4565ruffner.com/data/win.exe
104.148.44.18301 Moved Permanently 0 B URL User Request GET HTTP/1.1 4565ruffner.com/data/win.exe
IP 104.148.44.18:80
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /data/win.exe HTTP/1.1
Host: 4565ruffner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Jun 2023 21:00:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.4565ruffner.com/data/win.exe
www.4565ruffner.com/data/win.exe
104.148.44.18 523 B URL User Request GET www.4565ruffner.com/data/win.exe
IP 104.148.44.18:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (619), with CRLF line terminators
Hash 73aee2870da0f4eb56bd9e17ad8bf1ad
6e760904d619dc5ef2535385b1402397cca4e3ac
eb7e101545975466a7b736188439ab5afeea3e6b1f1df75d50b3a691830a215a
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /data/win.exe HTTP/1.1
Host: www.4565ruffner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Jun 2023 21:00:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.4565ruffner.com/common.js
104.148.44.18200 OK 676 B URL GET HTTP/1.1 www.4565ruffner.com/common.js
IP 104.148.44.18:80
Requested by http://www.4565ruffner.com/data/win.exe
File type HTML document text\012- HTML document, ASCII text, with very long lines (1296), with no line terminators
Hash 5b8399d07b33d4366937693a94d4ed20
0dc1d8e89c4469a337c406c7654458212e9e4118
7c147bf9a987b5ce47b889e8d899663c8daf1425eb79a5aca21b9b9c463adb1d
GET /common.js HTTP/1.1
Host: www.4565ruffner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.4565ruffner.com/data/win.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Jun 2023 21:00:54 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.4565ruffner.com/tj.js
104.148.44.18200 OK 258 B URL GET HTTP/1.1 www.4565ruffner.com/tj.js
IP 104.148.44.18:80
Requested by http://www.4565ruffner.com/data/win.exe
File type ASCII text, with CRLF line terminators
Hash c10f2d8c646224bae05d733b39f1ccf9
2bd8145ae9c71510d69eb402120321e0d128461b
3ecfc841d3296917fa0c4386dde7a251522e4ac7c2c58af8a2b28f02c181ed77
GET /tj.js HTTP/1.1
Host: www.4565ruffner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.4565ruffner.com/data/win.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Jun 2023 21:00:54 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.4565ruffner.com/favicon.ico
104.148.44.18200 OK 1.2 kB URL GET HTTP/1.1 www.4565ruffner.com/favicon.ico
IP 104.148.44.18:80
Requested by http://www.4565ruffner.com/data/win.exe
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.4565ruffner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.4565ruffner.com/data/win.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Jun 2023 21:00:55 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Tue, 06 Jun 2023 21:00:55 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 9c320af7047f9368e0536de66d6d2658
2cdb5bfd4bb4ddf85559ff29d06ed964e04119ab
64bb80bd8947d7d658ce8f20fc2bebab85d391bf2baa953c67201ebd194cd1b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 21:03:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
z4a.net/images/2023/04/22/960x240.gif
104.21.234.235200 OK 2.8 MB URL GET HTTP/2 z4a.net/images/2023/04/22/960x240.gif
IP 104.21.234.235:443
Certificate IssuerGoogle Trust Services LLC
Subjectz4a.net
FingerprintB5:5E:DB:E5:77:14:50:B5:73:54:43:73:76:D4:A6:82:96:30:B0:B1
ValiditySat, 06 May 2023 01:04:20 GMT - Fri, 04 Aug 2023 01:04:19 GMT
File type GIF image data, version 89a, 960 x 240\012- data
Size 2.8 MB (2755432 bytes)
Hash fda97bb82b62484d80cbfaa406e8e79a
836771a0ab374abf79c2d06d03adac6e370b731b
2be06f7736456150ef582dc6b11a37b73a1caad6efa282d26d0e9f1a7a390856
GET /images/2023/04/22/960x240.gif HTTP/1.1
Host: z4a.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 21:03:55 GMT
content-type: image/gif
content-length: 2755432
expires: Tue, 23 Apr 2024 11:00:51 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 3319384
last-modified: Mon, 24 Apr 2023 11:00:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y3YFi6xMvdVkxIqCQc5CfzNb%2FDKSE2Q89e47eNaZUOy6omdDM5tsH9f0yMvFYwDkCKP1RicWS3LLLcHW1nU3dBOjCM3sdGGZo3b0hb18GNdsB6sxNriuzu%2Fu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d0a67f68c3623ee-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-QNVJLBJEJR
142.250.74.72200 OK 88 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-QNVJLBJEJR
IP 142.250.74.72:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (5858)
Hash 35e331b3d5b28b2de505917c7630a652
cc0485a95b2f7d11dd00c4e2a0ecef7809ad94e8
0e10ac785a6d36b385d8a02605cac93c73e6bd8daf899bf6b85a25dc8d9bef5f
GET /gtag/js?id=G-QNVJLBJEJR HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Jun 2023 21:03:56 GMT
expires: Thu, 01 Jun 2023 21:03:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87805
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dvcasha2.ocsp-certum.com/
95.101.10.107 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 8896a9adf3332b78f525a0f0d9e66fba
572bb58713c90f2d6a050564fc0d05acfa177f85
aad81291d21d4c9cb95dc5388acba32c0772193094327ee3b68a13429273182e
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=884
Date: Thu, 01 Jun 2023 21:03:56 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.193 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 95.101.10.193:0
ASN #20940 Akamai International B.V.
Hash 3608659b140914b5a7e43f76ac23cf4a
9f267a7925ffcb8fe8dd5e10fd462d8bbe958ce8
7eab8dfc8d79036e33a8de1092167ec2380c89f1e98778369218a3d4ab1e0796
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Thu, 01 Jun 2023 21:03:56 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.107 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 8896a9adf3332b78f525a0f0d9e66fba
572bb58713c90f2d6a050564fc0d05acfa177f85
aad81291d21d4c9cb95dc5388acba32c0772193094327ee3b68a13429273182e
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=884
Date: Thu, 01 Jun 2023 21:03:56 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
95.101.10.107 1.6 kB URL dvcasha2.ocsp-certum.com/
IP 95.101.10.107:0
ASN #20940 Akamai International B.V.
Hash 8896a9adf3332b78f525a0f0d9e66fba
572bb58713c90f2d6a050564fc0d05acfa177f85
aad81291d21d4c9cb95dc5388acba32c0772193094327ee3b68a13429273182e
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=874
Date: Thu, 01 Jun 2023 21:03:56 GMT
Connection: keep-alive
X-N: S
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 9c320af7047f9368e0536de66d6d2658
2cdb5bfd4bb4ddf85559ff29d06ed964e04119ab
64bb80bd8947d7d658ce8f20fc2bebab85d391bf2baa953c67201ebd194cd1b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 21:03:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/962598cd-a5c9-442c-2fbb-dfe4bf3a8300/public
104.18.3.36200 OK 13 kB URL GET HTTP/2 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/962598cd-a5c9-442c-2fbb-dfe4bf3a8300/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 64a93730fc24afd79f163c32be15a80f
ee4360d90ef4fa329880f306e7044e5d6ff3df8b
1a8aaaaaf060d77bdad28102a45cf4e00a89ebb3f6b20819561b127fc1a38238
GET /PZ5Nnb5z4TfMFnFORJSOeg/962598cd-a5c9-442c-2fbb-dfe4bf3a8300/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 13358
cf-ray: 7d0a67f9def4067b-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cf5raKIz-PdjIGaoivrJD3ufCWfb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=976+178 c=0+0 v=2023.4.2 l=13358
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/app1.js
23.225.154.53200 OK 988 B URL GET HTTP/2 x1.linggou.xyz/template/web/app1.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document, Unicode text, UTF-8 text
Hash e09811fdf6506df74e58b015b14e9ec4
22cbc62de997b544579f5880ea8dfc77b201065c
df9c69cb5c2ea8b6abaae48c06173f777448ad032ba0903ad83fd1b221a71968
GET /template/web/app1.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
content-length: 988
last-modified: Thu, 01 Jun 2023 11:32:11 GMT
etag: "647881bb-3dc"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/app2.js
23.225.154.53200 OK 1.0 kB URL GET HTTP/2 x1.linggou.xyz/template/web/app2.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document, Unicode text, UTF-8 text
Hash a20a06084872f4245bfd984e8493d280
14f418c322e0b4bd45f0770cdce79d96a6b21a6a
e1e89fefd4c1b75a31e8f44448e3c6c46698dd5b075a5dcf5667019cf21e2e1c
GET /template/web/app2.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
content-length: 1009
last-modified: Thu, 01 Jun 2023 12:47:17 GMT
etag: "64789355-3f1"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/app3.js
23.225.154.53200 OK 965 B URL GET HTTP/2 x1.linggou.xyz/template/web/app3.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document, Unicode text, UTF-8 text
Hash 7c1a0a07dfe92092bfdffeb469ecf2da
2865abf6d47736094cb014c3ec053d1dead00a33
85f413d9a3e95ef309b50927ecc838372baa17525a378d49a7edb2e365e53fd9
GET /template/web/app3.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
content-length: 965
last-modified: Thu, 01 Jun 2023 12:47:41 GMT
etag: "6478936d-3c5"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/app4.js
23.225.154.53200 OK 970 B URL GET HTTP/2 x1.linggou.xyz/template/web/app4.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document, Unicode text, UTF-8 text
Hash a2c2865195ce36ddba90d3d0f3285046
200fb5701069a57b933625b7256bb274f284554c
f43c11ecb88fa431463591d38d0e34ecf0e048fb80223085afcfb693c42cd69c
GET /template/web/app4.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
content-length: 970
last-modified: Thu, 01 Jun 2023 11:33:42 GMT
etag: "64788216-3ca"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/app5.js
23.225.154.53200 OK 995 B URL GET HTTP/2 x1.linggou.xyz/template/web/app5.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document, Unicode text, UTF-8 text
Hash 3be10d8d10ee41102468f81d7a9a6e74
cb4499f96c87a3148ed5dc5412264115be171026
8be2eb81c5244796238a52f668d5f60a5f84e42b93a23864101358161bad83fc
GET /template/web/app5.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
content-length: 995
last-modified: Thu, 01 Jun 2023 11:33:57 GMT
etag: "64788225-3e3"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.jsjsjs.xyz/happy/newyear/kongkong/960x60ns.gif
104.21.63.42200 OK 406 kB URL GET HTTP/2 cdn.jsjsjs.xyz/happy/newyear/kongkong/960x60ns.gif
IP 104.21.63.42:443
Certificate IssuerGoogle Trust Services LLC
Subjectcdn.jsjsjs.xyz
Fingerprint04:AC:34:FB:2F:3C:02:A4:09:ED:EE:13:EB:C1:CC:DD:D0:98:F3:47
ValidityWed, 24 May 2023 00:04:11 GMT - Tue, 22 Aug 2023 00:04:10 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 406 kB (406419 bytes)
Hash 91949a67089d61d1c111d50f6e101660
fab540d8a71b28159836bf995e398a9569314e47
35ede3c11832a2e4f6562a484535420d010601981e3b07fdc271f160b0a81507
GET /happy/newyear/kongkong/960x60ns.gif HTTP/1.1
Host: cdn.jsjsjs.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/gif
content-length: 406419
last-modified: Wed, 16 Feb 2022 13:39:39 GMT
etag: "620cfe9b-63393"
expires: Fri, 02 Jun 2023 11:02:55 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 2541661
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CugS3%2FYJj3lfP%2F47%2BBF85i0z2GWORwZ5dFGYYgsxrSK6WydVnuBJpKa2zfx2Hjq0jBIC5QA3UoECZRScuW8LQtBgoSrZ3dCzkCCnJwXMxH4GisKWAGaZbnrYGllVhcCW6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0a67fa9fdcb527-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/GG/xx7.gif
23.225.154.53200 OK 360 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/xx7.gif
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type GIF image data, version 89a, 960 x 120\012- data
Size 360 kB (359977 bytes)
Hash 14950db3ed3afbd5ed56e866a5f42fcb
6872ddf2a12966c6a69eaffff2bf807034168ba7
2f9b3f10f9691fadd60822c131a5ce89679f0ce97792e90863d51320e1845e97
GET /template/web/GG/xx7.gif HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: image/gif
content-length: 359977
last-modified: Sat, 19 Nov 2022 12:26:52 GMT
etag: "6378cb8c-57e29"
expires: Sat, 01 Jul 2023 21:01:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/GG/x.jpg
23.225.154.53200 OK 9.2 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/x.jpg
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /template/web/GG/x.jpg HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: image/jpeg
content-length: 9166
last-modified: Thu, 02 Jun 2022 15:47:42 GMT
etag: "6298db9e-23ce"
expires: Sat, 01 Jul 2023 21:01:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/GG/ypao.gif
23.225.154.53200 OK 73 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/ypao.gif
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type GIF image data, version 89a, 150 x 150\012- data
Hash a60193fc87ef9e76f55b504b1fbe4951
262b3c0d0a4b453ae75f1c4f648ad862348ab017
83af4402e7893b4d70082d712ba09952e16aea516d2bdab9d234877c099a142d
GET /template/web/GG/ypao.gif HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: image/gif
content-length: 73243
last-modified: Thu, 02 Jun 2022 15:47:43 GMT
etag: "6298db9f-11e1b"
expires: Sat, 01 Jul 2023 21:01:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
23.225.154.53404 Not Found 146 B URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/meizhuama/fonts/1e500f419c3a4f24a89cb2dddf17de88.woff HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/db56bf41-b5ba-4312-1f3b-02600da4df00/public
104.18.3.36200 OK 28 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/db56bf41-b5ba-4312-1f3b-02600da4df00/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 563b5167050b00aa961020f1b36f6a13
935f5843f264f461ae1ad8f20c20693acfa07328
01f7a644e8c3fa1d81c221f70e58589d109a6cff40ec0573d386b9c218eaa976
GET /PZ5Nnb5z4TfMFnFORJSOeg/db56bf41-b5ba-4312-1f3b-02600da4df00/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 27598
cf-ray: 7d0a67fc2d431c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
etag: "cfHl48yvK3nZNVpjAE2CG2ukWrfb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=477+0 c=2+18 v=2023.1.3 l=27598
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20230601/070DAC04DEDF89A2/070DAC04DEDF89A2.jpg
109.122.211.43200 OK 71 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/070DAC04DEDF89A2/070DAC04DEDF89A2.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 5bd224b2cf580f3606db34b89e539fc4
70d8e070330dc95d7f0f35f05a7a07978671c6a3
383ab06fe35f61735e3fa0c4b13d9ba5496b40a74f23cbb41b533034c0babf3c
GET /20230601/070DAC04DEDF89A2/070DAC04DEDF89A2.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 71380
last-modified: Thu, 23 Mar 2023 11:19:35 GMT
etag: "641c35c7-116d4"
expires: Fri, 30 Jun 2023 16:20:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/0561da70-f3e1-46c1-1771-6dd535d1e000/public
104.18.3.36200 OK 178 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/0561da70-f3e1-46c1-1771-6dd535d1e000/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 178 kB (177728 bytes)
Hash 928001e29add77bdcd05244dfe5f0d0e
161b5ef95b91edf079e26c4e17a867fcb110f787
de875a5189049e80856a8ad9965f7f2af29fda5e4b9bca3086b28332cf15eb77
GET /PZ5Nnb5z4TfMFnFORJSOeg/0561da70-f3e1-46c1-1771-6dd535d1e000/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 177728
cf-ray: 7d0a67fc2d401c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfOeGhHVxpMPgPBbvPYEtkFf0ufb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=19+245 c=0+0 v=2023.4.2 l=177728
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/077abf50-8719-4134-6cc2-2cac014b1200/public
104.18.3.36200 OK 33 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/077abf50-8719-4134-6cc2-2cac014b1200/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1bdd4d19970a45f247643de8a2b67a57
7fefaeea07bf0521c6f72031f3d0da31222e873d
495247dbea230c97e4b4d36df784e503f19ca4359df24372e33ead291226c7b3
GET /PZ5Nnb5z4TfMFnFORJSOeg/077abf50-8719-4134-6cc2-2cac014b1200/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 33108
cf-ray: 7d0a67fc1d281c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cf5TNuosIll6Kfaoe5BMwxjBz4fb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=848+76 c=1+16 v=2023.3.2 l=33108
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
gif.xjabre.net/GIF/GG.gif
23.225.154.52200 OK 103 kB URL GET HTTP/2 gif.xjabre.net/GIF/GG.gif
IP 23.225.154.52:443
Certificate IssuerLet's Encrypt
Subjectgif.xjabre.net
Fingerprint17:1D:EE:BA:4A:26:1E:C6:7F:52:59:C3:8A:95:FA:93:E0:BF:3D:88
ValiditySat, 15 Apr 2023 15:04:17 GMT - Fri, 14 Jul 2023 15:04:16 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 103 kB (102652 bytes)
Hash 4ea87bf064b6a321a25be03966f1fe52
950e88121e18e47880340351cd8b435ef009dd16
1d1efeb6b9857e9d7ea6ec4c94154c0a61b3bcf9251108fe527adec84fbde332
GET /GIF/GG.gif HTTP/1.1
Host: gif.xjabre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: image/gif
content-length: 102652
last-modified: Tue, 15 Nov 2022 06:13:56 GMT
etag: "63732e24-190fc"
expires: Sat, 01 Jul 2023 21:01:48 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/C1EFE9498505FF66/C1EFE9498505FF66.jpg
109.122.211.43200 OK 33 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/C1EFE9498505FF66/C1EFE9498505FF66.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash c708c3509b95c0e066eda71b08c4da35
7de97e4a61d23e7da583a4f7bce618ff83317776
bd957b20e6bfee3c4f2362df1d1799c518cd934812f698c73807affa5bb910b6
GET /20230601/C1EFE9498505FF66/C1EFE9498505FF66.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 33272
last-modified: Sun, 12 Mar 2023 14:37:36 GMT
etag: "640de3b0-81f8"
expires: Fri, 30 Jun 2023 16:21:08 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/25b65e6c-d8c9-461c-ae8c-129adc09a400/public
104.18.3.36200 OK 424 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/25b65e6c-d8c9-461c-ae8c-129adc09a400/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 424 kB (423700 bytes)
Hash bce797c959a9c7498cdb65db29db36a9
3beba5200b69203f09f935df3f09dd93da2688a1
28b80b6297b3fe959ea06bea745a887b61ad06c471d194fa056ba4d68b17a3ad
GET /PZ5Nnb5z4TfMFnFORJSOeg/25b65e6c-d8c9-461c-ae8c-129adc09a400/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 423700
cf-ray: 7d0a67fc2d3a1c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfGhStahWYAid_xbNfQZFffhHHfb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=940+184 c=0+0 v=2023.3.5 l=423700
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/3f0957c0-5294-4ee3-6e9c-814a3b345000/public
104.18.3.36200 OK 375 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/3f0957c0-5294-4ee3-6e9c-814a3b345000/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 375 kB (374632 bytes)
Hash d63a3555e5be6447fee4b71ab41cb4e8
3899a39cd51df5c53160038da28dcf48dd1433ac
46c1fc7c0d09d2e2490190550fde2fc5b525065d5f5bcff8ca5b218eff3a19ff
GET /PZ5Nnb5z4TfMFnFORJSOeg/3f0957c0-5294-4ee3-6e9c-814a3b345000/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 374632
cf-ray: 7d0a67fc2d3e1c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cf7NPAYhs3yfOrI7U9r9g3D4wmfb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=21+255 c=0+0 v=2023.4.2 l=374632
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/a3ba936d-6129-462c-4def-2918ff4fa400/public
104.18.3.36200 OK 322 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/a3ba936d-6129-462c-4def-2918ff4fa400/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 322 kB (322258 bytes)
Hash 5480c7fb7119c3a7338594817d14ac7c
ff1dd9717282f255b89e3d36c929f9ad0624b3e8
6e70cf679430dec757558d145628e0f98f35a0245746b328342c46464837c8c9
GET /PZ5Nnb5z4TfMFnFORJSOeg/a3ba936d-6129-462c-4def-2918ff4fa400/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 322258
cf-ray: 7d0a67fc2d3c1c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfLnot9Fn1uTmBSEoy0Kna27d5fb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=858+173 c=0+0 v=2023.4.0 l=322258
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/7a51123e-7617-485a-9d78-9e9f73874700/public
104.18.3.36200 OK 504 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/7a51123e-7617-485a-9d78-9e9f73874700/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 504 kB (504108 bytes)
Hash 35b7af93c335d22a4c06dd6095b8639b
bbddde4426a9c1ac8bd31c10d25efb7d8d86a6eb
21a4daa2df9992043835fc0d577a9e2409d03a8533c315218debaa8235d0a9f7
GET /PZ5Nnb5z4TfMFnFORJSOeg/7a51123e-7617-485a-9d78-9e9f73874700/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 504108
cf-ray: 7d0a67fc2d441c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfRKuKfZC5-BSWZZpDJCyN8odHfb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=862+167 c=0+0 v=2023.5.0 l=504108
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/bb83b3c4-440f-4cf8-9b48-862b0d393a00/public
104.18.3.36200 OK 804 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/bb83b3c4-440f-4cf8-9b48-862b0d393a00/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 804 kB (803788 bytes)
Hash 87d94a746164e73df553f2d1a92ebb40
8a04cb8f923367453b77415f3a31d640d9e4128f
2b70b6312d229b98ba9b7d3b35a3d68619e3247694deeb313f33fe525f9579a0
GET /PZ5Nnb5z4TfMFnFORJSOeg/bb83b3c4-440f-4cf8-9b48-862b0d393a00/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 803788
cf-ray: 7d0a67fc2d451c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfODn44PiZEjmlREkSsNcP6IgHfb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=30+409 c=0+0 v=2023.4.2 l=803788
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/22db99f8-1ae6-4198-e408-869ae66b0800/public
104.18.3.36200 OK 35 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/22db99f8-1ae6-4198-e408-869ae66b0800/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 89e964fda7a9d28830a9cf53783c4f50
1fdbb1ef2ee3376304df62689f227d65911572b1
39cd6537f146c4d40cb99f99ed45db1ab61c60acaa18f72e6c9b7021de5f24eb
GET /PZ5Nnb5z4TfMFnFORJSOeg/22db99f8-1ae6-4198-e408-869ae66b0800/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 34966
cf-ray: 7d0a67fc2d471c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfqSR1IvP8P-wsz3yCyLwsz3h8fb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=683+205 c=0+0 v=2023.4.2 l=34966
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/3c2ce33c-e366-4505-d413-ae482bd8b800/public
104.18.3.36200 OK 112 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/3c2ce33c-e366-4505-d413-ae482bd8b800/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 112 kB (112250 bytes)
Hash 8357aa9c4112833da37eafa640d7cc3d
9df6a85236bfb422cad16fe0cbfde39ccd840bfc
c2a60c046e3f86a18d82822b8c9ea94ac7d6c4ebcd0c525f072c00ffeee81d66
GET /PZ5Nnb5z4TfMFnFORJSOeg/3c2ce33c-e366-4505-d413-ae482bd8b800/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 112250
cf-ray: 7d0a67fc2d481c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
etag: "cfylgsCKNc0jm5UOBpgif6hdL1fb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=22+215 c=0+0 v=2023.2.1 l=112250
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/a8ea5bed-9e2b-4cd0-32aa-7261ec438b00/public
104.18.3.36200 OK 3.8 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/a8ea5bed-9e2b-4cd0-32aa-7261ec438b00/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type ISO Media, AVIF Image\012- data
Hash 7fdf1d185c0d02be19d5baa6fce9d8fd
6ad40331c6e8fea5517f17fd852573adaf9a8acf
13c79c73b1a0fc93ef09fed47ae0a9509ba046e5df6a47d7cbd46a1ce0ea2268
GET /PZ5Nnb5z4TfMFnFORJSOeg/a8ea5bed-9e2b-4cd0-32aa-7261ec438b00/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/avif
content-length: 3781
cf-ray: 7d0a67fc2d4b1c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cffFv9FZTCzggrYDykKxSFLiXKfb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=30+0 c=0+227 v=2023.4.2 l=3781
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
x1.linggou.xyz/template/web/xx3.js
23.225.154.53200 OK 197 kB URL GET HTTP/2 x1.linggou.xyz/template/web/xx3.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type gzip compressed data, from Unix\012- data
Size 197 kB (197267 bytes)
Hash 9b496ebc1b6d352f63575fe573eaea50
e8467ef27d624356d8a80fa4f4d4ffe57b71d1f4
03a572498fb705ed47f5e2b3bca04108bc28d7fd35a57d82a070d3fe936d5446
GET /template/web/xx3.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
last-modified: Wed, 31 May 2023 08:39:12 GMT
vary: Accept-Encoding
etag: W/"647707b0-63b"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/e0921234-c4a9-4c2c-e9f8-9edc9c41ee00/public
104.18.3.36200 OK 5.8 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/e0921234-c4a9-4c2c-e9f8-9edc9c41ee00/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type ISO Media, AVIF Image\012- data
Hash 9ea0e36e7958e22b4e07b2ea474f07fe
db78d6b0c3d3f0eb3ade5ea83ffe1149dcdd36d4
3539661e1c292b413623dede10bfa00e4754c9a93018242d29011565f474262a
GET /PZ5Nnb5z4TfMFnFORJSOeg/e0921234-c4a9-4c2c-e9f8-9edc9c41ee00/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/avif
content-length: 5760
cf-ray: 7d0a67fc2d501c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cf_h4xif-eJHbyMHpkLNIY5i53fb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=442+134 c=0+0 v=2023.3.5 l=5760
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
pic1.semaobf1.com/20230404/D0036735E16B31BC/D0036735E16B31BC.jpg
109.122.211.43200 OK 5.4 kB URL GET HTTP/2 pic1.semaobf1.com/20230404/D0036735E16B31BC/D0036735E16B31BC.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 303x536, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f9ffcbbbb89ae71dcf8794af98951ba9
7f0793071289e5639a5c682d0f1d78582a931461
ffa251f1569888a6b1f3e37263d9302c5a1c8d6b8c87b461981fa30a80b9e7ec
GET /20230404/D0036735E16B31BC/D0036735E16B31BC.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 5355
last-modified: Tue, 04 Apr 2023 01:06:12 GMT
etag: "642b7804-14eb"
expires: Fri, 02 Jun 2023 12:30:29 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230404/36A0C909A96BD692/36A0C909A96BD692.jpg
109.122.211.43200 OK 6.7 kB URL GET HTTP/2 pic1.semaobf1.com/20230404/36A0C909A96BD692/36A0C909A96BD692.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash feaa4d43a28b7ce9fbbc68aeeb5214f8
09555881adf5da80a74fe74e9b92aef9c107e389
49ade89bdd1ea50f3f6c365cd261cf20ca5dcea14b58b6e127bbe1abd29d9c49
GET /20230404/36A0C909A96BD692/36A0C909A96BD692.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 6713
last-modified: Mon, 03 Apr 2023 23:48:18 GMT
etag: "642b65c2-1a39"
expires: Fri, 02 Jun 2023 12:31:39 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230404/7EFB7F22B88DCCB0/7EFB7F22B88DCCB0.jpg
109.122.211.43200 OK 6.1 kB URL GET HTTP/2 pic1.semaobf1.com/20230404/7EFB7F22B88DCCB0/7EFB7F22B88DCCB0.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b2f06480ed6f2cd83afdb133d5a8f2d0
403337b1203e7ef4abd26700413f84adfc32546a
14cf751010f01d475c70383499fa2f10d982ac6f1cd93a73fef9b6cdec5215be
GET /20230404/7EFB7F22B88DCCB0/7EFB7F22B88DCCB0.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 6096
last-modified: Mon, 03 Apr 2023 23:44:36 GMT
etag: "642b64e4-17d0"
expires: Fri, 02 Jun 2023 12:30:07 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230404/118D5210A6ADB7A6/118D5210A6ADB7A6.jpg
109.122.211.43200 OK 14 kB URL GET HTTP/2 pic1.semaobf1.com/20230404/118D5210A6ADB7A6/118D5210A6ADB7A6.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 35x34, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 25a6bf533346ed753b2b6e82bc2b4864
8cec39f4d6d83e7b812c53f19c35cc158ee43943
93672c104b067fcbd7beba6286a1e877961abbe80a4f7945288808a346e8897f
GET /20230404/118D5210A6ADB7A6/118D5210A6ADB7A6.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 13587
last-modified: Tue, 04 Apr 2023 00:51:05 GMT
etag: "642b7479-3513"
expires: Fri, 02 Jun 2023 12:31:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230404/EC8855961CB6C8E5/EC8855961CB6C8E5.jpg
109.122.211.43200 OK 8.3 kB URL GET HTTP/2 pic1.semaobf1.com/20230404/EC8855961CB6C8E5/EC8855961CB6C8E5.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3322d12722098fd36a0e67564c22dad2
d580fb6ac6a62cfbc8f5e26e307f332670733ac4
77d709038bc8a6c653ecccab60182f1727691bd40bd8a2f6d3f4190dbf59deba
GET /20230404/EC8855961CB6C8E5/EC8855961CB6C8E5.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 8299
last-modified: Tue, 04 Apr 2023 00:51:20 GMT
etag: "642b7488-206b"
expires: Fri, 02 Jun 2023 12:30:17 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/GG/4.gif
23.225.154.53200 OK 279 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/4.gif
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type GIF image data, version 89a, 200 x 113\012- data
Size 279 kB (279026 bytes)
Hash 42809e0a73309f01de7651ab3b712cb4
19a1658a10d4e8ca6831a824d4bccbb35dcbf113
da7e1e1332d196cde6cc3a7b9c758abb4493e9708799e7836551823dd399b13d
GET /template/web/GG/4.gif HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:49 GMT
content-type: image/gif
content-length: 279026
last-modified: Wed, 11 May 2022 08:12:44 GMT
etag: "627b6ffc-441f2"
expires: Sat, 01 Jul 2023 21:01:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230403/79F437421D2FECFC/79F437421D2FECFC.jpg
109.122.211.43200 OK 9.4 kB URL GET HTTP/2 pic1.semaobf1.com/20230403/79F437421D2FECFC/79F437421D2FECFC.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 9x16, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 784ad771e0bb0ca9c7c5dea9e4f64304
fdd5d5bcfec77646c7bd405d2b319578922d244a
19760e3cf30bbb15d795db6ad52edf09f277021ad071efe57749778fe93b5fb6
GET /20230403/79F437421D2FECFC/79F437421D2FECFC.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 9357
last-modified: Sun, 02 Apr 2023 20:27:26 GMT
etag: "6429e52e-248d"
expires: Sat, 01 Jul 2023 11:15:03 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230403/52FA21919B5A50EF/52FA21919B5A50EF.jpg
109.122.211.43200 OK 12 kB URL GET HTTP/2 pic1.semaobf1.com/20230403/52FA21919B5A50EF/52FA21919B5A50EF.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 107x80, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash af85b00b01f0f24df786950dd621ca0f
264a71de049f78ea5c215fbde594eb64d21bb4ee
ce21cad0911495ee8bc29efea968ac9402a69a804c0ae418cb9d2399eb2035f3
GET /20230403/52FA21919B5A50EF/52FA21919B5A50EF.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 11632
last-modified: Sun, 02 Apr 2023 20:48:40 GMT
etag: "6429ea28-2d70"
expires: Sat, 01 Jul 2023 11:15:03 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230401/667AD72C1EE7C852/667AD72C1EE7C852.jpg
109.122.211.43200 OK 8.6 kB URL GET HTTP/2 pic1.semaobf1.com/20230401/667AD72C1EE7C852/667AD72C1EE7C852.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 300a6a7913cdd8a214aea6a1ac86f701
4c561e58ab78add881a8ec22835f7ed10bb042bf
f69cdea43e6b035e3d4407b48c10837f0322ab4e077d1deb6bc95274cd3341f8
GET /20230401/667AD72C1EE7C852/667AD72C1EE7C852.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 8571
last-modified: Sat, 01 Apr 2023 12:19:15 GMT
etag: "64282143-217b"
expires: Fri, 30 Jun 2023 01:16:38 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/EFA26BF530C218EE/EFA26BF530C218EE.jpg
109.122.211.43200 OK 53 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/EFA26BF530C218EE/EFA26BF530C218EE.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash d6aa28e9fd09e8813df12b279d860755
f7d60617c1cc91146a3d1213403b98af98222e14
4cd1f4c9b35f5599ee7e1f386c86017f59794bca504d5447297af55995adcfbd
GET /20230601/EFA26BF530C218EE/EFA26BF530C218EE.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 52731
last-modified: Fri, 24 Feb 2023 12:42:07 GMT
etag: "63f8b09f-cdfb"
expires: Fri, 30 Jun 2023 16:23:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/GG/55.gif
23.225.154.53200 OK 834 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/55.gif
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type GIF image data, version 89a, 140 x 206\012- data
Size 834 kB (834244 bytes)
Hash 3965598665b057b276ed86263c36f334
f8374496c56ad6cd140a9bd009b0637c8ce91a35
5efcea93fd0c2cb8059ea79144c6bfb6b094b5810e21cf6e2168ef51ac2fd36a
GET /template/web/GG/55.gif HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:49 GMT
content-type: image/gif
content-length: 834244
last-modified: Wed, 11 May 2022 08:28:17 GMT
etag: "627b73a1-cbac4"
expires: Sat, 01 Jul 2023 21:01:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/0A97508312628E33/0A97508312628E33.jpg
109.122.211.43200 OK 45 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/0A97508312628E33/0A97508312628E33.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 18fac3522da4842770a6c75432fe6b0f
f84cabd4641ef1e1d2f82533683d7b0045b15d1e
6948e6d030a2dce8ce34029df0a58b9f3d58421a350ce30e39eb8eba1169503b
GET /20230601/0A97508312628E33/0A97508312628E33.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 44987
last-modified: Fri, 24 Feb 2023 12:43:05 GMT
etag: "63f8b0d9-afbb"
expires: Fri, 30 Jun 2023 16:23:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/0C4F45576B1CC39D/0C4F45576B1CC39D.jpg
109.122.211.43200 OK 38 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/0C4F45576B1CC39D/0C4F45576B1CC39D.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 3b0a0ee8205fba73c77bc684970527e8
66b4c61867c08c8248ae6aedc54f8804a0adc852
51a05d4d704ee49e61e228665da5669a427296697bcc6aabb255374aa221ed7c
GET /20230601/0C4F45576B1CC39D/0C4F45576B1CC39D.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 37621
last-modified: Fri, 24 Feb 2023 12:39:53 GMT
etag: "63f8b019-92f5"
expires: Fri, 30 Jun 2023 16:20:37 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/BA1AFE5BFCE34B0B/BA1AFE5BFCE34B0B.jpg
109.122.211.43200 OK 41 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/BA1AFE5BFCE34B0B/BA1AFE5BFCE34B0B.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 9323463cc050e75b260eee1f10e12edc
ae55dcf990cc19eb45971439310709f4274a8ecf
6c64d483ed0da27ce19b410b01b3797138d99bde5cfceb51903090cea44ec775
GET /20230601/BA1AFE5BFCE34B0B/BA1AFE5BFCE34B0B.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 41037
last-modified: Fri, 24 Feb 2023 12:43:34 GMT
etag: "63f8b0f6-a04d"
expires: Fri, 30 Jun 2023 16:22:21 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/30DFF4207A5AE855/30DFF4207A5AE855.jpg
109.122.211.43200 OK 35 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/30DFF4207A5AE855/30DFF4207A5AE855.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 062eed523ae3aa99e757e3eee10d0bf1
dd5160a1fd04ed38b8dfe2a26e011452c858dd49
0561634a856ca23ddbbf77fbff9a43e390ff99754d7d6671e169114785252953
GET /20230601/30DFF4207A5AE855/30DFF4207A5AE855.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 35033
last-modified: Fri, 24 Feb 2023 12:41:13 GMT
etag: "63f8b069-88d9"
expires: Fri, 30 Jun 2023 16:22:21 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/53978BBA0493542C/53978BBA0493542C.jpg
109.122.211.43200 OK 43 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/53978BBA0493542C/53978BBA0493542C.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 98161a0040dfabd34c73e2b33b76f5f9
21cbdb1cf7d8df171aa7177479ddda7e22c5ba22
d4bae662fd87a93de3005e39306cc38be53eb679e03478e30e88eb43fb989bba
GET /20230601/53978BBA0493542C/53978BBA0493542C.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 42916
last-modified: Fri, 24 Feb 2023 12:44:02 GMT
etag: "63f8b112-a7a4"
expires: Fri, 30 Jun 2023 16:23:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/images/video-play.png
23.225.154.53200 OK 1.6 kB URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/images/video-play.png
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/meizhuama/images/video-play.png HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:49 GMT
content-type: image/png
content-length: 1567
last-modified: Sun, 06 Mar 2022 14:17:50 GMT
etag: "6224c28e-61f"
expires: Sat, 01 Jul 2023 21:01:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/3B0335C9B1336052/3B0335C9B1336052.jpg
109.122.211.43200 OK 48 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/3B0335C9B1336052/3B0335C9B1336052.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash af2290ec00cd129f6c5f729bde06757a
bf32afe4eded8f209c07150cb69f2569bea97a86
060374e3f61f5a310d3c7622e66d0236087527496c3ae70f537d50a763ddca32
GET /20230601/3B0335C9B1336052/3B0335C9B1336052.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 47742
last-modified: Fri, 24 Feb 2023 12:41:40 GMT
etag: "63f8b084-ba7e"
expires: Fri, 30 Jun 2023 16:23:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/fonts/iconfont.woff
23.225.154.53200 OK 525 B URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/fonts/iconfont.woff
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/meizhuama/fonts/iconfont.woff HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:49 GMT
content-type: font/woff
content-length: 525
last-modified: Sun, 06 Mar 2022 14:12:36 GMT
etag: "6224c154-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/C9A3F16D3ED71007/C9A3F16D3ED71007.jpg
109.122.211.43200 OK 35 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/C9A3F16D3ED71007/C9A3F16D3ED71007.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 75e8c6ebf7ebca29616b545707a4bf8a
3590fbc08bdc12a1854474fc08a1260cc8f83e8e
63d80fd17c8363129aa2ae427d84a305570cdb44e3c9526c9a6cfc1f6fcb7007
GET /20230601/C9A3F16D3ED71007/C9A3F16D3ED71007.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 34681
last-modified: Fri, 24 Feb 2023 12:45:25 GMT
etag: "63f8b165-8779"
expires: Fri, 30 Jun 2023 16:22:52 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/8031320D9550AD51/8031320D9550AD51.jpg
109.122.211.43200 OK 57 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/8031320D9550AD51/8031320D9550AD51.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 3775d9bab4032f0fdacae0c7d4c0b428
8b1320215b065b6aa9e3be82a404bff8c0cbacaa
2591305abc68da0847c00de73f9790c5e2023501068954bbcf8f0e87b1e8daeb
GET /20230601/8031320D9550AD51/8031320D9550AD51.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 57219
last-modified: Sat, 11 Mar 2023 20:47:35 GMT
etag: "640ce8e7-df83"
expires: Fri, 30 Jun 2023 16:23:28 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/788B0767E8EE62BC/788B0767E8EE62BC.jpg
109.122.211.43200 OK 41 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/788B0767E8EE62BC/788B0767E8EE62BC.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash c08e7bde6436305f10009e3f4189bbb4
ed8e5fb2bd2a2b7a0416abaa2c88e88323ad3fda
df74b426458e9af0e7a2f420b680f93cb7a9a9bbe2a49ab39f8cc1f0b6ff1767
GET /20230601/788B0767E8EE62BC/788B0767E8EE62BC.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 41390
last-modified: Sun, 12 Mar 2023 12:42:31 GMT
etag: "640dc8b7-a1ae"
expires: Fri, 30 Jun 2023 16:20:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/F4AF2B315BFD01A5/F4AF2B315BFD01A5.jpg
109.122.211.43200 OK 50 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/F4AF2B315BFD01A5/F4AF2B315BFD01A5.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 3efbf974563b5dbaff07b8695e677cba
ea6e2435849ff87945a6c9fa38bb956dd29d02ec
df4a7847cd0478cddc71a344daa922ce0af47597136c32af3a7b9a17e24cd3c6
GET /20230601/F4AF2B315BFD01A5/F4AF2B315BFD01A5.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 50095
last-modified: Tue, 07 Mar 2023 00:10:31 GMT
etag: "640680f7-c3af"
expires: Fri, 30 Jun 2023 16:24:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/05DHG4T1/sp-4.jpg
162.19.88.69200 OK 39 kB URL GET HTTP/2 i.postimg.cc/05DHG4T1/sp-4.jpg
IP 162.19.88.69:443
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 744x420, components 3\012- data
Hash 1a65b98fe4446dc396454287febb58b7
4991403bd38d5d8b0d162eb09440892a1fa96496
58e6ca54be95c85371f336394c80b2e1afda8b9145964e9cb0bee61a8783b284
GET /05DHG4T1/sp-4.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/jpeg
content-length: 38909
last-modified: Mon, 09 Jan 2023 13:11:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/CLpXW0GK/sp-1.gif'
162.19.88.69301 Moved Permanently 162 B URL GET HTTP/2 i.postimg.cc/CLpXW0GK/sp-1.gif'
IP 162.19.88.69:443
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /CLpXW0GK/sp-1.gif' HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: text/html
content-length: 162
location: https://i.postimg.cc/CLpXW0GK/sp-1.gif
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230403/3D45DD88C878C86A/3D45DD88C878C86A.jpg
109.122.211.43404 Not Found 146 B URL GET HTTP/2 pic1.semaobf1.com/20230403/3D45DD88C878C86A/3D45DD88C878C86A.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20230403/3D45DD88C878C86A/3D45DD88C878C86A.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230403/C830F74B67728B35/C830F74B67728B35.jpg
109.122.211.43404 Not Found 146 B URL GET HTTP/2 pic1.semaobf1.com/20230403/C830F74B67728B35/C830F74B67728B35.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /20230403/C830F74B67728B35/C830F74B67728B35.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/071042AF7DA85BF9/071042AF7DA85BF9.jpg
109.122.211.43200 OK 83 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/071042AF7DA85BF9/071042AF7DA85BF9.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 980x550, components 3\012- data
Hash 458851582a7b2fb9f9c27ddf0b63c0dc
a4734fdbd3d5d2385e973928596fb1aed20eec15
fa30dedcb2d6c2e9b30a7595bb79d16c0f67286cb226daa255557023e27bfc4e
GET /20230601/071042AF7DA85BF9/071042AF7DA85BF9.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 83142
last-modified: Fri, 24 Feb 2023 14:31:05 GMT
etag: "63f8ca29-144c6"
expires: Fri, 30 Jun 2023 16:23:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/8FC727B6498989B9/8FC727B6498989B9.jpg
109.122.211.43200 OK 77 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/8FC727B6498989B9/8FC727B6498989B9.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 36b71d6e7b1ada9e5457c923962bc402
00873813e1b73dc87b93c2450f63b59b31876a6b
043523672705bec1145ca3967f5d973260b79901859c410df7a16479cca0c9ec
GET /20230601/8FC727B6498989B9/8FC727B6498989B9.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 76810
last-modified: Sat, 25 Feb 2023 10:02:10 GMT
etag: "63f9dca2-12c0a"
expires: Fri, 30 Jun 2023 16:24:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/VsqD0CtY/sp-3.gif
162.19.88.69200 OK 211 kB URL GET HTTP/2 i.postimg.cc/VsqD0CtY/sp-3.gif
IP 162.19.88.69:443
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type GIF image data, version 89a, 300 x 174\012- data
Size 211 kB (210616 bytes)
Hash 6be07a4b7825e3af398f24c529b086ec
63de029348b0a167a71ab2669754127ef132f848
5ecc3a7363c4a60819a2422a9c7b7164814f756bcedbc3628f00e62367856ac5
GET /VsqD0CtY/sp-3.gif HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/gif
content-length: 210616
last-modified: Mon, 09 Jan 2023 13:11:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/18EF0B18A7E9CD33/18EF0B18A7E9CD33.jpg
109.122.211.43200 OK 80 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/18EF0B18A7E9CD33/18EF0B18A7E9CD33.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Hash 93c42a742175b364a794ecdd22fb04d9
0fbc5aeac00733e307e7f738d4eca62b17a30029
13471a5de1225ab9d8da444ba442109f55a10243cf194dc4c13fa40b0b01595b
GET /20230601/18EF0B18A7E9CD33/18EF0B18A7E9CD33.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 79558
last-modified: Sat, 11 Mar 2023 22:07:31 GMT
etag: "640cfba3-136c6"
expires: Fri, 30 Jun 2023 16:24:05 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/css/ate.css
23.225.154.53200 OK 174 kB URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/css/ate.css
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type gzip compressed data, from Unix\012- data
Size 174 kB (173557 bytes)
Hash 480024229f74a0184a99759e862ae0ed
7227f287d997c342f2f0f7a72f9924961ff2ede9
bf625340a6cf48b63828ec523c0a0ac99ca141019bfd114655de31bb8798ec33
GET /template/meizhuama/css/ate.css HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:47 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 14:42:32 GMT
vary: Accept-Encoding
etag: W/"64259fd8-122a1"
expires: Fri, 02 Jun 2023 09:01:47 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
pic1.semaobf1.com/20230601/5FB24AFAE3C07D77/5FB24AFAE3C07D77.jpg
109.122.211.43200 OK 198 kB URL GET HTTP/2 pic1.semaobf1.com/20230601/5FB24AFAE3C07D77/5FB24AFAE3C07D77.jpg
IP 109.122.211.43:443
Certificate IssuerUnizeto Technologies S.A.
Subjectpic1.semaobf1.com
Fingerprint0F:81:FA:1A:95:AC:0E:9B:46:F1:2C:C7:B4:5D:4B:F3:27:B9:49:5A
ValidityMon, 02 Jan 2023 12:05:17 GMT - Wed, 31 Jan 2024 00:00:00 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 980x550, components 3\012- data
Size 198 kB (197936 bytes)
Hash 6782010ca9a948d4e8455787c74d125e
1ed9685efa483adc4b994ca5a6f81a46e0ef76a1
52c89895136b8cceba0787f2016e663445c369c797dd53ce74eae463d225ae91
GET /20230601/5FB24AFAE3C07D77/5FB24AFAE3C07D77.jpg HTTP/1.1
Host: pic1.semaobf1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/jpeg
content-length: 197936
last-modified: Mon, 27 Feb 2023 15:48:13 GMT
etag: "63fcd0bd-30530"
expires: Fri, 30 Jun 2023 16:20:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.8921a.com/images/64511d0d7804250e38070c95.gif
94.154.114.167302 Found 0 B URL GET HTTP/2 img.8921a.com/images/64511d0d7804250e38070c95.gif
IP 94.154.114.167:443
Certificate IssuerLet's Encrypt
Subject8921a.com
Fingerprint89:18:C5:4C:BC:24:50:7E:4C:C7:2A:43:58:3C:78:02:BA:DC:53:F1
ValidityTue, 28 Mar 2023 12:33:15 GMT - Mon, 26 Jun 2023 12:33:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/64511d0d7804250e38070c95.gif HTTP/1.1
Host: img.8921a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC0Mle/McQPH1x2/H2BeGq71rwIwEszCozoSjZ7EVAccnqPPfgpG5WBsF2Knlhkrmc=
X-Firefox-Spdy: h2
i.postimg.cc/y6yy8zqx/sp-5.gif
162.19.88.69200 OK 620 kB URL GET HTTP/2 i.postimg.cc/y6yy8zqx/sp-5.gif
IP 162.19.88.69:443
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type GIF image data, version 89a, 300 x 200\012- data
Size 620 kB (620010 bytes)
Hash 8171edd386b6abd105c0ff0e740330d9
7914e2b95f29d65b0ffb8e6daf7f54dc14da0ae0
5044971fcc4e0c4837e7e586b858fba8257feeed88812253aa9ee2396915c40a
GET /y6yy8zqx/sp-5.gif HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/gif
content-length: 620010
last-modified: Mon, 09 Jan 2023 13:11:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/zxbf.js
23.225.154.53200 OK 674 kB URL GET HTTP/2 x1.linggou.xyz/template/web/zxbf.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type gzip compressed data, from Unix\012- data
Size 674 kB (674482 bytes)
Hash 06787eec850eece1d051064ebef93d20
5517bee315805b5bba24c907bea2e7b1bd91c69d
ad0cb70b0c66a6f72e22669c0806ce10a0b9f05f30dd85aef246af198c804639
GET /template/web/zxbf.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 11:35:31 GMT
vary: Accept-Encoding
etag: W/"64788283-1259"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
mross011.com/363336fe019a7dad576dbc0cd5e59477.gif
45.151.135.43200 OK 16 kB URL GET HTTP/2 mross011.com/363336fe019a7dad576dbc0cd5e59477.gif
IP 45.151.135.43:443
ASN #201106 Spartan Host Ltd
Certificate IssuerLet's Encrypt
Subjectmross011.com
Fingerprint23:E9:62:69:D8:2D:99:3F:85:31:76:3E:20:BD:BC:95:9B:82:96:E8
ValidityFri, 19 May 2023 10:40:54 GMT - Thu, 17 Aug 2023 10:40:53 GMT
File type GIF image data, version 89a, 150 x 150\012- data
Hash e7b760d5b9f1a1be175fed8a7896bf31
d9ea37fa0efad766da3bb101ad5735486f51b0a4
c1d4fc49d3a7165588dc654c14911fe2ebc87a83520e6074721ef9f810d5eba3
GET /363336fe019a7dad576dbc0cd5e59477.gif HTTP/1.1
Host: mross011.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/gif
content-length: 16442
last-modified: Fri, 12 May 2023 14:23:51 GMT
etag: "645e4bf7-403a"
expires: Fri, 02 Jun 2023 09:03:57 GMT
cache-control: max-age=43200
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/fonts/iconfont.ttf
23.225.154.53200 OK 1.2 kB URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/fonts/iconfont.ttf
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/meizhuama/fonts/iconfont.ttf HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:49 GMT
content-type: application/octet-stream
content-length: 1163
last-modified: Sun, 06 Mar 2022 14:17:48 GMT
etag: "6224c28c-48b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/CLpXW0GK/sp-1.gif
162.19.88.69200 OK 274 kB URL GET HTTP/2 i.postimg.cc/CLpXW0GK/sp-1.gif
IP 162.19.88.69:443
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type GIF image data, version 89a, 200 x 251\012- data
Size 274 kB (273470 bytes)
Hash a732e080bf64be71495ee951ad5af548
75c059fb745248a1f2d2a9a8999fd3e0837354e5
fd83bbb6f4f3ec3886286097267def0b954aa8b8997af92568e206877491ea1a
GET /CLpXW0GK/sp-1.gif HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://x1.linggou.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/gif
content-length: 273470
last-modified: Mon, 09 Jan 2023 13:11:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
mross011.com/65e7e65f41ad1c2cb20bb39e08e6b041.gif
45.151.135.43200 OK 393 kB URL GET HTTP/2 mross011.com/65e7e65f41ad1c2cb20bb39e08e6b041.gif
IP 45.151.135.43:443
ASN #201106 Spartan Host Ltd
Certificate IssuerLet's Encrypt
Subjectmross011.com
Fingerprint23:E9:62:69:D8:2D:99:3F:85:31:76:3E:20:BD:BC:95:9B:82:96:E8
ValidityFri, 19 May 2023 10:40:54 GMT - Thu, 17 Aug 2023 10:40:53 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 393 kB (393378 bytes)
Hash a930de5ec6e818c397927d0c8e288eb4
5740c07c68ec2828cf3544a76afa1755077a6f57
e5a218bd1dc9bc6410f36069969a1c36a3f34f0d42079c4bd02ec8c19421bee0
GET /65e7e65f41ad1c2cb20bb39e08e6b041.gif HTTP/1.1
Host: mross011.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/gif
content-length: 393378
last-modified: Sat, 13 May 2023 08:08:54 GMT
etag: "645f4596-600a2"
expires: Fri, 02 Jun 2023 09:03:57 GMT
cache-control: max-age=43200
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.6755a.com/images/645124437804250e38070c9c.gif
94.154.114.167302 Found 0 B URL GET HTTP/2 img.6755a.com/images/645124437804250e38070c9c.gif
IP 94.154.114.167:443
Certificate IssuerLet's Encrypt
Subject6755a.com
Fingerprint54:84:3E:15:39:28:3A:8F:F3:75:9A:7E:6D:88:28:14:87:F7:19:A4
ValidityTue, 28 Mar 2023 11:57:15 GMT - Mon, 26 Jun 2023 11:57:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/645124437804250e38070c9c.gif HTTP/1.1
Host: img.6755a.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=1800
location: https://files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTCuctPMA1Mxxu9zWJc5vP/d6eS2V6plqz7Ugim+OXPR0rFZeBs0o43aqxqbZOJqok0=
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash c37890226611c27304c44dcff9bffcfb
1648ac6425a6fec702047ed23f0bd81ff71646c0
59f538323d8d7ad8c16ddb2fd145df960c6b531200f50d85f2f75b6993a6fec4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 21:03:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 01:50:14 GMT
Expires: Thu, 08 Jun 2023 01:50:13 GMT
Etag: "1648ac6425a6fec702047ed23f0bd81ff71646c0"
Cache-Control: max-age=534974,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0a6803cc771c16-OSL
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash c37890226611c27304c44dcff9bffcfb
1648ac6425a6fec702047ed23f0bd81ff71646c0
59f538323d8d7ad8c16ddb2fd145df960c6b531200f50d85f2f75b6993a6fec4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 21:03:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 01:50:14 GMT
Expires: Thu, 08 Jun 2023 01:50:13 GMT
Etag: "1648ac6425a6fec702047ed23f0bd81ff71646c0"
Cache-Control: max-age=534974,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0a6803ca6efac4-OSL
x1.linggou.xyz/template/web/GG/dp1.gif
23.225.154.53200 OK 141 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/dp1.gif
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Size 141 kB (141174 bytes)
Hash 2846430b1663c942a9d2a92c559667cd
2b7d07a004fa13af572b8d5d6317594c1eee9eec
b1357936607e4478fa840a29b58e6714f0063f4a90e28571bd8c8be4e175d74e
GET /template/web/GG/dp1.gif HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:50 GMT
content-type: image/gif
content-length: 141174
last-modified: Mon, 25 Apr 2022 12:29:49 GMT
etag: "6266943d-22776"
expires: Sat, 01 Jul 2023 21:01:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash 5a3666b7d44c6af5081dbb43f513b53f
76121a404515ad0fc270dfaf5247219b5d0ff1e4
8e216cd1124a32ebfe96ceb03b4e1bf4a75bda6e52c449c936d5315cef92f29a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 21:03:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 May 2023 08:49:44 GMT
Expires: Wed, 07 Jun 2023 08:49:43 GMT
Etag: "76121a404515ad0fc270dfaf5247219b5d0ff1e4"
Cache-Control: max-age=473744,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0a6803ea90fac4-OSL
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash c37890226611c27304c44dcff9bffcfb
1648ac6425a6fec702047ed23f0bd81ff71646c0
59f538323d8d7ad8c16ddb2fd145df960c6b531200f50d85f2f75b6993a6fec4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 21:03:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 01:50:14 GMT
Expires: Thu, 08 Jun 2023 01:50:13 GMT
Etag: "1648ac6425a6fec702047ed23f0bd81ff71646c0"
Cache-Control: max-age=534974,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0a6803fdf4b50c-OSL
x1.linggou.xyz/template/web/GG/dp2.gif
23.225.154.53200 OK 767 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/dp2.gif
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Size 767 kB (766938 bytes)
Hash 06f924cdbba4e6c4765765139a404682
7eaadc65f26a4fe45240e14f96c29aa53e721775
514dc1d00a06bed8dbb2a891aa73b6ff70cd32772f582df1c2c959c856d45a5d
GET /template/web/GG/dp2.gif HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:50 GMT
content-type: image/gif
content-length: 766938
last-modified: Mon, 25 Apr 2022 12:29:50 GMT
etag: "6266943e-bb3da"
expires: Sat, 01 Jul 2023 21:01:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fls010.com/upload/uploads-images/default/other/2022-08-10/dc4dc3221e2cd8a103a79de761ddeb2a.jpg?_v=202201
18.164.78.101200 OK 87 kB URL GET HTTP/2 fls010.com/upload/uploads-images/default/other/2022-08-10/dc4dc3221e2cd8a103a79de761ddeb2a.jpg?_v=202201
IP 18.164.78.101:443
Certificate IssuerAmazon
Subjectfls006.com
FingerprintF2:5C:84:DC:63:C7:A8:1C:26:80:E2:97:F4:A6:11:16:09:98:CB:CE
ValidityThu, 09 Feb 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1024x1024, components 3\012- data
Hash 1ae560c61df0f9f7e092d5ee315f6928
77c1b55e38db45ce9f45b541defdbde5cb77c508
5c76c2bdc4655e54a5de17ed7c3d153788e27ce5cc0a287c5b9a4a67589fb016
GET /upload/uploads-images/default/other/2022-08-10/dc4dc3221e2cd8a103a79de761ddeb2a.jpg?_v=202201 HTTP/1.1
Host: fls010.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 87048
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
last-modified: Wed, 10 Aug 2022 03:01:44 GMT
etag: "62f31f98-15408"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 737f6691ca23b269272bbf464af4cb06.cloudfront.net (CloudFront)
x-amz-cf-pop: ATL58-P5
x-amz-cf-id: w11K0ygHDjoZJgPoeoBa4dRtRo8RxGUwdhz2FtUwf9U9rrrmP7SD_Q==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 0016674960cbc008f6ddebd98244f27a
42508ba555acb7ab14de26bfc4944a8b01546bfe
5151b4057a487396c68eb1104fde97b186bba1b4dbb83153d3e63c5e9dd60e37
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 21:03:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 14:19:47 GMT
Expires: Tue, 06 Jun 2023 14:19:46 GMT
Etag: "42508ba555acb7ab14de26bfc4944a8b01546bfe"
Cache-Control: max-age=407147,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0a68050de31c16-OSL
tukudhgg.vip/lm/ynv1011.gif
172.67.208.179200 OK 93 kB URL GET HTTP/2 tukudhgg.vip/lm/ynv1011.gif
IP 172.67.208.179:443
Certificate IssuerGoogle Trust Services LLC
Subjecttukudhgg.vip
FingerprintD3:D6:7D:29:00:CC:5C:F1:53:4F:2F:EB:73:F3:27:C4:67:B7:64:76
ValidityTue, 18 Apr 2023 02:25:23 GMT - Mon, 17 Jul 2023 02:25:22 GMT
File type GIF image data, version 89a, 267 x 160\012- data
Hash 6af55e696a3056459665405611798726
7d861da02f9418745ee9604189fff2171c5ff1da
6f00cbdeeff74818e913ccacf6d3689d14207c812ba74eee25aabf505a2d6e17
GET /lm/ynv1011.gif HTTP/1.1
Host: tukudhgg.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 21:03:58 GMT
content-type: image/gif
content-length: 92748
last-modified: Sun, 29 May 2022 06:37:27 GMT
etag: "629314a7-16a4c"
expires: Sat, 01 Jul 2023 21:03:49 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HOXlb7RUWbQxKvyZQfRhpv6SZMGrfMb%2BHzHQopHo3Wyv%2BAzIC%2FdPWJqui%2BItF6iRIriTR3N3cQo1hUJq%2FNRmIvlZ7Xfi%2BF39V5De0d0MJpHDgA0S%2F23C8fKo9nU0i6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0a67ffdb450b69-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash 1bef84d40286697426e8b2c4300bf235
b5885d30975614335f86fc1818911c8089411d6b
bae713ba775564d3abc128c4304b0229f07e5405f8325f84a46340abc5011c36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 21:03:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 May 2023 09:33:04 GMT
Expires: Wed, 07 Jun 2023 09:33:03 GMT
Etag: "b5885d30975614335f86fc1818911c8089411d6b"
Cache-Control: max-age=476344,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0a6803cf9b0afa-OSL
x1.linggou.xyz/template/web/GG/dp4.gif
23.225.154.53200 OK 747 kB URL GET HTTP/2 x1.linggou.xyz/template/web/GG/dp4.gif
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type GIF image data, version 89a, 640 x 200\012- data
Size 747 kB (746571 bytes)
Hash 84e8edecf6c28c8218e0a7b1ad9ea414
3897e6bf1a2292c59b45e44d2b9c38e45f8f9a6f
356abb92d87698d59a4af16304d13e760b032739634c495fba68568e82d5c1ce
GET /template/web/GG/dp4.gif HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:50 GMT
content-type: image/gif
content-length: 746571
last-modified: Mon, 25 Apr 2022 12:29:52 GMT
etag: "62669440-b644b"
expires: Sat, 01 Jul 2023 21:01:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/fonts/iconfont.woff
23.225.154.53200 OK 525 B URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/fonts/iconfont.woff
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/meizhuama/fonts/iconfont.woff HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:50 GMT
content-type: font/woff
content-length: 525
last-modified: Sun, 06 Mar 2022 14:12:36 GMT
etag: "6224c154-20d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/dipiao.js
23.225.154.53200 OK 278 kB URL GET HTTP/2 x1.linggou.xyz/template/web/dipiao.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type gzip compressed data, from Unix\012- data
Size 278 kB (278062 bytes)
Hash 560e4f8bd67bdb953395c47c759b3565
c834db5e6f18cad183cb62e76cba246827385c3a
9fab2f31da0e8618b33878595aea300674e1f29eb4523b4c72aa9e7c749cd9f6
GET /template/web/dipiao.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
last-modified: Sun, 15 May 2022 14:24:29 GMT
vary: Accept-Encoding
etag: W/"62810d1d-81a"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/fonts/iconfont.ttf
23.225.154.53200 OK 1.2 kB URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/fonts/iconfont.ttf
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 8363acaeab9cbb099b59b78a44127ca6
aef448ce5500e3734059ec285cf6ec0b547075f2
9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a
GET /template/meizhuama/fonts/iconfont.ttf HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/template/meizhuama/css/zui.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:50 GMT
content-type: application/octet-stream
content-length: 1163
last-modified: Sun, 06 Mar 2022 14:17:48 GMT
etag: "6224c28c-48b"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uu1819uu.com/54fa0a69ef85496db51660579f59af8e.gif
103.170.15.99200 OK 100 kB URL GET HTTP/1.1 uu1819uu.com/54fa0a69ef85496db51660579f59af8e.gif
IP 103.170.15.99:443
ASN #7483 Skycloud Computing co., Ltd.
Certificate IssuerSectigo Limited
Subjectuu1819uu.com
Fingerprint92:FF:B5:38:C3:CA:42:4B:DF:A5:D5:09:7C:10:0F:4D:22:85:81:9A
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 150 x 150\012- data
Hash 4d4f48ce3fa3bc4931b3a5ec0e158491
56de6fdbbb25d7e38aca7c76255cf189ba5a7ade
ba48a9adb83f476fb6c159bff7ff9f615d032b04351d273a40aa596b886d1626
GET /54fa0a69ef85496db51660579f59af8e.gif HTTP/1.1
Host: uu1819uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6461cbd0-184cf"
Date: Thu, 01 Jun 2023 13:47:18 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 15 May 2023 06:06:08 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-29
Content-Length: 99535
ocsp.sectigo.com/
104.18.14.101 472 B IP 104.18.14.101:0
Hash ca748c36063781072d48264abc63650a
175fa1db8e0f84e5db23d5ec5250fe1f0453620d
530c7eb2da7558c2d844cacf562df7737e4d84b34180288b7c041c683983fda3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 21:03:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 00:53:50 GMT
Expires: Tue, 06 Jun 2023 00:53:49 GMT
Etag: "175fa1db8e0f84e5db23d5ec5250fe1f0453620d"
Cache-Control: max-age=358790,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d0a68069d33fac4-OSL
uu8831uu.com/0c93d274cfc4420aa6423f9502188635.gif
103.170.15.99200 OK 17 kB URL GET HTTP/1.1 uu8831uu.com/0c93d274cfc4420aa6423f9502188635.gif
IP 103.170.15.99:443
ASN #7483 Skycloud Computing co., Ltd.
Certificate IssuerSectigo Limited
Subjectuu8831uu.com
Fingerprint5E:BF:DC:82:40:7F:98:52:D3:74:D4:74:5A:99:1B:BA:FD:30:C2:99
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 150 x 150\012- data
Hash cec55db0c3ff992c9d92e8800d592ded
2dfcaeb8ea0ba64ada766ec6cd2486a4ecdf8f94
69459870300648c6ed68e239d9eccf7932bb05b23ddcd90d94c4d34d12180998
GET /0c93d274cfc4420aa6423f9502188635.gif HTTP/1.1
Host: uu8831uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "646c6ac3-40fe"
Date: Wed, 24 May 2023 05:31:01 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 23 May 2023 07:26:59 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-29
Content-Length: 16638
uu1819uu.com/872aeb9fdef74997971be2c4cd6945ad.gif
103.170.15.99200 OK 459 kB URL GET HTTP/1.1 uu1819uu.com/872aeb9fdef74997971be2c4cd6945ad.gif
IP 103.170.15.99:443
ASN #7483 Skycloud Computing co., Ltd.
Certificate IssuerSectigo Limited
Subjectuu1819uu.com
Fingerprint92:FF:B5:38:C3:CA:42:4B:DF:A5:D5:09:7C:10:0F:4D:22:85:81:9A
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 459 kB (458890 bytes)
Hash 0d9ad28c5daf9529a41a915bc83b15e3
8d19d6430caf76c6008672013af3021cb1c4288a
646a48b96f107a014723f4110c31191a2f456b89b2e0e9b148b4e74c6a1dd7e6
GET /872aeb9fdef74997971be2c4cd6945ad.gif HTTP/1.1
Host: uu1819uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6461cbfa-7008a"
Date: Sat, 27 May 2023 03:16:06 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Mon, 15 May 2023 06:06:50 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-29
Content-Length: 458890
u1055.com/4e77ab38fcff481ba684107b29ebae13.gif
103.170.15.34200 OK 377 kB URL GET HTTP/2 u1055.com/4e77ab38fcff481ba684107b29ebae13.gif
IP 103.170.15.34:443
ASN #7483 Skycloud Computing co., Ltd.
Certificate IssuerSectigo Limited
Subjectu1055.com
FingerprintE4:CC:D1:02:C8:EA:6E:33:BA:78:17:6E:04:5C:12:C8:E8:A9:95:6A
ValiditySat, 29 Oct 2022 00:00:00 GMT - Sun, 29 Oct 2023 23:59:59 GMT
File type GIF image data, version 89a, 960 x 60\012- data
Size 377 kB (377414 bytes)
Hash 1262db6044125ad0016fe8b06b55ad26
0fb21de7432847957aa0be84b4f3383284b0ff9a
5fdfb4e0ab0f30a043a6f4f2cb3ec0b455eb9f39bc79ae26ec45dc0131a2a6ea
GET /4e77ab38fcff481ba684107b29ebae13.gif HTTP/1.1
Host: u1055.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=86400
etag: "64089112-5c246"
server: nginx
date: Wed, 08 Mar 2023 14:02:49 GMT
content-type: image/gif
last-modified: Wed, 08 Mar 2023 13:43:46 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-24
content-length: 377414
X-Firefox-Spdy: h2
uu1819uu.com/302ef3bfcd844daa82f3ba8ab630904c.gif
103.170.15.99200 OK 859 kB URL GET HTTP/1.1 uu1819uu.com/302ef3bfcd844daa82f3ba8ab630904c.gif
IP 103.170.15.99:443
ASN #7483 Skycloud Computing co., Ltd.
Certificate IssuerSectigo Limited
Subjectuu1819uu.com
Fingerprint92:FF:B5:38:C3:CA:42:4B:DF:A5:D5:09:7C:10:0F:4D:22:85:81:9A
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 100\012- data
Size 859 kB (859214 bytes)
Hash d5925ca62bea8ee5b444bec8728566ca
8b427f9c833cc109fe5189a7e23e08b39a7ccc1c
6660a3c3f2376ddcda5c9e3420122de88efa9587645dd5e126ae8d883a845722
GET /302ef3bfcd844daa82f3ba8ab630904c.gif HTTP/1.1
Host: uu1819uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "64565b89-d1c4e"
Date: Thu, 25 May 2023 00:56:57 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sat, 06 May 2023 13:52:09 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-29
Content-Length: 859214
uu6921uu.com/e6b791ef56784a90b4c6580f7fc49090.gif
103.170.15.85200 OK 767 kB URL GET HTTP/1.1 uu6921uu.com/e6b791ef56784a90b4c6580f7fc49090.gif
IP 103.170.15.85:443
ASN #7483 Skycloud Computing co., Ltd.
Certificate IssuerSectigo Limited
Subjectuu6921uu.com
Fingerprint56:0F:3A:95:D3:71:96:AF:A0:0D:0B:96:51:0D:61:34:56:A5:F3:87
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 960 x 70\012- data
Size 767 kB (767175 bytes)
Hash 442bc05bc69b20e8bccfcca64f0179f5
3d9ce044879263e2462c34b09ff244ce4636417f
74eee6919d6c46deb366792040627520807aebeacb5f3313b75278f2621de381
GET /e6b791ef56784a90b4c6580f7fc49090.gif HTTP/1.1
Host: uu6921uu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "646c6add-bb4c7"
Date: Tue, 23 May 2023 11:30:44 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Tue, 23 May 2023 07:27:25 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-15
Content-Length: 767175
files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTCuctPMA1Mxxu9zWJc5vP/d6eS2V6plqz7Ugim+OXPR0rFZeBs0o43aqxqbZOJqok0=
103.166.246.24200 OK 252 kB URL GET HTTP/2 files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTCuctPMA1Mxxu9zWJc5vP/d6eS2V6plqz7Ugim+OXPR0rFZeBs0o43aqxqbZOJqok0=
IP 103.166.246.24:443
Certificate IssuerLet's Encrypt
Subjectbackmoestream.xyz
Fingerprint48:00:12:EB:61:AD:C7:13:2A:6A:97:BA:BF:64:C2:BE:F2:EA:18:6D
ValidityTue, 28 Mar 2023 10:46:52 GMT - Mon, 26 Jun 2023 10:46:51 GMT
File type GIF image data, version 89a, 150 x 150\012- data
Size 252 kB (252515 bytes)
Hash b3a17fe21b73b0645913fc481aafc449
97207ef00e4e004dad0ee4e4edd8561220db6949
895410a4eda00e593ba35537118c3be41d2a04225b8d98102173ef0b17e4cf5d
GET /proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTCuctPMA1Mxxu9zWJc5vP/d6eS2V6plqz7Ugim+OXPR0rFZeBs0o43aqxqbZOJqok0= HTTP/1.1
Host: files.backmoestream.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:58 GMT
content-type: image/gif
content-length: 252515
access-control-allow-origin: *
cache-control: max-age=2592000
alt-svc: h3=":443"; ma=86400, h3-27=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/app.js
23.225.154.53200 OK 158 kB URL GET HTTP/2 x1.linggou.xyz/template/web/app.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type gzip compressed data, from Unix\012- data
Size 158 kB (158153 bytes)
Hash 28ca26352ed7e7d12505796ea4ca708e
a6fd3b11559bc249194534b9e94e87363b1696c8
14d3c7d7de979decf273f7fe75d1b6c858958de0d3da19ad06e11af918da34d6
GET /template/web/app.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
last-modified: Thu, 01 Jun 2023 12:46:40 GMT
vary: Accept-Encoding
etag: W/"64789330-2562"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC0Mle/McQPH1x2/H2BeGq71rwIwEszCozoSjZ7EVAccnqPPfgpG5WBsF2Knlhkrmc=
103.166.246.24200 OK 587 kB URL GET HTTP/2 files.backmoestream.xyz/proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC0Mle/McQPH1x2/H2BeGq71rwIwEszCozoSjZ7EVAccnqPPfgpG5WBsF2Knlhkrmc=
IP 103.166.246.24:443
Certificate IssuerLet's Encrypt
Subjectbackmoestream.xyz
Fingerprint48:00:12:EB:61:AD:C7:13:2A:6A:97:BA:BF:64:C2:BE:F2:EA:18:6D
ValidityTue, 28 Mar 2023 10:46:52 GMT - Mon, 26 Jun 2023 10:46:51 GMT
File type GIF image data, version 89a, 960 x 70\012- data
Size 587 kB (587189 bytes)
Hash 38d07833bb47015717ea58878f8dc189
99af1a448667dd7f7be8d192626bb084a04e86df
642db6fd894f05541601222806e2dbedbc0ccddf1df5254ac06d37e4188742e7
GET /proxy/2mQVehu5ANUUJxzhqYso067NPqPYEBGvcwwMS36yrTC0Mle/McQPH1x2/H2BeGq71rwIwEszCozoSjZ7EVAccnqPPfgpG5WBsF2Knlhkrmc= HTTP/1.1
Host: files.backmoestream.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:58 GMT
content-type: image/gif
content-length: 587189
access-control-allow-origin: *
cache-control: max-age=2592000
alt-svc: h3=":443"; ma=86400, h3-27=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
7788yy.xyz/8499/960x80.gif
23.224.101.34200 OK 366 kB URL GET HTTP/2 7788yy.xyz/8499/960x80.gif
IP 23.224.101.34:443
Certificate IssuerZeroSSL
Subject7788yy.xyz
FingerprintB2:57:17:02:31:EA:FC:92:D6:1C:FD:85:F6:57:8E:45:D7:F2:09:40
ValidityTue, 02 May 2023 00:00:00 GMT - Mon, 31 Jul 2023 23:59:59 GMT
File type GIF image data, version 89a, 960 x 80\012- data
Size 366 kB (366380 bytes)
Hash c4ab0620dc7d27a4ef0c24959e8be6fd
ff877344f31c9cc5e77d225b2999e6980ceb7ff5
f9ec3633ef5a1043335f8100bc09141d23ce601584d7fe8291a331230730d886
GET /8499/960x80.gif HTTP/1.1
Host: 7788yy.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 21:03:59 GMT
content-type: image/gif
content-length: 366380
last-modified: Mon, 22 May 2023 14:21:41 GMT
etag: "5972c-5fc48fd56e78b"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-72-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
35.244.181.201 445 B URL aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-72-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP 35.244.181.201:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (332)
Hash d39546249a86d29697ea6b389afd84f2
244ce5f2d9a3e80da843e527f35cae0b9d9e20be
ba339c9812783530a739e05b9bc0ec254d9c22eb13779e8e5be5860a192f8c80
GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-72-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: 17805
rule-data-version: 1
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2023-07-20-17-01-41.chain; p384ecdsa=Vyi7_6ALC_zLildqdomsQIFpdqhvqUM4QMboOjNpPqTZFsu2W76RGw4ErYwqqBP5UJ6J4ULiWn6fnBG6c8N2PYD6w-rIfZcdcNp3ALwaofFmcOXcVAgdzJbOvuVVR2tH
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Thu, 01 Jun 2023 20:54:54 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 445
age: 557
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
x1.linggou.xyz/
23.225.154.53200 OK 58 kB IP 23.225.154.53:443
Requested by http://www.4565ruffner.com/data/win.exe
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.4565ruffner.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:47 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/js/jquery.min.js
23.225.154.53200 OK 87 kB URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/js/jquery.min.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type ASCII text, with very long lines (65451)
Hash 4b57cf46dc8cb95c4cca54afc85e9540
05e1ad0cc600a057886deaf237ab6e3d4fcdb5ac
a28ccf8a7b50522bdeea0cd83cdeca221c18fc1f9df3ee6b3d3c48d599206855
GET /template/meizhuama/js/jquery.min.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Dec 2022 12:49:57 GMT
vary: Accept-Encoding
etag: W/"6391dd75-1538e"
expires: Fri, 02 Jun 2023 09:01:47 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/css/zui.css
23.225.154.53200 OK 98 kB URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/css/zui.css
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/meizhuama/css/zui.css HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:47 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 14:46:07 GMT
vary: Accept-Encoding
etag: W/"6425a0af-18089"
expires: Fri, 02 Jun 2023 09:01:47 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
x1.linggou.xyz/template/web/yxf.js
23.225.154.53200 OK 3.4 kB URL GET HTTP/2 x1.linggou.xyz/template/web/yxf.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3536), with no line terminators
Hash 317c864993c6aac7c0e9ed0dc1baf0c5
ac321312b8507fb146c4e2f314cd6386f0ab2799
11de86f3713bd02f1486265221306cf52564f9265da4dfeb118485cae8df3e27
GET /template/web/yxf.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:48 GMT
content-type: application/javascript
last-modified: Tue, 25 Apr 2023 06:08:56 GMT
vary: Accept-Encoding
etag: W/"64476e78-d69"
expires: Fri, 02 Jun 2023 09:01:48 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
i.postimg.cc/50vp3HkS/sp-2.jpg
162.19.88.69200 OK 167 kB URL GET HTTP/2 i.postimg.cc/50vp3HkS/sp-2.jpg
IP 162.19.88.69:443
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type JPEG image data, progressive, precision 8, 1280x723, components 3\012- data
Size 167 kB (166876 bytes)
Hash b604749c084eb3852713460571bcdbcb
aac56907bed93e783c8b61fc3a4e4620d50ef954
ca6a8935c3e9032a3eb4ea6b5ecc7e9539c516d34283cd2b88c6462fc0989031
GET /50vp3HkS/sp-2.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/jpeg
content-length: 166876
last-modified: Mon, 09 Jan 2023 13:11:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
u1102.com/a7988af6798644bdbc10e1979ee94ab0.gif
103.170.15.34200 OK 157 kB URL GET HTTP/2 u1102.com/a7988af6798644bdbc10e1979ee94ab0.gif
IP 103.170.15.34:443
ASN #7483 Skycloud Computing co., Ltd.
Certificate IssuerSectigo Limited
Subjectu1102.com
FingerprintC9:2F:EB:1B:9D:87:04:4A:6A:E4:D8:15:7B:AC:4A:E5:72:03:19:18
ValiditySat, 29 Oct 2022 00:00:00 GMT - Sun, 29 Oct 2023 23:59:59 GMT
File type GIF image data, version 89a, 180 x 180\012- data
Size 157 kB (156731 bytes)
Hash 43fc464e73212af413c5bf63806d95c5
1310199687ccce0f273290a9dbcded54356b6710
800efbb5607b5a3eae37980bffd148702ba570b0f6bc0eb9b939d4f93c62ab12
GET /a7988af6798644bdbc10e1979ee94ab0.gif HTTP/1.1
Host: u1102.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=86400
etag: "64329852-2643b"
server: nginx
date: Mon, 29 May 2023 02:39:35 GMT
content-type: image/gif
last-modified: Sun, 09 Apr 2023 10:49:54 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-24
content-length: 156731
X-Firefox-Spdy: h2
sta2.imgclh.com/imgs/2023/05/02/33a57e63296ae6f4.gif
104.21.66.6200 OK 277 kB URL GET HTTP/2 sta2.imgclh.com/imgs/2023/05/02/33a57e63296ae6f4.gif
IP 104.21.66.6:443
Certificate IssuerGoogle Trust Services LLC
Subject*.imgclh.com
Fingerprint11:E5:EB:41:47:74:97:1E:2D:DB:2B:D3:AD:43:59:B2:70:9F:BD:33
ValidityThu, 06 Apr 2023 12:52:40 GMT - Wed, 05 Jul 2023 12:52:39 GMT
File type GIF image data, version 89a, 300 x 300\012- data
Size 277 kB (276777 bytes)
Hash 9c45f0f6b4852903872f0ed8cacf5f06
24e338d5d1e99208fc5c1b09a86ae06cd19e44ca
6b56bc0e7edc165e6021f431bb206a86c4a78201e0db6182531821ba2dfc8d63
GET /imgs/2023/05/02/33a57e63296ae6f4.gif HTTP/1.1
Host: sta2.imgclh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 21:03:58 GMT
content-type: image/gif
content-length: 276777
last-modified: Tue, 02 May 2023 09:04:45 GMT
etag: "6450d22d-43929"
expires: Sat, 01 Jul 2023 21:03:57 GMT
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TbjRCj3ziL%2BrXaF6SswDsZOmfBNy9yen4deGCZT%2FqeDMMDe1NzRuG6Pqk4bmXvLuTlfUZXgKBtqsIl7EWwsso0rf6wmw0f02prh3rc1HzNkj4wkUNDNsCZ6MTxZ1M%2F1S0sM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0a67ff98e31c02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/22a28e51-7c02-4fe2-3ac5-6fda86644800/public
104.18.3.36200 OK 197 kB URL GET HTTP/3 imagedelivery.net/PZ5Nnb5z4TfMFnFORJSOeg/22a28e51-7c02-4fe2-3ac5-6fda86644800/public
IP 104.18.3.36:443
Certificate IssuerCloudflare, Inc.
Subjectimagedelivery.net
Fingerprint96:CC:F2:C3:E7:53:97:DA:4A:C5:6B:FF:82:07:A4:4E:58:C6:91:B6
ValidityMon, 29 May 2023 00:00:00 GMT - Tue, 28 May 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 197 kB (196708 bytes)
Hash 6142e7daf53273081e317d3285db0e82
aaffc632eca640b000932a9311a1613ad94224fc
c23fc3fc473aceee44fe54aa520efbb8d652642414f6aea024d1de903e6e45c9
GET /PZ5Nnb5z4TfMFnFORJSOeg/22a28e51-7c02-4fe2-3ac5-6fda86644800/public HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 01 Jun 2023 21:03:56 GMT
content-type: image/webp
content-length: 196708
cf-ray: 7d0a67fc2d4a1c0a-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfQIKbx2E2UAgUTsFGL9VuJ723fb7C9F9CBQfA5-d8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=19+213 c=0+0 v=2023.4.2 l=196708
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
warning: cf-images 299 "AVIF anim not supported"
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
x1.linggou.xyz/template/web/tb.js
23.225.154.53200 OK 1.9 kB URL GET HTTP/2 x1.linggou.xyz/template/web/tb.js
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (1939), with no line terminators
Hash d9769c96f76019c898104157bb13d1fb
004a705c5839667855d129ff60472fce96b32abb
a046584c63a01ad5340ebb6837f9ca3fa035dbdc69a67329442c8c49c1277ebd
GET /template/web/tb.js HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:47 GMT
content-type: application/javascript
last-modified: Tue, 30 May 2023 15:55:00 GMT
vary: Accept-Encoding
etag: W/"64761c54-794"
expires: Fri, 02 Jun 2023 09:01:47 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
i.postimg.cc/NFB8kdXQ/sp-4.gif
162.19.88.69200 OK 674 kB URL GET HTTP/2 i.postimg.cc/NFB8kdXQ/sp-4.gif
IP 162.19.88.69:443
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF7:9A:EC:C0:0E:AB:80:A9:55:8F:DF:97:AD:BB:4B:70:07:08:F0:F0
ValidityWed, 19 Apr 2023 13:39:30 GMT - Tue, 18 Jul 2023 13:39:29 GMT
File type GIF image data, version 89a, 393 x 262\012- data
Size 674 kB (673882 bytes)
Hash 8f0aa6d32c03c602b0480194b2efdf4a
a2dfc596103bf743c9cf389e2b7a481a8bbedc96
2a54a439ea081c5418030b63dd4e0f247ff7089b1d7ba67a0fe6e2abcf466658
GET /NFB8kdXQ/sp-4.gif HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:03:57 GMT
content-type: image/gif
content-length: 673882
last-modified: Mon, 09 Jan 2023 13:11:05 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
x1.linggou.xyz/template/meizhuama/css/seyuav-ui.css
23.225.154.53200 OK 29 kB URL GET HTTP/2 x1.linggou.xyz/template/meizhuama/css/seyuav-ui.css
IP 23.225.154.53:443
Certificate IssuerLet's Encrypt
Subjectlinggou.xyz
FingerprintE0:EF:73:77:10:A8:B4:BA:D7:B2:A2:76:E7:22:53:2F:47:BF:61:C2
ValidityFri, 31 Mar 2023 07:45:18 GMT - Thu, 29 Jun 2023 07:45:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /template/meizhuama/css/seyuav-ui.css HTTP/1.1
Host: x1.linggou.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://x1.linggou.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 01 Jun 2023 21:01:47 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 14:38:16 GMT
vary: Accept-Encoding
etag: W/"64259ed8-72eb"
expires: Fri, 02 Jun 2023 09:01:47 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2