: Sat, 18 Feb 2023 08:15:16 GMT
vary: Accept-Encoding
etag: W/"63f08914-182fb"
expires: Sat, 03 Jun 2023 10:42:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
zhibo.chong0123.com:777/js/i1i1i1i1i1l1l1l1l0.js?_=1685745760984
43.201.222.0200 OK 76 B URL GET HTTP/2 zhibo.chong0123.com:777/js/i1i1i1i1i1l1l1l1l0.js?_=1685745760984
IP 43.201.222.0:777
Requested by https://zhibo.chong0123.com:777/
Certificate IssuerZeroSSL
Subject*.sjkj.com
FingerprintC1:38:A5:FC:E3:41:3A:7B:B0:80:54:E5:C1:28:8B:C1:EB:0B:D4:E8
ValidityFri, 10 Mar 2023 00:00:00 GMT - Thu, 08 Jun 2023 23:59:59 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text, with no line terminators
Hash 93900ed294b18e43c2b5e3d49ffe53a9
be49abf02935206c0fc7a37ab8c644b95c21c2b2
ed9e2bc6674aff89a5fe731ec1dcd08561ad7a2204d21e90019bc0e8aaaee15d
GET /js/i1i1i1i1i1l1l1l1l0.js?_=1685745760984 HTTP/1.1
Host: zhibo.chong0123.com:777
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://zhibo.chong0123.com:777/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 13:34:34 GMT
accept-ranges: bytes
etag: "9c1f75cd8d94d91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Fri, 02 Jun 2023 22:42:32 GMT
content-length: 76
X-Firefox-Spdy: h2
ldbbs.ldmnq.com/bbs/topic/images/2023-5/95b6a684-b3e7-46a5-9f27-a5474b52031c.gif
218.12.76.166200 OK 580 kB URL GET HTTP/1.1 ldbbs.ldmnq.com/bbs/topic/images/2023-5/95b6a684-b3e7-46a5-9f27-a5474b52031c.gif
IP 218.12.76.166:443
ASN #4837 CHINA UNICOM China169 Backbone
Certificate IssuerBeijing Xinchacha Credit Management Co., Ltd.
Subject*.ldmnq.com
Fingerprint67:C6:22:70:18:8C:8D:1C:18:77:EF:C9:FF:3D:79:77:55:92:98:4A
ValidityMon, 10 Oct 2022 06:12:34 GMT - Tue, 10 Oct 2023 06:12:33 GMT
File type GIF image data, version 89a, 960 x 80\012- data
Size 580 kB (580501 bytes)
Hash 62ed8a3729a0ef26d8c9222b9b8ab2f4
2edad13b51dec57cf917451cb53083b2b2516479
9ba6a079e2f219e626f051fa77791a10d28855f369c6bcef27cf9312a4f81996
GET /bbs/topic/images/2023-5/95b6a684-b3e7-46a5-9f27-a5474b52031c.gif HTTP/1.1
Host: ldbbs.ldmnq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Jun 2023 22:42:39 GMT
Content-Type: image/gif
Content-Length: 580501
Connection: keep-alive
Server: openresty
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
CloudServiceDiscount: CDN
x-amz-request-id: 00000187EB6609EE981482093E216CF0
ETag: "62ed8a3729a0ef26d8c9222b9b8ab2f4"
Last-Modified: Fri, 05 May 2023 10:12:09 GMT
Content-Encoding: utf-8
x-amz-storage-class: STANDARD_IA
x-amz-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSs4IXGIBHl4tlNOJfgbLnozisih6s6J
via: CHN-HEshijiazhuang-AREACUCC1-CACHE48[3],CHN-HEshijiazhuang-AREACUCC1-CACHE52[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE17[37],CHN-TJ-GLOBAL1-CACHE52[0,TCP_HIT,34]
x-hcs-proxy-type: 1
X-CCDN-CacheTTL: 2592000
nginx-hit: 1
Age: 2463948
Accept-Ranges: bytes
bmduyew66.cn/1.jpg
0.0.0.0 0 B IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1.jpg HTTP/1.1
Host: bmduyew66.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
66.tjvip1.com/template/m1938pc/css/ate.css
137.220.168.194200 OK 76 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/css/ate.css
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type ASCII text, with CRLF line terminators
Hash b49992e1f195c8a7fae8874c7484979d
d061a88013db4f88c6e518f5a9aa17a308dee2f1
b2e1235651b1e3335d325cc40542cc55ed323f88d123a1ecf2356a9a9d77bc4d
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: text/css
last-modified: Thu, 21 Apr 2022 12:25:48 GMT
vary: Accept-Encoding
etag: W/"62614d4c-126e4"
expires: Sat, 03 Jun 2023 10:42:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/html9/ads/xia.js
137.220.168.194200 OK 3.0 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/html9/ads/xia.js
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3190), with no line terminators
Hash bcecb159e9299b31e45bf2233537fc14
ebc5f6527453cce71789c53c6560db0397b7947b
de5af10acf3c86f1396ab9344471968d9f79e2415ca6bcd7979d3eee54f57472
GET /template/m1938pc/html9/ads/xia.js HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: application/javascript
last-modified: Wed, 05 Apr 2023 07:07:08 GMT
vary: Accept-Encoding
etag: W/"642d1e1c-b86"
expires: Sat, 03 Jun 2023 10:42:37 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
66.tjvip1.com/template/m1938pc/html9/ads/topshang.html
137.220.168.194200 OK 2.9 kB URL GET HTTP/2 66.tjvip1.com/template/m1938pc/html9/ads/topshang.html
IP 137.220.168.194:443
ASN #64050 BGPNET Global ASN
Certificate IssuerGoogle Trust Services LLC
Subject*.tjvip1.com
FingerprintF1:8C:2D:25:CE:62:D7:E7:71:8B:E8:36:D4:3B:BC:2D:1D:51:09:26
ValidityWed, 24 May 2023 16:12:03 GMT - Tue, 22 Aug 2023 16:12:02 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3112), with no line terminators
Hash da180fc02e2f442fbfa07cf0c1de5971
a055c9b3152a630e42e1d41d641376631c4d2a34
35ae275381c6d8c4ffcd3cf9733cd7b3507b81c85dcff67a585962f66a1bb221
GET /template/m1938pc/html9/ads/topshang.html HTTP/1.1
Host: 66.tjvip1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://66.tjvip1.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 02 Jun 2023 22:42:37 GMT
content-type: text/html
last-modified: Wed, 24 May 2023 15:25:24 GMT
vary: Accept-Encoding
etag: W/"646e2c64-b3c"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2