r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6ed951622549ed76959631f8a1bf497b
682b2dd2a72190510e3fa7bdb0c0c6f25a322dfb
86f5e5ae2da408a899d16c83b7ca441033ac0c30062cd29f2db1b1b5be666746
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86F5E5AE2DA408A899D16C83B7CA441033AC0C30062CD29F2DB1B1B5BE666746"
Last-Modified: Sat, 19 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2728
Expires: Sat, 19 Nov 2022 12:18:53 GMT
Date: Sat, 19 Nov 2022 11:33:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67f53a639d57dd6237b5be86fe4f6c1b
287f09532dc331228d09c20b75f4160e91e9800a
41913a8af366685c42af59e9d8e02fccedbe68a3313d2d9fe353deb0c1019075
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6435
Cache-Control: max-age=89097
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:25 GMT
Etag: "63775eeb-1d7"
Expires: Sun, 20 Nov 2022 12:18:22 GMT
Last-Modified: Fri, 18 Nov 2022 10:31:07 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3382
Expires: Sat, 19 Nov 2022 12:29:47 GMT
Date: Sat, 19 Nov 2022 11:33:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 19 Nov 2022 10:45:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2897
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CLfZQuVjBLf0HGSwDVMJO3OAQobvUsf/4zghdbzOvkNAZ+ZMsbe/fUEP2QGVTJHV2modlNu2lsE=
x-amz-request-id: 5431VZPX5705ZMN7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 19 Nov 2022 11:16:00 GMT
age: 1045
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 11:33:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 19 Nov 2022 11:25:01 GMT
cache-control: public,max-age=3600
age: 504
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
datsufurita.com/ddjbhq/133.html
154.221.160.226301 Moved Permanently 0 B URL HTTP/1.1 datsufurita.com/ddjbhq/133.html
IP 154.221.160.226:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddjbhq/133.html HTTP/1.1
Host: datsufurita.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 19 Nov 2022 11:33:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.datsufurita.com/ddjbhq/133.html
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 060d538b33e370fcd033339830d33a42
4a37d427988358eb318e18e2678c3484ef4a5ebd
efa33f92547243814b5bd3bca4f94d26055d590a4431611b3ba251a8d774bfbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4399
Cache-Control: max-age=168406
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:25 GMT
Etag: "63789cac-1d7"
Expires: Mon, 21 Nov 2022 10:20:11 GMT
Last-Modified: Sat, 19 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.212.166.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.212.166.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RF5iEIkl0GJn2m3sTCVK8w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ga69pUsQHLT+OOiwtsAWwTqWHmo=
www.datsufurita.com/ddjbhq/133.html
154.221.160.226200 OK 556 B URL HTTP/1.1 www.datsufurita.com/ddjbhq/133.html
IP 154.221.160.226:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (745), with CRLF line terminators
Hash 38b61c1570506d4c85047a9c6faa9386
75fb66d2d04bd37fcd203c25be4e7f41f1d5132f
343d92b7eb307142865099c2c89b8ffc3f211aac3c8e7438810bf128f1490113
GET /ddjbhq/133.html HTTP/1.1
Host: www.datsufurita.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.datsufurita.com/common.js
154.221.160.226200 OK 818 B URL HTTP/1.1 www.datsufurita.com/common.js
IP 154.221.160.226:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 311949211e2fcf52b2e3e126528a5581
f8387ace1e5b0b95e176095d8fd6a687b5bbcd80
7623e5814dff18d0148d2fd057638f313bd16484b616d1747d9e073e2b2a79ec
GET /common.js HTTP/1.1
Host: www.datsufurita.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.datsufurita.com/ddjbhq/133.html
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:26 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.datsufurita.com/tj.js
154.221.160.226200 OK 258 B URL HTTP/1.1 www.datsufurita.com/tj.js
IP 154.221.160.226:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ASCII text, with CRLF line terminators
Hash 493a8e159bfc2a1486bf5386e0393487
66b7be919fa7f7b8d944f3388ab5d2f2d3ada808
212922a08d44e458eaac0971b7391e66c225ec41a7f13c5869e263855ea2c8e4
GET /tj.js HTTP/1.1
Host: www.datsufurita.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.datsufurita.com/ddjbhq/133.html
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:26 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4983
Expires: Sat, 19 Nov 2022 12:56:30 GMT
Date: Sat, 19 Nov 2022 11:33:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4983
Expires: Sat, 19 Nov 2022 12:56:30 GMT
Date: Sat, 19 Nov 2022 11:33:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4983
Expires: Sat, 19 Nov 2022 12:56:30 GMT
Date: Sat, 19 Nov 2022 11:33:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PYoD_MxycYfiNvyRlBnLWCcyqQK9sZi8y2ir1U9eCavNoAB-3oFcxg==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 03:43:53 GMT
age: 28174
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F640a732f-1fd9-47b0-8311-39061579f99b.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F640a732f-1fd9-47b0-8311-39061579f99b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cf981b1ea47b981c73aa1f291be4d8a
d18b869e1940841e9b03f66f5608e381f1727b37
3352a04b9596b594aeb5de3dc70047196a830e3ca79babf7c1b72ff1103b2d26
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F640a732f-1fd9-47b0-8311-39061579f99b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7754
x-amzn-requestid: 2c21447c-03bb-4e50-9eeb-a8ae86c0d204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QRmFuiIAMFjWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa70-7a7e65fc5d443a1d70feb62b;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:40 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MFN-Yhp70fPLS4R_tVxEvzt-YQ7COwXaXrmifEfXfpiC0epJHSJq7w==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:25 GMT
age: 50222
etag: "d18b869e1940841e9b03f66f5608e381f1727b37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6b026c34985bbf2ebf89a62d0724c66
72369ebeccf447fa91ef77711d6297063c99777e
e5598ada634274ab9995dedda8c1fd18344abcfdd49b3a1aaede0a86fafc0f40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0d2467c-b158-442b-92be-e4cb236d17fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3035
x-amzn-requestid: 3e3f3a7f-9a1d-4b37-b932-22c6e3e638f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QRcFOuoAMF_fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6f-09dc20ea5620dd167e3f7265;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xvVfLfP2DUilu7GSJMGArO90Kdoq5cPBVtmtyVjZmX5ZKnvOjpR_UQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 21:36:25 GMT
age: 50222
etag: "72369ebeccf447fa91ef77711d6297063c99777e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9472302a-1f5a-4747-8dae-6de1346c8e14.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9472302a-1f5a-4747-8dae-6de1346c8e14.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1b428c8fece61cb8500ff6f6152efcc0
2667b5a57a13817a95e2e82b0f96dc3456afca00
53403b823626d7cd0b88f33e924b55274c7283397075d074303faaf4eaafdc49
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9472302a-1f5a-4747-8dae-6de1346c8e14.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9235
x-amzn-requestid: 01e6ce53-df49-40c9-8002-4f063d085898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: beZlTE9oIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f3c88-6470fa1b7a9ad45e63fc485c;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 06:26:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1HrMFgOYkXaPg5VO1MRTQSNNf0JN9GL5PfLk-STEWg-1h01SmSs4wg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 18 Nov 2022 12:39:59 GMT
age: 82408
etag: "2667b5a57a13817a95e2e82b0f96dc3456afca00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e1d1acd-0ae6-485d-9dd4-2c0c8271a9d3.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e1d1acd-0ae6-485d-9dd4-2c0c8271a9d3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11bb9d337001b4d155c63b05a0dd9945
14de1c48a2fe80b5947945c9ffa9630f03c5447a
8ee6d3a2f6dec36c49361ef855edeb170e92fbeff29d2ed77c7fd0cf44cfecf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e1d1acd-0ae6-485d-9dd4-2c0c8271a9d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9146
x-amzn-requestid: e42f040e-a2f9-4538-bbaf-f1e64719f424
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brsmpGr5oAMFsmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748e2a-15b03190049271db549b1770;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:15:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: OjQm2RW65ZJDsUNay0untDwlufnFhXHwbpfAnCwEK3seEDiPIKrnfQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 07:00:02 GMT
age: 16405
etag: "14de1c48a2fe80b5947945c9ffa9630f03c5447a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ca9564d-7ca4-4217-8162-042e0f55563e.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ca9564d-7ca4-4217-8162-042e0f55563e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 84839dd7a1d5d50d40a848e92d3ae6ca
150c83236b3518afce551ef94e2c3dddc275ce3f
fb9fffd5dafa855d3f16aefcdf31f656ea5219547a91b336ab41a998ead28050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ca9564d-7ca4-4217-8162-042e0f55563e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6103
x-amzn-requestid: 4f0d1ea8-611c-48cf-be66-dd26b6d56a93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubTBFxDoAMFfYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5ac-4222e7656cb7a56b557d5b13;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:28 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: eVbxWxzd0WCUQKztoedT6XAn3I3d2LApn8W0usl5HXTmMl8qCjrBnA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 04:04:52 GMT
age: 26915
etag: "150c83236b3518afce551ef94e2c3dddc275ce3f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.datsufurita.com/favicon.ico
154.221.160.226200 OK 1.2 kB URL HTTP/1.1 www.datsufurita.com/favicon.ico
IP 154.221.160.226:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.datsufurita.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.datsufurita.com/ddjbhq/133.html
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Thu, 24 Nov 2022 11:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
haitv2.top/
103.104.105.117200 OK 16 kB IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (546), with CRLF, LF line terminators
Hash d47cfaed2687a2734e876a09ccef2484
2a4ffa8c1654ef8256a3f8e6f8bcdeed695cbbd1
be0e3e9b8da8dace0b854603fba2bca33f5d368f1eea62cec36d151145f40614
GET / HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.datsufurita.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/js/bootstrap.min.js
103.104.105.117200 OK 13 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/js/bootstrap.min.js
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type ASCII text, with very long lines (39553)
Hash 89cfee4061db2dd37f5e2668f1c7ebfb
1ecc979a3bc78d4987cb642f3f64e80d56d57d39
dcff2dfb3ebcdba16ed0e4b9024fa681edc77ace8a686d9bd5aea6dc282e8168
GET /template/m1938pc/static/js/bootstrap.min.js HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-9b00"
Expires: Sat, 19 Nov 2022 23:33:27 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/js/jquery.lazyload.min.js
103.104.105.117200 OK 1.3 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/js/jquery.lazyload.min.js
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type ASCII text, with very long lines (3309)
Hash 8e5f2c601d9dc5b0d53cb406774e99c9
562d3c568f650e9cc977328d440fc94c46fe9f8e
0f18d8d9a5b33df370579bebc38911b2f344a8fb99bcdd66e83a6fa48c25e01a
GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-d35"
Expires: Sat, 19 Nov 2022 23:33:27 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/css/swiper.min.css
103.104.105.117200 OK 3.3 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/css/swiper.min.css
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type ASCII text, with very long lines (17459)
Hash e73a49e6a4e9772b6add191cf694bd34
00038fe32a6e97fbbeb281939adfb363cdd5f54f
5a1a24bd85867233f36de37f59b96bfeeb4290619781494713b8216902b30988
GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-455f"
Expires: Sat, 19 Nov 2022 23:33:27 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/js/jquery.min.js
103.104.105.117200 OK 38 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/js/jquery.min.js
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type ASCII text, with very long lines (32077)
Hash c0750a85ce0399accd8ded17e2564d6b
ba767d35271e9b39305f156814495650f269ddb6
9de8ff805e6807598c4c2987a8368ff4b2240606f6285902c844baf5a04655ac
GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-17b8b"
Expires: Sat, 19 Nov 2022 23:33:27 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/js/swiper.min.js
103.104.105.117200 OK 28 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/js/swiper.min.js
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type ASCII text, with very long lines (31999)
Hash 3694d961c3b4a420105cf9563c4cafe7
f75e4b2319d4bc0ea3af5ad3b8cf2e0679575767
3e5b269624b5703cb234c5217a66e9e77b5ffe6f70e2dd0425f3a8951dcba27c
GET /template/m1938pc/static/js/swiper.min.js HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-178a3"
Expires: Sat, 19 Nov 2022 23:33:27 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/css/common.css
103.104.105.117200 OK 1.7 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/css/common.css
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
Hash 1bfc16865e4e7621e5c91f2a4505e7fe
7b556b6e7f13fc6e86ab74b1e8b539fc30d7af89
dd1cca1a3a887f0bf1af7b0c06fe6ef5f0cdfa720d9f3c7230843830ba709c26
GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-19c0"
Expires: Sat, 19 Nov 2022 23:33:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/css/bootstrap.min.css
103.104.105.117200 OK 24 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/css/bootstrap.min.css
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type ASCII text, with very long lines (65369)
Hash fa8eee12898882e0b97ca29c7920c483
427b362e999391c7ad6d1c37e0178a4fc906fa10
239818d1da6510c291bb39dfa0b5f5873a81a4d63ae877fe97a9053842b58cf2
GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:27 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-1da6a"
Expires: Sat, 19 Nov 2022 23:33:27 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
haitv2.top/template/m1938pc/static/js/global.js
103.104.105.117200 OK 225 B URL HTTP/1.1 haitv2.top/template/m1938pc/static/js/global.js
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
Hash daa83033a5dfaa134d09d60dad0f02ec
c6bc6e2ba0d0d84ae34d3e7ec586d5b2884f6539
868c454612344976f793e1a2c8a20d947f4b90cb4784509ab146c561590f2226
GET /template/m1938pc/static/js/global.js HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: application/javascript
Content-Length: 225
Last-Modified: Sat, 12 Nov 2022 16:24:06 GMT
Connection: keep-alive
ETag: "636fc8a6-e1"
Expires: Sat, 19 Nov 2022 23:33:28 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
haitv2.top/template/m1938pc/static/css/style.css
103.104.105.117200 OK 9.6 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/css/style.css
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type assembler source, Unicode text, UTF-8 text, with very long lines (367)
Hash 76c3cfbf09c2924d1324d18e71e4086c
e2955681a2b3e4806b34e4953517088ae3875059
48e3528c19a5f4f1dbd10bf600f3232f614369099eabb26a55b2baada479de09
GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: text/css
Last-Modified: Thu, 03 Jun 2021 01:54:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b83650-bf0e"
Expires: Sat, 19 Nov 2022 23:33:28 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 44a7fbbad7a5cd0bd91e9d0d761645f0
16a824cf8bd08d5a4d1d8929e4e0e0e9129fd17b
145d02985397f80caa25bd7f609531a095c7d66c4b6f8cc6f6aaad7710031365
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 23 Nov 2022 10:57:07 GMT
ETag: "16a824cf8bd08d5a4d1d8929e4e0e0e9129fd17b"
Last-Modified: Sat, 19 Nov 2022 10:57:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 224
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76c8a1938bb61c0e-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 44a7fbbad7a5cd0bd91e9d0d761645f0
16a824cf8bd08d5a4d1d8929e4e0e0e9129fd17b
145d02985397f80caa25bd7f609531a095c7d66c4b6f8cc6f6aaad7710031365
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 23 Nov 2022 10:57:07 GMT
ETag: "16a824cf8bd08d5a4d1d8929e4e0e0e9129fd17b"
Last-Modified: Sat, 19 Nov 2022 10:57:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 224
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76c8a1938cc8fab8-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 44a7fbbad7a5cd0bd91e9d0d761645f0
16a824cf8bd08d5a4d1d8929e4e0e0e9129fd17b
145d02985397f80caa25bd7f609531a095c7d66c4b6f8cc6f6aaad7710031365
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 23 Nov 2022 10:57:07 GMT
ETag: "16a824cf8bd08d5a4d1d8929e4e0e0e9129fd17b"
Last-Modified: Sat, 19 Nov 2022 10:57:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 224
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76c8a1938cf21c0a-OSL
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP 142.250.74.35:0
Hash c9bcfe54c94a380e77059f1fac760fa1
621abcbf688a62934f737eca29a7c8d6d9391ee7
8a5d9dc2cb163afb727010982d0b4ab8ed6747773ac77e76508db9a616cf6821
POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP 142.250.74.35:0
Hash c9bcfe54c94a380e77059f1fac760fa1
621abcbf688a62934f737eca29a7c8d6d9391ee7
8a5d9dc2cb163afb727010982d0b4ab8ed6747773ac77e76508db9a616cf6821
POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP 142.250.74.35:0
Hash c9bcfe54c94a380e77059f1fac760fa1
621abcbf688a62934f737eca29a7c8d6d9391ee7
8a5d9dc2cb163afb727010982d0b4ab8ed6747773ac77e76508db9a616cf6821
POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
madou8img.5100m.xyz/videos/202207/12/62cc48cde1da021e541ba41e/poster2.jpg
104.21.234.135200 OK 28 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/12/62cc48cde1da021e541ba41e/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 6f493549b19ca7e738d9177a8da529c5
180d201b016cf85e5815c0d3e51829a24e586e18
fe53933706f64c8e56030499881556c3b9aa072e53cf9b9e5a409da9c070e9f8
GET /videos/202207/12/62cc48cde1da021e541ba41e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 28319
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Mon, 11 Jul 2022 16:05:14 GMT
etag: W/"6e9f-181ee01f290"
expires: Sat, 19 Nov 2022 14:28:24 GMT
cf-cache-status: HIT
age: 32705
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wHV4mJX4pqQaSeBW2Fom3SRa9qLbPEYONffSQpczfQytmrh9g%2FgAcOHDOxotAv0EarH4DlRX7aALS8%2Fovk%2FAX2tosxWfxmN%2BY7X1TC171jpIX5sxoCr8MptZeByqyCtnrXPyvsms"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f944071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP 142.250.74.35:0
Hash dfe6fc0db0d8bad422499549cbfc6caf
21b5326a3f6343b8bf51be45ce0049cdc4dd8d6b
32a80c76e8f9c7b1169bde3dca3acf479ecde04302ab6dca580c2a741179e84c
POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP 142.250.74.35:0
Hash 60ddded686f7c60b552c2a04e3589782
d2a37d34a5f26ee90caeea89dfa96bb24d2f11b8
b855b6e99050dc6324909cf90b8b4ee8ed0b07bb80557fe6c55c6cc2e4b94d5d
POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
madou8img.5100m.xyz/videos/202208/18/62fdb93016e238270baecedc/poster2.jpg
104.21.234.135200 OK 44 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/18/62fdb93016e238270baecedc/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 7bc8c665958d6a03daed91de16a3eb04
60987a28a8c15476a3480136e3513460595ad370
a1d9cea63551099f8a05222e283c94bbc2df2be0a5d776dcb514504cc0018eac
GET /videos/202208/18/62fdb93016e238270baecedc/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 44432
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Thu, 18 Aug 2022 04:19:36 GMT
etag: W/"ad90-182af2d97a0"
expires: Sat, 19 Nov 2022 14:28:25 GMT
cf-cache-status: HIT
age: 32704
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xW5b%2B%2Fe92oqDoAbtGOiiAFHzeOWUpRc1d80X%2BrMYGxYB7Rarxkm%2BrL7GkLEfv0b0JxRV0zou0%2B%2FcP5kUoP%2BHK0i%2BPh5w88OzLZa2caNkC%2FyJjmMbQn25Otl1ofEhb34i%2B7dLPW9M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f94d071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.tukky.vip/91uu/91uuspk200.gif
104.21.27.152200 OK 330 kB URL HTTP/2 www.tukky.vip/91uu/91uuspk200.gif
IP 104.21.27.152:0
File type GIF image data, version 89a, 320 x 200\012- data
Size 330 kB (329800 bytes)
Hash c8515e829d6c15278640453ade073548
20019ae01ae180c537c65d9370dd6dff01e56346
6ca0b4ef7e96f09b8fdb715877485314fa5da8e9e9b501f7d0906609a003f894
GET /91uu/91uuspk200.gif HTTP/1.1
Host: www.tukky.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 329800
last-modified: Mon, 17 Oct 2022 03:32:11 GMT
etag: "634cccbb-50848"
expires: Sun, 11 Dec 2022 12:01:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 649123
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gtv%2FqKXO5YywdOLXLgKnX3DvR7iIlKFTNo7D1vnCbcYQBaIyZMjop2vrulX6o5G%2B9znpb9XBbf4OuI6vT68%2BcylOkTjlrbOtaKCMEiZmrPxwUowBG3AmCwBS5YKME%2BIr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1992d9db51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/14/62cf371a09ff283a6866d917/poster2.jpg
104.21.234.135200 OK 30 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/14/62cf371a09ff283a6866d917/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 8f12f3cf9dd708956f7c6b0dbc9501e2
1bd092bf082e2322f5f42483a6618534be6321e3
f34b8552787a74db46a7d6e4a9ceaba7d3d21e63e6961737d4c80dfad5b8864a
GET /videos/202207/14/62cf371a09ff283a6866d917/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 29461
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 13 Jul 2022 22:22:34 GMT
etag: W/"7315-181f9a82010"
expires: Sat, 19 Nov 2022 15:27:14 GMT
cf-cache-status: HIT
age: 29175
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2s8zypKA3Qq3%2FIOkYTaNB7%2Fesxu5mMhnSQ%2BsAMrEy5%2FXqckLKOPm9PCpI7kMUtxQvKrqVGeMBwVOViR%2BdrYBbFKxT9O3%2FGukyby0PXyOo9h3XheXUDgr8qGIDZ1Q8yYvOPix8dzV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f952071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/14/62cf37239fb1893abe3fe43c/poster2.jpg
104.21.234.135200 OK 24 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/14/62cf37239fb1893abe3fe43c/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash ef91fe0a5149c671ca33da6eebfad05a
cc8e732cedf02a7ced39454f1063098d88a10e69
14d97002a4a5582615271b3c6f5555ffd70933efc8f70ab00a6fddd611243ac9
GET /videos/202207/14/62cf37239fb1893abe3fe43c/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 24306
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 13 Jul 2022 22:11:42 GMT
etag: W/"5ef2-181f99e2d30"
expires: Sat, 19 Nov 2022 14:28:25 GMT
cf-cache-status: HIT
age: 32704
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KT%2Fp9zL%2FHLtOFri0uC0Pxe6wTQrtwOL%2F9yEsgzpI5z9V3unM1iKNSpzM0%2F1Cs6Huc7aEvKEv3oz76mm6%2FQNXdGLaCug26WyPf41pniH8Jmwi5vt69EbFFdTch52LZy59sG4TBKUI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f955071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 87341f6d032c0414f434f1dccea53e31
eb92b525306179aa1764282a3320a9be650af2e6
c862ef1020d958cf48cd19777ba57032b855a66578b51d3349cd54cd03ac7287
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 19 Nov 2022 11:14:48 GMT
last-modified: Tue, 15 Nov 2022 23:26:26 GMT
expires: Tue, 22 Nov 2022 23:26:25 GMT
etag: "eb92b525306179aa1764282a3320a9be650af2e6"
cache-control: max-age=602887,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb1
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 76c8863f5e679c0d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1668856488
via: cache19.l2de2[0,0,304-0,H], cache14.l2de2[0,0], cache5.se1[0,0,200-0,H], cache1.se1[2,0], cache5.se1[3,0]
age: 1121
x-cache: HIT TCP_MEM_HIT dirn:1:393489526
x-swift-savetime: Sat, 19 Nov 2022 11:18:31 GMT
x-swift-cachetime: 1577
timing-allow-origin: *, *
eagleid: 2ff62c9916688576091271997e, 2ff62c9916688576091271997e
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP 142.250.74.35:0
Hash 60ddded686f7c60b552c2a04e3589782
d2a37d34a5f26ee90caeea89dfa96bb24d2f11b8
b855b6e99050dc6324909cf90b8b4ee8ed0b07bb80557fe6c55c6cc2e4b94d5d
POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
madou8img.5100m.xyz/videos/202208/21/63010a5c9893d994c66c61d6/poster2.jpg
104.21.234.135200 OK 25 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/21/63010a5c9893d994c66c61d6/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x280, components 3\012- data
Hash 3a503f1a2038998a2739b8e12a9e49d3
0db0dfac0db640554cbad4d06903961b2ee77d6c
4ddf145695f624b02a53e988a5e05a19cfeb00ffd22fbb437ec2b02b9ac30634
GET /videos/202208/21/63010a5c9893d994c66c61d6/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 24737
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sat, 20 Aug 2022 17:51:28 GMT
etag: W/"60a1-182bc619553"
expires: Sat, 19 Nov 2022 22:43:57 GMT
cf-cache-status: HIT
age: 2972
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AHkEQkNUjeKPM%2Fxcr4%2BEPHc35ta0eRXaiZ2XmAGYzBgUapYi9HstU7Jj9vJF%2B9gihWgEM5gtnYE1zbqY6JA1V9m4QYpX%2B%2B05SWDlm5oTeliqqkkDhctJk2KxLtzec8GK%2BDUp30Ub"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199198a071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 87341f6d032c0414f434f1dccea53e31
eb92b525306179aa1764282a3320a9be650af2e6
c862ef1020d958cf48cd19777ba57032b855a66578b51d3349cd54cd03ac7287
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 19 Nov 2022 11:14:48 GMT
last-modified: Tue, 15 Nov 2022 23:26:26 GMT
expires: Tue, 22 Nov 2022 23:26:25 GMT
etag: "eb92b525306179aa1764282a3320a9be650af2e6"
cache-control: max-age=602887,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb1
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 76c8863f5e679c0d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1668856488
via: cache19.l2de2[0,0,304-0,H], cache14.l2de2[0,0], cache5.se1[0,0,200-0,H], cache1.se1[1,0], cache5.se1[2,0]
age: 1121
x-cache: HIT TCP_MEM_HIT dirn:1:393489526
x-swift-savetime: Sat, 19 Nov 2022 11:18:31 GMT
x-swift-cachetime: 1577
timing-allow-origin: *, *
eagleid: 2ff62c9916688576091582019e, 2ff62c9916688576091582019e
madou8img.5100m.xyz/videos/202207/14/62cf2b89615ec43b0fe7f542/poster2.jpg
104.21.234.135200 OK 18 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/14/62cf2b89615ec43b0fe7f542/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 8c41d3a8ea2ba55e3fdcc73d678aebf8
3e0a006d5ab303121342594ae6e19597f96f88b5
e5c1b7e1583a793b8335d253b1eabf2e4f351022b1b5f05483a35b64c2130a2e
GET /videos/202207/14/62cf2b89615ec43b0fe7f542/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 18461
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 13 Jul 2022 20:35:12 GMT
etag: W/"481d-181f945d400"
expires: Sat, 19 Nov 2022 14:28:25 GMT
cf-cache-status: HIT
age: 32704
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iMVSSvpxmRW3%2FVGFrHN3c6xkGUZDGitXWZhhJQWTAwRbalhtWXjXQD8DSBLYSS8F3TwrZuUkEuJasqB5BYw0C08eyGP4ztxkMT6KTDFNIT7pCmzcOvXcehu%2Bd5mlektZbSl8yT2R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a19929a9071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3e25d4ff21e229b707cd4/poster2.jpg
104.21.234.135200 OK 46 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3e25d4ff21e229b707cd4/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash eeb25552899daf4cae71f8419bc8e65f
0377a0c986c9a64938424415a7de1933c253379f
247cd7dd155a6f90dd163e86afee7f6f5ca2ccbc059371a283fb6185cb5d8a95
GET /videos/202207/17/62d3e25d4ff21e229b707cd4/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 46057
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 11:08:26 GMT
etag: W/"b3e9-1820bd86010"
expires: Sat, 19 Nov 2022 14:28:29 GMT
cf-cache-status: HIT
age: 32700
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kodFJfLKI01UE9Ma2kUXTX59wIjc1TJKEbDRUp2d63jVCCiCPqHgT45pzMc9LPUwR3B4LSRsitoGEMHDf3F%2BeNN0s5G1VDyhxWgT9sLO0%2FMLJcrTvNtMm20Cp4zOeEF8OwYVunMM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199198c071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/13/62cdcd3d4d2de19fc03080ae/poster2.jpg
104.21.234.135200 OK 50 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/13/62cdcd3d4d2de19fc03080ae/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x394, components 3\012- data
Hash f8481093ac9e6177717f87db11e07334
f471620262f28440bda5130b4ff7a012cd9152bd
cdb90d99dae1a5b7120fa9c8b76f1f80a418a35087307471777a9f8c037ff359
GET /videos/202207/13/62cdcd3d4d2de19fc03080ae/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 49885
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 12 Jul 2022 20:03:42 GMT
etag: W/"c2dd-181f402a130"
expires: Sat, 19 Nov 2022 14:28:25 GMT
cf-cache-status: HIT
age: 32704
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vDU2CypJsiCIJuCNYXpZc%2Bo%2F9XTF4mS1A%2FwM0HIVLva5497sYupAlxULyAMI7FKaU14Xt0hQudUsW7ZQ6H%2Bt9Mw%2FfsvtGtwOtFI0HblIjS2FUyqHsneQnItTRReDeloK2nSuKSeM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991992071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/17/62fcbce731a1d92735a47131/poster2.jpg
104.21.234.135200 OK 34 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/17/62fcbce731a1d92735a47131/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 2e7aea8b985f0a064363c02cfae6c3d2
c199dc9e790934b1c4372f1e21dfbdb42be2182c
b548de6d44554b1912c63719e3200a6a073b326562a3f82a8f82730df5344eb9
GET /videos/202208/17/62fcbce731a1d92735a47131/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 34227
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 17 Aug 2022 10:08:03 GMT
etag: W/"85b3-182ab463cd2"
expires: Sat, 19 Nov 2022 14:28:29 GMT
cf-cache-status: HIT
age: 32700
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e4JGssAeolfSfVuvCsnE79NcI3AfUy4ChyV5jAoBGzKzA3VAAJsMzwK9L841dIgrQybM%2BQTMlEs3%2BwKI5IDeghrax4jt72T%2Frt9p7lIS1NDrvA1sAoic4XME4AzWX7hm6CZqqdS7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991980071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3b6f17c9b732281081699/poster2.jpg
104.21.234.135200 OK 54 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3b6f17c9b732281081699/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash d7299360666c90f75e24f6b21c5cfd80
774c4fe7dab9f6122c87912aeed3c668529a5167
a92c061ff9a3e8ebb3ad7794c0a950196750a14424567121393116ff3806fc3e
GET /videos/202207/17/62d3b6f17c9b732281081699/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 53839
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 08:01:35 GMT
etag: W/"d24f-1820b2d4f18"
expires: Sat, 19 Nov 2022 14:28:29 GMT
cf-cache-status: HIT
age: 32700
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rXrwrLmUzxWcAN7QViHuzuNiP4IgZWq7R5yLecbaE%2FodbABkQW5nyAZ8xH6B0oWNAntTJ3EVDVPwqv4M3x468pe2mhmdehcL1wpwsTKb0fEXdSeKuDguhqhJeIjO%2Bwrr2OrKdLdB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991991071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3b6944ff21e229b707389/poster2.jpg
104.21.234.135200 OK 54 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3b6944ff21e229b707389/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 5d6db5ac9310c0a0d04a686e02ada8a9
9833534bef1ac6e8092592e55e35395b4542dad0
f51dc6665c9efc61ed36218d3dbe96b558bd67c2b4dad644573472de352ffbe2
GET /videos/202207/17/62d3b6944ff21e229b707389/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 54347
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 08:04:37 GMT
etag: W/"d44b-1820b301608"
expires: Sat, 19 Nov 2022 15:27:14 GMT
cf-cache-status: HIT
age: 29175
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HnQeqi26xRHd%2ByiLA6tGd40naARbEEMFRo8tf5aw9olYgPtEn0J0qsuNntT41Zcg2yZSDF1Tl1keJEkXblaRjGIfnafaXgpV0IEB9Zg%2Fvk7hQakAiFgaenUwb1ut%2FaBbmwh7DCa9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199198e071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/13/62cdcbfeb46f049fd1ae9f2b/poster2.jpg
104.21.234.135200 OK 89 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/13/62cdcbfeb46f049fd1ae9f2b/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Hash 68db26bb7585c13fe2bed31af6387cc1
7493acce0d27d1a371b1ad083d7dc57b47d1c710
5a0f09fc6b64aa936a6eecdd45cab2984de04eeb7500a5d91b4afc5b84583634
GET /videos/202207/13/62cdcbfeb46f049fd1ae9f2b/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 89441
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 12 Jul 2022 20:11:35 GMT
etag: W/"15d61-181f409d8d8"
expires: Sat, 19 Nov 2022 14:28:25 GMT
cf-cache-status: HIT
age: 32704
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R7XghOAcJJptnwWFRPOV8DLiFNWsxGPERIytV4BzeAdUA1Ttk5OUimonYYf%2FPXVm9O2tUUBkYCrkwkXQTrn0ONNYiMsVlt9Hidg0ua242Hib6QJkkCDw9U7ICxZxEJNTRz0dDX0P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f949071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 87341f6d032c0414f434f1dccea53e31
eb92b525306179aa1764282a3320a9be650af2e6
c862ef1020d958cf48cd19777ba57032b855a66578b51d3349cd54cd03ac7287
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 19 Nov 2022 11:14:48 GMT
last-modified: Tue, 15 Nov 2022 23:26:26 GMT
expires: Tue, 22 Nov 2022 23:26:25 GMT
etag: "eb92b525306179aa1764282a3320a9be650af2e6"
cache-control: max-age=602887,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb1
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 76c8863f5e679c0d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1668856488
via: cache19.l2de2[0,0,304-0,H], cache14.l2de2[0,0], cache5.se1[0,0,200-0,H], cache1.se1[1,0], cache5.se1[2,0]
age: 1121
x-cache: HIT TCP_MEM_HIT dirn:1:393489526
x-swift-savetime: Sat, 19 Nov 2022 11:18:31 GMT
x-swift-cachetime: 1577
timing-allow-origin: *, *
eagleid: 2ff62c9916688576091792032e, 2ff62c9916688576091792032e
www.tukudhgg.vip/lm/klm01.gif
104.21.69.128200 OK 78 kB URL HTTP/2 www.tukudhgg.vip/lm/klm01.gif
IP 104.21.69.128:0
File type GIF image data, version 89a, 320 x 190\012- data
Hash f12d32b75b26394038be19df19aea586
286e3cee23dee594ce497c1f2020ccb842e0ae69
06a090053e07f41505d1949525aa511001d14069cb8560f933d60740f9e3eba9
GET /lm/klm01.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 78524
last-modified: Wed, 24 Aug 2022 10:34:37 GMT
etag: "6305febd-132bc"
expires: Sun, 04 Dec 2022 02:26:51 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1288436
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ft%2F0jBNML7Wo2nxIQwQiAzszOtxFjJ%2FRGxQi45EaDNtxn0H7VTqIJrp1pgaO2YV2Ji9SypiAI40jAtKo1X0ZoW1W42nuKPtxz078g%2BoVwQbHjSQYCu99QQNtJ4GQaYiFusB2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1997be6b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/14/62cf35c5615ec43b0fe7f641/poster2.jpg
104.21.234.135200 OK 26 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/14/62cf35c5615ec43b0fe7f641/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash a05db063a869ebada86e643837d6f5c4
d12e7eb908a12b3758c28d0a6f74e63ac1eab6a4
63e6b86c6b21b5398f84bf8f5e1581dde20930fe725e79981a549c2d68187bd7
GET /videos/202207/14/62cf35c5615ec43b0fe7f641/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 26269
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 13 Jul 2022 22:21:35 GMT
etag: W/"669d-181f9a73998"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oqsdOSPHuP8fZNBCp8junREvLaPfvvgOFb4ucWAKQCh2pQJaZK8vHG7bsat1tgHrCBP0dvIHphQhMZI6QvVyfwpxjOzJ647cPxLz8hRWXMxu%2F6IsqfggyuEqkbtnmyMN%2Fh1bVgQr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f94f071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg
104.21.234.135200 OK 46 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x340, components 3\012- data
Hash 8cee135b65dc2de4efafc419f4b353d0
fffc6829df1aa62783f66eca0ac618512d64dbe8
28cf9e87185f5cff027ac436cd6fe1b1b7f44e5b31df3e18c99f0898d1785932
GET /videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 46200
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=43200
last-modified: Wed, 17 Aug 2022 19:41:16 GMT
etag: W/"b478-182ad53098f"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WOEMEri%2FX9Y6ytUqFSZDTAFf0SVE%2B2KfPCANR31lRWJnZ5HYZOw1CghF3I2ZVxdePLmt%2Bo5YtmoERjnCeCXj0VaoX%2FTMEYH2ubtGEaHeUBWQjgcYt8gRDIgUEArfzwCCZcrOf9UT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f94b071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/09/62f1d9dbd0f295073a9ec042/poster2.jpg
104.21.234.135200 OK 88 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/09/62f1d9dbd0f295073a9ec042/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x402, components 3\012- data
Hash aa1b57f27793ac9858c14523b2047a20
ae4b8cd57d13252a5c0d27f75f2c67500dd9d8f9
8d3d640dff78bfb88deb96ca8f848f9f09f89dca86f1fbf309e6fdba906c7bed
GET /videos/202208/09/62f1d9dbd0f295073a9ec042/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 87995
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 09 Aug 2022 04:44:52 GMT
etag: W/"157bb-18280eb79e0"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xloL01UVvzYqQYOx6mQfaTn%2FHxOEhwsOBETxVjnAhmEihbyon52oJ3JzcoEQt0inBUzx4WtyfOSs6f9FshS8miXnlpkyv31U7piGQKsWi7OGyGQDGvC0JDFWLUSeP6oqj6%2FlT1Kn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a198f954071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/17/62fbfa45756fb8e7c617b3f4/poster2.jpg
104.21.234.135200 OK 27 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/17/62fbfa45756fb8e7c617b3f4/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x336, components 3\012- data
Hash 1b0ea0925930f036d27b6555ce4bb0e0
cbd58990f04e31692215e9ee3e57bc0cd094f091
5a1411aa7009bc2e2fe121baeab305c893dbdee3f6591c99226ef8aef32a1f32
GET /videos/202208/17/62fbfa45756fb8e7c617b3f4/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 26621
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 16 Aug 2022 21:46:02 GMT
etag: W/"67fd-182a89ee830"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pPnk6StG3dFptSiTgaWiCaPitb1XQuvGe7%2FAUe1Gs3EfUHc77FVrNzKfzFgmRT9jp5QFOrlcCFBeP9xprKOA%2FI4tVE1GGah57IZ1gJ6JYEPvnD41bmH1wv%2FgLeAOttgWdd4BkpT2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991984071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/12/62cd34d4a5acf01e97977694/poster2.jpg
104.21.234.135200 OK 31 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/12/62cd34d4a5acf01e97977694/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash bf726185df72f3d652071997ddc47cdb
32dab266cee99203e4efbed06c1ebbe779f975dd
43352c54dd34ca72d9d8c6bfaac3704e1767313f57405ad73f5acfd43e5af0db
GET /videos/202207/12/62cd34d4a5acf01e97977694/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 31410
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 12 Jul 2022 08:55:59 GMT
etag: W/"7ab2-181f19f5118"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4MVRxcu9qps4pb%2FAAKhtaE6dlFmz6qOBEYaLQjiCZbzLA5%2BykbNn5UfI7uTpknxsJHWMYTGtwNXxKmZAbCesfcthWBXTt1x2fsWRQnT9icTFB5qg2oV4EuHaMvSW4ByyuMe1eTFY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991998071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202209/12/631dff2acd606f04605db1a2/poster2.jpg
104.21.234.135200 OK 22 kB URL HTTP/2 madou8img.5100m.xyz/videos/202209/12/631dff2acd606f04605db1a2/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash a4d6b4136d83b8923173e15f824f6ed0
6455443c6b4db141da66b63b9ba4c06d3bfbda4f
d3b7040bbcf87196e491702f194fd9254cc12f657f520eb03d88a9b55e6fc2ce
GET /videos/202209/12/631dff2acd606f04605db1a2/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 21829
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 11 Sep 2022 16:10:29 GMT
etag: W/"5545-1832d510c07"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EZE8V8Fmk7V261ZOxqvbDMDszwJCYoOgut%2Btnv0%2Faxf9uYqXEJgOCA21DiHZnRCPjZA862CzBwqMpHpmt3rw3Oo0FG2AdGcd5kbCb8uvhsa8LOvM%2BdpBg6vl5Ie5sBSXKDv0wyTc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199197e071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3dfc6deeb0d21f1e1be82/poster2.jpg
104.21.234.135200 OK 25 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3dfc6deeb0d21f1e1be82/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x279, components 3\012- data
Hash 4dacf9ce7f6b650f9b00435f1a5070d1
5744c3a35b2e04f24e3b3786ebe6627eb57dfbc4
d7635fec76d40a3e5c5dc3426ddf86f4742c02303b7dcd417f36b91adece8006
GET /videos/202207/17/62d3dfc6deeb0d21f1e1be82/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 24739
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 11:20:51 GMT
etag: W/"60a3-1820be3be38"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WoCrw0oUEXlSPMENLKm4OGYXj7JiKjJoRBpXLnkqyb68DWfTt%2BSgDxCwTERjfGyWG%2FgMqRx6L5QQzt1wCoBbJRTXrGZEMxSHfr27xlB4VfihT8M0HpxRiaBZIv9bhUNXJXeMUcYp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991996071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/14/62cf373cecc9993a5bb97aa1/poster2.jpg
104.21.234.135200 OK 25 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/14/62cf373cecc9993a5bb97aa1/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash b03201f8aa977db20553a1dc05b5c8ed
a5237880a6de0ceca13df960c7ac5820a7a861f9
681ced2f3c17331b8694603fe56da3a0825424d9b00835b9bcf40fcd534b3738
GET /videos/202207/14/62cf373cecc9993a5bb97aa1/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 25188
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 13 Jul 2022 22:10:08 GMT
etag: W/"6264-181f99cbe00"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fjQyTV2OhzQRUNW%2B1axho%2FpxzxClyZdU48o%2F71z1pUKmpDhW9mD%2FlX%2FBixLTyv1EWY%2FRtctZxF8sWAIkbjcNF%2FVGcgPVtU3YVqGsnaahLDwSdrW0VEkLC1EWNyzkQ%2BMTSnsYpp9X"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199299d071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/20/62ffd99331a1d92735b87d8a/poster2.jpg
104.21.234.135200 OK 46 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/20/62ffd99331a1d92735b87d8a/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash d709be93bb2fed5341655d5ba1bd3cfe
8f716c0c15a5bebdf38a9f7efe00876c756fe3c3
d1428b5831c291abab75a65bb2dc49af975b00076e97af5131da0620aba85671
GET /videos/202208/20/62ffd99331a1d92735b87d8a/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 46512
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Fri, 19 Aug 2022 21:26:13 GMT
etag: W/"b5b0-182b7ffd875"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cX7fLf%2Fy9BB3NlOJ%2BEWfstkSNXnvqEyJ5n6IQ8OlzDP6ZxHBjVck%2BHacRD5s7ewmEtPb9VrSrPQQVn9oU3TApYT%2BsIYbe%2FofGrj%2B4SWuka%2FkoR26Wve6OCk3VwEu4xLvWbX8CxRR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991981071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3e1c8f514d821e417f446/poster2.jpg
104.21.234.135200 OK 35 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3e1c8f514d821e417f446/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x337, components 3\012- data
Hash 50d60e5a374ca4ac37ebbf34424f2afb
186072edc9e2ef86fcbc46a45e34567bd17de197
89952e74d068fbdcc6876cff8170c0465db5a46fb7c1cd0e3217e74aa819c82b
GET /videos/202207/17/62d3e1c8f514d821e417f446/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 34750
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 11:13:20 GMT
etag: W/"87be-1820bdcdc80"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jdHECvDDbWV3CxWY3Wf%2BxxiMLHmaZkJ0DzWJtBKmEIiTnrqKxi0BC%2F5s5Dji%2FAfmao1pr7HdVByda6tW2RG%2BEWDDvFUB0H5FcdPmRiyTLpWfCC3HXDG%2FWhFjJU0FP1ND5glA%2BvJd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199198d071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/20/6300d98a16e238270bc25b2b/poster2.jpg
104.21.234.135200 OK 45 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/20/6300d98a16e238270bc25b2b/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash a9e9bd623481265f46bfa1e4d567aec1
6a6d32ea6e80e0b281bb2941abab45c8eba28831
4564440233b1c43bdeb6928036a80f02b8574db93ffc8860016d1218db1167ac
GET /videos/202208/20/6300d98a16e238270bc25b2b/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 45387
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sat, 20 Aug 2022 15:44:58 GMT
etag: W/"b14b-182bbedc491"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SJ%2BtRGHs5%2BekdfJQmT0Tv5kKyxANI%2BZIsv2%2FqXqocjmRwWCebZyZE2i5gfTw2qu22kNgv15CuMsjyzV4WU%2BWhAWoHI4%2FSIEIbBPpYau5GnFIbfv%2FjX9XxpmNPgtvHZcfuMojXp%2Fe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199197c071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/20/62d6e7b6f1f5d25c1e28d133/poster2.jpg
104.21.234.135200 OK 43 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/20/62d6e7b6f1f5d25c1e28d133/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 5e41c4a8ca3afa9c4734bafa555afe83
a4f902dccdd8220678f14559b69824e47aec50e2
6720972968022c66d9e19da793c0730dcc5375de7a573e568a301fc67a062848
GET /videos/202207/20/62d6e7b6f1f5d25c1e28d133/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 43284
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 20 Jul 2022 07:29:07 GMT
etag: W/"a914-1821a82a9b8"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OFUNyoP01mbCCl3SZD4XzXW4JYfOSSYi6tpsLhAe5tG3abzbZ8%2FFtiA2ekSxMsX7ro1fAqvGcFNV6wDA8WScNcpF2uqwIKxbqxXJ7izlAdYpzhYPYhlH8jKNKDnRqvZEHkmyELRJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991978071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/25/630733ba44bab57099448ecc/poster2.jpg
104.21.234.135200 OK 45 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/25/630733ba44bab57099448ecc/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x279, components 3\012- data
Hash e80b5442f9dbebed341564f5fad2aaee
9d83eb53a44142701979925a039dc2c1f39c4ddf
0d92931c2c43a6ed9b9b4ff10ffd59b833ebfdc3659108038b178b27e5380b16
GET /videos/202208/25/630733ba44bab57099448ecc/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 44880
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Thu, 25 Aug 2022 09:25:42 GMT
etag: W/"af50-182d45258f8"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4qiv5zeCD9l82qAfKkemGNQx%2FJ7qaloJF6V%2FMUK3ZtuzPy4pGpd%2Fw59Ioz40Q414BErP8mWQCamwzymACCR3t%2Fdt948Lu8joXkK2wEncrVnRa1xoRk%2BGsjsn7shH7Yv1X1WBVJr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199198b071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3b8a87c9b7322810816a2/poster2.jpg
104.21.234.135200 OK 50 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3b8a87c9b7322810816a2/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 832e9e85462e47d541dcbf0d2c0b762f
435a7ffcf183cd9cd50cb6935f0edd599bcbeb85
ce3cee8275af8f834a8303146cd08e7322d70007018d449e3f62a137f40543c3
GET /videos/202207/17/62d3b8a87c9b7322810816a2/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 49941
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 07:56:36 GMT
etag: W/"c315-1820b28bf20"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X1ROy%2BXkAvYfZgooarOa%2FXqT%2BgbWKb1FAdR2Cu3mleSN%2Bi0pZW9bcuUrUf%2BOMZ4JGa5G2Ou%2BUR01hhKr3xg3YIAK2an2%2FlcwLtkEyKUchLJDktzK3w%2BGRoRdRhKNSNRqEMIPyrAt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991988071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3b8efdeeb0d21f1e1b629/poster2.jpg
104.21.234.135200 OK 41 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3b8efdeeb0d21f1e1b629/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 50ffe5f090596ff8e631e0efd1301e7a
2504bac2b2216365dab0a69e8c8242186305e4ed
138fc9a795883b5f35325647fe1c72d7ec8be87884b158f2a579f3608044096d
GET /videos/202207/17/62d3b8efdeeb0d21f1e1b629/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 41177
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 07:58:39 GMT
etag: W/"a0d9-1820b2a9f98"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ckLkFArGE9oK1RuqefzvCRXqqGJIESuaFU1xTdHV%2FOuy1hfIIW%2FtEnaQzI6g6p1fhO%2Fs5C%2B2uIOFGBCBSK3pkiCy%2FK7ezhqUxDdywJEp9PFc8bh7ROpMkDR8JqcP8D0lnw9PBGcL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991989071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/25/62dda3739811eec17c01cdb0/poster2.jpg
104.21.234.135200 OK 36 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/25/62dda3739811eec17c01cdb0/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x348, components 3\012- data
Hash 7275642d2b14ee96eb7fb5e994d7a482
e0c9a6d32fd20885d68a1f43c820dcb53d362939
ccf3b69f90bb4206fb6c295a102294d79fd851471f3a83477f0e4b0fe0fa29b2
GET /videos/202207/25/62dda3739811eec17c01cdb0/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 35834
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Mon, 25 Jul 2022 07:58:57 GMT
etag: W/"8bfa-182345dc5e8"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=keZFWgg10z%2F6D1FBggbP6smhBI2SEhC07zYVvKdpUT6KyTp3foNLGScSlb7scYvHHjYPCu2TjUd0jxFB2QJuWIEJiHomx1yYzuBtRIVHeXbvAr7alxgV%2FDwk3t9vnVpkNJLq5VXU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199197a071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202208/09/62f239f4d0f295073a9f972e/poster2.jpg
104.21.234.135200 OK 51 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/09/62f239f4d0f295073a9f972e/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 1354d200f399acfec628fcea3c000099
5c257b53f4dbf7922c38913f8d7babc2395335f9
c4bf5997cf62b0aa6b161750f943e244e86e536478306adfb3a124efe699eccd
GET /videos/202208/09/62f239f4d0f295073a9f972e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 50948
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 09 Aug 2022 11:44:31 GMT
etag: W/"c704-182826bb06f"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O%2FoNEIe%2BYTtK20%2FAAaR5BBobclJSFy2ZNnTswT98R0UW6waRhuelMbP42BxsvgiKx30WmlTB8L%2BjThPj4e1odc2zudWpDu5lC%2Bz0zc1Awhyjmo0vSvMcqNTWCP76AQixiHDkNYgb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991986071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3b7eaf514d821e417eb5c/poster2.jpg
104.21.234.135200 OK 51 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3b7eaf514d821e417eb5c/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 8d422a475ff89d1e727bd3bd36882dfd
68e15faf4c8db85e14d1123099baf60ad8156967
6ff0a67201d8946fe59aeef93b93506ab55bcef08e4b49a7037eddb54386a9a5
GET /videos/202207/17/62d3b7eaf514d821e417eb5c/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 50789
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 07:58:46 GMT
etag: W/"c665-1820b2abaf0"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VUSUK1XDQ%2BXTDAwtLAybAM2lBKyf91qlbjEfh0GKA%2FssFgDAQU6qqVAkQUfUNdSemd%2BqHwXyZfjOvqCf56fpckW3jtpK15TCEu5vN9S%2Btv3AvwuPQBLch1svgQq4Ll0zgARo8%2FE%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991985071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/13/62cdce9cb46f049fd1ae9f2c/poster2.jpg
104.21.234.135200 OK 61 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/13/62cdce9cb46f049fd1ae9f2c/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Hash 617f081edfc8d827642f7e32638fdd34
be0055237cc43434e0fb1300abcbacc146940f6a
39ad443bfbc8059e85c8134b834e4d96587298600a8b8e16eca90a33081bb1fb
GET /videos/202207/13/62cdce9cb46f049fd1ae9f2c/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 61010
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 12 Jul 2022 20:02:06 GMT
etag: W/"ee52-181f4012a30"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T4dWGNmUj9712oFjxcUL1K328kinocWMGpdEHTSfY2nUzlciUWc2xl1oOF57iMiYGaT09pnjEdR0hUo5Hg1zGkYqcTiyqAsVLJjcn4yuidTTT9L0iciCeh93k0Q2N2E49IA%2F2%2Bzx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991990071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/14/62cf59c542225cb299318389/poster2.jpg
104.21.234.135200 OK 20 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/14/62cf59c542225cb299318389/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 8f6fc9565dad9a673e93a8d5b041642f
8f04aca0690e96beb31c11790117e55af9415142
2d49764eca9aea09639d502d2896d2f138b5b95b6ed2ea6662d69c8b64ea5b31
GET /videos/202207/14/62cf59c542225cb299318389/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 19987
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Thu, 14 Jul 2022 00:14:01 GMT
etag: W/"4e13-181fa0e2928"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=By4DItk4OVsGwDe6XACw4UhUqvhrpK9czcNQtrWkEoW89ngT9dbXvMAnErhcWexrOyZcXytDTIwhz9LEBp%2FzF6I6VW2ouAAUgJZfakd7YgFlWa9VMp7ljhyZKVhXGYuK%2FJUOHhBO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991997071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
madou8img.5100m.xyz/videos/202207/17/62d3e2f8c8c65622654820fb/poster2.jpg
104.21.234.135200 OK 37 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/17/62d3e2f8c8c65622654820fb/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash acef43697bd85090906a7f4d1110e18c
c602414c33a2880a2233c22485114b4b8c4583d0
dd313d21c9c56aa2396bad3229b0959b5970c82b77f9f31b7753ffccf2f44f2b
GET /videos/202207/17/62d3e2f8c8c65622654820fb/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 37381
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Sun, 17 Jul 2022 11:00:10 GMT
etag: W/"9205-1820bd0ce90"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MpWJnmo49KxFgIxNYgZ9C36iI0O%2Fky8tFYJL7L9nb80chQq6DJme2ArQWpjfWh7fYo313jjQMvz1RPb7C4NZoff7VE7bdj48B3V1kbe8%2FYfgOCYHHLAz%2BcT%2B2eZnAMEhLesPBnwI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a199198f071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
haitv2.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
103.104.105.117404 Not Found 146 B URL HTTP/1.1 haitv2.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://haitv2.top/template/m1938pc/static/css/style.css
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 87341f6d032c0414f434f1dccea53e31
eb92b525306179aa1764282a3320a9be650af2e6
c862ef1020d958cf48cd19777ba57032b855a66578b51d3349cd54cd03ac7287
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Sat, 19 Nov 2022 11:14:48 GMT
last-modified: Tue, 15 Nov 2022 23:26:26 GMT
expires: Tue, 22 Nov 2022 23:26:25 GMT
etag: "eb92b525306179aa1764282a3320a9be650af2e6"
cache-control: max-age=602887,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb1
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 76c8863f5e679c0d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1668856488
via: cache19.l2de2[0,0,304-0,H], cache8.l2de2[1,0], cache1.se1[88,88,200-0,H], cache1.se1[91,0], cache5.se1[93,0]
age: 1121
x-cache: HIT TCP_REFRESH_HIT dirn:4:9273968
x-swift-savetime: Sat, 19 Nov 2022 11:33:29 GMT
x-swift-cachetime: 679
timing-allow-origin: *, *
eagleid: 2ff62c9916688576091592022e, 2ff62c9916688576091592022e
madou8img.5100m.xyz/videos/202207/14/62cf0f1f6bc03d00109783d5/poster2.jpg
104.21.234.135200 OK 113 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/14/62cf0f1f6bc03d00109783d5/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x225, components 3\012- data
Size 113 kB (112650 bytes)
Hash 1d3745599166e0d4687cef91e9b7cad9
4c38708c5cbe42d22fe7759ca47f64bdadfe1660
194a4a6903ea28977756feb953d5efe2271787a25309fa7caf4b20d8de31867a
GET /videos/202207/14/62cf0f1f6bc03d00109783d5/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 112650
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 13 Jul 2022 18:41:16 GMT
etag: W/"1b80a-181f8dd84e0"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ghJ5wRRKl8ZZPGxMhBNo5M9CprOoari8ALQrImikn19soOQuvPyshDR5wS82JQfhQlG09Wfybct5nmyIJIl%2BK%2FVj79YGDm7UQ%2F3Wa4Hw2IksvOBTmIluUCvpXCbWLXyqPHJWj%2BBU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a19929a0071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 1bbeb45781e565a6a5e34e2036a573a1
c84967237b0d229cadb82611d07d665fb6485410
3621e34593006c2da39bb66eb271410692e446021afda869bc383c29911bcfc5
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 04:34:29 GMT
Expires: Thu, 24 Nov 2022 04:34:28 GMT
Etag: "c84967237b0d229cadb82611d07d665fb6485410"
Cache-Control: max-age=406258,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a199ca6eb4fa-OSL
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 1a3d0d254ac0ed450ea47bf3812e620d
e49daff08bdd7f101f67811f9616a91de284dfd4
96e49bd6837755d1f06ee842436cf12dc2327459bde697dd5d5e3a56975592f1
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.datsufurita.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:28 GMT
Etag: 486b8b91cebfc4d071512fd87f1a0ebb
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=0B19684C3C51C53B; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 2b4082674707895c64396ddcdd0196ae
b91e10db98a13f84ffadfff866e3b7a8d6339690
0fdc95d6c09c3d7ae0666984310599b553f84ee85ad68837f77637147c5484b8
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 00:35:59 GMT
Expires: Wed, 23 Nov 2022 00:35:58 GMT
Etag: "b91e10db98a13f84ffadfff866e3b7a8d6339690"
Cache-Control: max-age=305548,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a199e92ab51e-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c766416c148f33acd9a845fb00c1361c
2b4a56cd487d5873efa8ef2d98c6809657b9e8d8
d7437e0e16156ab2f9a58c0bab04cef52330d0ce357ac51dbe7921cda22c2226
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D7437E0E16156AB2F9A58C0BAB04CEF52330D0CE357AC51DBE7921CDA22C2226"
Last-Modified: Fri, 18 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21266
Expires: Sat, 19 Nov 2022 17:27:55 GMT
Date: Sat, 19 Nov 2022 11:33:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e00984ff65877b40fbb28380e5199a42
e6dca6f67f5818874a2c1019271d1ef90ca3d195
99cfa16cc74f2ab847cadcf631159198269ad4f95c7167a1b268d31bdd9c889d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99CFA16CC74F2AB847CADCF631159198269AD4F95C7167A1B268D31BDD9C889D"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20130
Expires: Sat, 19 Nov 2022 17:08:59 GMT
Date: Sat, 19 Nov 2022 11:33:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a1b91cbd9c668ffd5b4174f4a1282b66
d80002bb261b14d7ef5703575f6165a60c162025
e1f7084ba112b6870c20f07f4ac9dd1c8f0b23ab30505b1fd8c6c99348aec61a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E1F7084BA112B6870C20F07F4AC9DD1C8F0B23AB30505B1FD8C6C99348AEC61A"
Last-Modified: Fri, 18 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4429
Expires: Sat, 19 Nov 2022 12:47:18 GMT
Date: Sat, 19 Nov 2022 11:33:29 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 3518cb0e79d499ce243d3ade3394dc50
742ccf49de5b176165b85eb06d8a4cfbe088e5d6
df7cf7bd889cac7093977062e33d84fd624198445a0f3e3addc84252b0845814
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 23 Nov 2022 09:12:43 GMT
ETag: "742ccf49de5b176165b85eb06d8a4cfbe088e5d6"
Last-Modified: Sat, 19 Nov 2022 09:12:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 372
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76c8a19a8b8d0afa-OSL
hm.baidu.com/hm.js?c03a7f198eae525d73fa8814b342d72b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?c03a7f198eae525d73fa8814b342d72b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash cceb46b3b8810ff9f921d2fc7eb3c890
131131ac2d38a1f4cdd7211d7bfeef786a2ac3a6
f070d5912636f18c55ac562fb9701506129d8c34bbdcd7e0f152eea8bf11dbfe
GET /hm.js?c03a7f198eae525d73fa8814b342d72b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.datsufurita.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11334
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:28 GMT
Etag: a691c9a9526f26154f3f336463aaa2d1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=18389EB5B7632167; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP 142.250.74.35:0
Hash dfe6fc0db0d8bad422499549cbfc6caf
21b5326a3f6343b8bf51be45ce0049cdc4dd8d6b
32a80c76e8f9c7b1169bde3dca3acf479ecde04302ab6dca580c2a741179e84c
POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash 2af2b03482b3002f1c109b06474f1c84
3a592faecf4b8d3f90b9e373db8f9afda1cad006
7b0e7247724e041c14fee9d08d3ae4878db1f51422ac481f84a254c3cc0e4447
GET /hm.js?f3d6365cc089588672da4dd3e692e58e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.datsufurita.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11337
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:28 GMT
Etag: 90ca77fef17030cb06f1c72c4601ae3b
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=CE4D3CCCEE265331; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ad404b52958c7b2b6d0fdee574d9a631
3238c8c2d6c86e6a07439a6e8f462d856d318a47
e541cb534f9838853daaf31304931c00ec593d6287cd46a9732b6f6efce00ee8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E541CB534F9838853DAAF31304931C00EC593D6287CD46A9732B6F6EFCE00EE8"
Last-Modified: Thu, 17 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4584
Expires: Sat, 19 Nov 2022 12:49:53 GMT
Date: Sat, 19 Nov 2022 11:33:29 GMT
Connection: keep-alive
madou8img.5100m.xyz/videos/202207/13/62cdccd330e9d6a084257d74/poster2.jpg
104.21.234.135200 OK 31 kB URL HTTP/2 madou8img.5100m.xyz/videos/202207/13/62cdccd330e9d6a084257d74/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x338, components 3\012- data
Hash 436a1f96cd618162b56fffab9cac5c24
769d406c7f138b3e20f623db20ed354c769896bb
38f55b24dcd6620987a11d57860cf41c5bcddea15c6c4f2d1e6abcefe9369b16
GET /videos/202207/13/62cdccd330e9d6a084257d74/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 31138
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 12 Jul 2022 20:09:19 GMT
etag: W/"79a2-181f407c598"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gzvpy04i%2BsbdIbXO%2BsgfknVfC%2FkYO4pMDiii%2BOuz7buHxD9bovFCcCNmLvz9P%2BgoCJsWnwyI0PbcNK9GoRhmMwuo25SHdSPIRHUQFeqSlIgCFBYihNtH2G%2Fu6fHtL8H5jlrbJjnx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a19a6b04071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
haitv2.top/template/m1938pc/static/fonts/iconfont.woff
103.104.105.117200 OK 2.9 kB URL HTTP/1.1 haitv2.top/template/m1938pc/static/fonts/iconfont.woff
IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type Web Open Font Format, TrueType, length 2924, version 1.0\012- data
Hash 1b05b2b67ca6e3fe976ed8d2d1aa31d5
c7055832382daf713a911d67501e26873db045f8
ac1718a88630db8d2fd67997ad9796acdc8a6a88361b2b7058832caeec4fb22d
GET /template/m1938pc/static/fonts/iconfont.woff HTTP/1.1
Host: haitv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://haitv2.top/template/m1938pc/static/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: font/woff
Content-Length: 2924
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Connection: keep-alive
ETag: "60b765dc-b6c"
Accept-Ranges: bytes
kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
45.154.214.206301 Moved Permanently 162 B URL HTTP/2 kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP 45.154.214.206:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: text/html
content-length: 162
location: https://kvhiii.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 03c6fbe22696fac7937d284d3defc356
86246c19c2b611a7d9ef86d4396495444886631f
2b0777e099c622874dcd9c931df38447d117e927b965d0d58d43967ce87ba31b
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:28 GMT
Etag: 0e15692820903aac5656a14897a2075d
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=8255778E790E029F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP 142.250.74.35:0
Hash c9bcfe54c94a380e77059f1fac760fa1
621abcbf688a62934f737eca29a7c8d6d9391ee7
8a5d9dc2cb163afb727010982d0b4ab8ed6747773ac77e76508db9a616cf6821
POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0bb685e7f09decad21c734dafb441467
e5f669a4257fbbd6140acd74ece921a7f66fd527
68d5872616cdac04105e0c007abbf63ad525e875edba44d293885322f4a911e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68D5872616CDAC04105E0C007ABBF63AD525E875EDBA44D293885322F4A911E5"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21568
Expires: Sat, 19 Nov 2022 17:32:57 GMT
Date: Sat, 19 Nov 2022 11:33:29 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash f263329bbf98c2ea43508bf146c268e2
6c7ff804f00d521aaf41b90d883f8410be3820a0
7453ae33bfffb1893a15c8b04ebf9a5991025cb538db33022fbd69b3154f10ee
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 23 Nov 2022 10:33:48 GMT
ETag: "6c7ff804f00d521aaf41b90d883f8410be3820a0"
Last-Modified: Sat, 19 Nov 2022 10:33:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1223
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76c8a19baf94b4e8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash fe5da0eb9fe4d187adab93c9f8b7a86a
54be24e633461fca88df8dcd609525ca536f7e16
63c01a170bc3bf24b6af21bb7aa6bf15804edd0550f651db8a7f33abc0e7fbf2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 16:32:08 GMT
Expires: Fri, 25 Nov 2022 16:32:07 GMT
Etag: "54be24e633461fca88df8dcd609525ca536f7e16"
Cache-Control: max-age=535717,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a19a89260b69-OSL
img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
47.246.50.252200 OK 9.2 kB URL HTTP/2 img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
IP 47.246.50.252:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg HTTP/1.1
Host: img.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpeg
content-length: 9166
date: Tue, 10 May 2022 07:04:29 GMT
last-modified: Fri, 13 Aug 2021 10:28:00 GMT
picasso-ret-code: SUCCESS
request-time: 0.160
expires: Wed, 10 May 2023 07:04:29 GMT
cache-control: max-age=31536000
ali-swift-global-savetime: 1652166269
via: cache31.l2ot7-1[0,0,200-0,H], cache36.l2ot7-1[6,0], cache2.fr1[0,0,200-0,H], cache3.fr1[2,0]
access-control-allow-origin: *
age: 16691340
x-cache: HIT TCP_MEM_HIT dirn:9:397320638
x-swift-savetime: Mon, 27 Jun 2022 19:24:11 GMT
x-swift-cachetime: 27344418
s-rt: 2
timing-allow-origin: *
eagleid: 2ff6329716688576095453478e
X-Firefox-Spdy: h2
kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif
170.178.176.170301 Moved Permanently 162 B URL HTTP/2 kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif
IP 170.178.176.170:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP 142.250.74.35:0
Hash 60ddded686f7c60b552c2a04e3589782
d2a37d34a5f26ee90caeea89dfa96bb24d2f11b8
b855b6e99050dc6324909cf90b8b4ee8ed0b07bb80557fe6c55c6cc2e4b94d5d
POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 28810d3680a5806f31d458437f9bc387
0b78215d939a24c846eba255de0ecd8a0b92ca60
12c55fe697bdb4ca03fdf852a9771db2371aa55d25ce8a915a9b648a02bcef9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12C55FE697BDB4CA03FDF852A9771DB2371AA55D25CE8A915A9B648A02BCEF9B"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9888
Expires: Sat, 19 Nov 2022 14:18:17 GMT
Date: Sat, 19 Nov 2022 11:33:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dee9604e57845eec12fae78fe18f6d61
1b70e90c7e95bcadfdb2a2b4070ead46df33542e
7d86d57a0b2239f3ce838b60b8bb6e48cb9428f1b644c029dca282c4c1c8947a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3789
Cache-Control: max-age=102628
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Etag: "63779e20-117"
Expires: Sun, 20 Nov 2022 16:03:57 GMT
Last-Modified: Fri, 18 Nov 2022 15:00:48 GMT
Server: ECS (amb/6B9B)
X-Cache: HIT
Content-Length: 279
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1954783454&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1954783454&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1954783454&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.datsufurita.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 19 Nov 2022 11:33:29 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C74B51E3531A7347; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
qzdlsh.com/img/ylf-1.gif
103.104.105.117200 OK 876 kB IP 103.104.105.117:0
ASN #139330 SANREN DATA LIMITED
File type GIF image data, version 89a, 980 x 120\012- data
Size 876 kB (875859 bytes)
Hash 5d8bd2cf8dfd1fdeebc625f2a664a5f5
b3cc24d971059319e859932dd124bcc4d64a7a8f
f1c047bf61b6c302e1afd72b6c49e7d5e397689109620cefdb055ce09d6483b6
GET /img/ylf-1.gif HTTP/1.1
Host: qzdlsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: image/gif
Content-Length: 875859
Last-Modified: Fri, 18 Nov 2022 14:33:12 GMT
Connection: keep-alive
ETag: "637797a8-d5d53"
Expires: Mon, 19 Dec 2022 11:33:28 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1861340019&si=c03a7f198eae525d73fa8814b342d72b&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1861340019&si=c03a7f198eae525d73fa8814b342d72b&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1861340019&si=c03a7f198eae525d73fa8814b342d72b&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.datsufurita.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 19 Nov 2022 11:33:29 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C52A22AE7CE67A51; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash d0cc5132dd2b90ca89df5c7e2c548b41
695b256a359360685200e3728dc1e77c2e908777
2e1535d8891d2e7cd731ccd42cc0cd0e34c62c7f91007477668e81df87a93563
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 23 Nov 2022 08:37:05 GMT
ETag: "695b256a359360685200e3728dc1e77c2e908777"
Last-Modified: Sat, 19 Nov 2022 08:37:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76c8a19bcfa6b4e8-OSL
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1095696050&si=f3d6365cc089588672da4dd3e692e58e&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1095696050&si=f3d6365cc089588672da4dd3e692e58e&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1095696050&si=f3d6365cc089588672da4dd3e692e58e&v=1.2.97&lv=1&sn=8834&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.datsufurita.com%2Fddjbhq%2F133.html&tt=%E6%AF%95%E8%8A%82%E4%B9%94%E8%B7%8B%E6%96%87%E5%8C%96%E4%BC%A0%E6%92%AD%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.datsufurita.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 19 Nov 2022 11:33:29 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C469DBFDC672E304; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
523zyw.com/upload/vod/2021-12-25/16404048798.jpg
137.175.72.238200 OK 67 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-25/16404048798.jpg
IP 137.175.72.238:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x337, components 3\012- data
Hash 6c57fb45604098af1580a47b267ea617
daf64fff242fe2c16706b59cf6d78882d99141ac
890f808987f968032a18c006637e917cdb747b183fdc747a7673dd401333f0db
GET /upload/vod/2021-12-25/16404048798.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 66880
Connection: keep-alive
Last-Modified: Sat, 25 Dec 2021 04:01:19 GMT
Accept-Ranges: bytes
ETag: "289e6f1244f9d71:0"
madou8img.5100m.xyz/videos/202208/10/62f3abc0ec1ccd05f50b02db/poster2.jpg
104.21.234.135404 Not Found 967 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/10/62f3abc0ec1ccd05f50b02db/poster2.jpg
IP 104.21.234.135:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1408), with no line terminators
Size 967 kB (967317 bytes)
Hash b82259e62c36c8d4a2bcbdd8e342db40
49d72b3c0e43b8ad8b647a0ec43e96561b348d10
b9473d177ba7abcfdd69e38a8ae2bfd5b43d1100939d347731fcb93e82a27569
GET /videos/202208/10/62f3abc0ec1ccd05f50b02db/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public, max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
age: 207849
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eXDMTpbybFpgwwZkuTj2RdSvDnSINZmx1G6h3MwfVaI03zu1DMWXrxjuqNFHnT8QEAK9If1CcV%2BS7jBLfDQpQN8a4NQJj7TsluwvgltW9%2Bgv5hTGwEsmOrSKPLY79HjIqexOMjCk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76c8a1991982071e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 1bbeb45781e565a6a5e34e2036a573a1
c84967237b0d229cadb82611d07d665fb6485410
3621e34593006c2da39bb66eb271410692e446021afda869bc383c29911bcfc5
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 04:34:29 GMT
Expires: Thu, 24 Nov 2022 04:34:28 GMT
Etag: "c84967237b0d229cadb82611d07d665fb6485410"
Cache-Control: max-age=406258,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a199caea0afa-OSL
523zyw.com/upload/vod/2022-02-18/164515708412.jpg
137.175.72.238200 OK 113 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-02-18/164515708412.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 519x390, components 3\012- data
Size 113 kB (112642 bytes)
Hash 6a7a5076d7f7547e02bfeef0777f9449
88fc7770651a95098bfa1dece839c05fd92222ac
06d5b4a490068a0f951ffcf6108a7cf3fe4caca141886734ac99da2b5d1f1ff1
GET /upload/vod/2022-02-18/164515708412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 112642
Connection: keep-alive
Last-Modified: Fri, 18 Feb 2022 04:04:44 GMT
Accept-Ranges: bytes
ETag: "d64c70a97c24d81:0"
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0501734e2b3dda6a9c61195459f7f969
8db784a423b81c376c4ffc6c0c1886082ba8f21f
f4e57aee52b65da44c67e4e67867ece7fc14a82892c30088b6c860334d37267b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=97749
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Etag: "637799de-118"
Expires: Sun, 20 Nov 2022 14:42:38 GMT
Last-Modified: Fri, 18 Nov 2022 14:42:38 GMT
Server: nginx
Content-Length: 280
523zyw.com/upload/vod/2021-12-25/164040488513.jpg
137.175.72.238200 OK 64 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-25/164040488513.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x337, components 3\012- data
Hash b68e72eec943c8203e036ee001f70c70
b76d4d5498626eaa1ab028f1b1ae8fb54df7b216
041ecb1ab10f155134211bdb6707d8e271f4f083d23aa0ad19df7a061c32bad2
GET /upload/vod/2021-12-25/164040488513.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 63597
Connection: keep-alive
Last-Modified: Sat, 25 Dec 2021 04:01:25 GMT
Accept-Ranges: bytes
ETag: "e1ddf41544f9d71:0"
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1345853907&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.datsufurita.com%2F&v=1.2.97&lv=1&sn=8835&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhaitv2.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1345853907&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.datsufurita.com%2F&v=1.2.97&lv=1&sn=8835&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhaitv2.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1345853907&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.datsufurita.com%2F&v=1.2.97&lv=1&sn=8835&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhaitv2.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 19 Nov 2022 11:33:29 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=CB911FB0EC02157D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
172.67.170.188200 OK 318 kB URL HTTP/2 nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
IP 172.67.170.188:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 318 kB (317903 bytes)
Hash fb3f1f47e7cd3c017411f4a08cb222b7
9ef0eebfa48d7d3c66398066ad781c2e4c5c2fce
864310898b7de94e28b82e0e318d801e6537365a75078d2f94b98a25c81e98a9
GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://haitv2.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 317903
last-modified: Sat, 13 Aug 2022 11:03:31 GMT
etag: "62f78503-4d9cf"
expires: Fri, 16 Dec 2022 21:53:13 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 222016
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BHqrek9Nz6P8lFCxkRneOYro%2BWhyDhKy9TYZKU9j7jfgC1HVS0f0k3Gq4i09PWE%2BqKe8UzR92%2BVHOqV%2BZlQSuw%2F%2FaCz1oR98619UkVRtNfOR9vyhExe8DzEhBQJi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a19dfd1db500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 2c35104c65b9373c281ecdcaa86613e7
8ba40d4f8390f3c888b0b9c1396a1885fa8cbc6a
3e64e7d38b5da470f16c358405aeaa3fafbc52e5fdb5d8a5187a0d4670b2dc11
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 486b8b91cebfc4d071512fd87f1a0ebb
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:29 GMT
Etag: dd4ae07c7cc1c39e22d28990f1dad07c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=EB676DDAA77C2267; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 2c5579f4a036b1059871a6c67df62a06
0e6cf961315e47c340af84d1448b50fa511c236b
2b40ab28001a6da23d0ae31922c526a95cd1c14ec269f4dbe62323397355b0ee
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 04:06:54 GMT
Expires: Fri, 25 Nov 2022 04:06:53 GMT
Etag: "0e6cf961315e47c340af84d1448b50fa511c236b"
Cache-Control: max-age=491003,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a19dcf01b4fa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dee9604e57845eec12fae78fe18f6d61
1b70e90c7e95bcadfdb2a2b4070ead46df33542e
7d86d57a0b2239f3ce838b60b8bb6e48cb9428f1b644c029dca282c4c1c8947a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=98839
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Etag: "63779e20-117"
Expires: Sun, 20 Nov 2022 15:00:48 GMT
Last-Modified: Fri, 18 Nov 2022 15:00:48 GMT
Server: nginx
Content-Length: 279
523zyw.com/upload/vod/2022-04-26/165094704412.jpg
137.175.72.238200 OK 102 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-26/165094704412.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 543x372, components 3\012- data
Size 102 kB (102433 bytes)
Hash 417833e4145519c7404e5ed081f285f7
58c116260504f972c805859f95065eeeccaf4b8b
fa786d18376ed32f3ef1b094625ed13a7efeebdaa036f29385de16e64286aed4
GET /upload/vod/2022-04-26/165094704412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 102433
Connection: keep-alive
Last-Modified: Tue, 26 Apr 2022 04:24:04 GMT
Accept-Ranges: bytes
ETag: "6cbf91762559d81:0"
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 2c5579f4a036b1059871a6c67df62a06
0e6cf961315e47c340af84d1448b50fa511c236b
2b40ab28001a6da23d0ae31922c526a95cd1c14ec269f4dbe62323397355b0ee
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 04:06:54 GMT
Expires: Fri, 25 Nov 2022 04:06:53 GMT
Etag: "0e6cf961315e47c340af84d1448b50fa511c236b"
Cache-Control: max-age=491003,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a19dfe2bb51e-OSL
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0501734e2b3dda6a9c61195459f7f969
8db784a423b81c376c4ffc6c0c1886082ba8f21f
f4e57aee52b65da44c67e4e67867ece7fc14a82892c30088b6c860334d37267b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=97749
Content-Type: application/ocsp-response
Date: Sat, 19 Nov 2022 11:33:29 GMT
Etag: "637799de-118"
Expires: Sun, 20 Nov 2022 14:42:38 GMT
Last-Modified: Fri, 18 Nov 2022 14:42:38 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
523zyw.com/upload/vod/2021-12-12/163928246212.jpg
137.175.72.238200 OK 139 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928246212.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size 139 kB (138612 bytes)
Hash 27330222b06525751920fd1ff484ce55
bf010bbc6d84c903ad2f34928ea2f1e974e487b7
de9dd0affff2081ed218a0db8e240791adfb2e3d41ed3c1125226abadd5900e4
GET /upload/vod/2021-12-12/163928246212.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 138612
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:14:22 GMT
Accept-Ranges: bytes
ETag: "d68bf2bdeefd71:0"
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 956461bd0f77ee74953e99c0a1642c04
b0e29e14ff5d33cd556f5f9b725aa605ac5d73b7
5cc437a3a3131d61567e2fabd09a978a1d82a48651003b015e2806827efcc5b8
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 0e15692820903aac5656a14897a2075d
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:29 GMT
Etag: 888442f39911dca087ccc4ed6116d0d9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=F29E4368CE77C322; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
523zyw.com/upload/vod/2022-08-23/16612599473.jpg
137.175.72.238200 OK 62 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-08-23/16612599473.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Hash 9df83c82c127ba1d02076f5094bdd83d
d432e42a756b60086953c4bf40276511991a3997
c2cee38f2ce673ecdac94c780169da4af7c50b2b6b6424cd4853f40c95eddb83
GET /upload/vod/2022-08-23/16612599473.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 62094
Connection: keep-alive
Last-Modified: Tue, 23 Aug 2022 13:05:47 GMT
Accept-Ranges: bytes
ETag: "3af3c2ff1b6d81:0"
pic.picnewsss.com/tu-2022290039/960-120.gif
23.225.139.251200 OK 369 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/960-120.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 369 kB (369108 bytes)
Hash d3f9f17ed067ebb6ee0792014656333e
1f5593ee409f13d7734fd538a9a779dbe469a7c1
69da833d60a8ae1c0d5f64a25dfb6b42579ac7d20046a2db7c2be4256b601b68
GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Fri, 18 Nov 2022 11:34:58 GMT
etag: "1668771298"
expires: Sun, 18 Dec 2022 11:34:58 GMT
last-modified: Fri, 18 Nov 2022 11:34:58 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 369108
X-Firefox-Spdy: h2
8499753.com/8499/960x60.gif
172.247.50.229200 OK 331 kB URL HTTP/2 8499753.com/8499/960x60.gif
IP 172.247.50.229:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /8499/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 331043
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "50d23-5ed03aef4304d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash d0cc5132dd2b90ca89df5c7e2c548b41
695b256a359360685200e3728dc1e77c2e908777
2e1535d8891d2e7cd731ccd42cc0cd0e34c62c7f91007477668e81df87a93563
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 23 Nov 2022 08:37:05 GMT
ETag: "695b256a359360685200e3728dc1e77c2e908777"
Last-Modified: Sat, 19 Nov 2022 08:37:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76c8a19b2c1c0afa-OSL
523zyw.com/upload/vod/2021-12-12/16392816093.jpg
137.175.72.238200 OK 52 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392816093.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 617x411, components 3\012- data
Hash 3b3a83e1aab3385939d9023d4b1d0998
4eb49915fc3b491728c3886107e860cf3559f12a
89aa07de28decf6d5df43651a039620e9dca406fb0953d07ce1e48ce5ab883ad
GET /upload/vod/2021-12-12/16392816093.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: image/jpeg
Content-Length: 52238
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:00:09 GMT
Accept-Ranges: bytes
ETag: "8572dc1cefd71:0"
8499643.com/8499/hongse/395x180.gif
172.247.50.229200 OK 468 kB URL HTTP/2 8499643.com/8499/hongse/395x180.gif
IP 172.247.50.229:0
File type GIF image data, version 89a, 400 x 200\012- data
Size 468 kB (467624 bytes)
Hash 0a2d4f86c14f23a4037f93ab0034a0e5
0b06984dda7fce27aebc22d8a747e9a6e2b83763
71469f0351ea2bd0d83ea01e781452f999663cab11964d6948abf5966fdf4f07
GET /8499/hongse/395x180.gif HTTP/1.1
Host: 8499643.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 467624
last-modified: Thu, 17 Nov 2022 05:41:10 GMT
etag: "722a8-5eda40956a06a"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
523zyw.com/upload/vod/2022-03-08/164671236411.jpg
137.175.72.238200 OK 63 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-03-08/164671236411.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x420, components 3\012- data
Hash 1b0092fedfe94eec5a80894fd8b25fe7
8dfc3995b5453d73d0dd99d830ed7d70da39a645
18f0db29a80435c6db6b4473a6bec6be4f5cecfc2a309cd8d48ac775986bd30c
GET /upload/vod/2022-03-08/164671236411.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 62883
Connection: keep-alive
Last-Modified: Tue, 08 Mar 2022 04:06:05 GMT
Accept-Ranges: bytes
ETag: "3b29e0d4a132d81:0"
523zyw.com/upload/vod/2021-12-12/163928046914.jpg
137.175.72.238200 OK 14 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928046914.jpg
IP 137.175.72.238:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash ff88d5de7fee8a659ed66802a1f0d1e4
24f311771a9294c49efab277c374835c5e9c6709
e5cfa0a529e47e0cff8ebeb737d4d6c0a3f86d824968908e2f24970872264fb9
GET /upload/vod/2021-12-12/163928046914.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: image/jpeg
Content-Length: 13743
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 03:41:09 GMT
Accept-Ranges: bytes
ETag: "b012ed19aefd71:0"
8499753.com/8499/hongse/960x60.gif
172.247.50.229200 OK 331 kB URL HTTP/2 8499753.com/8499/hongse/960x60.gif
IP 172.247.50.229:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /8499/hongse/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 331043
last-modified: Sat, 12 Nov 2022 04:48:00 GMT
etag: "50d23-5ed3eb5f982bf"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=355726965&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.datsufurita.com%2F&v=1.2.97&lv=1&sn=8835&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhaitv2.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=355726965&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.datsufurita.com%2F&v=1.2.97&lv=1&sn=8835&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhaitv2.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=355726965&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.datsufurita.com%2F&v=1.2.97&lv=1&sn=8835&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhaitv2.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 19 Nov 2022 11:33:30 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0BCE659F742E65F8; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
523zyw.com/upload/vod/2021-12-12/163928071911.jpg
137.175.72.238200 OK 93 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928071911.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 800x450, components 3\012- data
Hash 368ae576124c98866282cea380b810a6
3ac855158f5facd20f6c1d5671c744338ae779e3
a18bd50188e1055d9df9903c6163e0c4aac22da107548af10637151ff430bc7d
GET /upload/vod/2021-12-12/163928071911.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: image/jpeg
Content-Length: 93315
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 03:45:19 GMT
Accept-Ranges: bytes
ETag: "c23ccfaeaefd71:0"
523zyw.com/upload/vod/2021-12-12/163928244412.jpg
137.175.72.238200 OK 99 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928244412.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 511x356, components 3\012- data
Hash 85ba9823524cefc88cdcea9d4116a585
be2b0673011a76984ca913fb3a0db41ec693748b
0152d506af162e87bd953652dbcbfe074c0c09f297584726b60a5f023088fe07
GET /upload/vod/2021-12-12/163928244412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 99257
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:14:04 GMT
Accept-Ranges: bytes
ETag: "93e318b3eefd71:0"
523zyw.com/upload/vod/2021-12-12/163928047312.jpg
137.175.72.238200 OK 28 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/163928047312.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 859x501, components 3\012- data
Hash 9994ffa9f416ed6a95e3dadfd3b09323
7d6f4e3999a961de94b9a9dea2db7fa5e5043e07
54a2d2eb609ce284f1e6a8959bd5ebdfa81cf5a939bcae65a6f86238e903e6ce
GET /upload/vod/2021-12-12/163928047312.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: image/jpeg
Content-Length: 28098
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 03:41:13 GMT
Accept-Ranges: bytes
ETag: "15d4701caefd71:0"
ads-6686.top/960X240.gif
123.253.107.62200 OK 2.3 MB IP 123.253.107.62:0
File type GIF image data, version 89a, 960 x 240\012- data
Size 2.3 MB (2291400 bytes)
Hash e95cb7b655d12501799b1e020ef32265
3fdba737a19ffd6c2c43b48dd655c5f91d92bba4
6a877f0bcfe685891a093893ce37fa8ff60d3264ecf9ebff6f6b7a6848516f71
GET /960X240.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: load-edge/2.1.1
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 2291400
last-modified: Mon, 14 Nov 2022 08:20:48 GMT
etag: "6371fa60-22f6c8"
strict-transport-security: max-age=31536000
lp-geo: edge-e024
lp-addr: 91.90.42.154
lp-request: c235991e-c5c8-4da6-9811-99e1445386fb
lp-id: 82fd403d02bdbe1b06fa880ca9f960cf
expires: Sat, 19 Nov 2022 11:38:29 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 34288296e4961ccb0d25185e81b38e44
092a62a70643925736fd3b8c1e64bff24bd44d75
c0a1c92280d7732dbee362b43b3f221724192264cdb7cdef33e01b500020fb54
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 888442f39911dca087ccc4ed6116d0d9
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:30 GMT
Etag: 1dcbfcc0554ca29c1c6be2389524cc28
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6A8CC5584258B917; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash a2f754ee24cbb4fd57601722aadbfa32
8f2b1c5b71a0102961bbc5f1c5d7b668cce0fb24
ba750b559efda72f2d5abbee174a0b890fee99410e4f9604883bde894c83dd1e
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: dd4ae07c7cc1c39e22d28990f1dad07c
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Sat, 19 Nov 2022 11:33:30 GMT
Etag: 3bdf068d26c19c020e5728a7407a7cf7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=FDF9B57FF05CF0E4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
523zyw.com/upload/vod/2022-07-04/165693705516.jpg
137.175.72.238200 OK 519 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-07-04/165693705516.jpg
IP 137.175.72.238:0
File type PNG image data, 675 x 466, 8-bit/color RGBA, non-interlaced\012- data
Size 519 kB (519006 bytes)
Hash 521ae797a514c2b2a25c44b5fd041c08
1e9fee8b16dadfd3d2ba29652490ccfd415328b0
b05b1a95af49ca1ff5cde85063c2ad67828062b501e43c6588e8d423f430e1c1
GET /upload/vod/2022-07-04/165693705516.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/jpeg
Content-Length: 519006
Connection: keep-alive
Last-Modified: Mon, 04 Jul 2022 12:17:36 GMT
Accept-Ranges: bytes
ETag: "986ccca08fd81:0"
523zyw.com/upload/vod/2021-12-12/16392800568.jpg
137.175.72.238200 OK 118 kB URL HTTP/1.1 523zyw.com/upload/vod/2021-12-12/16392800568.jpg
IP 137.175.72.238:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, comment: "Software: Snipaste", baseline, precision 8, 1077x667, components 3\012- data
Size 118 kB (118090 bytes)
Hash 81f7bcbbd027734bd74e3e8140fff0ee
d4033ac0e761b6e81efcd8f7eef7da09460cb32b
46237ca1c9878f5a23be61db4fcebf42eace4a0b4647265538a60e2fe1dce4a8
GET /upload/vod/2021-12-12/16392800568.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: image/jpeg
Content-Length: 118090
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 03:34:16 GMT
Accept-Ranges: bytes
ETag: "9bbf0239efd71:0"
592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif
45.61.212.55200 OK 1.8 MB URL HTTP/1.1 592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif
IP 45.61.212.55:0
File type GIF image data, version 89a, 960 x 240\012- data
Size 1.8 MB (1833203 bytes)
Hash b7b8c8d351470288a0c28f34bbdbfac6
d3f0b5bbaff9cda595c8525365618228e756d55d
bcd291e3c8c9fbccc8953982200b8ffe1804289e13f0a68b44aa189227e569d8
Analyzer Verdict Alert quad9 Sinkholed
GET /be2d6c93b7fe43b4b25d4a8810bc5bfc.gif HTTP/1.1
Host: 592773xgg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6364f659-1bf8f3"
Date: Sun, 06 Nov 2022 11:04:36 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 04 Nov 2022 11:24:09 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-25
Content-Length: 1833203
ads-6686.top/600X300.gif
123.253.107.62200 OK 2.0 MB IP 123.253.107.62:0
File type GIF image data, version 89a, 600 x 300\012- data
Size 2.0 MB (1963053 bytes)
Hash d30acbce9f6b70d5db3de8add527b4e4
ce6f310e4afc8b622d5b83182c1982f21a6f0948
0bd87a1b457da36aba0fdc9ed7001f5e1b1bd6821f90861faab660af7f7589d6
GET /600X300.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: load-edge/2.1.1
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/gif
content-length: 1963053
last-modified: Mon, 14 Nov 2022 07:36:41 GMT
etag: "6371f009-1df42d"
strict-transport-security: max-age=31536000
lp-geo: edge-e024
lp-addr: 91.90.42.154
lp-request: a8081c4d-f280-4022-be26-da5beb665c84
lp-id: 32f711168f81c28c4b16d37fe0376cb7
expires: Sat, 19 Nov 2022 11:38:29 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2
u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
20.243.252.217200 OK 248 kB URL HTTP/1.1 u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
IP 20.243.252.217:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 650 x 350\012- data
Size 248 kB (247851 bytes)
Hash a9bf695dc5e2ed4a1d5e17818bb895f6
5018e0b9d477d7a536586297fbd2404fc407e295
6cd4ba0841e74acee6bcbc0933c03a0932d5e267a3a2b2af1b8f1abd6a7c0010
GET /a13ccf8571ea4a7ab6b41a306a625f57.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:25:12 GMT
ETag: W/"62936628-3c8da"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
taiwtp1.com/xin/960240.gif
220.128.218.220200 OK 436 kB URL HTTP/2 taiwtp1.com/xin/960240.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 240\012- data
Size 436 kB (436473 bytes)
Hash 732bd86d0a1c250c8ee8f6ebf30d358e
9f8ec516e191af6504caead933e550627ed80af9
8f3edf67a76ef4c9b72fe1dc842ec813009e0fd7bb1945c96d564eb385d068ee
GET /xin/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 11:31:09 GMT
content-type: image/gif
content-length: 436473
last-modified: Thu, 20 Oct 2022 07:11:15 GMT
etag: "6350f493-6a8f9"
expires: Mon, 19 Dec 2022 11:31:09 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
47.75.19.163200 OK 402 kB URL HTTP/1.1 vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP 47.75.19.163:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 402 kB (401949 bytes)
Hash 84f5e7e4907b6cd9053b363f33b77c53
309a705272fea6d84c805fd12b0f1a65563f823b
ebfe8fe0061adb9df1abb8739d4975acaffedc85d286190e92148e5cd8b658b2
GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/gif
Content-Length: 401949
Connection: keep-alive
x-oss-request-id: 6378BF0922AAFC37372F5862
Accept-Ranges: bytes
ETag: "84F5E7E4907B6CD9053B363F33B77C53"
Last-Modified: Thu, 15 Sep 2022 05:03:18 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 1766787816591418203
x-oss-storage-class: Standard
x-oss-version-id: CAEQPxiBgICkqI_.mRgiIGMyOGU5YjM3M2Y5OTQ2N2M4NzA0MDg4OTQ3ZTBhMTNl
Content-MD5: hPXn5JB7bNkFOzY/M7d8Uw==
x-oss-server-time: 1
8644aaw.com/a.gif
61.222.43.6200 OK 397 kB IP 61.222.43.6:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 200 x 200\012- data
Size 397 kB (397051 bytes)
Hash 5869cbd58ab3c66fb06e236b6b5dc421
e9d3274a485604f1077dff7b47968036e25b3ae3
62e972b383e9d0b0e5f7288e58935588610d0453b1b9fde60228328b1e2860d0
GET /a.gif HTTP/1.1
Host: 8644aaw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 19 Nov 2022 11:33:39 GMT
content-type: image/gif
content-length: 397051
last-modified: Wed, 05 Oct 2022 08:47:42 GMT
etag: "633d44ae-60efb"
expires: Mon, 19 Dec 2022 11:33:39 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
523zyw.com/upload/vod/2022-04-27/165103222714.jpg
137.175.72.238200 OK 362 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-04-27/165103222714.jpg
IP 137.175.72.238:0
File type GIF image data, version 89a, 450 x 298\012- data
Size 362 kB (362009 bytes)
Hash 803a80fe38d4c795aa70790869936593
23a9295651ea318f5eb7f825d3669fc66e17fe8e
0a02ef4cd2040d34301c0cb561560a5c395e499cdee445507ad494e2ed3f74d8
GET /upload/vod/2022-04-27/165103222714.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: image/jpeg
Content-Length: 362009
Connection: keep-alive
Last-Modified: Wed, 27 Apr 2022 04:03:47 GMT
Accept-Ranges: bytes
ETag: "92d5d9cbeb59d81:0"
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash a68f4c212bea134773937282fc9a10d4
125ce684bf77349281dbf4fa933a5c6f73599131
adac4b3800b897a8640a5cc28b40590ef037e315b9644c42c376dfa866bdb721
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:31 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 06:11:53 GMT
Expires: Sat, 26 Nov 2022 06:11:52 GMT
Etag: "125ce684bf77349281dbf4fa933a5c6f73599131"
Cache-Control: max-age=584900,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a1a80c12b4fa-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 5709abfe4d9349354c0be52d7dafad06
bc606b54c237913ebf976a44f7e23cff86907aec
551a36fcc0f5c29692e7676757fcb318e0dda275bb87eb582ae2a54d6b95dc35
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:31 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 16:52:10 GMT
Expires: Thu, 24 Nov 2022 16:52:09 GMT
Etag: "bc606b54c237913ebf976a44f7e23cff86907aec"
Cache-Control: max-age=450517,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a1a83c43b51e-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a349742074318ddc8e6a2883ea0b73d4
7e90eedb10f7a45fc9ac0ceeaf78757f9cfaae19
d3b73de51e8d8dfb7afa536df2ceaa96dba1f5f61ae7a5eec0fce2aadcc90683
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 18 Nov 2022 16:07:46 GMT
Expires: Fri, 25 Nov 2022 16:07:45 GMT
Etag: "7e90eedb10f7a45fc9ac0ceeaf78757f9cfaae19"
Cache-Control: max-age=534253,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a1a85dd50b69-OSL
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 5709abfe4d9349354c0be52d7dafad06
bc606b54c237913ebf976a44f7e23cff86907aec
551a36fcc0f5c29692e7676757fcb318e0dda275bb87eb582ae2a54d6b95dc35
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:31 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 16:52:10 GMT
Expires: Thu, 24 Nov 2022 16:52:09 GMT
Etag: "bc606b54c237913ebf976a44f7e23cff86907aec"
Cache-Control: max-age=450517,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a1a85a30fabc-OSL
sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif
120.77.166.72200 OK 562 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 562 kB (562130 bytes)
Hash 8beed805ef37d0fa42646c105c8aadd8
48ce0717f037a6fb1f489ff1da3537a00ff0f47b
9df49f47b95763d2234554adf562f5a0ba5eb3910a9f7f01a5d90e5f425eccce
GET /af/q960x80-6.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Sat, 19 Nov 2022 11:33:29 GMT
Content-Type: image/gif
Content-Length: 562130
Connection: keep-alive
x-oss-request-id: 6378BF09B98BDD32396184A3
Accept-Ranges: bytes
ETag: "8BEED805EF37D0FA42646C105C8AADD8"
Last-Modified: Tue, 27 Sep 2022 07:43:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15479893720264865523
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: i+7YBe830PpCZGwQXIqt2A==
x-oss-server-time: 3
kmrp.kmjbwejnr.xyz/v2/stats/11321/155176
156.251.173.170200 OK 0 B URL HTTP/2 kmrp.kmjbwejnr.xyz/v2/stats/11321/155176
IP 156.251.173.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/stats/11321/155176 HTTP/1.1
Host: kmrp.kmjbwejnr.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:35 GMT
content-length: 0
x-cache: MISS
server: fang
x-cache-status: MISS
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash a68f4c212bea134773937282fc9a10d4
125ce684bf77349281dbf4fa933a5c6f73599131
adac4b3800b897a8640a5cc28b40590ef037e315b9644c42c376dfa866bdb721
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:31 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 06:11:53 GMT
Expires: Sat, 26 Nov 2022 06:11:52 GMT
Etag: "125ce684bf77349281dbf4fa933a5c6f73599131"
Cache-Control: max-age=584900,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a1a8383b0afa-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a33ed4080fd6d74c2dcd9094bad685a6
9ec609699c959887eddc2ba18620dc5b3682701a
d6fb68ba0d463aa5f155dab97b1688f3cbe755eb0788509c4823dbc3fb7678c9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 19:58:56 GMT
Expires: Wed, 23 Nov 2022 19:58:55 GMT
Etag: "9ec609699c959887eddc2ba18620dc5b3682701a"
Cache-Control: max-age=375323,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a1a97ec70b69-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a33ed4080fd6d74c2dcd9094bad685a6
9ec609699c959887eddc2ba18620dc5b3682701a
d6fb68ba0d463aa5f155dab97b1688f3cbe755eb0788509c4823dbc3fb7678c9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 19 Nov 2022 11:33:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 16 Nov 2022 19:58:56 GMT
Expires: Wed, 23 Nov 2022 19:58:55 GMT
Etag: "9ec609699c959887eddc2ba18620dc5b3682701a"
Cache-Control: max-age=375323,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76c8a1a99bc30b51-OSL
p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0
43.154.254.32200 OK 331 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0
IP 43.154.254.32:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Sat, 19 Nov 2022 11:33:30 GMT
content-type: image/gif
content-length: 331043
vary: Accept,Origin
last-modified: Tue, 08 Nov 2022 23:42:24 GMT
cache-control: max-age=2592000
x-delay: 40444 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 331043
chid: 0
fid: 0
x-nws-log-uuid: ea9c0e25-17b2-48a5-95fe-19872152fc29
X-Firefox-Spdy: h2
gnrty.kmjkwe.xyz/xindue/2.gif
23.224.92.242200 OK 109 kB URL HTTP/1.1 gnrty.kmjkwe.xyz/xindue/2.gif
IP 23.224.92.242:0
File type GIF image data, version 89a, 600 x 200\012- data
Size 109 kB (108857 bytes)
Hash 328fcc73f75216185a8ede9bb009f419
56160b68c4ca2f11ab8a3438ee498cb7f086274a
33d1eaf0272b2a545178d60b5aeeb79ac6eca618238b14800ae542d0abf6c1d7
GET /xindue/2.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:32 GMT
Content-Type: image/gif
Content-Length: 108857
Last-Modified: Fri, 04 Nov 2022 17:37:46 GMT
Connection: keep-alive
ETag: "63654dea-1a939"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
gnrty.kmjkwe.xyz/xindue/5.gif
23.224.92.242200 OK 101 kB URL HTTP/1.1 gnrty.kmjkwe.xyz/xindue/5.gif
IP 23.224.92.242:0
File type GIF image data, version 89a, 600 x 200\012- data
Size 101 kB (101102 bytes)
Hash a60b8287801b7eda257355a67e48425b
d3097b4ddbcc93332cb0d9c6e86496453cffe63c
d7f8371255802266cc955e5d9af5ddf526702cc4e0bfb96cd7026764093615a8
GET /xindue/5.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:32 GMT
Content-Type: image/gif
Content-Length: 101102
Last-Modified: Fri, 04 Nov 2022 17:21:02 GMT
Connection: keep-alive
ETag: "636549fe-18aee"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
kmr.mjnbrt.xyz/mnrt/kmrr.png
23.224.92.243200 OK 85 kB URL HTTP/1.1 kmr.mjnbrt.xyz/mnrt/kmrr.png
IP 23.224.92.243:0
File type PNG image data, 2084 x 2084, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c80359bedd35432aea1539a1edcd122
62b0eb9a7eef9b048ab55e3e8d8486a43d5ef8db
74df8ccb6d42d5ee40aaffccd0246978eca881c260c8505afb9f71f85fe17ee2
GET /mnrt/kmrr.png HTTP/1.1
Host: kmr.mjnbrt.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:32 GMT
Content-Type: image/png
Content-Length: 84560
Last-Modified: Fri, 04 Nov 2022 17:24:07 GMT
Connection: keep-alive
ETag: "63654ab7-14a50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fgnef.ijkmafsf.xyz/c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDcwNyZwbGFuaWQ9MzAyOTcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRnJybDQzeXJiaXh0ZjViLnh5eiUzQTI5ODc1JTJGJTIzJTJGJnZ0aW1lPTIwMjItMTEtMTkgMTk6MzM6MzAmaXA9OTEuOTAuNDIuMTU0;9bbae71764013f67c4bd835b208ca87c;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmRhdHN1ZnVyaXRhLmNvbSUyRiZ4PTE7OzUwNDUyNjE0OTtMaW51eCB4ODZfNjQ7OzsxNjsyNCZrPSZzZT0yJmY9MCZ1PWh0dHAlM0ElMkYlMkZoYWl0djIudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTclODklOUIlRTclODklOUIlMkMlRTclODklOUIlRTclODklOUJUViUyQyVFNyU4OSU5QiVFNyU4OSU5QiVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNyU4OSU5QiVFNyU4OSU5QkFWJTJDJUU3JTg5JTlCJUU3JTg5JTlCJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3
156.251.173.167200 OK 747 B URL HTTP/2 fgnef.ijkmafsf.xyz/c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDcwNyZwbGFuaWQ9MzAyOTcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRnJybDQzeXJiaXh0ZjViLnh5eiUzQTI5ODc1JTJGJTIzJTJGJnZ0aW1lPTIwMjItMTEtMTkgMTk6MzM6MzAmaXA9OTEuOTAuNDIuMTU0;9bbae71764013f67c4bd835b208ca87c;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmRhdHN1ZnVyaXRhLmNvbSUyRiZ4PTE7OzUwNDUyNjE0OTtMaW51eCB4ODZfNjQ7OzsxNjsyNCZrPSZzZT0yJmY9MCZ1PWh0dHAlM0ElMkYlMkZoYWl0djIudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTclODklOUIlRTclODklOUIlMkMlRTclODklOUIlRTclODklOUJUViUyQyVFNyU4OSU5QiVFNyU4OSU5QiVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNyU4OSU5QiVFNyU4OSU5QkFWJTJDJUU3JTg5JTlCJUU3JTg5JTlCJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3
IP 156.251.173.167:0
Hash 00da8c9ed6643541bd11f6ce6aff57df
1fb0d80efc5b5a8244434eaa9873e3fa2b9c9131
b40d9241830b0891d05117e4b020ddc539d9339ee1dac463a898435fee613204
GET /c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDcwNyZwbGFuaWQ9MzAyOTcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRnJybDQzeXJiaXh0ZjViLnh5eiUzQTI5ODc1JTJGJTIzJTJGJnZ0aW1lPTIwMjItMTEtMTkgMTk6MzM6MzAmaXA9OTEuOTAuNDIuMTU0;9bbae71764013f67c4bd835b208ca87c;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmRhdHN1ZnVyaXRhLmNvbSUyRiZ4PTE7OzUwNDUyNjE0OTtMaW51eCB4ODZfNjQ7OzsxNjsyNCZrPSZzZT0yJmY9MCZ1PWh0dHAlM0ElMkYlMkZoYWl0djIudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTclODklOUIlRTclODklOUIlMkMlRTclODklOUIlRTclODklOUJUViUyQyVFNyU4OSU5QiVFNyU4OSU5QiVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNyU4OSU5QiVFNyU4OSU5QkFWJTJDJUU3JTg5JTlCJUU3JTg5JTlCJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3 HTTP/1.1
Host: fgnef.ijkmafsf.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:35 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST,GET,OPTIONS
set-cookie: region=%E6%8C%AA%E5%A8%81%2F%2F%E5%85%B6%E5%AE%83; expires=Thu, 18-May-2023 11:33:32 GMT; Max-Age=15552000; path=/
visitnum=1; expires=Sat, 26-Nov-2022 11:33:32 GMT; Max-Age=604800; path=/
11321_30297=re; expires=Sat, 19-Nov-2022 16:33:32 GMT; Max-Age=18000; path=/
do2click_30297=5964707%7C30297%7C11321%7C155175%7C; expires=Sat, 19-Nov-2022 14:33:32 GMT; Max-Age=10800; path=/
doEffect_30297=5964707%7C30297%7C11321%7C155175%7C; expires=Sat, 26-Nov-2022 11:33:32 GMT; Max-Age=604800; path=/
p3p: CP="Powered by Www.Zyiis.Com 2005-2016"
content-encoding: gzip
server: fang
x-cache-status: MISS
X-Firefox-Spdy: h2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
182.118.39.169200 OK 678 kB URL HTTP/2 p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP 182.118.39.169:0
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 270 x 160\012- data
Size 678 kB (677521 bytes)
Hash 94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84
GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:32 GMT
content-type: image/gif
content-length: 677521
set-cookie: hccesp_lttk=AAAAAgAAAAAAAAAFAAAAAQAAAAeBwwi0wpEfjPKrzh03U5GdRNBRv7fAqKrwLE7GpKgHRAAAAAAAAAAAAAAAQMhENqK7npcguMoTvmuSsOrxOZj49RpGIzpnOn43AQ+U5gugVSd7MGPcRVSCQd11Pm3czfk0exed4aPPgoup+H4=; Expires=Sun, 19 Nov 2023 11:33:32 GMT; path=/;
server: openresty
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-tt-logid: 2021123008073501015013614530ADE9B0
server-timing: cdn-cache;desc=HIT, edge;dur=14
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
x-response-lb: image
via: CHN-HAzhengzhou-AREACUCC1-CACHE61[14],CHN-HAzhengzhou-AREACUCC1-CACHE35[0,TCP_HIT,11],CHN-TJ-GLOBAL1-CACHE102[6],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,5]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 31536000
nginx-hit: 1
cache-control: max-age=31536000
age: 1275193
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 459df915ce91b32b2dcc4850516d68a0
d7a5473d367e7965a4af55acbf4675ed7088fab2
a03e26ebee79ad9b9dda1bf680e0d2467ae6d5e582589ada9fe6ddfa437c483c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c537d4-e03f-4ec6-8922-6dce72c72ab9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4851
x-amzn-requestid: 8c868655-d0eb-428d-9fc0-a7449f770bd4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brtDFF9HoAMFV9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748ee0-4f7daf8f7451dc5e0840f620;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:18:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xirMw5z5GPbmx9Sii_I4iNeh1GS5k9lGmaaJvUGAPWoVyP0Tldhf1w==
via: 1.1 e9ba0a9a729ff2960a04323bf1833df8.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sat, 19 Nov 2022 07:17:42 GMT
age: 15352
etag: "d7a5473d367e7965a4af55acbf4675ed7088fab2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kmrp.kmjbwejnr.xyz/j/155175
156.251.173.170200 OK 0 B URL HTTP/2 kmrp.kmjbwejnr.xyz/j/155175
IP 156.251.173.170:0
GET /j/155175 HTTP/1.1
Host: kmrp.kmjbwejnr.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:33 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
pragma: no-cache
expires: 0
content-encoding: gzip
server: fang
x-cache-status: MISS
X-Firefox-Spdy: h2
kmertu.kjanfwss.xyz/stats.php?adsid=5964707&planid=30297&uid=11321&siteid=null&plantype=cpv&zoneid=155175&adtplid=1001&sep=10
156.251.173.168200 OK 0 B URL HTTP/2 kmertu.kjanfwss.xyz/stats.php?adsid=5964707&planid=30297&uid=11321&siteid=null&plantype=cpv&zoneid=155175&adtplid=1001&sep=10
IP 156.251.173.168:0
GET /stats.php?adsid=5964707&planid=30297&uid=11321&siteid=null&plantype=cpv&zoneid=155175&adtplid=1001&sep=10 HTTP/1.1
Host: kmertu.kjanfwss.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:35 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
server: fang
x-cache-status: MISS
X-Firefox-Spdy: h2
www.tukudhgg.vip/lm/cstggspk01.gifg
104.21.69.128404 Not Found 0 B URL HTTP/2 www.tukudhgg.vip/lm/cstggspk01.gifg
IP 104.21.69.128:0
GET /lm/cstggspk01.gifg HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vPGFX3vLo99EclHDbSKhFyASwwtd4NwMsHyygcblfK3R%2FiHTRoPIjk%2FS6IdwR7V%2Ft9g5uTDViJmIGU61cHgBsmQZCaksldxmHHGJ31EvTnt47HPE6JfHmMvrvsu20KLyBr0K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76c8a1993bb2b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
523zyw.com/upload/vod/2021-12-14/16394779675.jpg
137.175.72.238200 OK 0 B URL HTTP/1.1 523zyw.com/upload/vod/2021-12-14/16394779675.jpg
IP 137.175.72.238:0
GET /upload/vod/2021-12-14/16394779675.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Sat, 19 Nov 2022 11:33:30 GMT
Content-Type: image/jpeg
Content-Length: 132953
Connection: keep-alive
Last-Modified: Tue, 14 Dec 2021 10:32:47 GMT
Accept-Ranges: bytes
ETag: "2d2c4efd5f0d71:0"
madou8img.5100m.xyz/videos/202207/13/62cdce351f7b4ba04a1ac14e/poster2.jpg
104.21.234.135200 OK 0 B URL HTTP/2 madou8img.5100m.xyz/videos/202207/13/62cdce351f7b4ba04a1ac14e/poster2.jpg
IP 104.21.234.135:0
GET /videos/202207/13/62cdce351f7b4ba04a1ac14e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:29 GMT
content-type: image/jpeg
content-length: 121644
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Tue, 12 Jul 2022 20:01:07 GMT
etag: W/"1db2c-181f40043b8"
expires: Sat, 19 Nov 2022 23:33:29 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xw1yANYu0mMtlDxq24%2FfNTvZVUcrsK9JKqmJ9%2BA1XTpz09mTAFYE4fFBgaTFKeXUaxNF92YW05nyadOF%2FW5acfuXpxMXcY9dIIX1wMME%2F7jD2EWlnU3pFEnU2He%2BFC6UgpR%2FgaYl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76c8a1991993071e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
haitangtv2.top/template/img/17172.gif
122.10.49.87200 OK 0 B URL HTTP/1.1 haitangtv2.top/template/img/17172.gif
IP 122.10.49.87:0
ASN #134548 DXTL Tseung Kwan O Service
GET /template/img/17172.gif HTTP/1.1
Host: haitangtv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: image/gif
Content-Length: 3197145
Last-Modified: Thu, 27 Oct 2022 07:06:28 GMT
Connection: keep-alive
ETag: "635a2df4-30c8d9"
Expires: Mon, 19 Dec 2022 11:33:28 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
kmertu.kjanfwss.xyz/effect.php?type=ecv&planid=30297&adsid=5964707&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv
156.251.173.168200 OK 0 B URL HTTP/2 kmertu.kjanfwss.xyz/effect.php?type=ecv&planid=30297&adsid=5964707&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv
IP 156.251.173.168:0
GET /effect.php?type=ecv&planid=30297&adsid=5964707&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv HTTP/1.1
Host: kmertu.kjanfwss.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:35 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
server: fang
x-cache-status: MISS
X-Firefox-Spdy: h2
haitangtv2.top/template/img/1717.gif
122.10.49.87200 OK 0 B URL HTTP/1.1 haitangtv2.top/template/img/1717.gif
IP 122.10.49.87:0
ASN #134548 DXTL Tseung Kwan O Service
GET /template/img/1717.gif HTTP/1.1
Host: haitangtv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://haitv2.top/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 19 Nov 2022 11:33:28 GMT
Content-Type: image/gif
Content-Length: 2812930
Last-Modified: Wed, 26 Oct 2022 10:39:02 GMT
Connection: keep-alive
ETag: "63590e46-2aec02"
Expires: Mon, 19 Dec 2022 11:33:28 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
kmrp.kmjbwejnr.xyz/j/155176
156.251.173.170200 OK 0 B URL HTTP/2 kmrp.kmjbwejnr.xyz/j/155176
IP 156.251.173.170:0
GET /j/155176 HTTP/1.1
Host: kmrp.kmjbwejnr.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://haitv2.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 19 Nov 2022 11:33:33 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache
pragma: no-cache
expires: 0
content-encoding: gzip
server: fang
x-cache-status: MISS
X-Firefox-Spdy: h2