r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 67fc460ed2f69dde3c410ec607ef3510
ba9f582ec321351e5c06c9b2c381f06b685ef274
85df74fac7d59d76840b6359bac24648fede201c0048f2a8382af6468225ffb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85DF74FAC7D59D76840B6359BAC24648FEDE201C0048F2A8382AF6468225FFB8"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9096
Expires: Fri, 24 Feb 2023 09:18:03 GMT
Date: Fri, 24 Feb 2023 06:46:27 GMT
Connection: keep-alive
kalalele.com/news/2018/0125/99860.shtml
103.199.247.205301 Moved Permanently 0 B URL HTTP/1.1 kalalele.com/news/2018/0125/99860.shtml
IP 103.199.247.205:0
ASN #26658 HENGTONG-IDC-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /news/2018/0125/99860.shtml HTTP/1.1
Host: kalalele.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 24 Feb 2023 06:46:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.kalalele.com/news/2018/0125/99860.shtml
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6eb0a77aa4a20639a06d9621742007c2
d2d03beeb111049117b70d5f3dff3698a671ef8a
62c2da0800bf8efb6bb985b2eb046fa863e0b394681fb2ab187a9c4836fbd320
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62C2DA0800BF8EFB6BB985B2EB046FA863E0B394681FB2AB187A9C4836FBD320"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10889
Expires: Fri, 24 Feb 2023 09:47:56 GMT
Date: Fri, 24 Feb 2023 06:46:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7fb59e5d3cdf08b94e5f41fdeb9aec6c
ff644039db3b9f74d7e2fab10f93581bea10614a
861573a00d75364e15783c5e448c4f8b4da48b38d9beba3ebd33a87f993489a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "861573A00D75364E15783C5E448C4F8B4DA48B38D9BEBA3EBD33A87F993489A5"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14884
Expires: Fri, 24 Feb 2023 10:54:31 GMT
Date: Fri, 24 Feb 2023 06:46:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Feb 2023 05:54:00 GMT
content-type: application/json
age: 3147
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nkxjO5CdVjRMlDjbRekQhE+LbnP+HlNzj34+scJxSxDIGbN3ZQnJKKJaFZDwSxgs3tkp21QJduSGy4DvNvsSDg==
x-amz-request-id: KBR1WH3WZRAHTVY6
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Feb 2023 05:49:22 GMT
age: 3425
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:27 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Expires, Last-Modified, Cache-Control, ETag, Backoff, Content-Type, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Feb 2023 05:51:26 GMT
age: 3301
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.kalalele.com/news/2018/0125/99860.shtml
103.199.247.205200 OK 785 B URL HTTP/1.1 www.kalalele.com/news/2018/0125/99860.shtml
IP 103.199.247.205:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with CRLF line terminators
Hash 9f4895b72c96c47cbf40d8ae078bd788
046cc27389b247cebfc68fc061b881f0ac107084
caa32fa211ea4cd6084ca0edf975271fab4e45daf4b7f2d11bef0d0a936ce2bb
GET /news/2018/0125/99860.shtml HTTP/1.1
Host: www.kalalele.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Feb 2023 06:46:26 GMT
Content-Type: text/html
Content-Length: 785
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4aaa1f1be68ba53b441e577dcbf8b7c1
618b2e62b7f2feb82093a3706573e18ff9f69827
8d3978b35fd96458b8fff71c9dbb47ab616dfd49d669027fd6c5a52a4e9bafa0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D3978B35FD96458B8FFF71C9DBB47AB616DFD49D669027FD6C5A52A4E9BAFA0"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20761
Expires: Fri, 24 Feb 2023 12:32:29 GMT
Date: Fri, 24 Feb 2023 06:46:28 GMT
Connection: keep-alive
www.kalalele.com/tj.js
103.199.247.205200 OK 520 B IP 103.199.247.205:0
ASN #26658 HENGTONG-IDC-LLC
File type ASCII text, with CRLF line terminators
Hash f9947892b6413358b8ce90fdbe99b5af
5668eaeef8c1920de17c5eea515012ab5e0867a7
d8b9750fbbfe78136886ec928f2d2f1064d94de11c5d5590d792496d60a080c1
GET /tj.js HTTP/1.1
Host: www.kalalele.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kalalele.com/news/2018/0125/99860.shtml
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Feb 2023 06:46:26 GMT
Content-Type: application/x-javascript
Content-Length: 520
Connection: keep-alive
www.kalalele.com/common.js
103.199.247.205200 OK 1.1 kB URL HTTP/1.1 www.kalalele.com/common.js
IP 103.199.247.205:0
ASN #26658 HENGTONG-IDC-LLC
File type HTML document, ASCII text, with very long lines (389), with CRLF line terminators
Hash 3b08372f4773c8e7854234aaef938077
b65315c1d4fc673034b770705bf00746f6028d72
da0eb85cdaddf869c83f127036841ec2f4ce694d949092f46afc01e23086bcd5
GET /common.js HTTP/1.1
Host: www.kalalele.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kalalele.com/news/2018/0125/99860.shtml
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Feb 2023 06:46:26 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.services.mozilla.com/
54.202.26.9101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.26.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U47kEWOIW5mQQBdollyx3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CsKUFJg+zrG4rfIs6b3kmdAowkQ=
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 8011d759ff8ec245682957f6bee35cde
f181a5343de4b21fc71212827ab13419e653e955
123a7a891ce62eb76a65507913fed41d2d5a4938f64125b0c1b17401bc63107b
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 28 Feb 2023 06:03:31 GMT
ETag: "f181a5343de4b21fc71212827ab13419e653e955"
Last-Modified: Fri, 24 Feb 2023 06:03:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 339
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e63e8e1e110b49-OSL
www.kalalele.com/favicon.ico
103.199.247.205200 OK 1.2 kB URL HTTP/1.1 www.kalalele.com/favicon.ico
IP 103.199.247.205:0
ASN #26658 HENGTONG-IDC-LLC
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.kalalele.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kalalele.com/news/2018/0125/99860.shtml
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 24 Feb 2023 06:46:27 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Wed, 01 Mar 2023 06:46:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
push.zhanzhang.baidu.com/push.js
180.101.212.103200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 180.101.212.103:0
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kalalele.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Fri, 24 Feb 2023 06:46:28 GMT
Etag: "4078521116"
Expires: Sat, 24 Feb 2024 06:46:28 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=17A71794E5A3589BCB0822817D896B91:FG=1; max-age=31536000; expires=Sat, 24-Feb-24 06:46:28 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
ocsp.buypass.com/
23.33.119.18200 OK 1.7 kB IP 23.33.119.18:0
ASN #20940 Akamai International B.V.
Hash 90c2a15017c53a285af679a9de820558
dc34aeb494c47aa90ca91af64dcdf301b5cff48b
9e252006745b7ffe0e90606a6498dbef6aadc8c77659724beb5c9f4eab9db200
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 04a83792-5a29-4053-a7ff-3ff1f2aaea02
Content-Length: 1701
Date: Fri, 24 Feb 2023 06:46:29 GMT
Connection: keep-alive
hm.baidu.com/hm.js?2107c53676d8b23c2b876048405f5d94
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?2107c53676d8b23c2b876048405f5d94
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (618)
Hash 9f1bbefcc568999b8ba4bafe65f2d906
a36fab36f0b6ce11c0a0726fe5a097e9db302857
f407c6110a6445f62cde3b3dfad32c45074c7eb081803ef14389ab53dbb00e82
GET /hm.js?2107c53676d8b23c2b876048405f5d94 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kalalele.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11256
Content-Type: application/javascript
Date: Fri, 24 Feb 2023 06:46:29 GMT
Etag: 73df8951ca2b7a36846f065e2c67015e
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9C06BCB6962B8D17; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe121133a6eaf8645743a14717612cd5
b9276c474ba3e40e5cc2921accb452bb7b11ecb2
4c72ab325e4608168d6258ba615ffc21f94a3594a8d1ef48f28b8622b198c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C72AB325E4608168D6258BA615FFC21F94A3594A8D1EF48F28B8622B198C27B"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6600
Expires: Fri, 24 Feb 2023 08:36:29 GMT
Date: Fri, 24 Feb 2023 06:46:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe121133a6eaf8645743a14717612cd5
b9276c474ba3e40e5cc2921accb452bb7b11ecb2
4c72ab325e4608168d6258ba615ffc21f94a3594a8d1ef48f28b8622b198c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C72AB325E4608168D6258BA615FFC21F94A3594A8D1EF48F28B8622B198C27B"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6600
Expires: Fri, 24 Feb 2023 08:36:29 GMT
Date: Fri, 24 Feb 2023 06:46:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe121133a6eaf8645743a14717612cd5
b9276c474ba3e40e5cc2921accb452bb7b11ecb2
4c72ab325e4608168d6258ba615ffc21f94a3594a8d1ef48f28b8622b198c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C72AB325E4608168D6258BA615FFC21F94A3594A8D1EF48F28B8622B198C27B"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6600
Expires: Fri, 24 Feb 2023 08:36:29 GMT
Date: Fri, 24 Feb 2023 06:46:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c525276d82309185ba5b9a0bde424d5
96ef51351075441f83d09834292f255d94cd7911
891bcdc08687c6280b63bd7312a925185272a374179fd7ca7bf62aec32408daf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11372
x-amzn-requestid: 77208ac4-31c7-4a46-9406-11f0a98a65ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D4H6IoAMFQBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-40611ab960eaadb202172abe;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AsEOTXIKoTdG7UQ_pSUfMvHtLsMHLt70DVeSQl2iIG0d5db3gfuk8g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:46:23 GMT
age: 32406
etag: "96ef51351075441f83d09834292f255d94cd7911"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b580b7d86b6b2236519ec9b61645ff9
ff021ed34ca2c2996eb7ad1307d685c495e9c41e
9283f7e8c354fce1239ef737370c9abf85f2c362ac302bd63840d8d88e54779a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5901
x-amzn-requestid: 24747426-8c11-4fb8-8a72-e5d888d0fbd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9EkEGLIAMFaZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb6-3078e3ed3397c8f86c861607;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H5Nt8P25gc9rZRG4Olji8LjqmqddrXFnaHLtcCx2Jrls-m1gJNFdmA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:46:25 GMT
age: 32404
etag: "ff021ed34ca2c2996eb7ad1307d685c495e9c41e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fedefde8c4f90a6f10f769419f2ff485
35cbe3e6981dc9fd1bcbb8743c61ff28fde443fc
65adf7a2930673f45f83cafb75cde5ec3f61ed1bed2018cd27cd4da068e511ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9387
x-amzn-requestid: a2db2470-843a-4180-8cca-8338ed4237bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9E4GDcIAMF5cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb8-3a87935b42932f213cb9a7ee;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: l1tRZuNCzOvT9pYZy-izhx68s7DJtp_mrVjPrxntb-KP-FAqpZ85dg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:38:08 GMT
age: 32901
etag: "35cbe3e6981dc9fd1bcbb8743c61ff28fde443fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F137aee85-a8db-4c5c-b88f-0857f7ba3677.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F137aee85-a8db-4c5c-b88f-0857f7ba3677.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34013daae3d217976ee1f5a9b7f339ba
2f772756bec7dea5018de069d66011fea212ac11
6a3cfb5871a65921559de5db2a58cc2de03f7ff9fa7764e3c63958d721de4639
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F137aee85-a8db-4c5c-b88f-0857f7ba3677.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7920
x-amzn-requestid: 0f05642f-9ffc-4778-8c93-591bc16d04c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9M6E7aoAMFl9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbeb-1701df8b471a945211701133;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DqGbw5IZ5QjTdQqoX0ozFMN8qZM2xc7_NwqDtWqz7BFCqAQJtk_Scg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:36 GMT
etag: "2f772756bec7dea5018de069d66011fea212ac11"
content-type: image/jpeg
age: 33113
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a5f3d376fe6a3a78a5d1fe136f962fb
3e9b03cc296e954d63526a4e7e75beea3130fc3b
c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGDTF9U77Y1pmqtYk-yDa2GsiRraTcwCOBV-yAzDPT2PvS89NeCtZg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:34 GMT
age: 33115
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda67715d-e89a-4d27-ba90-d03d7f1158be.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda67715d-e89a-4d27-ba90-d03d7f1158be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07d3ab8b5ecb204be6d77cb4b6e8d729
eaa73ea6cf01cab89ee951cf7d4c6d6a5a6856a2
324bc394c64d7f72d1baf7f4cfd0bd063ff2587ecaedaeca2f1f6e6c910a5dfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda67715d-e89a-4d27-ba90-d03d7f1158be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6123
x-amzn-requestid: 86500cf9-69e9-4e10-9dd0-bef917845457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9FEEDWIAMFzFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb9-499f8eaa59e6dd7d6e26abaf;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JdCqPcDvZaPUb410UeKu0H1JUCoGDX6MIa25b67pZaT_AcigwzTdPA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:41:00 GMT
etag: "eaa73ea6cf01cab89ee951cf7d4c6d6a5a6856a2"
content-type: image/jpeg
age: 32729
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?17459653530e51d73856e95fdf7ec697
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?17459653530e51d73856e95fdf7ec697
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (619)
Hash 2001714499cd8f1712153acac0ae360c
03f5cdedc1630a306616e6d034c9d71204d7b0aa
676fb8af58f5c0fbf870ab975c03af4b2356c51518e18c960542b2e1c6d4e2e7
GET /hm.js?17459653530e51d73856e95fdf7ec697 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kalalele.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11257
Content-Type: application/javascript
Date: Fri, 24 Feb 2023 06:46:29 GMT
Etag: bf7a7ab8f51a3d7ea8faa8ee3f2a8028
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=C0CBD75DCD3EA711; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=281095808&si=2107c53676d8b23c2b876048405f5d94&v=1.3.0&lv=1&sn=49504&r=0&ww=1280&u=http%3A%2F%2Fwww.kalalele.com%2Fnews%2F2018%2F0125%2F99860.shtml&tt=%E5%BC%A0%E6%8E%96%E5%AB%8C%E5%BE%97%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=281095808&si=2107c53676d8b23c2b876048405f5d94&v=1.3.0&lv=1&sn=49504&r=0&ww=1280&u=http%3A%2F%2Fwww.kalalele.com%2Fnews%2F2018%2F0125%2F99860.shtml&tt=%E5%BC%A0%E6%8E%96%E5%AB%8C%E5%BE%97%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=281095808&si=2107c53676d8b23c2b876048405f5d94&v=1.3.0&lv=1&sn=49504&r=0&ww=1280&u=http%3A%2F%2Fwww.kalalele.com%2Fnews%2F2018%2F0125%2F99860.shtml&tt=%E5%BC%A0%E6%8E%96%E5%AB%8C%E5%BE%97%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kalalele.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 24 Feb 2023 06:46:29 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=59C737EF0D7DC06E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
api.share.baidu.com/s.gif?l=http://www.kalalele.com/news/2018/0125/99860.shtml
180.101.212.103200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.kalalele.com/news/2018/0125/99860.shtml
IP 180.101.212.103:0
ASN #134770 CHINANET Jiangsu province Suzhou taihu IDC network
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.kalalele.com/news/2018/0125/99860.shtml HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kalalele.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Fri, 24 Feb 2023 06:46:30 GMT
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1261776762&si=17459653530e51d73856e95fdf7ec697&v=1.3.0&lv=1&sn=49504&r=0&ww=1280&u=http%3A%2F%2Fwww.kalalele.com%2Fnews%2F2018%2F0125%2F99860.shtml&tt=%E5%BC%A0%E6%8E%96%E5%AB%8C%E5%BE%97%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1261776762&si=17459653530e51d73856e95fdf7ec697&v=1.3.0&lv=1&sn=49504&r=0&ww=1280&u=http%3A%2F%2Fwww.kalalele.com%2Fnews%2F2018%2F0125%2F99860.shtml&tt=%E5%BC%A0%E6%8E%96%E5%AB%8C%E5%BE%97%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1261776762&si=17459653530e51d73856e95fdf7ec697&v=1.3.0&lv=1&sn=49504&r=0&ww=1280&u=http%3A%2F%2Fwww.kalalele.com%2Fnews%2F2018%2F0125%2F99860.shtml&tt=%E5%BC%A0%E6%8E%96%E5%AB%8C%E5%BE%97%E4%BC%A0%E5%AA%92%E5%B9%BF%E5%91%8A%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kalalele.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 24 Feb 2023 06:46:30 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=D3A39E1BA2268536; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 251fcf9b0b011c10658e9d82e7e7b760
6210d215475cc176a35b5baba6579b3d70eb940b
385a6ba15d650e3851b9a1d5b001a1e3b391db40ad43462da76a8cb223e0a709
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "385A6BA15D650E3851B9A1D5B001A1E3B391DB40AD43462DA76A8CB223E0A709"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21563
Expires: Fri, 24 Feb 2023 12:45:54 GMT
Date: Fri, 24 Feb 2023 06:46:31 GMT
Connection: keep-alive
www.mgpypn.xyz/template/m1938pc/images/1.gif
173.231.17.185200 OK 254 B URL HTTP/2 www.mgpypn.xyz/template/m1938pc/images/1.gif
IP 173.231.17.185:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/images/1.gif HTTP/1.1
Host: www.mgpypn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:32 GMT
content-type: image/gif
content-length: 254
last-modified: Fri, 07 May 2021 10:47:38 GMT
etag: "60951aca-fe"
expires: Sun, 26 Mar 2023 06:46:32 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1dfd7348cb60bb3c4c4ef6ed09ee0393
70a87614001dca495701ee8c3f5822c803947e9f
c5fdeaf0df338330bb697576f35b72702d7aeb2cc2872341a4dc24d985063730
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5FDEAF0DF338330BB697576F35B72702D7AEB2CC2872341A4DC24D985063730"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3705
Expires: Fri, 24 Feb 2023 07:48:18 GMT
Date: Fri, 24 Feb 2023 06:46:33 GMT
Connection: keep-alive
dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
104.110.17.24200 OK 489 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105c12000ae3a0t3DD7A.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 489 kB (488987 bytes)
Hash 6a7d54ecdc2d1cce357d304db217ccec
03a803d54b6a1dd16cba5d73bf4e732d8b7be263
7cd4479b97a015f11a04b2d7d94fbe78030a7e0e3de457bf72abdbf53235c7d8
GET /images/0105c12000ae3a0t3DD7A.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 488987
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7562185
expires: Mon, 22 May 2023 19:22:58 GMT
date: Fri, 24 Feb 2023 06:46:33 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
z4a.net/images/2022/12/25/960x60.gif
104.21.234.235200 OK 169 kB URL HTTP/2 z4a.net/images/2022/12/25/960x60.gif
IP 104.21.234.235:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 169 kB (168777 bytes)
Hash 729a348b918f6435c5a38c8938a81587
f82b088813167cd5396bf74feedb4d8e35612dcf
cd580979947876de1d553e460e57bd4d7b432c682097f67c6249b667eb3c6726
GET /images/2022/12/25/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:33 GMT
content-type: image/gif
content-length: 168777
expires: Sat, 24 Feb 2024 02:26:24 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 15609
last-modified: Fri, 24 Feb 2023 02:26:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kiUdNN11bJ6CwMZPy8vazW3aVJXBPwQwJTB5gArQZo8o4v04PtCxsggUkZS9JtDXauxd35KlrbxkYxFcohZ2BEvF2CoAKLdM9nIK99bS2tSdOMH1uotbFI86"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79e63ea89b1cdd50-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2022/10/17/960-60.gif
104.21.234.235200 OK 227 kB URL HTTP/2 z4a.net/images/2022/10/17/960-60.gif
IP 104.21.234.235:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 227 kB (226581 bytes)
Hash 68199d1d30e08ef7fba5ecc5af4d9548
3978b7653bca5c630c7b8d7aa06366d56eeaa7a1
7bbd0bd6239be8c6c5762c11822e2d4ca30cbabaae992af2e94cad2338c7de65
GET /images/2022/10/17/960-60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:33 GMT
content-type: image/gif
content-length: 226581
expires: Tue, 17 Oct 2023 08:15:04 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 11226689
last-modified: Mon, 17 Oct 2022 08:15:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gm%2BcZeNWXiIcdIoBk77brQ15lOKl89Erd1q4ZE2Dt0J%2BhSm7EaZ7eNOWMDNmmxKF%2BCBK6muXSzdiQ3wLMHZ5XZd1Lr8rE5tRd4%2BDuNX1iU3Tvus%2Bg26%2FZlye"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79e63ea8ab23dd50-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mang.tiryakioyun.com/news/data.php
20.187.123.222200 OK 199 kB URL HTTP/2 mang.tiryakioyun.com/news/data.php
IP 20.187.123.222:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Size 199 kB (198713 bytes)
Hash b254db8432c07f41a09dbfadb989b9fa
bdbd701966627049cf24fb9a1e2d7ef3edf731e0
4edf14559f1371ddfb9ec42665ce3df1e8c7fa676487442827d17ce7243e4a75
GET /news/data.php HTTP/1.1
Host: mang.tiryakioyun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mang.tiryakioyun.com/news/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.1
date: Fri, 24 Feb 2023 06:46:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
x-country: NO
x-cache: BYPASS@waxm3g7zj00000f
X-Firefox-Spdy: h2
z4a.net/images/2023/02/05/960x60.gif
104.21.234.235200 OK 351 kB URL HTTP/2 z4a.net/images/2023/02/05/960x60.gif
IP 104.21.234.235:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 351 kB (351002 bytes)
Hash 1fbf8164d728998b18362ec7b8d25518
89b704db462e7eba7ee7b49297d37526b0a96b62
3a7271d038244495bdf54aae544451e2e16e0283657de826631c246567c29f3d
GET /images/2023/02/05/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:33 GMT
content-type: image/gif
content-length: 351002
expires: Thu, 08 Feb 2024 09:51:47 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 1371286
last-modified: Wed, 08 Feb 2023 09:51:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QMbrOt%2Fxv5z0ekUj%2FpZkQAloV0r2e%2F6y0ycbJHssIKeDTU0avUYqqAV%2FBJki7TWEardFnAZphCQLRCoAYdaD66OXMTelVdq9kyyYv%2FGxsmpKg8uEaBD084di"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79e63ea8ab22dd50-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2022/10/16/960x60.gif
104.21.234.235200 OK 451 kB URL HTTP/2 z4a.net/images/2022/10/16/960x60.gif
IP 104.21.234.235:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 451 kB (451409 bytes)
Hash 0b79d0bdb91d08fe6e58da26af40a3d2
75f37e1aa43e309adbf1e6050c994e6216be694e
6acbe8704cafa212528bf8299e534e5b4906be6653ae25627bb8cd7ad356b9ae
GET /images/2022/10/16/960x60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:33 GMT
content-type: image/gif
content-length: 451409
expires: Tue, 17 Oct 2023 07:49:24 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 11228229
last-modified: Mon, 17 Oct 2022 07:49:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BcRR%2B1hucyyq3b%2ByZ9FvFav%2F1a3Er%2FSTjudF9rKLFbfyGOxStqnmmKbSIAm0dVzlp8RT6GMVolmmsPZAeB01u7rS280FFvVJM5pgdFnox9vw%2Bf1RvmqLiVVZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79e63ea89b20dd50-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2023/02/21/960-60.gif
104.21.234.235200 OK 491 kB URL HTTP/2 z4a.net/images/2023/02/21/960-60.gif
IP 104.21.234.235:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 491 kB (491072 bytes)
Hash bd01a4be20eb5bdfdaedaae4a4411828
1098f402a465f5bc5ddcc534a25ff676ae21b10e
a90b24c4d94518bda6f24b7ff8851167c36c37b5fcd02adf51c5fa2e4501214f
GET /images/2023/02/21/960-60.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:33 GMT
content-type: image/gif
content-length: 491072
expires: Wed, 21 Feb 2024 10:43:14 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 244999
last-modified: Tue, 21 Feb 2023 10:43:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wBoCpGyOGEr253YngZ5EAwLjJSq5KbAM5XJ3zw7jAl0CiGdJ88yfr%2BmYP%2BWMAsm07XYE2dXtTgtXogxr8%2BoQ5HJL1Frt4fZhnzhDyb5XGKUhX7nxgdlfm5xi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79e63ea89b1fdd50-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z4a.net/images/2023/02/21/960-120.gif
104.21.234.235200 OK 654 kB URL HTTP/2 z4a.net/images/2023/02/21/960-120.gif
IP 104.21.234.235:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 654 kB (653764 bytes)
Hash 209ea6c2fe2f2eb2ceed195576f80d3e
3f83b0ab44ab9fce9ad899e8540f1d98cba666d9
e042ee3de9448d21662ef331dec8dd511c57beb9caf6594c298ad18dc8a9ddb6
GET /images/2023/02/21/960-120.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:33 GMT
content-type: image/gif
content-length: 653764
expires: Wed, 21 Feb 2024 12:54:01 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 237152
last-modified: Tue, 21 Feb 2023 12:54:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HsU2ViX%2FHQCO%2FD3MClboQX0TSWGSwSy0eScri3SB17bSG6H9zZ43WIoOM%2BiXe0DImLb3gCN3SpFk6M2fVx79iyu7Z%2FbGAUYd%2BYZ%2Byoc90k4AnJrj7dn69kbF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79e63ea89b1ddd50-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
n28082.com/72c6d38db25bb1596bd27a0f5716821b.gif
172.83.155.45200 OK 296 kB URL HTTP/2 n28082.com/72c6d38db25bb1596bd27a0f5716821b.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 296 kB (295930 bytes)
Hash 298c2af98aa06470fcb80ad293146c0f
75be32a4c283cf249855e51c847d4f687d7436ec
e7060057157f5971d5b1031e9fe93528d70ad7bcf07d851bca10563594abae1e
GET /72c6d38db25bb1596bd27a0f5716821b.gif HTTP/1.1
Host: n28082.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:33 GMT
content-type: image/gif
content-length: 295930
last-modified: Mon, 30 Jan 2023 12:14:19 GMT
etag: "63d7b49b-483fa"
expires: Fri, 24 Feb 2023 18:46:33 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SP4UzeKdTiWQPTotCXHFiaRR5o3eOhuCZdGgftUUd%2F7ioGuR0jwN3%2Fwuw7GTByQFTpX6hl7RRzg%2BufPYSYZxL%2BwGDEusVw%2FIANl6rOhtUmk5lFAAK%2FWuewHxkyit"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-ray: 79df493aed03f4ae-YVR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.staticfile.org/jquery/1.9.1/jquery.js
47.246.44.211200 OK 80 kB URL HTTP/1.1 cdn.staticfile.org/jquery/1.9.1/jquery.js
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash a3932a941cb998342ce964fdd83697f1
1b0e6eca41925e7cd470ea29b16cea49c1ec58af
8e7c4734517c05d78c341883dc3ad3ee4167b9d09dd63e91cf4087311194a2ab
GET /jquery/1.9.1/jquery.js HTTP/1.1
Host: cdn.staticfile.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/javascript
Content-Length: 80123
Connection: keep-alive
Date: Fri, 24 Feb 2023 06:44:05 GMT
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: X-Log, X-Reqid
Access-Control-Max-Age: 2592000
Cache-Control: public, max-age=31536000
Etag: "FpJXr9LUbDoYnsDUCkVyJwHUfpyl.gz"
Vary: Accept-Encoding
X-Reqid: oqUAAGIOoZ6nr0YX
X-Svr: IO
X-Qiniu-Zone: 0
X-Log: X-Log
Accept-Ranges: bytes
Content-Disposition: inline; filename="jquery.js"; filename*=utf-8''jquery.js
Content-Transfer-Encoding: binary
Last-Modified: Tue, 16 Feb 2016 04:22:55 GMT
Ali-Swift-Global-Savetime: 1677221045
Via: cache15.l2de2[0,0,304-0,H], cache4.l2de2[0,0], cache7.se1[0,0,200-0,H], cache5.se1[1,0]
Content-Encoding: gzip
Age: 149
X-Cache: HIT TCP_MEM_HIT dirn:11:146775808
X-Swift-SaveTime: Fri, 24 Feb 2023 06:44:19 GMT
X-Swift-CacheTime: 86386
Timing-Allow-Origin: *
EagleId: 2ff62c9916772211940397264e
www.mgpypn.xyz/template/m1938pc/images/video-mask.png
173.231.17.185200 OK 107 B URL HTTP/2 www.mgpypn.xyz/template/m1938pc/images/video-mask.png
IP 173.231.17.185:0
File type PNG image data, 1 x 46, 8-bit gray+alpha, non-interlaced\012- data
Hash 6a5ee87ff75437cb480df839f36004fd
eac66370f99601cb7febef320c9540d4593cd856
c9b6925bdd64dab63151c3106347fefb8c500d87ac3d87d9a82e9a1c561233aa
GET /template/m1938pc/images/video-mask.png HTTP/1.1
Host: www.mgpypn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/png
content-length: 107
last-modified: Fri, 07 May 2021 10:47:36 GMT
etag: "60951ac8-6b"
expires: Sun, 26 Mar 2023 06:46:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mgpypn.xyz/template/m1938pc/images/video-play.png
173.231.17.185200 OK 1.6 kB URL HTTP/2 www.mgpypn.xyz/template/m1938pc/images/video-play.png
IP 173.231.17.185:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: www.mgpypn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/png
content-length: 1567
last-modified: Fri, 07 May 2021 10:47:38 GMT
etag: "60951aca-61f"
expires: Sun, 26 Mar 2023 06:46:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.mgpypn.xyz/
173.231.17.185200 OK 32 kB IP 173.231.17.185:0
Hash 92fdf933d60e5048175c4dab2394c2ab
42330e0f9aa28093e1a16630d477a14114c7540f
89d49006c3f494d846e8f8c1663ea9c1fec927bb56bc2b97a454a615ce71a45e
GET / HTTP/1.1
Host: www.mgpypn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mang.tiryakioyun.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?4c5f9fce4824f9c3d3f694403480c46f
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?4c5f9fce4824f9c3d3f694403480c46f
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (622)
Hash a83ca83a9ab01d0ee5e5028f6ebc5265
020e4edbefd9430856a6adf0b5414e2cbebd2b00
6254524c88a288469937e773d2f3e6d49325354cf5ac98f25548c236a1055ca5
GET /hm.js?4c5f9fce4824f9c3d3f694403480c46f HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11260
Content-Type: application/javascript
Date: Fri, 24 Feb 2023 06:46:34 GMT
Etag: ebe7ebe66abdb18a58f5ed9d84d51dfa
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=0A909A6E5EC84498; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8e401c88844f2de13e1226060b9756db
84eb07770fd3723a6cd8ce6bb1d50b8b8b041867
28ee406adf8ea193826056ecec7050f2c1830db804c266330c374ab7b73ceb77
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28EE406ADF8EA193826056ECEC7050F2C1830DB804C266330C374AB7B73CEB77"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11946
Expires: Fri, 24 Feb 2023 10:05:40 GMT
Date: Fri, 24 Feb 2023 06:46:34 GMT
Connection: keep-alive
dimg04.c-ctrip.com/images/0105z12000ae3bwlk6208.gif?proc=autoorient
104.110.17.24200 OK 320 kB URL HTTP/2 dimg04.c-ctrip.com/images/0105z12000ae3bwlk6208.gif?proc=autoorient
IP 104.110.17.24:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 320 kB (320396 bytes)
Hash f1bd2e508413c6089ec9fcf6954b2196
b60c7b6b05a282a58ecde182ce2ac5a5a2ac087a
16df1f845970a1b49b6309d0af3dfabe40e54bb3a9bac381a2dac8ff1f9a6ff3
GET /images/0105z12000ae3bwlk6208.gif?proc=autoorient HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 320396
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7566222
expires: Mon, 22 May 2023 20:30:16 GMT
date: Fri, 24 Feb 2023 06:46:34 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
n28082.com/df85128d10137498b08a8b243671d3d5.gif
172.83.155.45200 OK 64 kB URL HTTP/2 n28082.com/df85128d10137498b08a8b243671d3d5.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 320 x 180\012- data
Hash 2d256c1a01419d37b53733b4c9fe1de2
4c553e3eeaec2f8c59d771f263eba53c5c50fdc2
aa06e219e49b89cf0e17d47fc7fd9072c4d4da9aa50db07323b81820b97f6909
GET /df85128d10137498b08a8b243671d3d5.gif HTTP/1.1
Host: n28082.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/gif
content-length: 63759
last-modified: Wed, 18 Jan 2023 12:22:20 GMT
etag: "63c7e47c-f90f"
expires: Fri, 24 Feb 2023 18:46:34 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 75890
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=inLd5E%2BSy9kuyB%2BK8BSMJV4MChy0Xix3A%2B%2B9FhV3BtFz0O8mUx74EUHPvoGsPRyD%2Bd11%2Flh6ta3LYwFuZRrFiJXYUDmhpd6Lys5W9RqzSQlPR1lb2KUv73kvecGE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-ray: 79df496e8c59ebf6-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ec1d9292bdeab34209479372f86a0cb9
a9695e7292e169a98c6d0f7bb594438716fdffd2
4e934719e6a42ad001cc07e5796ab7e6f334cc5ea8df374a33a8cc29d0b2ad2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5283
Cache-Control: max-age=164187
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:34 GMT
Etag: "63f82702-117"
Expires: Sun, 26 Feb 2023 04:23:01 GMT
Last-Modified: Fri, 24 Feb 2023 02:54:58 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ec1d9292bdeab34209479372f86a0cb9
a9695e7292e169a98c6d0f7bb594438716fdffd2
4e934719e6a42ad001cc07e5796ab7e6f334cc5ea8df374a33a8cc29d0b2ad2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2010
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:34 GMT
Etag: "63f6d582-117"
Last-Modified: Fri, 24 Feb 2023 06:13:04 GMT
Server: ECS (amb/6B8B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ec1d9292bdeab34209479372f86a0cb9
a9695e7292e169a98c6d0f7bb594438716fdffd2
4e934719e6a42ad001cc07e5796ab7e6f334cc5ea8df374a33a8cc29d0b2ad2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1377
Cache-Control: max-age=160281
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:34 GMT
Etag: "63f82702-117"
Expires: Sun, 26 Feb 2023 03:17:55 GMT
Last-Modified: Fri, 24 Feb 2023 02:54:58 GMT
Server: ECS (amb/6B94)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ec1d9292bdeab34209479372f86a0cb9
a9695e7292e169a98c6d0f7bb594438716fdffd2
4e934719e6a42ad001cc07e5796ab7e6f334cc5ea8df374a33a8cc29d0b2ad2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4643
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:34 GMT
Last-Modified: Fri, 24 Feb 2023 05:29:11 GMT
Server: ECS (amb/6BA6)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ec1d9292bdeab34209479372f86a0cb9
a9695e7292e169a98c6d0f7bb594438716fdffd2
4e934719e6a42ad001cc07e5796ab7e6f334cc5ea8df374a33a8cc29d0b2ad2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2736
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:34 GMT
Last-Modified: Fri, 24 Feb 2023 06:00:58 GMT
Server: ECS (amb/6B81)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 890fd27c2e28f75d2df6cd2b70579230
d6cf06c136386e9d6dd79a39addcba5826156bca
0d21a3b14d5ee6946f2a079afb3220ab9536c13ecc544e84325d7c4d32acc2dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D21A3B14D5EE6946F2A079AFB3220AB9536C13ECC544E84325D7C4D32ACC2DC"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20126
Expires: Fri, 24 Feb 2023 12:22:00 GMT
Date: Fri, 24 Feb 2023 06:46:34 GMT
Connection: keep-alive
www.mgpypn.xyz/template/m1938pc/js/jquery.config.js
173.231.17.185200 OK 13 kB URL HTTP/2 www.mgpypn.xyz/template/m1938pc/js/jquery.config.js
IP 173.231.17.185:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (621), with CRLF, LF line terminators
Hash f9dbf0d2de793c3f925933603b67dc39
b5ccea85c6cb55f8f74c3af64d821e13eab3a2d5
9aad40a6237acb0331df0e0f2517aadb6235f334cf92fc7a74caf48f9a5375f1
GET /template/m1938pc/js/jquery.config.js HTTP/1.1
Host: www.mgpypn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:32 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 04:27:08 GMT
vary: Accept-Encoding
etag: W/"622acf9c-1469"
expires: Fri, 24 Feb 2023 18:46:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9d3133430b4fd8bc58e93b34f96903f1
4ea87e65fbd2c708d31f11a52b14d64fb9d09ca4
e3512514d8aa197a166edf4fa197c6293200abce3955a532d5d36c9e7314da9f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2166
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:34 GMT
Last-Modified: Fri, 24 Feb 2023 06:10:28 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
lbfm.lbpictupian.com/upload/vod/2023/02/xc53yrhly0b.jpg
172.67.28.138200 OK 9.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/xc53yrhly0b.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c9b05a648ad14f9d7a8565bdb790babe
59446f9d84f6ba9c20ba2413de9a345a82934d41
b0786177d3979d939ed868f08a0226a3a6b19a50c88d9aeab2276d2f3ffd32d7
GET /upload/vod/2023/02/xc53yrhly0b.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 9656
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11041
content-disposition: inline; filename="xc53yrhly0b.webp"
etag: "63f82a2c-2b21"
last-modified: Fri, 24 Feb 2023 03:08:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6916
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbd41c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/p3s0kspkex1.jpg
172.67.28.138200 OK 4.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/p3s0kspkex1.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7016e1c814acdd33f5333a3f7c44ead0
f382efe1a190a05a704b61b97ec59f2ba50c0f02
0b71e91d2c53bdc682865459a6b35639eadbcbdff0006916ded063269edcaa89
GET /upload/vod/2023/02/p3s0kspkex1.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 4444
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6753
content-disposition: inline; filename="p3s0kspkex1.webp"
etag: "63de03d8-1a61"
last-modified: Sat, 04 Feb 2023 07:06:00 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3564
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbda1c0e-OSL
X-Firefox-Spdy: h2
n28082.com/5189ca034f32e08b20b2df900457793c.gif
172.83.155.45200 OK 264 kB URL HTTP/2 n28082.com/5189ca034f32e08b20b2df900457793c.gif
IP 172.83.155.45:0
ASN #201106 Spartan Host Ltd
File type GIF image data, version 89a, 307 x 239\012- data
Size 264 kB (263701 bytes)
Hash 3561a7cb3a0fcf336d15bf654050dbd0
90a714fb311339393b554dd758ca64b12d888098
a35b629ef100c8fa4e2b31dc455aef2faec630864dc4f55401ad004293e192bb
GET /5189ca034f32e08b20b2df900457793c.gif HTTP/1.1
Host: n28082.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/gif
content-length: 263701
last-modified: Sat, 24 Dec 2022 12:18:27 GMT
etag: "63a6ee13-40615"
expires: Fri, 24 Feb 2023 18:46:34 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 33824
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wCmYJngjS8jzLTzuTOP3nypGAAjsCb71imz4cxHaFCpezC6PtX8CyngCm13jUMbDpadygupz9FPY1qO7X8vAKltrTX5W8otNhphv7CcIGskgyfSMPX9HCVEh8UKX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 79db4913dc9cec3c-SEA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/qxjggnxtoan.jpg
172.67.28.138200 OK 6.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/qxjggnxtoan.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9a0769118ff579e311de931db76f9d89
7ae832dea6d2b6604607264e2293460056daed96
b728d364f8637007a42976c99c5b1ea809d28f03d4573105faa19664484a32b7
GET /upload/vod/2023/02/qxjggnxtoan.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 6110
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7302
content-disposition: inline; filename="qxjggnxtoan.webp"
etag: "63de03ea-1c86"
last-modified: Sat, 04 Feb 2023 07:06:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5942
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3dbe31c0e-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ec1d9292bdeab34209479372f86a0cb9
a9695e7292e169a98c6d0f7bb594438716fdffd2
4e934719e6a42ad001cc07e5796ab7e6f334cc5ea8df374a33a8cc29d0b2ad2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=158904
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:34 GMT
Etag: "63f82702-117"
Expires: Sun, 26 Feb 2023 02:54:58 GMT
Last-Modified: Fri, 24 Feb 2023 02:54:58 GMT
Server: nginx
Content-Length: 279
lbfm.lbpictupian.com/upload/vod/2023/02/zedlbberqkv.jpg
172.67.28.138200 OK 7.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/zedlbberqkv.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 09edc7891483e1d9b54d0ea222dda1fe
4426fa0ee47c5fabd15fefc4b3479c2687ce0556
da97b17ae62f933334023b6af3d1d67bd8e9fee9aa39d3957df01f151ac33c8f
GET /upload/vod/2023/02/zedlbberqkv.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 7378
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8661
content-disposition: inline; filename="zedlbberqkv.webp"
etag: "63de03e2-21d5"
last-modified: Sat, 04 Feb 2023 07:06:10 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5942
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3dbe11c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/qsyjgeaf2td.jpg
172.67.28.138200 OK 8.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/qsyjgeaf2td.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 95a5ddf28222838f8bda98da6011e767
7d3bc6a2cedf43e311b65f2d7aed8f0bfdcb7c11
716e1865915c808ee61d8bf8df11c39e835b6a870eedcdfaa9b2d7106a05b075
GET /upload/vod/2023/02/qsyjgeaf2td.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 8278
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8994
content-disposition: inline; filename="qsyjgeaf2td.webp"
etag: "63de03dd-2322"
last-modified: Sat, 04 Feb 2023 07:06:05 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5942
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbe01c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/c1k2oy4ottt.jpg
172.67.28.138200 OK 7.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/c1k2oy4ottt.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d599d63584a0a983309ddadb000c6cd4
7711f2fc45abe30fa8ecaf1879f0d36a133935a9
5906d0a535d49106cc69279df3d7c4b6ac73634ebae15c199622402e64e535ed
GET /upload/vod/2023/02/c1k2oy4ottt.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 7686
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8408
content-disposition: inline; filename="c1k2oy4ottt.webp"
etag: "63de03e6-20d8"
last-modified: Sat, 04 Feb 2023 07:06:14 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5942
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3dbe21c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/qwfkmxjfaun.jpg
172.67.28.138200 OK 8.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/qwfkmxjfaun.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0e22243669f6fa4cb6c2228b914bf4f6
c9bf3cc341f792367f017288ad5a797552fbe459
2c4a42fc2cbe4d6029a6cb3a7216594f253285784268c5d901c311178d725619
GET /upload/vod/2023/02/qwfkmxjfaun.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 8032
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8797
content-disposition: inline; filename="qwfkmxjfaun.webp"
etag: "63de03ef-225d"
last-modified: Sat, 04 Feb 2023 07:06:23 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5942
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3dbe41c0e-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1020036303&si=4c5f9fce4824f9c3d3f694403480c46f&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49508&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1020036303&si=4c5f9fce4824f9c3d3f694403480c46f&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49508&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1020036303&si=4c5f9fce4824f9c3d3f694403480c46f&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49508&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 24 Feb 2023 06:46:34 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=5E67170713F18276; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
lbfm.lbpictupian.com/upload/vod/2023/02/amh3d5gmu0v.jpg
172.67.28.138200 OK 5.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/amh3d5gmu0v.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 240x320, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b29c11972e4832fb158327f63f3202db
6b18cbf179fe25b6ae0c177a7e99a0033bbaa147
df365ef672306af00da6e84a1918e5c59dc94d9eb7e6419212d79595cdb12599
GET /upload/vod/2023/02/amh3d5gmu0v.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/webp
content-length: 5278
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7951
content-disposition: inline; filename="amh3d5gmu0v.webp"
etag: "63f82a28-1f0f"
last-modified: Fri, 24 Feb 2023 03:08:24 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6916
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb45c321c0e-OSL
X-Firefox-Spdy: h2
ytys26.site/template/m1938pc/html9/ads/gg.jpg
173.231.60.166200 OK 68 kB URL HTTP/2 ytys26.site/template/m1938pc/html9/ads/gg.jpg
IP 173.231.60.166:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 966x60, components 3\012- data
Hash baf3ead116697719af11a6338b9c06ef
878caf7124ab95c66229744d4f3928d47ef21eed
4610d108db80b54e2386d21d95bd80463a6082bd1c7af2c23c2a69969b9e4ea4
GET /template/m1938pc/html9/ads/gg.jpg HTTP/1.1
Host: ytys26.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/jpeg
content-length: 68106
last-modified: Sat, 15 Jan 2022 03:01:34 GMT
etag: "61e2390e-10a0a"
expires: Sun, 26 Mar 2023 06:46:34 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/09-10/09/c0ejwhnvejl0954c0ejwhnvejl272931.jpg
172.67.28.138200 OK 4.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/09-10/09/c0ejwhnvejl0954c0ejwhnvejl272931.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ace4447bb81b5166ac2a18590f7e3cc0
e170703450431d6ceb37886c34042b043fc879b2
56290c5e7bd3025ed0e2692abe16a8be780fe33c4dc87b0281d73765fb36376b
GET /upload/vod/2022/09-10/09/c0ejwhnvejl0954c0ejwhnvejl272931.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 4600
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=5937
content-disposition: inline; filename="c0ejwhnvejl0954c0ejwhnvejl272931.webp"
etag: "631bee53-1731"
last-modified: Sat, 10 Sep 2022 01:54:27 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbcc1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/09-10/09/acqhcdowcjf0954acqhcdowcjf292935.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/09-10/09/acqhcdowcjf0954acqhcdowcjf292935.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash a90dd9b32e9792d5ad1159f2e563660a
33e9b012346ed786bd14b35fab226de689be37ce
d77c1a2be07e7620cb77dfb2dce064e9fdf9ee138a99883b8f38e35236b6a54b
GET /upload/vod/2022/09-10/09/acqhcdowcjf0954acqhcdowcjf292935.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 11114
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11612, status=webp_bigger
etag: "631bee55-2d5c"
last-modified: Sat, 10 Sep 2022 01:54:29 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbce1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/09-10/09/t4hmv310qdi0954t4hmv310qdi282933.jpg
172.67.28.138200 OK 6.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/09-10/09/t4hmv310qdi0954t4hmv310qdi282933.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 89549a4af151a46bd384fa4c7b8d2f12
d3d984903d8d492c072c917cc04383d64f28c762
4c17357179e6ec6225d30c679230264d5feb301d55f9f1ff5d4240889ff80aaf
GET /upload/vod/2022/09-10/09/t4hmv310qdi0954t4hmv310qdi282933.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 6118
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7444
content-disposition: inline; filename="t4hmv310qdi0954t4hmv310qdi282933.webp"
etag: "631bee54-1d14"
last-modified: Sat, 10 Sep 2022 01:54:28 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbcd1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/09-10/09/fy3eant5ln30954fy3eant5ln3242925.jpg
172.67.28.138200 OK 6.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/09-10/09/fy3eant5ln30954fy3eant5ln3242925.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8e1d797019e4c3d72e705622c18336a5
af53e9a2a1bb2943b7993051073f00d245798029
06ac622874088b823034712fa674daeafb9c47e2bf69d760d156bd44b88f92e8
GET /upload/vod/2022/09-10/09/fy3eant5ln30954fy3eant5ln3242925.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 5996
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7318
content-disposition: inline; filename="fy3eant5ln30954fy3eant5ln3242925.webp"
etag: "631bee50-1c96"
last-modified: Sat, 10 Sep 2022 01:54:24 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbc81c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/09-10/09/ahqza2xel1y0954ahqza2xel1y252927.jpg
172.67.28.138200 OK 6.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/09-10/09/ahqza2xel1y0954ahqza2xel1y252927.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 93184cf91216090f7db287e20805811c
ba081db2945704d62f39b7b671799e3c187e395c
105e264f85e5a14a6c0a772faa3ca1d8c4f17855a6c7224341e06d804f4dd095
GET /upload/vod/2022/09-10/09/ahqza2xel1y0954ahqza2xel1y252927.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 6676
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7896
content-disposition: inline; filename="ahqza2xel1y0954ahqza2xel1y252927.webp"
etag: "631bee51-1ed8"
last-modified: Sat, 10 Sep 2022 01:54:25 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbca1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/04-24/00/uj1mneok20q0001uj1mneok20q5111799.jpg
172.67.28.138200 OK 6.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/04-24/00/uj1mneok20q0001uj1mneok20q5111799.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 61003c98c4d18f5d43396d77e39114e1
ccebff303ab77c9cb23cf294cd05d6f3fb2dd231
82d8a70f965cded2c0a32cc493f95a29cb8df4f5fd9b3217e9b82b221406bbec
GET /upload/vod/2020/04-24/00/uj1mneok20q0001uj1mneok20q5111799.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 6342
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8541
content-disposition: inline; filename="uj1mneok20q0001uj1mneok20q5111799.webp"
etag: "5ea1bbef-215d"
last-modified: Thu, 23 Apr 2020 16:01:51 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3dbeb1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/09-10/09/ezinv15wmfk0954ezinv15wmfk262929.jpg
172.67.28.138200 OK 7.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/09-10/09/ezinv15wmfk0954ezinv15wmfk262929.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 47c445a087d9fd79130932d44c69a7d7
94371e414cb8cf753d28d1757e5d288cf6e7234e
28df3f19d8db573d7cffdf8f942d2050452da77ad9fdb1fb79c1ee14d6486a4c
GET /upload/vod/2022/09-10/09/ezinv15wmfk0954ezinv15wmfk262929.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 7402
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8323
content-disposition: inline; filename="ezinv15wmfk0954ezinv15wmfk262929.webp"
etag: "631bee52-2083"
last-modified: Sat, 10 Sep 2022 01:54:26 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3cbc91c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/04-24/00/errrcc1xzs00001errrcc1xzs05211801.jpg
172.67.28.138200 OK 9.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/04-24/00/errrcc1xzs00001errrcc1xzs05211801.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5995ca8c7135c8cdd6f91ddaebd83e4f
1f58569472d6a9d270e4855b2f9f2263040c751a
02136845720faaf204539acb788ee95cf4810291cd2face5b4883d439f8d96fa
GET /upload/vod/2020/04-24/00/errrcc1xzs00001errrcc1xzs05211801.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 9558
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=12491
content-disposition: inline; filename="errrcc1xzs00001errrcc1xzs05211801.webp"
etag: "5ea1bbf0-30cb"
last-modified: Thu, 23 Apr 2020 16:01:52 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb3ebf01c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/04-24/00/2ghhexjv5wd00012ghhexjv5wd5411805.jpg
172.67.28.138200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/04-24/00/2ghhexjv5wd00012ghhexjv5wd5411805.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 19f9889dabfd545667bd5271c01567cd
1244e89dc6b2abe1900c25dc381fef8cdea68c15
476e0856683bc022acec0d7ce92f6da09bd98ff17ed84b0a5bedd4d0050a900d
GET /upload/vod/2020/04-24/00/2ghhexjv5wd00012ghhexjv5wd5411805.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 12929
cf-bgj: imgq:85,h2pri
cf-polished: origSize=13607, status=webp_bigger
etag: "5ea1bbf2-3527"
last-modified: Thu, 23 Apr 2020 16:01:54 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb42c151c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/04-24/00/ozvfexqwmrj0001ozvfexqwmrj5311803.jpg
172.67.28.138200 OK 12 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/04-24/00/ozvfexqwmrj0001ozvfexqwmrj5311803.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 26117306d30629ff6d0b488106fee5f1
944444c8c8f77c9164f5fae2404cbbc918af8916
83b1cffd9211c0e829c8ccd78cbe9b2b32e57a03ecd63568996ee6a797fe35ae
GET /upload/vod/2020/04-24/00/ozvfexqwmrj0001ozvfexqwmrj5311803.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 11849
cf-bgj: imgq:85,h2pri
cf-polished: origSize=12439, status=webp_bigger
etag: "5ea1bbf1-3097"
last-modified: Thu, 23 Apr 2020 16:01:53 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb42c0d1c0e-OSL
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1480829586&si=6f39cfb7fb3d2a5a22dc71959e2f8ddf&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49509&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1480829586&si=6f39cfb7fb3d2a5a22dc71959e2f8ddf&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49509&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1480829586&si=6f39cfb7fb3d2a5a22dc71959e2f8ddf&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49509&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 24 Feb 2023 06:46:35 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=2E4BADC7701A2763; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
lbfm.lbpictupian.com/upload/vod/2020/04-24/00/3hkoyd02bo200013hkoyd02bo25611809.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/04-24/00/3hkoyd02bo200013hkoyd02bo25611809.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 3cb63bb625ae02c34efdde77349a3305
d2f36c69e73bc26259c7e61a052570075c088d42
c36bcee19e9382c6aec4cd423b6caf60105166893a404a74e0517a565922f37b
GET /upload/vod/2020/04-24/00/3hkoyd02bo200013hkoyd02bo25611809.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 10817
cf-bgj: imgq:85,h2pri
cf-polished: origSize=11362, status=webp_bigger
etag: "5ea1bbf4-2c62"
last-modified: Thu, 23 Apr 2020 16:01:56 GMT
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb45c2e1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2020/04-24/00/hoqsya1k20a0001hoqsya1k20a5511807.jpg
172.67.28.138200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2020/04-24/00/hoqsya1k20a0001hoqsya1k20a5511807.jpg
IP 172.67.28.138:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 099b5d73305c2fe2b4222dc97db98ce6
1c750feaffb744f7a6466b95ce40274bba55356d
4c1800749b72e1da83a3d8ff45eebe492554009655fab63fe09af630700a5b3d
GET /upload/vod/2020/04-24/00/hoqsya1k20a0001hoqsya1k20a5511807.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/webp
content-length: 10282
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11421
content-disposition: inline; filename="hoqsya1k20a0001hoqsya1k20a5511807.webp"
etag: "5ea1bbf3-2c9d"
last-modified: Thu, 23 Apr 2020 16:01:55 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 79e63eb44c271c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/jtuh5ihtphx.jpg
172.67.28.138200 OK 8.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/jtuh5ihtphx.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 548x543, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 9c944fb1e71320bff49ca0b72c3dbc25
fca75757424f9bcf1baf50b4083b2f3e2544b507
f587c622dabf98cebe030e4b01b39436f62f0b21ca2711740d815ff9c274f2b4
GET /upload/vod/2023/02/jtuh5ihtphx.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 8320
last-modified: Fri, 24 Feb 2023 03:08:32 GMT
etag: "63f82a30-2080"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbd51c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/ezbojutsoes.jpg
172.67.28.138200 OK 8.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/ezbojutsoes.jpg
IP 172.67.28.138:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 6e210b0fc4ac59e56fa38682a77c87d2
09e0a02b8ee507fe3ba23a9e2f2cc739d97413d9
5c6c6547f6dff9192618d6fae8596f3cef920b3a65f2e244e2a3c8882ff8a00d
GET /upload/vod/2023/02/ezbojutsoes.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 8509
last-modified: Fri, 24 Feb 2023 03:10:26 GMT
etag: "63f82aa2-213d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbd11c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/qodibb2ozvp.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/qodibb2ozvp.jpg
IP 172.67.28.138:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 9cf2e1fbbbbcd75405160d2e8c135208
0c2d6e808982dc8588f904bc603b32514209dcb2
f022b33f29f1d64befd25f2c06d94f8cf5c0509d7be353267f44e0df61862993
GET /upload/vod/2023/02/qodibb2ozvp.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 11107
last-modified: Fri, 24 Feb 2023 03:10:13 GMT
etag: "63f82a95-2b63"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbcf1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/funm2bivdo4.jpg
172.67.28.138200 OK 8.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/funm2bivdo4.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 673d155a71f5f4bde2493c1a3f97a4be
84c3be67496732ca3781a908afa1823039390a07
a50b62ec79bc6d940517e517783de0c1b1a75717f5c018fbd3eb1f7d4b62109f
GET /upload/vod/2023/02/funm2bivdo4.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 8588
last-modified: Fri, 24 Feb 2023 03:08:39 GMT
etag: "63f82a37-218c"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbd91c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/0rle1e2gfi0.jpg
172.67.28.138200 OK 8.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/0rle1e2gfi0.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1018x1359, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 3ed4987635266a9717f2aea176d81304
60318448209895081c6a6ba2bb1e6f8a1ff93d2f
fc88bf3456913b2748b87b129d2a9ff0038eb0efe5b1df9ee691bc0b16e1b831
GET /upload/vod/2023/02/0rle1e2gfi0.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 8503
last-modified: Fri, 24 Feb 2023 03:08:36 GMT
etag: "63f82a34-2137"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbd71c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/h53voyfl4dq.jpg
172.67.28.138200 OK 7.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/h53voyfl4dq.jpg
IP 172.67.28.138:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash edd5548fdc0bf6b6388010d16427c414
a898abc578e2b3fb7586e50ccc1c4fc00e5577c3
8f46b24311e3fffb79043c1be5789fc78642f1efc11aad0fe1f074104bd64d18
GET /upload/vod/2023/02/h53voyfl4dq.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 7737
last-modified: Fri, 24 Feb 2023 03:10:36 GMT
etag: "63f82aac-1e39"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbc41c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/zr2m1ojpom4.jpg
172.67.28.138200 OK 8.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/zr2m1ojpom4.jpg
IP 172.67.28.138:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 835b064997db028dd4e697832b2ae07a
bdef4a954a2e4bd5e158b601854dbade3fde3816
71b64b55e0afcd44a68effafb43ea79a533281e7b26747b4088a2bb072dbf6f8
GET /upload/vod/2023/02/zr2m1ojpom4.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 8042
last-modified: Fri, 24 Feb 2023 03:10:31 GMT
etag: "63f82aa7-1f6a"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbd31c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/mlidjimj30t.jpg
172.67.28.138200 OK 7.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/mlidjimj30t.jpg
IP 172.67.28.138:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash f852ebeefb6b09e27ca03b5124b9ce53
7ff1d331b0bb94dea5ba3d2c4291266357d855f3
45edc6889e0825bb39ccdc0b2e231c714cddb2ecdb81e2a4baf3dd7e6b87baf5
GET /upload/vod/2023/02/mlidjimj30t.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 7170
last-modified: Fri, 24 Feb 2023 03:10:22 GMT
etag: "63f82a9e-1c02"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb3cbd01c0e-OSL
X-Firefox-Spdy: h2
pic.rmb.bdstatic.com/bjh/5f356028e5e94176f56a75568e49ae20.gif
185.10.104.115200 OK 1.3 MB URL HTTP/2 pic.rmb.bdstatic.com/bjh/5f356028e5e94176f56a75568e49ae20.gif
IP 185.10.104.115:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 1.3 MB (1296026 bytes)
Hash 5f356028e5e94176f56a75568e49ae20
3796c4c950687811a1d1f80fd9e31e718bda0f85
c6d85123315be8a70786b6699f59eecff590bc8fbf1a48a477bcb2cacd660320
GET /bjh/5f356028e5e94176f56a75568e49ae20.gif HTTP/1.1
Host: pic.rmb.bdstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: JSP3/2.0.14
date: Fri, 24 Feb 2023 06:46:34 GMT
content-type: image/gif
content-length: 1296026
expires: Sun, 29 Jan 2023 03:44:37 GMT
last-modified: Sun, 01 May 2022 03:41:02 GMT
etag: "5f356028e5e94176f56a75568e49ae20"
age: 258817
accept-ranges: bytes
content-md5: XzVgKOXpQXb1anVWjkmuIA==
x-bce-content-crc32: 619664397
x-bce-debug-id: qoHJbuYLCrwt6BohAJHKhB1la/dLtPckbQZCDsLdCYj3ffbVUHMGsmUK6fqoM0iXz1HI2DGQutkKVrhCRx8zZA==
x-bce-request-id: f2b33ae6-db81-4f70-9150-c6452b74a3f4
x-bce-storage-class: STANDARD
timing-allow-origin: *
ohc-global-saved-time: Thu, 26 Jan 2023 03:44:37 GMT
ohc-cache-hit: fra01-sys-jomo6.fra01.baidu.com [2], fra01-sys-jomo8.fra01.baidu.com [2], zhuzuncache62 [3], suzix207 [3]
ohc-file-size: 1296026
x-cache-status: HIT
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/jj4srw5whl2.jpg
172.67.28.138200 OK 8.1 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/jj4srw5whl2.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b1c8597d2c3e0d8f5e32369d739c0bc7
801944ad0c8a77c45485cbb7f77fe77fd84d1823
6c1e53f5869cd3e20a06fac1e75284ef43f570e2cce0d02050bce6e7bbae74f6
GET /upload/vod/2023/02/jj4srw5whl2.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 8061
last-modified: Fri, 24 Feb 2023 02:58:00 GMT
etag: "63f827b8-1f7d"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c1e1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/zqf3k5uhrth.jpg
172.67.28.138200 OK 7.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/zqf3k5uhrth.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 51f53b3aa463b6eca5c18be8758a3d4a
9316dab88b2a40a888e10c6abc846b98dd885c0c
ac40bb68832ab1bc19b3f5c64f1a4f80e195e948426078ab3a664b407b3e89ec
GET /upload/vod/2023/02/zqf3k5uhrth.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 7909
last-modified: Fri, 24 Feb 2023 02:58:04 GMT
etag: "63f827bc-1ee5"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c1f1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/guvguxr3r43.jpg
172.67.28.138200 OK 7.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/guvguxr3r43.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 68e13c0842be8a80ec9180dc7d27db39
452ce8c93391eb893697c166c8472a0c52e9c4b8
0f6d0b29406f90fca4be5e50bec387537a6216d5ce07a30be63be71e76a3b01f
GET /upload/vod/2023/02/guvguxr3r43.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 7860
last-modified: Fri, 24 Feb 2023 02:57:48 GMT
etag: "63f827ac-1eb4"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c1a1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/atoekp44dqz.jpg
172.67.28.138200 OK 8.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/atoekp44dqz.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f0640a0eb7f0c28d1a7f8a56fcb8642e
181acd5164fc6b6d66cb97266e56b938e567d233
a4e986bda78aa8b689c8805852d2f067fecf58358627866f1ef55c3e5a61c74a
GET /upload/vod/2023/02/atoekp44dqz.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 8288
last-modified: Fri, 24 Feb 2023 02:57:37 GMT
etag: "63f827a1-2060"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c181c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/ls1wddbcrqe.jpg
172.67.28.138200 OK 10 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/ls1wddbcrqe.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 87200470af17e4722cfca23a33731219
297c57b52b9bfa202b2792a677f4fc69a813e1fd
22ef41fb32d94b549fd89ae6d23bf4f6f4cd1dddc382b435dd5636a427a6ae32
GET /upload/vod/2023/02/ls1wddbcrqe.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 9958
last-modified: Fri, 24 Feb 2023 02:57:56 GMT
etag: "63f827b4-26e6"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c1d1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/11majew3njl.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/11majew3njl.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b7a94cc11741008fd5e46674790695f1
cf0c57587e4b3324d8666ab4c2164799fd5465a9
1a5b1e035c48b178e6bbaa72265c5b63eb2c30b881e949eb7121b967d160da0f
GET /upload/vod/2023/02/11majew3njl.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 10925
last-modified: Fri, 24 Feb 2023 02:57:43 GMT
etag: "63f827a7-2aad"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c191c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/ksf5jpmcaum.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/ksf5jpmcaum.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash d4e5d02a5211af69260679bb2e9f7524
e8b0a840c75df066769aa0330593f44df5cf0550
6007629c48ebe4b7e48a5d882e08bd4f9b781a03972809def237534cfe282a77
GET /upload/vod/2023/02/ksf5jpmcaum.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 10959
last-modified: Fri, 24 Feb 2023 02:58:08 GMT
etag: "63f827c0-2acf"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c201c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/nciykcmibub.jpg
172.67.28.138200 OK 9.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/nciykcmibub.jpg
IP 172.67.28.138:0
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 66a9bf6d9a8a599df81b0559cc955621
5d3f14948a645054a6eb2a347e577311abd51282
a6d7256226ae9b0f0b0c3e745c2afff63a28260ba0ff78d7897b260ebfb1e128
GET /upload/vod/2023/02/nciykcmibub.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 9173
last-modified: Fri, 24 Feb 2023 03:10:41 GMT
etag: "63f82ab1-23d5"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb45c311c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/35i4nvrmus0.jpg
172.67.28.138200 OK 11 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/35i4nvrmus0.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 22ebd160937dd99e8979d5e84da00424
78aaf9b15f844250fa049da0b4f98c8f4444ad9a
d65d5bee6b57fe11668ae3111cee33373b74a20f520a7da9b73715ddd9092acf
GET /upload/vod/2023/02/35i4nvrmus0.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 10969
last-modified: Fri, 24 Feb 2023 02:57:51 GMT
etag: "63f827af-2ad9"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c1b1c0e-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2023/02/nxblh1xyaxk.jpg
172.67.28.138200 OK 8.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2023/02/nxblh1xyaxk.jpg
IP 172.67.28.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1022x1359, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash c198ef319ce8efb5384c6aa556810bc2
ccd6b1accacedec90f1c81cb905a2755d26004a6
702255fc624791701d6e4e731f1f19d45cf8c730de7f38c2ae296ac9a8a370f7
GET /upload/vod/2023/02/nxblh1xyaxk.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/jpeg
content-length: 7968
last-modified: Fri, 24 Feb 2023 03:08:44 GMT
etag: "63f82a3c-1f20"
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb43c241c0e-OSL
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.20.226:0
Hash 8f6ffbe2acea36195092f0c00d0f0a68
3b2fc9268e2c640f1499d8b5060ec03d90721fa5
7279b58aa461e5f8b874a677a7050e2ed386c5be74eec7e591dc6c73e8fc5ae2
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Tue, 28 Feb 2023 03:32:43 GMT
ETag: "3b2fc9268e2c640f1499d8b5060ec03d90721fa5"
Last-Modified: Fri, 24 Feb 2023 03:32:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e63eb81c3db4e8-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c491e56b83dd8db485e45d356fc7fec7
8e615a0519b0692274139f052b59b08929ef1101
1947fd4acf10f8e1a4484ff586dbcd9ac354099acb8cc27bed35a990789f7fc9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Feb 2023 03:08:09 GMT
Expires: Thu, 02 Mar 2023 03:08:08 GMT
Etag: "8e615a0519b0692274139f052b59b08929ef1101"
Cache-Control: max-age=504692,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79e63eb81caa0b06-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash f5ba71dcf5a84f2fa0b342c15a261b9c
c34eee458d7e81165bb2158892a222fc5378bada
f4876e1640ae72c9152bf7e151984a718b28ca91e9089a2da8bc70e0dd53dde6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 28 Feb 2023 05:03:18 GMT
ETag: "c34eee458d7e81165bb2158892a222fc5378bada"
Last-Modified: Fri, 24 Feb 2023 05:03:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1389
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e63eb86eb40b49-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash f5ba71dcf5a84f2fa0b342c15a261b9c
c34eee458d7e81165bb2158892a222fc5378bada
f4876e1640ae72c9152bf7e151984a718b28ca91e9089a2da8bc70e0dd53dde6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 28 Feb 2023 05:03:18 GMT
ETag: "c34eee458d7e81165bb2158892a222fc5378bada"
Last-Modified: Fri, 24 Feb 2023 05:03:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1389
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e63eb86ebb0b49-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash f5ba71dcf5a84f2fa0b342c15a261b9c
c34eee458d7e81165bb2158892a222fc5378bada
f4876e1640ae72c9152bf7e151984a718b28ca91e9089a2da8bc70e0dd53dde6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 28 Feb 2023 05:03:18 GMT
ETag: "c34eee458d7e81165bb2158892a222fc5378bada"
Last-Modified: Fri, 24 Feb 2023 05:03:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1389
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e63eb86c1c0b61-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash f5ba71dcf5a84f2fa0b342c15a261b9c
c34eee458d7e81165bb2158892a222fc5378bada
f4876e1640ae72c9152bf7e151984a718b28ca91e9089a2da8bc70e0dd53dde6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 28 Feb 2023 05:03:18 GMT
ETag: "c34eee458d7e81165bb2158892a222fc5378bada"
Last-Modified: Fri, 24 Feb 2023 05:03:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1389
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e63eb86bddb506-OSL
dvcasha2.ocsp-certum.com/
95.101.10.193200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 8a5817f77379e59dae439f54c6b71e73
db0bd6dcb5d30891231dd7b2a31cc4ad879a7db2
38a0b53cc061153f66d9aac34407260f670c930ae4b6341516eca130625ea470
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=872
Date: Fri, 24 Feb 2023 06:46:35 GMT
Connection: keep-alive
X-N: S
www.mgpypn.xyz/template/m1938pc/css/ate.css
173.231.17.185200 OK 17 kB URL HTTP/2 www.mgpypn.xyz/template/m1938pc/css/ate.css
IP 173.231.17.185:0
File type ASCII text, with CRLF line terminators
Hash cf7e4b84e97ef718511f17172419b24b
9ab759a7f09d1dda0a6e6b613f38d08ad2fff42b
c976642f42480dc64e7503ed13413e12f1dcff403e43f15ff0e7710a8c5d8c29
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: www.mgpypn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:32 GMT
content-type: text/css
last-modified: Fri, 18 Jun 2021 13:51:35 GMT
vary: Accept-Encoding
etag: W/"60cca4e7-126e4"
expires: Fri, 24 Feb 2023 18:46:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 26471dd52a01a9229412575ee8775cee
3e82d496db2d5d456aaeabfa065241545e82dd88
0c2826261f7a5858ae4f5365e0505b677e0010540cfc41d1cbfc037c6f15952d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Feb 2023 02:48:21 GMT
Expires: Thu, 02 Mar 2023 02:48:20 GMT
Etag: "3e82d496db2d5d456aaeabfa065241545e82dd88"
Cache-Control: max-age=503504,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79e63eb81c6cb500-OSL
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash d9ec42a4d867d20aeb47093816c4527d
def8c0e04480f95ad46fc2c3e63f69ff8c9c23eb
57dc80bf6dc1b678fb0c2bde9bfd6434a01a5cc458bc3781de3fd2ece36fb4b2
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 24 Feb 2023 06:46:35 GMT
Ali-Swift-Global-Savetime: 1677221195
Via: cache14.l2de2[50,49,200-0,M], cache14.l2de2[51,0], cache4.se1[72,71,200-0,M], cache4.se1[73,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 24 Feb 2023 06:46:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9816772211956058065e
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash fdcb09ad382c157d4eaff4e04c31f859
2498fca16f5a2bfd504134a792fed49ae4889853
98a14adb25c0c0043de549171b6c8867195122e4cdb6428f9d7819f17964472c
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Date: Fri, 24 Feb 2023 06:46:35 GMT
Last-Modified: Fri, 24 Feb 2023 00:18:52 GMT
ETag: "63f8026c-1d7"
Expires: Sun, 26 Feb 2023 00:18:52 GMT
Cache-Control: max-age=149537
Accept-Ranges: bytes
Ali-Swift-Global-Savetime: 1677221195
Via: cache17.l2de2[45,45,200-0,M], cache17.l2de2[46,0], cache2.se1[67,67,200-0,M], cache2.se1[69,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 24 Feb 2023 06:46:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9616772211956193431e
taiwtp1.com/xin/96060.gif
220.128.218.220200 OK 69 kB URL HTTP/2 taiwtp1.com/xin/96060.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 60\012- data
Hash 1b81020d4419f48ddf8aaa0b7ce34a5c
432154678099ca224ed82b2490a33e5d78f510d5
8a88cbb8fdc88c9da52cdbf3467d9c8b9bed2821135ee631cb877b024bc34aa2
GET /xin/96060.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:39:21 GMT
content-type: image/gif
content-length: 68564
last-modified: Thu, 20 Oct 2022 07:11:01 GMT
etag: "6350f485-10bd4"
expires: Sun, 26 Mar 2023 06:39:21 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 89220ec4f180efd0c9ea0f02b94d759a
8dd110fef5fa5451316a253566e9491a23e1e6f0
1609dd167a1f39de4add4ab62a035fbb43791875e6a774a9e4b1d7bc38089f0a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 20 Feb 2023 22:09:39 GMT
Expires: Mon, 27 Feb 2023 22:09:38 GMT
Etag: "8dd110fef5fa5451316a253566e9491a23e1e6f0"
Cache-Control: max-age=313982,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79e63eb81b09b50b-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash b6d51ea02aa3dddce4ca83ecb91919c9
41e6cc60dc6751b368d8a02189427c4e693a6c3f
06dd509961660ac794a078d3f62f1edc312b7ac82ef4c5ac6c6b249d36d4a5ac
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 21 Feb 2023 06:44:13 GMT
Expires: Tue, 28 Feb 2023 06:44:12 GMT
Etag: "41e6cc60dc6751b368d8a02189427c4e693a6c3f"
Cache-Control: max-age=344856,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79e63eb81b65b4f7-OSL
si1.go2yd.com/get-image/0xmAGT9KS9C
163.171.140.79200 OK 118 kB URL HTTP/2 si1.go2yd.com/get-image/0xmAGT9KS9C
IP 163.171.140.79:0
ASN #54994 QUANTILNETWORKS
File type GIF image data, version 89a, 640 x 200\012- data
Size 118 kB (117593 bytes)
Hash c4caa37b717580e8594587f32ca86470
a645ec82581a0b18f67444b62a062059adf78aa6
208bafb1df6fa8b7929896b30415514e2dc59312332ec26aff058767fa81f269
GET /get-image/0xmAGT9KS9C HTTP/1.1
Host: si1.go2yd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/gif
content-length: 117593
server: Tengine
x-application-context: application
x-kss-request-id: 9a211df897c146b99866a236ff549e2f
etag: "c4caa37b717580e8594587f32ca86470"
content-md5: xMqje3F1gOhZRYfzLKhkcA==
last-modified: Thu, 10 Feb 2022 15:30:06 GMT
accept-ranges: bytes
age: 1
x-via: 1.1 PSbjwjBGP2ih137:4 (Cdn Cache Server V2.0), 1.1 PSzjnbsxkx232:7 (Cdn Cache Server V2.0), 1.1 tb118:13 (Cdn Cache Server V2.0), 1.1 PShlamstdAMS1cc96:12 (Cdn Cache Server V2.0)
x-ws-request-id: 63f85d4b_PShlamstdAMS1se91_31284-25783
access-control-allow-origin: *
ws-s2h-acc-level: 1
X-Firefox-Spdy: h2
ocsp.digicert.cn/
47.246.44.205200 OK 471 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash e47eebe35e8c23abeb27d75e5f25c680
1f707c75d598fe6fad0f6fe4c0eef8394cc73249
b751a5e72b75780e0a6c8329999d5ef6c9ddff05f83aed8a4403dfba1e3a9062
POST / HTTP/1.1
Host: ocsp.digicert.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 24 Feb 2023 06:46:35 GMT
Ali-Swift-Global-Savetime: 1677221195
Via: cache16.l2de2[310,310,200-0,M], cache16.l2de2[311,0], cache5.se1[332,331,200-0,M], cache5.se1[334,0]
X-Cache: MISS TCP_MISS dirn:-2:-2
X-Swift-SaveTime: Fri, 24 Feb 2023 06:46:35 GMT
X-Swift-CacheTime: 0
Timing-Allow-Origin: *
EagleId: 2ff62c9916772211954528308e
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 84cb0c0099590d93eef0d4794404d998
03c0dc7f545ec74f457abd8625022f2217f9b1f1
827afb70bcd123d41ed0859346ecdba862e5243ed69e57eb6d26ad8a1dda337a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=153111
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:35 GMT
Etag: "63f81062-117"
Expires: Sun, 26 Feb 2023 01:18:26 GMT
Last-Modified: Fri, 24 Feb 2023 01:18:26 GMT
Server: nginx
Content-Length: 279
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 86137f5a5a4ffbeb5cc0a635d4416bd0
8591d60c13f33ff14bba7a124b5c1cd03336dadf
c2ea042208c371591376813c38b1eed1e6e1dacf6c58f1e15e94fb927dea63d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 23 Feb 2023 03:33:48 GMT
Expires: Thu, 02 Mar 2023 03:33:47 GMT
Etag: "8591d60c13f33ff14bba7a124b5c1cd03336dadf"
Cache-Control: max-age=506231,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79e63eb9ada80b06-OSL
ocsp.trust-provider.cn/
47.246.44.205200 OK 600 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 727d953259586c2d97031e40fd8e8849
f4a33a694ee3f094ebc9a8c15b3524b44cb6bd41
eb2ca1f333fca1ef222cf13cf84c4ea710a988388936e0289a94338e3edc19e3
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Fri, 24 Feb 2023 06:26:02 GMT
last-modified: Thu, 23 Feb 2023 01:44:13 GMT
expires: Thu, 02 Mar 2023 01:44:12 GMT
etag: "f4a33a694ee3f094ebc9a8c15b3524b44cb6bd41"
cache-control: max-age=587622,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 79e62097bc5a9153-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1677219962
via: cache15.l2de2[0,-1,304-0,H], cache17.l2de2[1,0], cache5.se1[0,0,200-0,H], cache2.se1[1,0], cache1.se1[3,0]
age: 1233
x-cache: HIT TCP_MEM_HIT dirn:11:169657618
x-swift-savetime: Fri, 24 Feb 2023 06:38:05 GMT
x-swift-cachetime: 1077
timing-allow-origin: *, *
eagleid: 2ff62c9516772211958008096e, 2ff62c9516772211958008096e
ttsetupian.cc/lm/cstggspk01.gif
172.67.200.154200 OK 246 kB URL HTTP/2 ttsetupian.cc/lm/cstggspk01.gif
IP 172.67.200.154:0
File type GIF image data, version 89a, 320 x 190\012- data
Size 246 kB (246207 bytes)
Hash e9d0b8904ffb196466d811f2eec57882
4da1e9b9265080e1c692414460f7e5986d9aaf3c
91728f3daddc85394ce7e774a07c7945064566983ce19aaeb3fd3e1b4e7c4318
GET /lm/cstggspk01.gif HTTP/1.1
Host: ttsetupian.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/gif
content-length: 246207
last-modified: Wed, 24 Aug 2022 10:34:31 GMT
etag: "6305feb7-3c1bf"
expires: Sat, 04 Mar 2023 12:43:13 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1879263
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WwrUy%2BPNrwfiz2dSkxy02Hxsvenfn0%2BlLiImNb3rC4ADvCDPoz%2FjOCI6%2FhTyFC7cerqq7%2FAjUHAaBmB4wV0sCPBjx40%2FvNAwJrb6McHpuMbCVV95N5N8ENRQf%2B1qu6rO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e63eb9fe33b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
595tuchuang.com/960x80.gif
183.255.106.33200 OK 145 kB URL HTTP/1.1 595tuchuang.com/960x80.gif
IP 183.255.106.33:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 145 kB (144990 bytes)
Hash 9fd5431ae14d05e144a79a04b928ad1d
43ca6652416a1403dc5a96d779d414330edbe411
f56b12228d407bfd1f7d17582733a92443a012dc7005b9b9896e9b8b3dc13c2c
GET /960x80.gif HTTP/1.1
Host: 595tuchuang.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:34 GMT
Content-Type: image/gif
Content-Length: 144990
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 13:28:21 GMT
ETag: "63a309f5-2365e"
Expires: Fri, 10 Mar 2023 18:34:36 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=389184014&si=a3bf9acdbb11a6af7d201180b0d6dd7a&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49510&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=389184014&si=a3bf9acdbb11a6af7d201180b0d6dd7a&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49510&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=389184014&si=a3bf9acdbb11a6af7d201180b0d6dd7a&su=https%3A%2F%2Fmang.tiryakioyun.com%2F&v=1.3.0&lv=1&sn=49510&r=0&ww=1280&u=https%3A%2F%2Fwww.mgpypn.xyz%2F&tt=%E8%8A%92%E6%9E%9CAV HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 24 Feb 2023 06:46:35 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=92602B4865715212; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 84cb0c0099590d93eef0d4794404d998
03c0dc7f545ec74f457abd8625022f2217f9b1f1
827afb70bcd123d41ed0859346ecdba862e5243ed69e57eb6d26ad8a1dda337a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=153111
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 06:46:35 GMT
Etag: "63f81062-117"
Expires: Sun, 26 Feb 2023 01:18:26 GMT
Last-Modified: Fri, 24 Feb 2023 01:18:26 GMT
Server: nginx
Content-Length: 279
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0de2e5c24a1d7f5cfcb39bde52c2ab77
cc38eca6b31396587bdde00881d5e7c37d11b6b4
ab56ab7492c787291dce703ef8c0eb7c6c881f8a0b87bb30d8944b92c19d832b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 24 Feb 2023 06:46:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 24 Feb 2023 04:45:17 GMT
Expires: Fri, 03 Mar 2023 04:45:16 GMT
Etag: "cc38eca6b31396587bdde00881d5e7c37d11b6b4"
Cache-Control: max-age=596919,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79e63ebacdd1b50b-OSL
8821ddd.com/3c55f52a106a47ff98d4bf61a17901a5.gif
45.61.212.46200 OK 562 kB URL HTTP/1.1 8821ddd.com/3c55f52a106a47ff98d4bf61a17901a5.gif
IP 45.61.212.46:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 562 kB (561845 bytes)
Hash 4552f51ed05e3f4ed4ffc73bbaf77df3
3f5aab58a8565d2c4c5c4f23477e64c72ce4e61e
3c64bea31f55f50536ea73aee6e1e40ac050a2108379d55765bf774dc483d7d1
Analyzer Verdict Alert quad9 Sinkholed
GET /3c55f52a106a47ff98d4bf61a17901a5.gif HTTP/1.1
Host: 8821ddd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "633c1d2d-892b5"
Date: Thu, 16 Feb 2023 05:31:16 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 04 Oct 2022 11:46:53 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-16
Content-Length: 561845
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e9bc9895b645c73c3273c62cbbb95d2
74fd856bc8a51a4097ef2f5446f2a531f2375b80
b191cbbbf6c4b21473a69bd1ffa53b53fc5042ab463fb815e96bc9fd22a56b74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B191CBBBF6C4B21473A69BD1FFA53B53FC5042AB463FB815E96BC9FD22A56B74"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Fri, 24 Feb 2023 12:45:56 GMT
Date: Fri, 24 Feb 2023 06:46:36 GMT
Connection: keep-alive
8885ddd.com/c86f99b435f143efbee8b5c6b82996cb.gif
45.61.212.59200 OK 579 kB URL HTTP/1.1 8885ddd.com/c86f99b435f143efbee8b5c6b82996cb.gif
IP 45.61.212.59:0
File type GIF image data, version 89a, 750 x 120\012- data
Size 579 kB (579018 bytes)
Hash 54c2a3fb838c8e711bbe07220637d637
77e33ed77eb68c23320c059105fb2c900141301e
fc832269e62682138155c4f5e7f34f36512d1bfe69482fbc4a2cc3d27251c8e1
GET /c86f99b435f143efbee8b5c6b82996cb.gif HTTP/1.1
Host: 8885ddd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63b3d36d-8d5ca"
Date: Sat, 11 Feb 2023 13:01:36 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 03 Jan 2023 07:04:13 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-29
Content-Length: 579018
9917ddd.com/d35467f31a1e415dbf061087c8c283d5.gif
103.170.15.74200 OK 684 kB URL HTTP/1.1 9917ddd.com/d35467f31a1e415dbf061087c8c283d5.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 684 kB (683474 bytes)
Hash ba813a4b9580b3da278e68a1c3e3a954
6d843c3c02ad3270abd575c460ec26ed615578f4
574301fcb45a6820cf36903b271324e32c210c335539d8f1a406f000e1f0e72e
GET /d35467f31a1e415dbf061087c8c283d5.gif HTTP/1.1
Host: 9917ddd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62e67b07-a6dd2"
Date: Thu, 09 Feb 2023 03:44:51 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 31 Jul 2022 12:52:23 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 683474
mang.tiryakioyun.com/news/index.php
20.187.123.222200 OK 0 B URL HTTP/2 mang.tiryakioyun.com/news/index.php
IP 20.187.123.222:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /news/index.php HTTP/1.1
Host: mang.tiryakioyun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kalalele.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.1
date: Fri, 24 Feb 2023 06:46:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
x-country: NO
x-cache: BYPASS@waxm3g7zj00000f
X-Firefox-Spdy: h2
9918ddd.com/d35467f31a1e415dbf061087c8c283d5.gif
45.61.212.124200 OK 0 B URL HTTP/1.1 9918ddd.com/d35467f31a1e415dbf061087c8c283d5.gif
IP 45.61.212.124:0
GET /d35467f31a1e415dbf061087c8c283d5.gif HTTP/1.1
Host: 9918ddd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "62e67b07-a6dd2"
Date: Wed, 08 Feb 2023 11:28:48 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 31 Jul 2022 12:52:23 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-24
Content-Length: 683474
www.mgpypn.xyz/template/m1938pc/html9/ad/zxf8.js
173.231.17.185200 OK 0 B URL HTTP/2 www.mgpypn.xyz/template/m1938pc/html9/ad/zxf8.js
IP 173.231.17.185:0
GET /template/m1938pc/html9/ad/zxf8.js HTTP/1.1
Host: www.mgpypn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:32 GMT
content-type: application/javascript
last-modified: Wed, 15 Feb 2023 13:26:24 GMT
vary: Accept-Encoding
etag: W/"63ecdd80-61a"
expires: Fri, 24 Feb 2023 18:46:32 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X60.gif
47.75.19.4200 OK 0 B URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X60.gif
IP 47.75.19.4:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /gg/960X60.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Fri, 24 Feb 2023 06:46:35 GMT
Content-Type: image/gif
Content-Length: 95856
Connection: keep-alive
x-oss-request-id: 63F85D4B4C8B37343361EAD4
Accept-Ranges: bytes
ETag: "57557D6B489D522D480D9B82CE29DB65"
Last-Modified: Sat, 09 Jul 2022 12:37:07 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15928828585404051914
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: V1V9a0idUi1IDZuCzinbZQ==
x-oss-server-time: 1
img.1141555.com/images/63f46b5743dad38b19b221ec.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.1141555.com/images/63f46b5743dad38b19b221ec.gif
IP 38.54.37.233:0
GET /images/63f46b5743dad38b19b221ec.gif HTTP/1.1
Host: img.1141555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/83908e7e94cd4714bb798d797ed38b3e
X-Firefox-Spdy: h2
taiwtp1.com/xin/200200sas.gif
220.128.218.220200 OK 0 B URL HTTP/2 taiwtp1.com/xin/200200sas.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
GET /xin/200200sas.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:39:21 GMT
content-type: image/gif
content-length: 693471
last-modified: Sat, 26 Nov 2022 10:45:28 GMT
etag: "6381ee48-a94df"
expires: Sun, 26 Mar 2023 06:39:21 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.3852a.com/images/63f6205f9be3840da72bf467.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.3852a.com/images/63f6205f9be3840da72bf467.gif
IP 38.54.37.233:0
GET /images/63f6205f9be3840da72bf467.gif HTTP/1.1
Host: img.3852a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/6e2b77d61c1d45a7a4d7a177bc18030d
X-Firefox-Spdy: h2
img.3596a.com/images/63f61f609be3840da72bf464.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.3596a.com/images/63f61f609be3840da72bf464.gif
IP 38.54.37.233:0
GET /images/63f61f609be3840da72bf464.gif HTTP/1.1
Host: img.3596a.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/5c194c23b89e450c9bb5365961a2cc65
X-Firefox-Spdy: h2
kjimg10.360buyimg.com/ott/jfs/t1/216719/34/23684/2643442/6380d0f3E39850c8a/5b9666f7e9703dbb.gif
121.226.246.3200 OK 0 B URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/216719/34/23684/2643442/6380d0f3E39850c8a/5b9666f7e9703dbb.gif
IP 121.226.246.3:0
GET /ott/jfs/t1/216719/34/23684/2643442/6380d0f3E39850c8a/5b9666f7e9703dbb.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 06:46:35 GMT
content-type: image/gif
content-length: 2643442
cache-control: max-age=15552000
expires: Sat, 19 Aug 2023 10:49:18 GMT
last-modified: Fri, 25 Nov 2022 14:28:03 GMT
age: 331037
via: http/1.1 ORI-CLOUD-HUZ-MIX-30 (jcs [cHs f ]), http/1.1 SQ-CT-1-MIX-21 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1676890158404-0-0-14-125-125;200;200-1677061838799-0-0-0-5-5;200-1677221195685-0-0-0-1-1
X-Firefox-Spdy: h2
9912ddd.com/ea9ae1b7e3a34929b0eeba89b340f4fd.gif
103.170.15.74200 OK 0 B URL HTTP/1.1 9912ddd.com/ea9ae1b7e3a34929b0eeba89b340f4fd.gif
IP 103.170.15.74:0
ASN #7483 Skycloud Computing co., Ltd.
Analyzer Verdict Alert quad9 Sinkholed
GET /ea9ae1b7e3a34929b0eeba89b340f4fd.gif HTTP/1.1
Host: 9912ddd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63b3d35c-b190d"
Date: Tue, 14 Feb 2023 12:09:33 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 03 Jan 2023 07:03:56 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-04
Content-Length: 727309
img.1537999.com/images/63ea2501c926f8b174a2b88c.gif
38.54.37.233302 Found 0 B URL HTTP/2 img.1537999.com/images/63ea2501c926f8b174a2b88c.gif
IP 38.54.37.233:0
GET /images/63ea2501c926f8b174a2b88c.gif HTTP/1.1
Host: img.1537999.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/150f3116d8294e5dbbfbb2f46adf00f7
X-Firefox-Spdy: h2
6628ddd.com/8a016d55526e46899cea50cac9f61dd8.gif
45.61.212.51200 OK 0 B URL HTTP/1.1 6628ddd.com/8a016d55526e46899cea50cac9f61dd8.gif
IP 45.61.212.51:0
Analyzer Verdict Alert quad9 Sinkholed
GET /8a016d55526e46899cea50cac9f61dd8.gif HTTP/1.1
Host: 6628ddd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mgpypn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63aa830b-767a7"
Date: Tue, 21 Feb 2023 01:12:01 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 27 Dec 2022 05:30:51 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-21
Content-Length: 485287