r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17181
Expires: Mon, 27 Mar 2023 22:22:33 GMT
Date: Mon, 27 Mar 2023 17:36:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10352
Expires: Mon, 27 Mar 2023 20:28:44 GMT
Date: Mon, 27 Mar 2023 17:36:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Mar 2023 17:15:44 GMT
content-type: application/json
age: 1228
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4944
Expires: Mon, 27 Mar 2023 18:58:36 GMT
Date: Mon, 27 Mar 2023 17:36:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: N4T22z836JGTRwxaP3dQNw7KvcXLtzaOx0KdvthAIb+O2CTgxvFRyAY78k38ybsfY8aCNjwnBu8=
x-amz-request-id: BR5W1GXYMV24H218
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Mar 2023 17:01:43 GMT
age: 2069
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 17:36:12 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
w666b.com/
301 Moved Permanently 0 B IP
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: w666b.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 27 Mar 2023 17:36:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.w666b.com/index.php
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Mar 2023 17:14:35 GMT
age: 1298
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76a0aba3ddb470751c690f5a725159f2
8cb789e8e0dfa336270700ef1e607173f2aee6cd
e76de476654125a06994065d66e30c6fb6c354d0f67fd4e31a3f78679e2bfdcb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E76DE476654125A06994065D66E30C6FB6C354D0F67FD4E31A3F78679E2BFDCB"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8625
Expires: Mon, 27 Mar 2023 19:59:58 GMT
Date: Mon, 27 Mar 2023 17:36:13 GMT
Connection: keep-alive
www.w666b.com/index.php
200 OK 558 B IP
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (746), with CRLF line terminators
Hash 8370bc98f019c45ea4b505caec22f6b0
95df215a6adddb4ebed8ab86f1b4cd1ac58d4bd0
9678e686228a3ac1165ed45fcd7d08377655d7d83bb510c3d7e746fb6a532b24
GET /index.php HTTP/1.1
Host: www.w666b.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lKVtRGXUq45149egogSseA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Fwg6V0C1ojVRfP22DWohoP4Jfjc=
www.w666b.com/common.js
200 OK 561 B IP
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ASCII text, with very long lines (499), with CRLF line terminators
Hash 1c2279c1291ce8e5440b9c0dc81b9bdf
8e8d25542fdea7b10d63a25ea07136df84deb33b
18fb2774f71795277f99b57e2eabc15ed20c8220b4f357b2c6640024f0cb14f3
GET /common.js HTTP/1.1
Host: www.w666b.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.w666b.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:13 GMT
Content-Type: application/x-javascript
Content-Length: 561
Connection: keep-alive
www.w666b.com/tj.js
200 OK 258 B IP
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ASCII text, with CRLF line terminators
Hash cd83d197c936706ddc45343aa4b553b7
aadd3171910bbc0f724e4f3931b9cd60a1336a4b
e3aaabfc3a35fd7890a9ac8d4a27fbe0c959d0320c627377c784dd27830a3e28
GET /tj.js HTTP/1.1
Host: www.w666b.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.w666b.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:13 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.w666b.com/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 www.w666b.com/favicon.ico
IP
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.w666b.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.w666b.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:14 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sat, 01 Apr 2023 17:36:14 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2376
Expires: Mon, 27 Mar 2023 18:15:50 GMT
Date: Mon, 27 Mar 2023 17:36:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2376
Expires: Mon, 27 Mar 2023 18:15:50 GMT
Date: Mon, 27 Mar 2023 17:36:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2376
Expires: Mon, 27 Mar 2023 18:15:50 GMT
Date: Mon, 27 Mar 2023 17:36:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:53:16 GMT
age: 70978
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22905e8a7c8b1741dd51842c114a6517
c5900fe2396e0ca371c4847af4e96149850c3577
1525f9f39c09370fcb1f58f079f2d741a4c6d13fba26e6dd5b79466153d7685e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10405
x-amzn-requestid: 0b8dad7a-2ec1-4eed-9a2c-06079ed46662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi69E9xoAMFiJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b79-2f606ac041c5db24583c8d51;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qbbEi0tXZLKo6qjrbJMtTHdhWziYrLrgzY1hzt_LrQJoeDDBbJnZBA==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 07:49:08 GMT
age: 35226
etag: "c5900fe2396e0ca371c4847af4e96149850c3577"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 668a8a17a1bb77ea7db7fa23c9df9690
242108539ff8694a3c557d07b2b000e764a77f24
100952573dc9eeba889a77f4d148b646accb99f277035f0607b1c6918f93a358
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10591
x-amzn-requestid: a55b3a74-b9f1-424b-8d53-3f49db443698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CaIOwFW-oAMFgUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6420ba5e-6c3e550d1a899e80394262e6;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: SwHfiMdDkV5eSPbXEVlcIs_k1icXGn7aaScjTgDLyG0Uo_o-K0jIqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:57:30 GMT
age: 70724
etag: "242108539ff8694a3c557d07b2b000e764a77f24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ZQcPeutl5BzzzysPzWEzrEY8WU-0F-0twvGPT7RAX-UjNOCk3NtmMQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 06:29:05 GMT
age: 40029
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e999a9d79efe60a30b2942c5f2940294
c3891c43b16521f66eb3a52d83694de2ddd39871
290ed1232883a4ec63ef42c30f40b819983c5544e35261d2d1e0d1e55d0c8b07
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12017
x-amzn-requestid: 4f61a0c7-4b18-4289-b47c-eeeff93d873f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ca6yQGNtoAMFsxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64210b41-350e4e2425d9606e478872b5;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 03:19:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: TCzHm5qTtnAUDSmayc-LLFmDfV7o6PaaYYfVtN_w7cC3o66HCa3DEg==
via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 03:34:08 GMT
age: 50526
etag: "c3891c43b16521f66eb3a52d83694de2ddd39871"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cc79a830964d923d24a45f5ccc9939b
557cc4827414912c41319ad961c14cce71ed4a18
b3b1c73b34057cb6e41920f3d55213ad8c193076525767c051960ec26d17ca3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4775
x-amzn-requestid: 28d0e56d-ed03-4686-bd49-34f193f1c65a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK96KF9coAMFvMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa9da-122cd32a6f23e8442a52464c;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:10:18 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: F03oSAwgUrcVqWUUt9uaapaCtWSDLrmDlz142D4DtYYctMpy5nA3qA==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 16:05:44 GMT
age: 5430
etag: "557cc4827414912c41319ad961c14cce71ed4a18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uup.wywk2.top/
200 OK 192 B IP
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document, ASCII text, with CRLF line terminators
Hash 64f66796188e128139075833ea2c675d
37ab8e8596f05fa5c8664b34bbd4db9ba2014ec5
3954f828d8608c2bdb38324384d8ed2ac4ff4770e1375869dd6877cb20830dec
GET / HTTP/1.1
Host: uup.wywk2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.w666b.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Mon, 27 Mar 2023 13:05:06 GMT
Accept-Ranges: bytes
ETag: W/"edbd59c0ac60d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Mon, 27 Mar 2023 17:36:14 GMT
Content-Length: 192
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash c81af818b7e6253c3e60204718cd0ee3
c795d8777002e65bdbd4e7a0fa6a1a36ceed1979
f4d70050218e7a52570690680633e78abaa83cb6eefff3fb899a7058bbc8d965
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 31 Mar 2023 15:16:26 GMT
ETag: "c795d8777002e65bdbd4e7a0fa6a1a36ceed1979"
Last-Modified: Mon, 27 Mar 2023 15:16:27 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2717
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ae964fd4fee0b41-OSL
hm.baidu.com/hm.js?b70cd53b04da5a3cdace3514dc8a1166
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?b70cd53b04da5a3cdace3514dc8a1166
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash f367b69d3ca5b93c405dacc3506abd9e
4e2e464812c739f0757a51f2e3793726902fb209
a3c3ccd018d6a3033bfab3b1470ddd362e1c3c77812e440120ec4498adb074c6
GET /hm.js?b70cd53b04da5a3cdace3514dc8a1166 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.w666b.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:15 GMT
Etag: aba68725beef04c1abae1b610e4e503d
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6DC5202CEF4BF559; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
wsx5.wynb81.top/
200 OK 24 kB IP
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (351), with CRLF line terminators
Hash 1942f344e0d79ccc968ee3433c5e5ffd
41bb1bbacf363bed3c0bda240fa54d336616528a
5d69bed0e643b81f23be7173f874d4068e78cbefbd5aaa80cd2313c43ca16e2b
GET / HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uup.wywk2.top/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:15 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=dmkirl4f565l2tba5hr7vtkd04; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=773853340&si=b70cd53b04da5a3cdace3514dc8a1166&v=1.3.0&lv=1&sn=14405&r=0&ww=1280&u=http%3A%2F%2Fwww.w666b.com%2Findex.php&tt=%E6%A1%90%E4%B9%A1%E7%93%AE%E6%8B%BF%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=773853340&si=b70cd53b04da5a3cdace3514dc8a1166&v=1.3.0&lv=1&sn=14405&r=0&ww=1280&u=http%3A%2F%2Fwww.w666b.com%2Findex.php&tt=%E6%A1%90%E4%B9%A1%E7%93%AE%E6%8B%BF%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=773853340&si=b70cd53b04da5a3cdace3514dc8a1166&v=1.3.0&lv=1&sn=14405&r=0&ww=1280&u=http%3A%2F%2Fwww.w666b.com%2Findex.php&tt=%E6%A1%90%E4%B9%A1%E7%93%AE%E6%8B%BF%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.w666b.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:16 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=754E445FA723F873; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
sdk.51.la/js-sdk-pro.min.js
200 OK 13 kB URL HTTP/1.1 sdk.51.la/js-sdk-pro.min.js
IP
ASN #45102 Alibaba US Technology Co., Ltd.
File type Unicode text, UTF-8 text, with very long lines (34110)
Hash 29243483fe441404931c046d27be80a6
92a0c68b0169eff0addb8cc05a53f6e009d41d47
4865f22b0a68c6a0a6c2d3cbedb9a190ffbea105c4f1e2a5806172919456f3b1
GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 10 Jan 2023 04:34:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63bceaef-861a"
Cache-Control: max-age=1296000
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/css/app.css
200 OK 21 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/css/app.css
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 (with BOM) text, with very long lines (588)
Hash 2f75755b5df2d10b47e8cd9e68960015
e7966f02db13a476cd59cd60d7db2111669fd435
7c7c7aa3f0f375b50a11ac4af16e0abedf53610f0e09d3cd37dd8595c206f4ba
GET /template/helen_v105/css/app.css HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: text/css
Last-Modified: Thu, 07 Oct 2021 07:58:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"615ea8b1-13cb5"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/images/app.css
200 OK 8.3 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/images/app.css
IP
ASN #134548 DXTL Tseung Kwan O Service
File type assembler source text\012- assembler source, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash a93e68eff2c7b04c07dad2107b97f4db
300505c589b2bee6170928977fa643b4fee3b9fb
f6da2b069f4d9c3d1b355dc3f1997daad08e5c011f38ab734a02d44e5b57d767
GET /template/helen_v105/images/app.css HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: text/css
Last-Modified: Sat, 09 Oct 2021 09:06:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61615baa-79a3"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/css/swiper.min.css
200 OK 3.3 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/css/swiper.min.css
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 (with BOM) text, with very long lines (17459)
Hash 3b0f19c6e3d95b50787117fc26d47c7f
33799bc7c5f9ebda4adde8d59116a87fc2cce23f
39c608aa9656788524e36287f3a9e0070085695a439e4081a5bfd48c3b6f83b3
GET /template/helen_v105/css/swiper.min.css HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: text/css
Last-Modified: Sat, 05 May 2018 15:15:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5aedca8e-4562"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/js/player.js
200 OK 2.7 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/js/player.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 text, with very long lines (2677)
Hash b6bb4e4db100193ec73c997a7ca91b0a
fc31f30e6cc32f5ceb286d92a365e83f325bc44d
3dd88b7d57665d87ce8b5627bfc1cfcd740622de67d2f86b8e7e777c2eb27e2c
GET /template/helen_v105/js/player.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Thu, 07 Oct 2021 07:00:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"615e9b0b-1f69"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/static/js/home.js
200 OK 10 kB URL HTTP/1.1 wsx5.wynb81.top/static/js/home.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 text, with very long lines (2677), with CRLF line terminators
Hash 76bc4696bdad526716af0614231f07a5
bb57648b9643bf707e5196c27b72a4ac65b0ca7a
c69e0174bb9a0ac801d4cc1c05c4b6b5e1351b6c642639bdc82312b4af8c1780
GET /static/js/home.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Tue, 29 Jun 2021 04:19:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60da9f4e-994d"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/js/iconfont.js
200 OK 20 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/js/iconfont.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (51921), with no line terminators
Hash bb9d7290947ec8441f00f58a7cbc35bd
78eba70bdebe8b1c6f361072ea6531526548a164
9a350ba2c99ec88da12f04fddb155572aea004982bfbd7becc7c40c7692c8849
GET /template/helen_v105/js/iconfont.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Mon, 07 May 2018 13:58:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5af05b92-cad1"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/js/jquery.min.js
200 OK 33 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/js/jquery.min.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (32025), with CRLF line terminators
Hash e56b3c19cd07e7048fc64dc10a55e221
1ea5677a24e92ef3a071de9addafdcbc27461794
e60dd9efa71514889c120a09e536ff67d3d6fcfd03ca0288599a8dbab11b9704
GET /template/helen_v105/js/jquery.min.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Sat, 05 May 2018 15:15:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5aedca96-1497d"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/ads/hfs.js
200 OK 1.1 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/ads/hfs.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0be9a0e86d5f9d2d3f3beba9d78f0ff1
0ecacbeba293121427f5a50b9e171913c79f76fd
1f1fd3a2e1260baed64039a303ae6048f1afd7ff296a0ece528d55021a85e401
GET /template/helen_v105/ads/hfs.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Mar 2023 07:20:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"642143c7-2216"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/js/swiper.min.js
200 OK 25 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/js/swiper.min.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (32000)
Hash 4fb972799dffb51ede34073666ce7db6
6905ee048aec1d79cddfbb6c11d8848968999474
cdf70fe5a58135403febefaefbac597ed5c78c265e1b7aa0e9b312f524fcd2ef
GET /template/helen_v105/js/swiper.min.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Sat, 05 May 2018 15:15:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5aedca98-1538a"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/ads/we1.js
200 OK 396 B URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/ads/we1.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash d1c5803b0e1b9a4eab654210391ba7bd
b5f034c95ac519de10bc41450ec470d96afd447c
0126b185c72f6fa0ab79fff85355f1b73f28ca64b4d204b8dd654662fed0a461
GET /template/helen_v105/ads/we1.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Fri, 17 Mar 2023 06:05:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6414031d-865"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/css/q2.css
200 OK 21 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/css/q2.css
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 (with BOM) text, with very long lines (588)
Hash 71f393fd9eaace5e8738c1be5be3c6ef
e6bef8b6a7bc0620e9c7a78e65622c79c5dd431e
b2e719d360a983d1cf2cc3d2a3e5a20dd2873cadb74de21017f1b27ea73f06ea
GET /template/helen_v105/css/q2.css HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: text/css
Last-Modified: Sat, 09 Oct 2021 09:04:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61615b11-13c4f"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/ads/hfz.js
200 OK 448 B URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/ads/hfz.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c1a6d5b5d8d593b6cc605f277c53033a
13189fc6dfd17a6b882f74d4551c097c2c524420
cf7df32953def1e7245c5c6b8ab3c8bd4210a6c825d87c9e1ab26fbf267d5f3e
GET /template/helen_v105/ads/hfz.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Tue, 21 Mar 2023 09:01:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6419725d-679"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/ads/77.js
200 OK 571 B URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/ads/77.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 24202ee00fec2e022a36323e2b353fa3
33232a03b0c1d6f440a3453373127f24243708a5
31aa006402d3703a8eb146307bbac679f25ce809462db270936ee0e6b4163815
GET /template/helen_v105/ads/77.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Fri, 17 Mar 2023 06:06:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64140362-44d"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/ads/hfx.js
200 OK 674 B URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/ads/hfx.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 07c42bf5f0af12ecf4726df8adef79f8
2458c703192cb1c75f0442defa066174045150e3
31e58a6728c03a3601fe268cf502436d79a8c9de3853b467e15ce02e3edd2495
GET /template/helen_v105/ads/hfx.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Last-Modified: Mon, 27 Mar 2023 07:21:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"642143f1-922"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/static/js/tj.js
200 OK 30 B URL HTTP/1.1 wsx5.wynb81.top/static/js/tj.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 text, with no line terminators
Hash 5db64a5896e78ecbcb5d64e71013283f
542393665200a7bb30a887f402dae3eb2062980e
f53a9bfceaee649430a3442711675d95eee375219d07f8e18a9a7e0a01ea99f8
GET /static/js/tj.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:16 GMT
Content-Type: application/javascript
Content-Length: 30
Last-Modified: Sun, 02 Jan 2022 19:31:13 GMT
Connection: keep-alive
ETag: "61d1fd81-1e"
Expires: Tue, 28 Mar 2023 05:36:16 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
wsx5.wynb81.top/template/helen_v105/js/lazyload.min.js
200 OK 1.6 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/js/lazyload.min.js
IP
ASN #134548 DXTL Tseung Kwan O Service
File type ASCII text, with very long lines (3276)
Hash 798681852c5f1d9a7cc1dbadefda06d5
45b4362887487199d923370376440f0678a3c380
1c0933e4d2c26d1a489b0462b36fdf14a78ac9b8db2e42794aa0dcef26897640
GET /template/helen_v105/js/lazyload.min.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:17 GMT
Content-Type: application/javascript
Last-Modified: Mon, 07 May 2018 13:57:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5af05b4c-fe6"
Expires: Tue, 28 Mar 2023 05:36:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/js/app.js
200 OK 1.6 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/js/app.js
IP
ASN #134548 DXTL Tseung Kwan O Service
Hash cd5da2a5ba13fd134b077b681866cd48
780be3e75972773ab67cc5aedb00e3ccf3b6331d
b5bd1765a887aef771e14b7d0226a908ac11359fcb224adb4e48afaeae493c5f
GET /template/helen_v105/js/app.js HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:17 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jan 2019 07:22:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5c2c66a8-13ae"
Expires: Tue, 28 Mar 2023 05:36:17 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
wsx5.wynb81.top/template/helen_v105/fonts/iconfont.woff
200 OK 6.7 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/fonts/iconfont.woff
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Web Open Font Format, TrueType, length 6720, version 1.0\012- data
Hash e4ab9acbb868dc462eda82de8cf64428
f20a14b46db28f22728da11b16f8fc92684f095d
5674e754dbf6c112af013ea728b0e8a9ed299f370f45e5cf380c87bcb8dcbe50
GET /template/helen_v105/fonts/iconfont.woff HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://wsx5.wynb81.top/template/helen_v105/css/q2.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:17 GMT
Content-Type: font/woff
Content-Length: 6720
Last-Modified: Sat, 05 May 2018 15:15:34 GMT
Connection: keep-alive
ETag: "5aedca96-1a40"
Accept-Ranges: bytes
wsx5.wynb81.top/template/helen_v105/images/21bg.jpg
200 OK 107 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/images/21bg.jpg
IP
ASN #134548 DXTL Tseung Kwan O Service
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 107 kB (106643 bytes)
Hash f6d436a223dd136100b8ee1e850ad89a
b18ec9d3645685389adb97923835bbd0096f8117
a56b85e2663ad5c1decd9bceefa9a3a758130c29b97afe06610e7226f77bf5f3
GET /template/helen_v105/images/21bg.jpg HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/template/helen_v105/css/app.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:17 GMT
Content-Type: image/jpeg
Content-Length: 106643
Last-Modified: Tue, 23 Jan 2018 13:20:48 GMT
Connection: keep-alive
ETag: "5a6736b0-1a093"
Expires: Wed, 26 Apr 2023 17:36:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
wsx5.wynb81.top/template/helen_v105/images/ss.png
200 OK 30 kB URL HTTP/1.1 wsx5.wynb81.top/template/helen_v105/images/ss.png
IP
ASN #134548 DXTL Tseung Kwan O Service
File type GIF image data, version 89a, 150 x 210\012- data
Hash 1339529c386f47bc3a5dc4efe5006de0
205b23221cf47c4f7ad4e31a274fc4a829ba8ca3
e692502fe1883bae714f5ac5ceab175f6e408b312f847b6f9a866f38247c331a
GET /template/helen_v105/images/ss.png HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:17 GMT
Content-Type: image/png
Content-Length: 29542
Last-Modified: Wed, 26 Dec 2018 04:51:08 GMT
Connection: keep-alive
ETag: "5c2308bc-7366"
Expires: Wed, 26 Apr 2023 17:36:17 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
wsx5.wynb81.top/api.php/timming/index?t=0.9120386153343069
200 OK 118 B URL HTTP/1.1 wsx5.wynb81.top/api.php/timming/index?t=0.9120386153343069
IP
ASN #134548 DXTL Tseung Kwan O Service
File type Unicode text, UTF-8 text, with no line terminators
Hash 866d4aa5c812db10b23eb42d80f5ad7d
fc818785247f181f508f9fdd023b37de38963bfd
3ff8cad4ea43a9c5829a4e9b189f7d30c933ce795f31c502ed4ba1de3b058665
GET /api.php/timming/index?t=0.9120386153343069 HTTP/1.1
Host: wsx5.wynb81.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 17:36:17 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=8rctp118jqnqo55t1bp93tm7pl; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
hm.baidu.com/hm.js?3b9e2f2fe2714afd3bd95d6fa4c6071c
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3b9e2f2fe2714afd3bd95d6fa4c6071c
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (622)
Hash f7bf55bd2633db0ac15d0c2dec978cb6
a3da788e07e765762098b346c71377788912cf44
98b43c86f0614269ecee67fcac441f92b14bc506091e9a07e095bb0ba418dc39
GET /hm.js?3b9e2f2fe2714afd3bd95d6fa4c6071c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:17 GMT
Etag: 58571abe5dc9b90c84a4e861e82403fe
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=2D7ABD4BDC78E225; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?f60217089b1da6d1d44680872fcaac43
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?f60217089b1da6d1d44680872fcaac43
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash e9265b41fd10afa800d5d61065f0edbf
d84d4d0787a5f40ea2c86dd0191525a8dff9c9d7
8156c9645254d7587855193137a552c9d223a9532af3869a0dce547992041220
GET /hm.js?f60217089b1da6d1d44680872fcaac43 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:17 GMT
Etag: 2e2e76c65c4f211508d7cc803f0407a3
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=37E5BE34780AA461; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
u22055.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
200 OK 288 kB URL HTTP/2 u22055.com/fee6dc0783e7085f6b3452a1155d4b4a.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 288 kB (288397 bytes)
Hash e17bb688cfdae836ea866c47e92a022a
d748bb7b13696141ba768280a21d3dac482e3a0c
cb9affdc029bd6deb908ab9786fad62113c4ba28d2e9a8926cbed0c5e2c2aa6a
GET /fee6dc0783e7085f6b3452a1155d4b4a.gif HTTP/1.1
Host: u22055.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 288397
date: Tue, 10 Jan 2023 07:52:07 GMT
last-modified: Sat, 24 Dec 2022 08:23:21 GMT
etag: "e17bb688cfdae836ea866c47e92a022a"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 3c724fc8704aec61a7bab068ccd978fe.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: DKKD-KpsJclonph-snopyZoxKCEmjFnV6L7DXVvnbqKKSQxCLX84Gw==
age: 6601451
X-Firefox-Spdy: h2
img.1190555.com/images/640c1ca0a97fb4251a362a27.gif
302 Found 0 B URL HTTP/2 img.1190555.com/images/640c1ca0a97fb4251a362a27.gif
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/640c1ca0a97fb4251a362a27.gif HTTP/1.1
Host: img.1190555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=600
location: https://img.mengzhan24.com/loveimgmoe/fd/a1/639da4c51e6435355291fda1.gif
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?118d8c4b51d138a967fb082395b27809
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?118d8c4b51d138a967fb082395b27809
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 39c4f52c3c959af7525c289b7f3a2065
4ae60b0d3c69808bc44119a7c4ad73055fdee69b
dd85a276a542004cd7b7a869d3c5568fdee155ec9fc5bde082f6cf31db0ed8b8
GET /hm.js?118d8c4b51d138a967fb082395b27809 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:17 GMT
Etag: f3c115169710855f20b3938d88dc4ea2
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C4111BD172353FBB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?3245eddf7b031a037c644e0f859ed26d
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3245eddf7b031a037c644e0f859ed26d
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 996471549a4c1940c0018b8e65fc554a
f875167467e8a559a4993fb16440a0d11d984b0d
614ae8f3d7566efb8b149b4df3ba343906e767674708d1ac90aca9fb118526ed
GET /hm.js?3245eddf7b031a037c644e0f859ed26d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:17 GMT
Etag: 48ff5753c3dd533d32527a54d3466f03
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=52F191FC59CE600D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?09b570ae57a8bdd90710ea1938df4e59
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?09b570ae57a8bdd90710ea1938df4e59
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 6bd2b63367834d2949a678e12b3e7005
b89266e8bbbd9c77a86146b639bf297a650df7ba
2015e24b38e8e2301726c9ff5b6fe7a8ec1097208d79bd5713b7c1b90706fd6d
GET /hm.js?09b570ae57a8bdd90710ea1938df4e59 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:17 GMT
Etag: a2dba8335540c71d046ec82f8a35ea6e
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=646B42CA09E809BB; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?509936279e06bc83b2661639fdba65fd
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?509936279e06bc83b2661639fdba65fd
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash 9bc6690772e970347d6e772154a0ce6b
805483578be87195114b8eeb5ef99efe5949618d
ba78a6aba2ddec4340ba20cb9b386acc03c51919e68e4ee000d1445e18900c64
GET /hm.js?509936279e06bc83b2661639fdba65fd HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:18 GMT
Etag: e6f16a9de5b111e30734a05f99e37cb1
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=AAF9079B97F54C43; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?bd1c4e4e3b958139dfa1d89e8e7306ed
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?bd1c4e4e3b958139dfa1d89e8e7306ed
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (622)
Hash 79c5cae830420c7cdb24810233a517a4
c12463632fb50ec7990e0cadfc876d08e0058fc1
e7055b54b4b9e1ca7a9a6dad2fd3ada6d4dcc1b5e857f7a026a6a5b53234503e
GET /hm.js?bd1c4e4e3b958139dfa1d89e8e7306ed HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:17 GMT
Etag: 33f98aed51e09a0c8363733db0122803
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=54A7D186A4D51963; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
u22088.com/f7fd72d8ade7e262c4b4f656dd460724.gif
200 OK 396 kB URL HTTP/2 u22088.com/f7fd72d8ade7e262c4b4f656dd460724.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 396 kB (395600 bytes)
Hash 5155d4f34bc2f7e77b9fe8e854d9e96f
408ed373dd26d934ee70f30b0e47a9dc8049983f
db9f393331e2d56fe7da37b7822590b82524e2dde508848299877daeae1df3be
GET /f7fd72d8ade7e262c4b4f656dd460724.gif HTTP/1.1
Host: u22088.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 395600
date: Tue, 10 Jan 2023 07:52:07 GMT
last-modified: Sat, 17 Dec 2022 11:55:02 GMT
etag: "5155d4f34bc2f7e77b9fe8e854d9e96f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 bf37a08a8e52d3968f35ae1bb4eaae78.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: oTIgz96JynZmTvfzH04e5BdkMdFQAXdvPdCskrfj7np8xjbSzofHwA==
age: 6601451
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?7594b934d9a76568e9987e886fc92cc2
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?7594b934d9a76568e9987e886fc92cc2
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 066eb6429ef7a0332db049095263683f
25399f77dfd0723a11891b3422683241eee6601a
f391a0f80ed6f5a7a80756df0bb5d80e6054efde82bf78827f33e3f41e976ea9
GET /hm.js?7594b934d9a76568e9987e886fc92cc2 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:18 GMT
Etag: df6c97ab79eb661f5c849fb630a97b86
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1692B632033FE116; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
ocsp2.globalsign.com/gsorganizationvalsha2g3
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash b9bf3e05b3d4d5c539d11b22742aaae3
9dda69143f559f2e5759cd4a9fdd8e96e9575a67
b84aae549145e56335d2ac9a0931aa0daeb00c08f492c8301beeb57443cd4b59
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 31 Mar 2023 15:26:50 GMT
ETag: "9dda69143f559f2e5759cd4a9fdd8e96e9575a67"
Last-Modified: Mon, 27 Mar 2023 15:26:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2621
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ae965151e370afe-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g3
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash b9bf3e05b3d4d5c539d11b22742aaae3
9dda69143f559f2e5759cd4a9fdd8e96e9575a67
b84aae549145e56335d2ac9a0931aa0daeb00c08f492c8301beeb57443cd4b59
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 31 Mar 2023 15:26:50 GMT
ETag: "9dda69143f559f2e5759cd4a9fdd8e96e9575a67"
Last-Modified: Mon, 27 Mar 2023 15:26:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2621
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ae965151888b4f9-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g3
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash b9bf3e05b3d4d5c539d11b22742aaae3
9dda69143f559f2e5759cd4a9fdd8e96e9575a67
b84aae549145e56335d2ac9a0931aa0daeb00c08f492c8301beeb57443cd4b59
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 31 Mar 2023 15:26:50 GMT
ETag: "9dda69143f559f2e5759cd4a9fdd8e96e9575a67"
Last-Modified: Mon, 27 Mar 2023 15:26:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2621
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ae965151f580afa-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g3
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash 03257c45dd0e963be511031f3a895615
20b436b18011ebefeab0d8cad85664a77245786a
02e5d71e5419f8b2faeca2678370fe69d3e5c6c28233bfedea81c31c92e26775
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 31 Mar 2023 15:37:16 GMT
ETag: "20b436b18011ebefeab0d8cad85664a77245786a"
Last-Modified: Mon, 27 Mar 2023 15:37:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2320
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ae965151eda0b06-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash 00053ce30657595585f0d0cd4c86f327
f6e45576ed59f2c137f68af44185ab7ae7f5d037
a502d73c4b75d73b5f7a2d60a1812a4f2c3703749142071a22dfd2f08d2aedbb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6091
Cache-Control: max-age=144378
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 17:36:18 GMT
Etag: "64214d41-1d7"
Expires: Wed, 29 Mar 2023 09:42:36 GMT
Last-Modified: Mon, 27 Mar 2023 08:01:05 GMT
Server: ECAcc (amb/6B09)
X-Cache: HIT
Content-Length: 471
ocsp2.globalsign.com/gsorganizationvalsha2g3
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP
Hash 03257c45dd0e963be511031f3a895615
20b436b18011ebefeab0d8cad85664a77245786a
02e5d71e5419f8b2faeca2678370fe69d3e5c6c28233bfedea81c31c92e26775
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Fri, 31 Mar 2023 15:37:16 GMT
ETag: "20b436b18011ebefeab0d8cad85664a77245786a"
Last-Modified: Mon, 27 Mar 2023 15:37:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2320
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ae965156ea90afe-OSL
img.mengzhan24.com/loveimgmoe/fd/a1/639da4c51e6435355291fda1.gif
200 OK 517 kB URL HTTP/2 img.mengzhan24.com/loveimgmoe/fd/a1/639da4c51e6435355291fda1.gif
IP
File type GIF image data, version 89a, 960 x 80\012- data
Size 517 kB (517096 bytes)
Hash b015f844cdbda5be42c43fe5bb5b993f
10587b61d92be7f0a4aa6653a9f6c164a9f3b69c
4e5d7e2968aaca9342c547ba9e97f05ff806b25b6f855f1f2793bcb2475e0205
GET /loveimgmoe/fd/a1/639da4c51e6435355291fda1.gif HTTP/1.1
Host: img.mengzhan24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 17:36:18 GMT
content-type: image/jpeg
content-length: 517096
cache-control: max-age=2678400
last-modified: Sat, 18 Mar 2023 16:45:48 GMT
cf-cache-status: HIT
age: 779583
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7ae965159cc6b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 6f7d6fc3b40777627d7d55d8bf2f3dc7
9281e1780f45e4456f8067f8f548915fc257d804
4a29f832665d259e649e6fef9286b8590c53c4f1f00c477c43e7c0e60e52a9de
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 15:22:08 GMT
Expires: Fri, 31 Mar 2023 15:22:07 GMT
Etag: "9281e1780f45e4456f8067f8f548915fc257d804"
Cache-Control: max-age=336948,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae96515abeab524-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash e8e23f589b600596d699bc9fc1b4299c
bd15631d10492b6ae6f9b86690ac8c8a683208ad
2dacafcff7495810c11c9571230c337f327304756489d84faf65ef477d8c3823
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 03:25:35 GMT
Expires: Sat, 01 Apr 2023 03:25:34 GMT
Etag: "bd15631d10492b6ae6f9b86690ac8c8a683208ad"
Cache-Control: max-age=380355,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae96515af010afe-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=2024428421&si=118d8c4b51d138a967fb082395b27809&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=2024428421&si=118d8c4b51d138a967fb082395b27809&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=2024428421&si=118d8c4b51d138a967fb082395b27809&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:18 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6B076E386B73DE55; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
z4a.net/images/2023/01/30/600X360zzz.gif
200 OK 279 kB URL HTTP/2 z4a.net/images/2023/01/30/600X360zzz.gif
IP
File type GIF image data, version 89a, 600 x 360\012- data
Size 279 kB (278804 bytes)
Hash 522705a81d14be5901fe3fdf3fcd0fa4
374aec0beebf3e3f30f3996565e8d9e1c8a8b689
b536c486cbde81df25228d12c1e973bcf9aec094af88a7b1bcd3bd2128b4ea04
GET /images/2023/01/30/600X360zzz.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 17:36:18 GMT
content-type: image/gif
content-length: 278804
expires: Tue, 30 Jan 2024 12:48:26 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 4855672
last-modified: Mon, 30 Jan 2023 12:48:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TGe9bGYE4x8%2F35GHs8pyVwhQRq3eXcDTeGWKZabgxH8IncmvP9KzEqj7vncZDeeUZDDJkxwuPfFqjcsovJB1C2EHll2YNvARWbYxmxELwLjMNXrxvxfurnrg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae965159a7035dc-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=603233497&si=3245eddf7b031a037c644e0f859ed26d&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=603233497&si=3245eddf7b031a037c644e0f859ed26d&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=603233497&si=3245eddf7b031a037c644e0f859ed26d&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:18 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=26B47EA54AB20863; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=419958859&si=3b9e2f2fe2714afd3bd95d6fa4c6071c&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14406&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=419958859&si=3b9e2f2fe2714afd3bd95d6fa4c6071c&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14406&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=419958859&si=3b9e2f2fe2714afd3bd95d6fa4c6071c&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14406&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:18 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=604FC97981402507; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
collect-v6.51.la/v6/collect?dt=4
403 0 B URL HTTP/1.1 collect-v6.51.la/v6/collect?dt=4
IP
ASN #4837 CHINA UNICOM China169 Backbone
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 394
Origin: http://wsx5.wynb81.top
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
HTTP/1.1 403
Server: CloudWAF
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: HWWAFSESID=3715a119be29211b139d; path=/
HWWAFSESTIME=1679938574731; path=/
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://wsx5.wynb81.top
Access-Control-Allow-Credentials: true
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2dd61f22529c88392ff832e8224907f6
8f12548bc0e1dc9951eeef44eaca786af28e36c3
b978ccc03962f7f7157dbd27c823c0d2fac52af2a4165bca69b9b944c81fd56d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B978CCC03962F7F7157DBD27C823C0D2FAC52AF2A4165BCA69B9B944C81FD56D"
Last-Modified: Sat, 25 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5174
Expires: Mon, 27 Mar 2023 19:02:32 GMT
Date: Mon, 27 Mar 2023 17:36:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2dd61f22529c88392ff832e8224907f6
8f12548bc0e1dc9951eeef44eaca786af28e36c3
b978ccc03962f7f7157dbd27c823c0d2fac52af2a4165bca69b9b944c81fd56d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B978CCC03962F7F7157DBD27C823C0D2FAC52AF2A4165BCA69B9B944C81FD56D"
Last-Modified: Sat, 25 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5174
Expires: Mon, 27 Mar 2023 19:02:32 GMT
Date: Mon, 27 Mar 2023 17:36:18 GMT
Connection: keep-alive
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=2097447261&si=509936279e06bc83b2661639fdba65fd&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=2097447261&si=509936279e06bc83b2661639fdba65fd&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=2097447261&si=509936279e06bc83b2661639fdba65fd&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:18 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=6CA8FE64FFA4EE90; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2dd61f22529c88392ff832e8224907f6
8f12548bc0e1dc9951eeef44eaca786af28e36c3
b978ccc03962f7f7157dbd27c823c0d2fac52af2a4165bca69b9b944c81fd56d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B978CCC03962F7F7157DBD27C823C0D2FAC52AF2A4165BCA69B9B944C81FD56D"
Last-Modified: Sat, 25 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5173
Expires: Mon, 27 Mar 2023 19:02:32 GMT
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1736598583&si=09b570ae57a8bdd90710ea1938df4e59&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1736598583&si=09b570ae57a8bdd90710ea1938df4e59&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1736598583&si=09b570ae57a8bdd90710ea1938df4e59&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:18 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=59448377CD1BEDAF; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fc70836e058cd84c47c688d0ee60aacf
9e5504f888089afbe953cb98ab008e2e69f768b8
63c7e93b9c4119ddbc176c419a866beb06af1684ed9bff2b2428f0654efca613
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63C7E93B9C4119DDBC176C419A866BEB06AF1684ED9BFF2B2428F0654EFCA613"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11106
Expires: Mon, 27 Mar 2023 20:41:24 GMT
Date: Mon, 27 Mar 2023 17:36:18 GMT
Connection: keep-alive
u25011.com/9e9012f2fc173b1cf0ae24c016df64e9.gif
200 OK 1.0 MB URL HTTP/2 u25011.com/9e9012f2fc173b1cf0ae24c016df64e9.gif
IP
File type GIF image data, version 89a, 650 x 350\012- data
Size 1.0 MB (1042539 bytes)
Hash 21ebefaca040d7b3a1c70ab5a78ab323
cdd867b2d372496a12fa2b51195b5412df758516
d18f797e84bc0a1fdbd072f66a7cef2e5e40f73b2f3cfab98d2a361bfd170c59
GET /9e9012f2fc173b1cf0ae24c016df64e9.gif HTTP/1.1
Host: u25011.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 1042539
date: Tue, 31 Jan 2023 08:40:18 GMT
last-modified: Fri, 13 Jan 2023 11:22:34 GMT
etag: "21ebefaca040d7b3a1c70ab5a78ab323"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 0ebc10def77a5b11a9b58ccbe655bf62.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: VoW6JWE6RZl_WIKvLnrL9mxbYPky8QDc40UAZeN8mfuGUJxk2MK8GA==
age: 4784160
X-Firefox-Spdy: h2
u25011.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
200 OK 864 kB URL HTTP/2 u25011.com/8fdce7479dd03f1ee73805e8d2e9bab8.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Size 864 kB (864004 bytes)
Hash d2c820747a9b9b8c3abaab0775436ab7
99651afd10bd3874fb84d7973845482cd2c81f23
8aa3c7b05ba9bb5176a7155ead2a0ea562b07fb0dd7b27a9cf91c38e95ed43ed
GET /8fdce7479dd03f1ee73805e8d2e9bab8.gif HTTP/1.1
Host: u25011.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 864004
last-modified: Mon, 19 Dec 2022 09:06:34 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sun, 26 Mar 2023 23:32:32 GMT
etag: "d2c820747a9b9b8c3abaab0775436ab7"
x-cache: Hit from cloudfront
via: 1.1 0ebc10def77a5b11a9b58ccbe655bf62.cloudfront.net (CloudFront)
x-amz-cf-pop: SIN52-C3
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: JY4T9gxoFk6zSNmCwS4JN04Qa1PMnMjkf3LHvD-6cuOrb85CQfOWTQ==
age: 65026
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=812103882&si=7594b934d9a76568e9987e886fc92cc2&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=812103882&si=7594b934d9a76568e9987e886fc92cc2&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=812103882&si=7594b934d9a76568e9987e886fc92cc2&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:18 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=89A0436C85200DA1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=706737319&si=bd1c4e4e3b958139dfa1d89e8e7306ed&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=706737319&si=bd1c4e4e3b958139dfa1d89e8e7306ed&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=706737319&si=bd1c4e4e3b958139dfa1d89e8e7306ed&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:18 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=DD5D6EC20F3368C4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.sectigo.com/
200 OK 471 B IP
Hash 0127523d33cf4b119a8390fdcc7c1d84
c1390b667bd5d4bb871506e3e3ca2bcf7ccc13ce
39dc6c366b4f6c52c33f7202725022ed28d0ec87c2724fe294a760dcc128c00a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2023 22:55:25 GMT
Expires: Sun, 02 Apr 2023 22:55:24 GMT
Etag: "c1390b667bd5d4bb871506e3e3ca2bcf7ccc13ce"
Cache-Control: max-age=536944,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae96516ef05b524-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 387460ef95f5acd7b690c198ad370ccd
b3b771640e880de8aadff389bfd30b8abc4e839d
fe1ae2839d4bee9b8ff2addfa4a50f6ef37ff086aefed8b0453039dfd4a2178c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 06:07:40 GMT
Expires: Sat, 01 Apr 2023 06:07:39 GMT
Etag: "b3b771640e880de8aadff389bfd30b8abc4e839d"
Cache-Control: max-age=390079,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae965176811b524-OSL
ocsp.digicert.cn/
200 OK 471 B IP
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 9f65698cc1f004fd7904f30012998a1a
b4919b307424c7fdb477501cbc6a30c35091c2be
f0d2c252d4f74565eec4b2e8f3b5a2a38349ebe7570855caf487f1b9bebfd4e3
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Mon, 27 Mar 2023 17:36:19 GMT
Last-Modified: Sun, 26 Mar 2023 18:36:30 GMT
ETag: "642090ae-1d7"
Expires: Tue, 28 Mar 2023 18:36:30 GMT
Cache-Control: max-age=90011
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1679938579
Via: cache5.l2de2[192,191,200-0,M], cache5.l2de2[193,0], cache2.se1[215,215,200-0,M], cache2.se1[219,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Mon, 27 Mar 2023 17:36:19 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616799385789243859e
ocsp.sectigo.com/
200 OK 471 B IP
Hash 0127523d33cf4b119a8390fdcc7c1d84
c1390b667bd5d4bb871506e3e3ca2bcf7ccc13ce
39dc6c366b4f6c52c33f7202725022ed28d0ec87c2724fe294a760dcc128c00a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 26 Mar 2023 22:55:25 GMT
Expires: Sun, 02 Apr 2023 22:55:24 GMT
Etag: "c1390b667bd5d4bb871506e3e3ca2bcf7ccc13ce"
Cache-Control: max-age=536944,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae96516e9260afe-OSL
hm.baidu.com/hm.js?6cdc9a2253c9e58f82eb10fc564d352b
200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?6cdc9a2253c9e58f82eb10fc564d352b
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 3b93757c7d87cbf7eab8c3bc8abfd0a3
66e2fe176f55f2f143917a9c4ce87043e34ac1d4
43e94f41d1f6f495a3f45dabc607a5942fd0c4e39f89aa7cb4666ff142907ba0
GET /hm.js?6cdc9a2253c9e58f82eb10fc564d352b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Mon, 27 Mar 2023 17:36:18 GMT
Etag: 9009d6c33e67f1fc083e4faabf4cddf2
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=6655A1EEA044950E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash 9d530a5878cdeccabf7b316bd9d3a802
a4289816fd8271c7faa74a110b7608b37a0d5c4e
cc0c5c72d0598b015f41d7d3d978a31e93dc1743d44b0d284d3688a219a103cb
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash e08c912a91cb4ff2ffaa7bfc2584ba8a
9e3c7df641accf8dde640c20f005c22a5202b114
28dd30bc26bae5ba3fc3639224216e7e1633a13eeb5617f630d60121417f7b1b
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=853
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash 9d530a5878cdeccabf7b316bd9d3a802
a4289816fd8271c7faa74a110b7608b37a0d5c4e
cc0c5c72d0598b015f41d7d3d978a31e93dc1743d44b0d284d3688a219a103cb
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=877
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
X-N: S
img.lytuchuang9.com/upload/vod/20230327-1/bbcc5e2fae6684687ad0449d654d79b6.jpg
200 OK 10 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/bbcc5e2fae6684687ad0449d654d79b6.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 8a4dfa62b87f9472a44343f89fc9ea01
20165a9283dfe704d78c708aafb543696aebf0ae
8b5bb40ed4c4cc161ff011d4aee2b82885ed3ccc7021d77a909acfdff6b432e9
GET /upload/vod/20230327-1/bbcc5e2fae6684687ad0449d654d79b6.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 10334
Last-Modified: Sun, 26 Mar 2023 17:09:44 GMT
Connection: keep-alive
ETag: "64207c58-285e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/e294a5c807575af30e78b8cd40c0aff5.jpg
200 OK 11 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/e294a5c807575af30e78b8cd40c0aff5.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 160f6bc0f55e8ed7e6f75261eeb8392d
80e87590893d2c2287f0325c5e5c4bcf222654f7
1f23197490a52642d6d5bbe8b4876a00c80426692753c7bd44705bec37e09d87
GET /upload/vod/20230327-1/e294a5c807575af30e78b8cd40c0aff5.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 10688
Last-Modified: Sun, 26 Mar 2023 17:09:20 GMT
Connection: keep-alive
ETag: "64207c40-29c0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/55dbc6ad2f00892b7395016cb32dd970.jpg
200 OK 10 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/55dbc6ad2f00892b7395016cb32dd970.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash f1d426fb2d34ee499dd489795fc56442
2b0d7bf10c926b63ddf0cf57fb26e45f90a127fd
142f17ea43ca237b4115ab4fa4083663f0c61b3fbfcd047a94192a43a9e2d358
GET /upload/vod/20230327-1/55dbc6ad2f00892b7395016cb32dd970.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 10534
Last-Modified: Sun, 26 Mar 2023 17:08:41 GMT
Connection: keep-alive
ETag: "64207c19-2926"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/52c3a41603c102fcf1852406ad61f7ba.jpg
200 OK 7.8 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/52c3a41603c102fcf1852406ad61f7ba.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3a3674bd5a0480d46b6b32c7cd4ff1bb
3b0743c52ec24c239cf22e3356e4df7581f8136c
7c25cb0118dd5b3ed2e3788b62be56ecadff05ccdc9ba86df0843c31f5f61859
GET /upload/vod/20230327-1/52c3a41603c102fcf1852406ad61f7ba.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 7776
Last-Modified: Sun, 26 Mar 2023 17:09:20 GMT
Connection: keep-alive
ETag: "64207c40-1e60"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 520d2300446d62d356e0ba8b25fca807
b6db68d8ef8abeea67edb36541ce0f92c1c5dd6a
0a0877b206923414f0642bad15e7646025b4e57fd9a12dfc65a9336f9dee677c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A0877B206923414F0642BAD15E7646025B4E57FD9A12DFC65A9336F9DEE677C"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2720
Expires: Mon, 27 Mar 2023 18:21:39 GMT
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 520d2300446d62d356e0ba8b25fca807
b6db68d8ef8abeea67edb36541ce0f92c1c5dd6a
0a0877b206923414f0642bad15e7646025b4e57fd9a12dfc65a9336f9dee677c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A0877B206923414F0642BAD15E7646025B4E57FD9A12DFC65A9336F9DEE677C"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2694
Expires: Mon, 27 Mar 2023 18:21:13 GMT
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
img.lytuchuang9.com/upload/vod/20230327-1/e55a3e77809d376b85e05a093f931b99.jpg
200 OK 9.9 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/e55a3e77809d376b85e05a093f931b99.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7b8a42673d83f6c7d6cfd77234a2c807
9af373a477752500ca589d0a452c86808b590a5a
01f715e3c243869fb331fdb3be755eb22e6fd77b28284b55c5569ae3f6f32f02
GET /upload/vod/20230327-1/e55a3e77809d376b85e05a093f931b99.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 9939
Last-Modified: Sun, 26 Mar 2023 17:09:20 GMT
Connection: keep-alive
ETag: "64207c40-26d3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
200 OK 472 B IP
Hash 387460ef95f5acd7b690c198ad370ccd
b3b771640e880de8aadff389bfd30b8abc4e839d
fe1ae2839d4bee9b8ff2addfa4a50f6ef37ff086aefed8b0453039dfd4a2178c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 06:07:40 GMT
Expires: Sat, 01 Apr 2023 06:07:39 GMT
Etag: "b3b771640e880de8aadff389bfd30b8abc4e839d"
Cache-Control: max-age=390079,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae9651769680b3d-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 387460ef95f5acd7b690c198ad370ccd
b3b771640e880de8aadff389bfd30b8abc4e839d
fe1ae2839d4bee9b8ff2addfa4a50f6ef37ff086aefed8b0453039dfd4a2178c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 06:07:40 GMT
Expires: Sat, 01 Apr 2023 06:07:39 GMT
Etag: "b3b771640e880de8aadff389bfd30b8abc4e839d"
Cache-Control: max-age=390079,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae965177b1e0b41-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1433590386&si=f60217089b1da6d1d44680872fcaac43&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1433590386&si=f60217089b1da6d1d44680872fcaac43&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1433590386&si=f60217089b1da6d1d44680872fcaac43&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14407&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:19 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=61D5CEF90D7BE249; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
img.jialiimg.com/upload/vod/20230327-1/cefb0b5526210245e3bbf23d72e3c99a.jpg
200 OK 12 kB URL HTTP/2 img.jialiimg.com/upload/vod/20230327-1/cefb0b5526210245e3bbf23d72e3c99a.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash a29f80762d509abe2a5bfd0d40be5503
61ff371680549d2eccabc553d1baec496b807bd7
24399944eaf3b7f33a9ddc406f65cc1d4dfd30cdc60d8844e088509978a6bf32
GET /upload/vod/20230327-1/cefb0b5526210245e3bbf23d72e3c99a.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 17:40:50 GMT
content-type: image/jpeg
content-length: 11734
last-modified: Sun, 26 Mar 2023 16:44:35 GMT
etag: "64207673-2dd6"
expires: Wed, 26 Apr 2023 17:40:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.jialiimg.com/upload/vod/20230327-1/6b314ae9b270c1a4396d1c5f67407182.jpg
200 OK 10 kB URL HTTP/2 img.jialiimg.com/upload/vod/20230327-1/6b314ae9b270c1a4396d1c5f67407182.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 641x480, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 147d8681eb62e8a1807501ac7bc0513d
661e84fb85c1799e2555163057bf0b0a6f42081b
04723d21a0928c96c195b698039914e65f48ab8595727806b807410aa65d9441
GET /upload/vod/20230327-1/6b314ae9b270c1a4396d1c5f67407182.jpg HTTP/1.1
Host: img.jialiimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 17:40:50 GMT
content-type: image/jpeg
content-length: 10293
last-modified: Sun, 26 Mar 2023 16:44:35 GMT
etag: "64207673-2835"
expires: Wed, 26 Apr 2023 17:40:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fmtu.netfhtu.com/upload/vod/20210904-1/9d294e02dfdbad04a6e1b87350f449c6.jpg
200 OK 7.2 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210904-1/9d294e02dfdbad04a6e1b87350f449c6.jpg
IP
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 844dab971f745ee9112b72a5363c420c
568c045d0404fe010bb07a1d92038cacb71cdb23
cf3e390b750f18e3929a37f185a303baeca4138adcc472f5c36c6201dd139dbc
GET /upload/vod/20210904-1/9d294e02dfdbad04a6e1b87350f449c6.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 7169
Connection: keep-alive
Last-Modified: Fri, 03 Sep 2021 19:17:04 GMT
ETag: "613274b0-1c01"
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/7bcd8f853b783e4c04e147bc3e7e5fab.jpg
200 OK 9.7 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/7bcd8f853b783e4c04e147bc3e7e5fab.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash cba735b87d973fe81e3e4bb848eeaa49
1179735b72f2c74064e79470b04d756582fc530d
0a52c414020439153c828245647ef97e2857a70dc059ea530f12bd504e547b88
GET /upload/vod/20230327-1/7bcd8f853b783e4c04e147bc3e7e5fab.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 9665
Last-Modified: Sun, 26 Mar 2023 17:09:20 GMT
Connection: keep-alive
ETag: "64207c40-25c1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210904-1/79cdad3e9feaf6dd360e342cb01e8ec4.jpg
200 OK 8.9 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210904-1/79cdad3e9feaf6dd360e342cb01e8ec4.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash da20569b3284ed3b4c6602c7731dd144
493732590ff8b558330fb000ae6c2aa303600d69
7626eafc77e77017a12b2657493c83e4db8651dd05d26aae82370e8c2cb2aa67
GET /upload/vod/20210904-1/79cdad3e9feaf6dd360e342cb01e8ec4.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 8943
Connection: keep-alive
Last-Modified: Fri, 03 Sep 2021 19:17:16 GMT
ETag: "613274bc-22ef"
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230327-1/9fe18947b1941915b581416a5babf593.jpg
200 OK 8.2 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230327-1/9fe18947b1941915b581416a5babf593.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d32b7a6bccc7b83bd2f5114dbfe4797c
df699a7f425e1d8066f6ee518652b667691fd6bf
898c845ef036eea4082bb7e81fee91dece586cc49c8ebfea9d5751e2011a0c37
GET /upload/vod/20230327-1/9fe18947b1941915b581416a5babf593.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 8206
Last-Modified: Mon, 27 Mar 2023 14:11:41 GMT
Connection: keep-alive
ETag: "6421a41d-200e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220603-1/8827f04a71ec9d08b6d1bced8794c627.jpg
200 OK 42 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220603-1/8827f04a71ec9d08b6d1bced8794c627.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash 49e9dade80369b9d826d002e253608a6
1299510bd24ef8c85159ce8e7cc7f12f21e7b92f
b53d17766b3a1ec9eb94579acace752d6ad576f02b227d1207d07855e3a8361e
GET /upload/vod/20220603-1/8827f04a71ec9d08b6d1bced8794c627.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 41815
Last-Modified: Sun, 04 Sep 2022 16:10:23 GMT
Connection: keep-alive
ETag: "6314cdef-a357"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.r2m02.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP
Hash 5dd8f81a8ee4e44c0ce8553c5c3b9a81
cceaef20cae0608ee4b6f653ddb453a707de05b5
4c09818493e9a1a55064ab018e0a5f600490aa452e34af6b4b350afcad3bc9cf
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168539
Date: Mon, 27 Mar 2023 17:36:19 GMT
Etag: "6421c36e-1d7"
Expires: Wed, 29 Mar 2023 16:25:18 GMT
Last-Modified: Mon, 27 Mar 2023 16:25:18 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kGYu3ZKtoy08wyDqjDQqivrNkPQYJ3-LGEaVvuNLN3VHpTEcT86mIw==
pic.laoyapic.com/upload/vod/20220530-1/1dc8ed08b3a5769be59e8eafe6f83855.jpg
200 OK 51 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220530-1/1dc8ed08b3a5769be59e8eafe6f83855.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash 4c45cbe3cf35d34ec8634b89c9a7ca1e
13a84de9fb0534726cea4118c5abd9c1866d1dd8
b4adbce1349c666e52d43d6804aa2c6a12d478585695be4b34c804b371f0e5de
GET /upload/vod/20220530-1/1dc8ed08b3a5769be59e8eafe6f83855.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 50724
Last-Modified: Sun, 04 Sep 2022 18:23:19 GMT
Connection: keep-alive
ETag: "6314ed17-c624"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
200 OK 471 B IP
Hash 050d556f74ccad8f2072153600d8ab4a
558a6dd541fa10c2016441e9aa9412ea6cdcf9b7
79d0d5a66847802c6fd318932a36eb227b5cb54552dc18bf23b9a8f8639803aa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 04:52:24 GMT
Expires: Mon, 03 Apr 2023 04:52:23 GMT
Etag: "558a6dd541fa10c2016441e9aa9412ea6cdcf9b7"
Cache-Control: max-age=558363,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae96518baccb524-OSL
fmtu.netfhtu.com/upload/vod/20210904-1/77a9b2add91e3b99e7ec1bc78efc2ea2.jpg
200 OK 19 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210904-1/77a9b2add91e3b99e7ec1bc78efc2ea2.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 567x316, components 3\012- data
Hash 027cc558ce9daef7799c64b78c7fad96
ff5da7cc353cfb3c32342297b1929ac436131fe4
603447579b92b28c5349bbd313b06a5c11bcd2c60e7bcb0e39c9a4bed4650b9b
GET /upload/vod/20210904-1/77a9b2add91e3b99e7ec1bc78efc2ea2.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 19148
Connection: keep-alive
Last-Modified: Fri, 03 Sep 2021 19:17:08 GMT
ETag: "613274b4-4acc"
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220528-1/3c02bcb143274e6a8f621a0c14e6e7b3.jpg
200 OK 58 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220528-1/3c02bcb143274e6a8f621a0c14e6e7b3.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash 981d086b90e9b86c771c6a24de6f6be0
bac87f9a7177b1a71a8d12e7999f8a064f052b23
e9b0627759510f3dbf769a07dcc3454c9cd2ca9d67e519af385f82cf15bdd655
GET /upload/vod/20220528-1/3c02bcb143274e6a8f621a0c14e6e7b3.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 58319
Last-Modified: Sun, 04 Sep 2022 15:55:01 GMT
Connection: keep-alive
ETag: "6314ca55-e3cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210904-1/f90b10f3cd18005876f392fd561251f6.jpg
200 OK 21 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210904-1/f90b10f3cd18005876f392fd561251f6.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 777x412, components 3\012- data
Hash d987e7bab843b9807a115f6873a17364
a992d429a8f4f3e49972db70f3a85b36bbe42d35
0869fc00007cd4ddfa60eabd621f8b65f3ca2b38ba93bd6b9390cebf0dd5617f
GET /upload/vod/20210904-1/f90b10f3cd18005876f392fd561251f6.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 20762
Connection: keep-alive
Last-Modified: Fri, 03 Sep 2021 19:17:09 GMT
ETag: "613274b5-511a"
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1270052243&si=6cdc9a2253c9e58f82eb10fc564d352b&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14408&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1270052243&si=6cdc9a2253c9e58f82eb10fc564d352b&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14408&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81
IP
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=8900&et=0&ja=0&ln=en-us&lo=0&rnd=1270052243&si=6cdc9a2253c9e58f82eb10fc564d352b&su=http%3A%2F%2Fuup.wywk2.top%2F&v=1.3.0&lv=1&sn=14408&r=0&ww=1252&u=http%3A%2F%2Fwsx5.wynb81.top%2F&tt=%E5%8D%88%E5%A4%9C%E7%BD%91%20%E5%88%9B%E9%80%A0%E7%BE%8E%E5%A5%BD%E5%8D%88%E5%A4%9C%E7%94%9F%E6%B4%BB%EF%BC%81 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 27 Mar 2023 17:36:19 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=3C630C3512334236; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
pic.laoyapic.com/upload/vod/20220525-1/7397cf13c1759a1efea1599dbe430a5b.jpg
200 OK 69 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220525-1/7397cf13c1759a1efea1599dbe430a5b.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash c5c2b53a0dc41d026f3472c4aef75957
e308cbb51443e962ed1ddb79ef2ffbdb51229c59
e6ffafe2d72dcf578d179a0f96df2a5c07ec73a573e6d26bb980760cc46e22e9
GET /upload/vod/20220525-1/7397cf13c1759a1efea1599dbe430a5b.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 69103
Last-Modified: Sun, 04 Sep 2022 15:55:54 GMT
Connection: keep-alive
ETag: "6314ca8a-10def"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 582769a9984cbcf047b6fc2d69d71184
97a22a5cbd8193ef8f348394033df4ba8b4c71da
90b7c09c3179fca795fd7fae7a42db303f066ff8fc0f71920206c72bebe5ef44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "90B7C09C3179FCA795FD7FAE7A42DB303F066FF8FC0F71920206C72BEBE5EF44"
Last-Modified: Sat, 25 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2790
Expires: Mon, 27 Mar 2023 18:22:49 GMT
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 582769a9984cbcf047b6fc2d69d71184
97a22a5cbd8193ef8f348394033df4ba8b4c71da
90b7c09c3179fca795fd7fae7a42db303f066ff8fc0f71920206c72bebe5ef44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "90B7C09C3179FCA795FD7FAE7A42DB303F066FF8FC0F71920206C72BEBE5EF44"
Last-Modified: Sat, 25 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2861
Expires: Mon, 27 Mar 2023 18:24:00 GMT
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
fmtu.netfhtu.com/upload/vod/20210904-1/4c582d5eba558682c69b96d8099ab114.jpg
200 OK 25 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210904-1/4c582d5eba558682c69b96d8099ab114.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 636x356, components 3\012- data
Hash 5bd10d9a9eaa8033c1ae2d21cd0b1fa0
be0914082ed52072ce03bc87d8465cbdccead632
df702e964683133d91ff70af49d69d1e7e90508daf65e3d56f6abafe2bda4d8e
GET /upload/vod/20210904-1/4c582d5eba558682c69b96d8099ab114.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 24871
Connection: keep-alive
Last-Modified: Fri, 03 Sep 2021 19:17:20 GMT
ETag: "613274c0-6127"
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/e54b1c1fd5f1e8fd3aae9002c6b4be58.jpg
200 OK 57 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/e54b1c1fd5f1e8fd3aae9002c6b4be58.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash ffae6adec9e6f0c557a0bb7362e37d76
3f83fd4121417431f8ecb72d1ad26ef927dd9167
ec508b041aa48ec1b4597785457453d74e475f3658e21a7fe5eb071d7125fd4d
GET /upload/vod/20230327-1/e54b1c1fd5f1e8fd3aae9002c6b4be58.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 57429
Last-Modified: Sun, 26 Mar 2023 17:11:04 GMT
Connection: keep-alive
ETag: "64207ca8-e055"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220503-1/e015ab907cebe26debdff21069c0f722.jpg
200 OK 51 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220503-1/e015ab907cebe26debdff21069c0f722.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash d7de8e073b058781670633b957946895
f7c3d31581387b98c01e3fcb87a78e8ac846888f
389d92a50f7fd15c6f11cc66b863c4e7f3b06b8174a6435c6bca03d0d37c7fb5
GET /upload/vod/20220503-1/e015ab907cebe26debdff21069c0f722.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 51295
Last-Modified: Sun, 04 Sep 2022 18:12:38 GMT
Connection: keep-alive
ETag: "6314ea96-c85f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230326-1/842d99723bee86e287fbbec23f5f4831.jpg
200 OK 55 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230326-1/842d99723bee86e287fbbec23f5f4831.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 179b2ab5352abfb675d644483d3d4061
198e01256c486974f8440fa71146b077ccc3df0c
0f2990468bd3506e20f2600d283b2ee338c3117b8cf9b3092f70e84600fb9ddc
GET /upload/vod/20230326-1/842d99723bee86e287fbbec23f5f4831.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 55385
Last-Modified: Sat, 25 Mar 2023 18:18:11 GMT
Connection: keep-alive
ETag: "641f3ae3-d859"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210705-1/52c7cb45eb4e7b02e517e464e4b219b1.jpg
200 OK 13 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210705-1/52c7cb45eb4e7b02e517e464e4b219b1.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash a0323ed6d742174718f2885c548e3b35
067216e6462f1a4bf8c82f8211f7899157f1d0be
ad9cf5f068f88d2d8f110e5d7d14cab1957f14bbe3a153b9889d8467da9464e2
GET /upload/vod/20210705-1/52c7cb45eb4e7b02e517e464e4b219b1.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 12952
Connection: keep-alive
Last-Modified: Mon, 05 Jul 2021 04:32:05 GMT
ETag: "60e28b45-3298"
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230326-1/5f310b16bafd202921e04bd1cf7969e8.jpg
200 OK 68 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230326-1/5f310b16bafd202921e04bd1cf7969e8.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 11df283179f5733147b7622266db8572
d786943267f03000ebbad7cc7c83f988b14c5578
8f68e0eb6938cff5db07442201760f28562eeeb1f52c3c798a41c9fbcdddc8ac
GET /upload/vod/20230326-1/5f310b16bafd202921e04bd1cf7969e8.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 67488
Last-Modified: Sat, 25 Mar 2023 18:18:10 GMT
Connection: keep-alive
ETag: "641f3ae2-107a0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220428-1/96c346364e62b50a74140b468594e4fb.jpg
200 OK 64 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220428-1/96c346364e62b50a74140b468594e4fb.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash 28cbc4062aa854ca13e363e32cbb03b6
66c72d95115ce842850f3f8e0850ee4fbe1e8565
ae1f0f37bb44c2880ffe3f56a03e2b1c358e52575af271adce4a9dcdaa95d89f
GET /upload/vod/20220428-1/96c346364e62b50a74140b468594e4fb.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 63538
Last-Modified: Sun, 04 Sep 2022 18:10:32 GMT
Connection: keep-alive
ETag: "6314ea18-f832"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
xinchacha2dv.ocsp-certum.com/
200 OK 1.5 kB URL HTTP/1.1 xinchacha2dv.ocsp-certum.com/
IP
ASN #20940 Akamai International B.V.
Hash 82b595f6ac37a8ac10b4b5ccd8e30406
845a0b13aee6cf31300446bb2720be41d1d5061b
4a04d03e38a50422872f4f111faef735975e3efab0d1e6f0e982ddd725592aa8
POST / HTTP/1.1
Host: xinchacha2dv.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1538
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=245
Date: Mon, 27 Mar 2023 17:36:19 GMT
Connection: keep-alive
X-N: S
img.lytuchuang9.com/upload/vod/20230326-1/b5df93508164d6591a6e361aa56a2acc.jpg
200 OK 74 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230326-1/b5df93508164d6591a6e361aa56a2acc.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 60c9128f9d92ad6f257c56b19f2eb6dc
0d5c5d8ce13d357716ff8daecf438ed21c12a555
bc56f3a66dacb4837601e573b4b966ffe68e17f1b3d9ffdc07e3f74178d0b58b
GET /upload/vod/20230326-1/b5df93508164d6591a6e361aa56a2acc.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 73831
Last-Modified: Sat, 25 Mar 2023 18:17:20 GMT
Connection: keep-alive
ETag: "641f3ab0-12067"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
pic.laoyapic.com/upload/vod/20220430-1/18c2b0f65ed78beb0a5b58a50f84d100.jpg
200 OK 42 kB URL HTTP/1.1 pic.laoyapic.com/upload/vod/20220430-1/18c2b0f65ed78beb0a5b58a50f84d100.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 80", baseline, precision 8, 540x383, components 3\012- data
Hash 4aa154ac083550be5c20905f261b2296
ffbfbeddfb4ab739b5d6b4ce6fbb1de546a94b3a
47a36b047f4de7880e4c10d393631c414de8427a2a003346d65aee8f493761b0
GET /upload/vod/20220430-1/18c2b0f65ed78beb0a5b58a50f84d100.jpg HTTP/1.1
Host: pic.laoyapic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 42010
Last-Modified: Sun, 04 Sep 2022 18:21:42 GMT
Connection: keep-alive
ETag: "6314ecb6-a41a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230326-1/fbb5dfd7b233a5e0be2a5859ae09a839.jpg
200 OK 40 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230326-1/fbb5dfd7b233a5e0be2a5859ae09a839.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 400x225, components 3\012- data
Hash ac1334880740f8a0c3bff30871b061fd
6029036cc04488343b5b7d9e57a043d22baf6229
eb35203d89852943e8da9ff5b8172f9e6b27707b55fbdf948bedc7ab2de57045
GET /upload/vod/20230326-1/fbb5dfd7b233a5e0be2a5859ae09a839.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 40377
Last-Modified: Sun, 26 Mar 2023 08:48:03 GMT
Connection: keep-alive
ETag: "642006c3-9db9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ttzytp3.com/upload/vod/20230326-1/05604ee80031f29c3689b3bbb51db45c.jpg
200 OK 52 kB URL HTTP/1.1 ttzytp3.com/upload/vod/20230326-1/05604ee80031f29c3689b3bbb51db45c.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 400x225, components 3\012- data
Hash a8abaf750e40e3ea5a645b3fee90a2e0
87a8398cb2c9bcfd4a6a603bfd3fcb3f56ffa3dc
d214d52e8b54b868ad28e628a92d9fd5beb4d3298985021c8032c41f2236032f
GET /upload/vod/20230326-1/05604ee80031f29c3689b3bbb51db45c.jpg HTTP/1.1
Host: ttzytp3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 52403
Last-Modified: Sun, 26 Mar 2023 08:48:03 GMT
Connection: keep-alive
ETag: "642006c3-ccb3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u1011.com/74aee3a48ed94767a65a06536e965174.gif
200 OK 377 kB URL HTTP/2 u1011.com/74aee3a48ed94767a65a06536e965174.gif
IP
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 377 kB (377414 bytes)
Hash 1262db6044125ad0016fe8b06b55ad26
0fb21de7432847957aa0be84b4f3383284b0ff9a
5fdfb4e0ab0f30a043a6f4f2cb3ec0b455eb9f39bc79ae26ec45dc0131a2a6ea
GET /74aee3a48ed94767a65a06536e965174.gif HTTP/1.1
Host: u1011.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6408705f-5c246"
server: nginx
date: Sun, 26 Mar 2023 14:26:37 GMT
content-type: image/gif
last-modified: Wed, 08 Mar 2023 11:24:15 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-08
content-length: 377414
X-Firefox-Spdy: h2
img.lytuchuang9.com/upload/vod/20230326-1/6360d79af894c415f5e7b983ffc80b45.jpg
200 OK 56 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230326-1/6360d79af894c415f5e7b983ffc80b45.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash e2cc46a64c2f58aed8869d3337c74596
224806497df208d79197025e04f42b5f4f5870d8
b8bd9397649983d11281554725e008632cbf2469b49a85cdf811c4641a6424b6
GET /upload/vod/20230326-1/6360d79af894c415f5e7b983ffc80b45.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 55971
Last-Modified: Sat, 25 Mar 2023 18:18:10 GMT
Connection: keep-alive
ETag: "641f3ae2-daa3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u1033.com/985d092f658940c4b47c5a5efdc97bb5.gif
200 OK 329 kB URL HTTP/2 u1033.com/985d092f658940c4b47c5a5efdc97bb5.gif
IP
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 329 kB (329330 bytes)
Hash c7a0de7f0d216beea4f9359ddca1439d
6a95e989058389895421101fe173477b8f9c0034
5c30592a14e28ca2f4b4b93ed219eea5579be2772599b42592c677ff5e10a057
GET /985d092f658940c4b47c5a5efdc97bb5.gif HTTP/1.1
Host: u1033.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "63f75542-50672"
server: nginx
date: Mon, 27 Mar 2023 03:30:54 GMT
content-type: image/gif
last-modified: Thu, 23 Feb 2023 12:00:02 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-38
content-length: 329330
X-Firefox-Spdy: h2
img.lytuchuang9.com/upload/vod/20230327-1/0f4c3a35a1346c1bf6f0fe67b46e52fc.jpg
200 OK 7.7 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/0f4c3a35a1346c1bf6f0fe67b46e52fc.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 270x203, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8f7548ddcf0e6300bf40f228cab7049c
c77e668196d443608b531de05e1ab31cd64427d2
25611cf45d60df556976b0991ed025571910cfae4954c086f26a700b98de4156
GET /upload/vod/20230327-1/0f4c3a35a1346c1bf6f0fe67b46e52fc.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 7657
Last-Modified: Sun, 26 Mar 2023 17:11:05 GMT
Connection: keep-alive
ETag: "64207ca9-1de9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210705-1/7f4632d148a2258d293119b5ececd4b6.jpg
200 OK 7.7 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210705-1/7f4632d148a2258d293119b5ececd4b6.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 912f28df14f25faf52ae5ded1cffd0ed
9019b58a472c0a41404b50b0700fc4ae28ae56a5
a09db40f0a5a90029531b914afd6e4e4c2b687237e6a815abbc90bc2a2aafca4
GET /upload/vod/20210705-1/7f4632d148a2258d293119b5ececd4b6.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 7731
Connection: keep-alive
Last-Modified: Mon, 05 Jul 2021 04:32:05 GMT
ETag: "60e28b45-1e33"
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210904-1/704ac85471d20331caa3aa9eba24c8b7.jpg
200 OK 77 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210904-1/704ac85471d20331caa3aa9eba24c8b7.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Hash dcfb693e216a00483c83e2a77724b6bd
6592ff72521e904ba596b0c6a490750e21866124
fbf36d493202e22df32c465c01323d1d7b23a18b1aa18bffebff5fa5c7671b50
GET /upload/vod/20210904-1/704ac85471d20331caa3aa9eba24c8b7.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 76928
Connection: keep-alive
Last-Modified: Fri, 03 Sep 2021 19:17:04 GMT
ETag: "613274b0-12c80"
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/bdf4b8aa75bb54678ba2d194e8746f82.jpg
200 OK 11 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/bdf4b8aa75bb54678ba2d194e8746f82.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 8a7a971beb97286540f64be2db90d197
cfa6407c694adce80aaa30c524b2670ab723bc9f
4d363472ae23e396f21cf4f612cfb6ae2d6cda9b07370a1cc87942bdd083c9b7
GET /upload/vod/20230327-1/bdf4b8aa75bb54678ba2d194e8746f82.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 10964
Last-Modified: Sun, 26 Mar 2023 17:09:43 GMT
Connection: keep-alive
ETag: "64207c57-2ad4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u1077.com/528ff7ac192a4d3a8002a4665e970a41.gif
200 OK 32 kB URL HTTP/2 u1077.com/528ff7ac192a4d3a8002a4665e970a41.gif
IP
File type GIF image data, version 89a, 200 x 200\012- data
Hash 8c1d26082decce39011c95e112a889b4
1fc0080aeb5be6cc743e0aaed28d97df32e49480
2ac752919f32c0c9b8970d66bdd54443bb9f40469819b0d5f3552030be60e70e
GET /528ff7ac192a4d3a8002a4665e970a41.gif HTTP/1.1
Host: u1077.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "64086969-7ddd"
server: nginx
date: Sat, 25 Mar 2023 16:15:25 GMT
content-type: image/gif
last-modified: Wed, 08 Mar 2023 10:54:33 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-02
content-length: 32221
X-Firefox-Spdy: h2
img.lytuchuang9.com/upload/vod/20230327-1/198c540dd4e2d837e261d2662665e5ba.jpg
200 OK 255 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/198c540dd4e2d837e261d2662665e5ba.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Size 255 kB (254572 bytes)
Hash ceaafd1e6d0b0952ea93050f50084126
a9179cd9bcaa3809969ba59650d93c8c9f2d624f
cf0302efa1db2a68abf5b8ee39ff213498818830f9222d032ca25f0dd831b1c9
GET /upload/vod/20230327-1/198c540dd4e2d837e261d2662665e5ba.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 254572
Last-Modified: Sun, 26 Mar 2023 17:12:20 GMT
Connection: keep-alive
ETag: "64207cf4-3e26c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/062a8041032d308cd530ebc7f3b21610.jpg
200 OK 14 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/062a8041032d308cd530ebc7f3b21610.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 240x320, components 3\012- data
Hash 47f1d7a773a8b0631f18612a7afc9c8f
5d238850a05a5c57f702d59e72aa0efb900bd21c
64f9ad7905c270b09a63721392ae3f33d2cc31b0d44be4f1710c82a8cc0abf03
GET /upload/vod/20230327-1/062a8041032d308cd530ebc7f3b21610.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 13564
Last-Modified: Sun, 26 Mar 2023 17:09:43 GMT
Connection: keep-alive
ETag: "64207c57-34fc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210705-1/ad1a35cf6adb419fe2c94a8880a7b454.jpg
200 OK 7.7 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210705-1/ad1a35cf6adb419fe2c94a8880a7b454.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash c41bba5dbf22854f54547d2067f675b1
07ee2a9b636e0f206d9e8ba65ec09e94b5d1fd2f
74c11da4d9200db308e79c68ccc13e2fa797a3cbc80632531c4086e9407caaaf
GET /upload/vod/20210705-1/ad1a35cf6adb419fe2c94a8880a7b454.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:08 GMT
Content-Type: image/jpeg
Content-Length: 7664
Connection: keep-alive
Last-Modified: Mon, 05 Jul 2021 04:32:06 GMT
ETag: "60e28b46-1df0"
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230324-1/02cb41c9bfa409b7567920a2bafd7d51.jpg
200 OK 67 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230324-1/02cb41c9bfa409b7567920a2bafd7d51.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 1cdf56fe3857cfb30afe068910fa5624
28cd90038eb8c77d5917646be80430d982708230
0fdfc0756fb9d8951b1180545dfa1b88ca507f6131288938bd9e1e9be2b5ef62
GET /upload/vod/20230324-1/02cb41c9bfa409b7567920a2bafd7d51.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 67440
Last-Modified: Thu, 23 Mar 2023 19:32:27 GMT
Connection: keep-alive
ETag: "641ca94b-10770"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/e9557dbd8c4abfb2e33dfd5b304b591b.jpg
200 OK 10 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/e9557dbd8c4abfb2e33dfd5b304b591b.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 2162f8642fb8d365c52f13d913356afa
468f1ba52d909e0706c0a581ff06450840b60de4
225e3c49e6b2fd891231c637df5d23ca9abb536b95e8ec94e0307ba8c2319d55
GET /upload/vod/20230327-1/e9557dbd8c4abfb2e33dfd5b304b591b.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 10020
Last-Modified: Sun, 26 Mar 2023 17:09:43 GMT
Connection: keep-alive
ETag: "64207c57-2724"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/ee0dca7912a5513bd380af3271ad4929.jpg
200 OK 11 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/ee0dca7912a5513bd380af3271ad4929.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash b0e282531759ccf91ed24c101f2089bd
aa08349bcdbdc9e698a2c2d31d07771881b5e04a
f65d7d286f7f1fee24a0864a9314ab63b20ded785daef27a503ae8a6924f7be2
GET /upload/vod/20230327-1/ee0dca7912a5513bd380af3271ad4929.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 10773
Last-Modified: Sun, 26 Mar 2023 17:09:43 GMT
Connection: keep-alive
ETag: "64207c57-2a15"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
taiwtp1.com/img/200200.gif
200 OK 75 kB URL HTTP/2 taiwtp1.com/img/200200.gif
IP
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 200 x 200\012- data
Hash 03c13356e00c2033df2c88cb919251eb
f3a334a0366ddda6a87034f7d6c889c4d159dc8d
0c184e206259e8d0c54d3fc12d3d5332e9f6ff5f0404630fcb2daefe65fe1bfe
GET /img/200200.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 17:28:45 GMT
content-type: image/gif
content-length: 75259
last-modified: Wed, 09 Mar 2022 04:51:10 GMT
etag: "6228323e-125fb"
expires: Wed, 26 Apr 2023 17:28:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.lytuchuang9.com/upload/vod/20230327-1/10b9174a32f27abc4cbe06b41948dbf8.jpg
200 OK 7.6 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/10b9174a32f27abc4cbe06b41948dbf8.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash cf3f3eab407d680123d87f4c976d2b05
721528a8fbe4b2fc782dd3674681ab4ede228636
dec7d183b5d5a0241e12244379e0867de41a530cb0fe81dad9313d966c2d5db5
GET /upload/vod/20230327-1/10b9174a32f27abc4cbe06b41948dbf8.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 7629
Last-Modified: Sun, 26 Mar 2023 17:09:43 GMT
Connection: keep-alive
ETag: "64207c57-1dcd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/4df827fbc7afdec4d2f6f7a89876b6bc.jpg
200 OK 7.7 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/4df827fbc7afdec4d2f6f7a89876b6bc.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 82842675363c9a6759405f0493477ba6
4969ca9611b369fc03bde3e1db64d6efde1da5a2
d6fbb8f9b0ba8d301555d3b53c8a8fdc7d85f82ef78bfec9b544f4639a2a2186
GET /upload/vod/20230327-1/4df827fbc7afdec4d2f6f7a89876b6bc.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 7748
Last-Modified: Sun, 26 Mar 2023 17:09:42 GMT
Connection: keep-alive
ETag: "64207c56-1e44"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/ce348df70d78550ee71fa8a0a9d6d6e4.jpg
200 OK 33 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/ce348df70d78550ee71fa8a0a9d6d6e4.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 1bffe68160536bc4905d48682286d029
02aae92cf699bd505ceb92b167fac2f6aed57e51
8c8441ddc799d721a057059ca7e888fe88ae1f98e0b1e494ccd898cf3ec28d7b
GET /upload/vod/20230327-1/ce348df70d78550ee71fa8a0a9d6d6e4.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 32975
Last-Modified: Sun, 26 Mar 2023 17:12:28 GMT
Connection: keep-alive
ETag: "64207cfc-80cf"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/e76b4cc42b46a42ae374151efc43d662.jpg
200 OK 15 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/e76b4cc42b46a42ae374151efc43d662.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 3f75e03cb5397073017c92348f7a2f65
2f9879be8866030eb4332c5631f5bd9ef06597e8
af3c467f4fc7ac5cd99e232832a0ad191fc3d6ced868030fc3617e1a034df18e
GET /upload/vod/20230327-1/e76b4cc42b46a42ae374151efc43d662.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:20 GMT
Content-Type: image/jpeg
Content-Length: 14685
Last-Modified: Sun, 26 Mar 2023 17:09:43 GMT
Connection: keep-alive
ETag: "64207c57-395d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/6b4d920c70e13b40c5c5df9c876a37d1.jpg
200 OK 74 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/6b4d920c70e13b40c5c5df9c876a37d1.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash af99ad4bbaf92a8eb719c6c900e81a83
b141aeb6f3838cb5a8064c4b13be9ee9966d35f5
435333c22e406298dde79cf64a38e0a6a3b3d3da8681d8568bed91154af73f4b
GET /upload/vod/20230327-1/6b4d920c70e13b40c5c5df9c876a37d1.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/jpeg
Content-Length: 73881
Last-Modified: Sun, 26 Mar 2023 17:12:20 GMT
Connection: keep-alive
ETag: "64207cf4-12099"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/451840c96c39fe0a827451c607e55ce8.jpg
200 OK 42 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/451840c96c39fe0a827451c607e55ce8.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash c481dcdf0f04bc8322fb8a931bcdd47b
fa47be55e1ab4e9e5830f667dfdc90efa464322c
a01950447a63a0bf8d04f6e49614a10c611eea5d3cd51597ab8e2f2e9980a95d
GET /upload/vod/20230327-1/451840c96c39fe0a827451c607e55ce8.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:20 GMT
Content-Type: image/jpeg
Content-Length: 42539
Last-Modified: Sun, 26 Mar 2023 17:12:19 GMT
Connection: keep-alive
ETag: "64207cf3-a62b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/e4195b8d2bc86dbe5be664409295103b.jpg
200 OK 11 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/e4195b8d2bc86dbe5be664409295103b.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 76fae42e1923f043f47c7e0fdaad2a33
3475aaa27b9086cbe41fd889d79ad485d32deafe
f1cefe56166a3fba097824cd095b090b8a61273ac75a096195b3edceeea30387
GET /upload/vod/20230327-1/e4195b8d2bc86dbe5be664409295103b.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:20 GMT
Content-Type: image/jpeg
Content-Length: 10796
Last-Modified: Sun, 26 Mar 2023 17:08:23 GMT
Connection: keep-alive
ETag: "64207c07-2a2c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230327-1/1593f5bb0a66b5cc77de969e0514f158.jpg
200 OK 71 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230327-1/1593f5bb0a66b5cc77de969e0514f158.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash e86e7df432325ed1d94d059f28450044
0a750b8b0520a2b2e2b24f1c6d0b2974cdc033a4
6fce21a779e26d3fe9e3dc91661ceece74e8236a5693c05b6a0ab4e194e8257a
GET /upload/vod/20230327-1/1593f5bb0a66b5cc77de969e0514f158.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:20 GMT
Content-Type: image/jpeg
Content-Length: 71226
Last-Modified: Sun, 26 Mar 2023 17:12:20 GMT
Connection: keep-alive
ETag: "64207cf4-1163a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang9.com/upload/vod/20230326-1/193ed15af8c5fb2c05f4a69dc5ba0490.jpg
200 OK 57 kB URL HTTP/1.1 img.lytuchuang9.com/upload/vod/20230326-1/193ed15af8c5fb2c05f4a69dc5ba0490.jpg
IP
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 33120d561b6ab2897f0e60d16263bdb5
f6d47e5c6c45c9394c30735e92a443bc9b1cad85
f83b1ea08980ca5821554680128c7be98f9f6676a8840d95d1d7e127a6d8c7a9
GET /upload/vod/20230326-1/193ed15af8c5fb2c05f4a69dc5ba0490.jpg HTTP/1.1
Host: img.lytuchuang9.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 27 Mar 2023 17:36:20 GMT
Content-Type: image/jpeg
Content-Length: 56855
Last-Modified: Sat, 25 Mar 2023 18:17:20 GMT
Connection: keep-alive
ETag: "641f3ab0-de17"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
fmtu.netfhtu.com/upload/vod/20210904-1/e77f3b5f9f63ba18b5b77042d8bf8db5.jpg
200 OK 122 kB URL HTTP/1.1 fmtu.netfhtu.com/upload/vod/20210904-1/e77f3b5f9f63ba18b5b77042d8bf8db5.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x394, components 3\012- data
Size 122 kB (121696 bytes)
Hash e7d58a547752f76ab26f30ff8becef3c
2ddd0fde604e817a59de995740bf6a5f0eb639e6
3057037a2ea9c08974d7d67be2742183ebf28f81633d43069e4b073d502fde88
GET /upload/vod/20210904-1/e77f3b5f9f63ba18b5b77042d8bf8db5.jpg HTTP/1.1
Host: fmtu.netfhtu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Tue, 28 Mar 2023 01:33:09 GMT
Content-Type: image/jpeg
Content-Length: 121696
Connection: keep-alive
Last-Modified: Fri, 03 Sep 2021 19:17:19 GMT
ETag: "613274bf-1db60"
Accept-Ranges: bytes
static.0832wedding.com/img/zhibo2.gif
200 OK 100 kB URL HTTP/1.1 static.0832wedding.com/img/zhibo2.gif
IP
File type GIF image data, version 89a, 960 x 60\012- data
Hash f51695fcb79c2b9d03e55d56f544ef2f
d6c0a8ab1f6834de415f1f1d95e96e519d5903ec
031bf4112ca27cc0241e92862aeb63c50d6ca76daacb3ae2a24f4f133929bfce
GET /img/zhibo2.gif HTTP/1.1
Host: static.0832wedding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:24 GMT
Content-Type: image/gif
Content-Length: 99997
Connection: keep-alive
Last-Modified: Fri, 10 Mar 2023 15:05:46 GMT
ETag: "640b474a-1869d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
img02.sogoucdn.com/app/a/200692/960_80_feedback_249f710c92554431af6803edf7cb2569.gif
200 OK 272 kB URL HTTP/2 img02.sogoucdn.com/app/a/200692/960_80_feedback_249f710c92554431af6803edf7cb2569.gif
IP
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 80\012- data
Size 272 kB (272151 bytes)
Hash 43a32492f5f0cac9660c7ab9d28ced1f
74dc58aad3d5ffc74d5536abda35d554edbd6aa5
b66bc61c4e4348cadf72790bf397b4bb70921196b0c9fb5935c280c354214450
GET /app/a/200692/960_80_feedback_249f710c92554431af6803edf7cb2569.gif HTTP/1.1
Host: img02.sogoucdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 17:36:19 GMT
content-type: image/gif
content-length: 272151
server: NWS_Oversea_AP
cache-control: max-age=86400
expires: Tue, 28 Mar 2023 17:36:18 GMT
last-modified: Mon, 27 Mar 2023 17:22:19 GMT
x-nws-log-uuid: 68b0bf35-284b-43b4-a3eb-1ade9d204068
x-cache-lookup: Hit From Disktank3
x-nws-uuid-verify: 8eb1f8036b442edadef6014199d4fe69
etag: 170b206cbdb225b4ce491feda1bb4ebd
x-yuntu-trace: hbhly_76_59
x-yuntu-trace-proxy: yuntu-cache-nginx-srhsx
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
tuping111.oss-cn-shenzhen.aliyuncs.com/sz/wns96080a.gif
200 OK 420 kB URL HTTP/1.1 tuping111.oss-cn-shenzhen.aliyuncs.com/sz/wns96080a.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 420 kB (419710 bytes)
Hash df253535aab8dd30f56b8e0f8607ceee
ef1487250ba643656e41a9043a8dfb1ed9325af1
494e8747b226d7f8dd2d7174b8d16b6da61f776ca8e859f3a253f003f5082204
GET /sz/wns96080a.gif HTTP/1.1
Host: tuping111.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: image/gif
Content-Length: 419710
Connection: keep-alive
x-oss-request-id: 6421D412E144DC3333CAE4F3
Accept-Ranges: bytes
ETag: "DF253535AAB8DD30F56B8E0F8607CEEE"
Last-Modified: Thu, 16 Mar 2023 07:45:20 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5275736346359489774
x-oss-storage-class: Standard
x-oss-ec: 0048-00000103
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: 3yU1Naq43TD1a44PhgfO7g==
x-oss-server-time: 3
ocsp.sectigo.com/
200 OK 472 B IP
Hash f401b29c7d326816ddad015f171bb6d0
bf8ae89c5b42454fead220fe410e75def859d5f9
c72826ddb8761d7ba9ab14a932a2616af1b58606d755fdcebdbdaf47333c46e1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 06:02:07 GMT
Expires: Mon, 03 Apr 2023 06:02:06 GMT
Etag: "bf8ae89c5b42454fead220fe410e75def859d5f9"
Cache-Control: max-age=562545,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae9651fb8760afe-OSL
static.0832wedding.com/img/zhibo1.gif
200 OK 471 kB URL HTTP/1.1 static.0832wedding.com/img/zhibo1.gif
IP
File type GIF image data, version 89a, 650 x 350\012- data
Size 471 kB (471292 bytes)
Hash 5607cae5276d831657c9656d79a91056
984aef4f0ae0adcc6c1b95d07244a379a263c368
da1d86fc792d6db5a69c57bcc83670c0db02bd9d70e190b8b9f55a474f5442df
GET /img/zhibo1.gif HTTP/1.1
Host: static.0832wedding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:24 GMT
Content-Type: image/gif
Content-Length: 471292
Connection: keep-alive
Last-Modified: Fri, 10 Mar 2023 15:05:47 GMT
ETag: "640b474b-730fc"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
sz88.oss-cn-shenzhen.aliyuncs.com/sz/kg96080a.gif
200 OK 346 kB URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/sz/kg96080a.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 346 kB (345602 bytes)
Hash 6310bd0194df289f34539ff2dfc8a250
960461384c89fb7407b76f72fe1fa519c7cfb60f
faac27a9fb02215321fba3507add99cfa9d4acb02144d8e229436c128e9caa12
GET /sz/kg96080a.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: image/gif
Content-Length: 345602
Connection: keep-alive
x-oss-request-id: 6421D4128F35C83839E20B16
Accept-Ranges: bytes
ETag: "6310BD0194DF289F34539FF2DFC8A250"
Last-Modified: Thu, 16 Mar 2023 07:41:48 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 2217501445958086142
x-oss-storage-class: Standard
x-oss-ec: 0048-00000103
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: YxC9AZTfKJ80U5/y38iiUA==
x-oss-server-time: 1
ldbbs.ldmnq.com/bbs/topic/images/2023-1/ee19e8c6-bdf7-4660-9170-208ef6ac4ccd.gif
200 OK 1.4 MB URL HTTP/1.1 ldbbs.ldmnq.com/bbs/topic/images/2023-1/ee19e8c6-bdf7-4660-9170-208ef6ac4ccd.gif
IP
ASN #4837 CHINA UNICOM China169 Backbone
File type GIF image data, version 89a, 960 x 80\012- data
Size 1.4 MB (1411145 bytes)
Hash 3e2a08c45f216f23995e08dc45ed0e86
c9390027ee4885cb509d8b2ad37d6daa9698631e
ffdceb96ee4670386b85d0e2389496569d7e5e9f16844c2f26e9656482a8f12f
GET /bbs/topic/images/2023-1/ee19e8c6-bdf7-4660-9170-208ef6ac4ccd.gif HTTP/1.1
Host: ldbbs.ldmnq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:19 GMT
Content-Type: image/gif
Content-Length: 1411145
Connection: keep-alive
Server: openresty
x-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc
CloudServiceDiscount: CDN
x-amz-request-id: 00000186111D70DE9412652F047A561C
ETag: "3e2a08c45f216f23995e08dc45ed0e86"
Last-Modified: Wed, 04 Jan 2023 09:09:23 GMT
Content-Encoding: utf-8
x-amz-storage-class: STANDARD_IA
x-amz-id-2: 32AAAQAAEAABAAAQAAEAABAAAQAAEAABCSwdWVU9KTY8cIGLwbhP0PVRgSOinU68
via: CHN-HEshijiazhuang-AREACUCC1-CACHE24[2],CHN-HEshijiazhuang-AREACUCC1-CACHE38[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE108[189],CHN-TJ-GLOBAL1-CACHE64[143,TCP_MISS,188]
x-hcs-proxy-type: 1
X-CCDN-CacheTTL: 2592000
nginx-hit: 1
Age: 4614192
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 74eb64857c3c800290ae1133a3397a45
42242dc82eafe73416b2a3fd0b95c2874b326ed1
8c247a0d5f877744cf0098b210080232041bc3cc4098ae7337c9ecb4ffd91c49
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 17:36:21 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 31 Mar 2023 16:06:35 GMT
ETag: "42242dc82eafe73416b2a3fd0b95c2874b326ed1"
Last-Modified: Mon, 27 Mar 2023 16:06:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ae965238f630b41-OSL
vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com/882-960x80.gif
200 OK 250 kB URL HTTP/1.1 vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com/882-960x80.gif
IP
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 250 kB (250356 bytes)
Hash 782f1eaf936342eb06b81643ed729d79
72c2a74a7b0d2414f719abde06117ee783bab8b3
bf5bbe7ca20750cd6a00e690f4726ae7a1f0f125e98736c50b599bb1b65351f7
GET /882-960x80.gif HTTP/1.1
Host: vnsguanggaotu.oss-cn-hangzhou.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 27 Mar 2023 17:36:18 GMT
Content-Type: image/gif
Content-Length: 250356
Connection: keep-alive
x-oss-request-id: 6421D412F0623434300576E4
Accept-Ranges: bytes
ETag: "782F1EAF936342EB06B81643ED729D79"
Last-Modified: Wed, 08 Feb 2023 06:25:09 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10008971337816098083
x-oss-storage-class: Standard
x-oss-ec: 0048-00000105
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: eC8er5NjQusGuBZD7XKdeQ==
x-oss-server-time: 4
ocsp.digicert.com/
200 OK 727 B IP
Hash 047b669a33af4d82d4f917de235e3c44
9a9dadf89b6b52378b384607d1ec5dad2b64e4ed
5711a43cb29edd9572a722b3a01ea05e9ea172ba28e0d63d19cd62a59ab63612
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4953
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 17:36:21 GMT
Etag: "642186df-2d7"
Last-Modified: Mon, 27 Mar 2023 16:13:48 GMT
Server: ECAcc (amb/6B67)
X-Cache: HIT
Content-Length: 727
513bbb.us/3a0013806f024c04a9805db4ea020948.gif
200 OK 657 kB URL HTTP/1.1 513bbb.us/3a0013806f024c04a9805db4ea020948.gif
IP
File type GIF image data, version 89a, 960 x 80\012- data
Size 657 kB (656803 bytes)
Hash f303ef3f3efb991f410da20dded1def3
3c546119d08b70fbcf7bfcc08e13bd93588084cc
783ca38d02d056f79890e49606e5af78789df2c5eeedce3de69634f9acbacab7
GET /3a0013806f024c04a9805db4ea020948.gif HTTP/1.1
Host: 513bbb.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "641eed62-a05a3"
Date: Sun, 26 Mar 2023 08:00:00 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 25 Mar 2023 12:47:30 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-18
Content-Length: 656803
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81c2ee0-b0d8-4d53-8a73-a453a7669c92.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81c2ee0-b0d8-4d53-8a73-a453a7669c92.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e5dfaeb44e65f30874efae17a8fd652
52c517a45e53a4ca5b5783d0364ac0e2606d6970
3752bdf3d574299ccb17ac42d20f940dd1daf48d127889a1d82a55bec82a0436
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81c2ee0-b0d8-4d53-8a73-a453a7669c92.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6623
x-amzn-requestid: 5b246408-bf9c-488d-aee6-7d387115863e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQn4EHJoAMFl3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfafe-686e97b34f7c33862db51515;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:08:47 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Dc5ZpKbzuxe6YqNOtsNpeKShE02r5kg-YX_3gPgeEIgRADZRBL6b4w==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 16:37:44 GMT
age: 3517
etag: "52c517a45e53a4ca5b5783d0364ac0e2606d6970"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 70849db85aab59c041877c1cc265d35e
2f56fe23e355c4a3018a43f7b9b7303e8a7a6959
c529b53e317d38515343a4108d7f6b705b090b92303bd2e749a83e3fe0b2d431
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C529B53E317D38515343A4108D7F6B705B090B92303BD2E749A83E3FE0B2D431"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6734
Expires: Mon, 27 Mar 2023 19:28:35 GMT
Date: Mon, 27 Mar 2023 17:36:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0771a2609f2dddee0db27ee546dc7dc0
e6553201c770ba79ce5dd5acba73e6f586b3c7ca
74210a67aa6e4648942cd20a2773f65ce5d4e5fd5a0f15502ecc8feee2f6905b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74210A67AA6E4648942CD20A2773F65CE5D4E5FD5A0F15502ECC8FEEE2F6905B"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15463
Expires: Mon, 27 Mar 2023 21:54:04 GMT
Date: Mon, 27 Mar 2023 17:36:21 GMT
Connection: keep-alive
kjimg10.360buyimg.com/ott/jfs/t1/189066/1/30475/1197751/6380d2d3E76f8142d/68bdb767b760041f.gif
200 OK 0 B URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/189066/1/30475/1197751/6380d2d3E76f8142d/68bdb767b760041f.gif
IP
ASN #136959 China Unicom Guangdong IP network
GET /ott/jfs/t1/189066/1/30475/1197751/6380d2d3E76f8142d/68bdb767b760041f.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 17:36:21 GMT
content-type: image/gif
content-length: 1197751
cache-control: max-age=15552000
expires: Mon, 11 Sep 2023 21:38:30 GMT
last-modified: Fri, 25 Nov 2022 14:36:03 GMT
age: 1022272
via: http/1.1 ORI-CLOUD-HUZ-MIX-22 (jcs [cHs f ]), http/1.1 GD-UNI-1-MIX-213 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1678916309932-0-0-18-169-169;200;200-1678928851414-0-0-0-5-5;200-1679938581110-0-0-0-1-1
X-Firefox-Spdy: h2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/6564105775e94fcbac17fb1b40069913~noop.image
200 OK 0 B URL HTTP/2 p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/6564105775e94fcbac17fb1b40069913~noop.image
IP
ASN #4837 CHINA UNICOM China169 Backbone
GET /img/tos-cn-i-siecs4i2o7/6564105775e94fcbac17fb1b40069913~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wsx5.wynb81.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 17:36:21 GMT
content-type: image/gif
content-length: 103177
server: openresty
imagex-fmt: gif2gif
last-modified: Sat, 25 Dec 2021 17:15:36 GMT
nw-session-id: 202112260115360101510921014DE4BF70vgmm601tt
nw-session-trace: 2021-12-26T01:15:36.354937889+08:00 69
x-bdcdn-cache-status: TCP_MISS
x-length: 103177
x-powered-by: ImageX
x-response-date: Sun, 26 Dec 2021 01:15:36 GMT
x-response-lb: image
x-tt-logid: 202112260115360101510921014DE4BF70
server-timing: cdn-cache;desc=HIT, edge;dur=2
x-tt-trace-host: 01a00848563bbc715277b0e42967add4f9457733794cc372423f50f11ce3a0744da4f6edc76899949afad5b5aaa1a3d6e6a021e6be32dc87833909c6acc9647ba1cce5aefa4b381e45afd6c4d27c821d2159b66f8536f14c40fa55c1ec6d5b29bd26a933927f919eebad9d37dfbd99ae9e
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
via: CHN-HEshijiazhuang-AREACUCC6-CACHE21[2],CHN-HEshijiazhuang-AREACUCC6-CACHE50[0,TCP_HIT,1],CHN-HEshijiazhuang-GLOBAL1-CACHE68[292],CHN-HEshijiazhuang-GLOBAL1-CACHE50[279,TCP_MISS,289],CHN-TJ-GLOBAL1-CACHE31[173],CHN-TJ-GLOBAL1-CACHE50[0,TCP_HIT,29]
x-hcs-proxy-type: 1
x-ccdn-cachettl: 31536000
nginx-hit: 1
age: 10904910
cache-control: max-age=31536000
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2
154.215.240.77
23.36.77.32
3.36.126.81
103.143.19.103
103.170.15.48
34.160.144.191
45.89.209.74
104.18.20.226
47.246.44.205
101.33.27.49