r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9235
Expires: Mon, 14 Nov 2022 17:58:16 GMT
Date: Mon, 14 Nov 2022 15:24:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3326
Cache-Control: max-age=158542
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 15:24:21 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:26:43 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18484
Expires: Mon, 14 Nov 2022 20:32:25 GMT
Date: Mon, 14 Nov 2022 15:24:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 14 Nov 2022 14:44:34 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2387
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0GDH2BgvkuXMs+HN63xt3WteuBqi/YZZnDJbvaauQLzrxHryBaTlQB1K+dXeQtV73dsZ6hG8JJY=
x-amz-request-id: T4M2J7RM4T5S1HRY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 14 Nov 2022 15:13:54 GMT
age: 627
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 15:24:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
akxjzzs.com/
38.238.28.244301 Moved Permanently 178 B IP 38.238.28.244:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET / HTTP/1.1
Host: akxjzzs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 14 Nov 2022 15:24:21 GMT
Content-Type: text/html
Content-Length: 178
Location: http://akxjzzs.com/index.html/
Connection: keep-alive
Expires: Tue, 15 Nov 2022 03:24:21 GMT
Cache-Control: max-age=43200
akxjzzs.com/index.html/
38.238.28.244301 Moved Permanently 0 B IP 38.238.28.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index.html/ HTTP/1.1
Host: akxjzzs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 14 Nov 2022 15:24:22 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.akxjzzs.com/index.html/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 14 Nov 2022 14:25:01 GMT
cache-control: public,max-age=3600
age: 3561
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4694
Cache-Control: max-age=154853
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 15:24:22 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:25:15 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.160.184.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.184.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DGP1IhyPMdLKapWxj6Ia1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oHR1BRKKwhpMBiQP28OjV12Jlec=
www.akxjzzs.com/index.html/
38.238.28.244200 OK 951 B URL HTTP/1.1 www.akxjzzs.com/index.html/
IP 38.238.28.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (1116), with CRLF line terminators
Hash 478ea01e8cdfcbabd73601929046d893
2e0677bd413b84b1601eb1645949b8e5528f0f45
8fb5e257ace6ae3dad730cefde3349d5e7ac12ab00a7b662b0a4ad50e898d557
GET /index.html/ HTTP/1.1
Host: www.akxjzzs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.akxjzzs.com/tj.js
38.238.28.244200 OK 260 B IP 38.238.28.244:0
File type ASCII text, with CRLF line terminators
Hash 66d4635078a715d6ec515b5fcefcef63
9c3ec1dd19f0229329ece46d5b3d65742e349958
5311bbb29d1104443468123515a764d344d74b992689ecc7da4fb30f92d2f551
GET /tj.js HTTP/1.1
Host: www.akxjzzs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.akxjzzs.com/index.html/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:23 GMT
Content-Type: application/x-javascript
Content-Length: 260
Connection: keep-alive
www.akxjzzs.com/common.js
38.238.28.244200 OK 695 B URL HTTP/1.1 www.akxjzzs.com/common.js
IP 38.238.28.244:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (443), with CRLF line terminators
Hash 19de4ca93c538ae975f6521a2a12bd9c
0700deaf8e9c9984fc70e3a89453b38c5ad7dd91
05cdba5dae507c60ddfd9a449b90cde4a54a81d5fca31875e4f9de6c7408e21a
GET /common.js HTTP/1.1
Host: www.akxjzzs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.akxjzzs.com/index.html/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:23 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
push.zhanzhang.baidu.com/push.js
39.156.68.163200 OK 227 B URL HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 39.156.68.163:0
ASN #9808 China Mobile Communications Group Co., Ltd.
File type ASCII text, with no line terminators
Hash e548b6ce15bb616c2bfba36e9cfbf307
a348285d9928a6548a57569f1fb9d62bdd747f33
7be3e4c53cc47ce5cfa40a5e79b42848a90acee0d7ff71f10ac31a49c81aead5
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.akxjzzs.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Mon, 14 Nov 2022 15:24:23 GMT
Etag: "4078521116"
Expires: Tue, 14 Nov 2023 15:24:23 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=91213B908AB3374E59AE32888DC15CA2:FG=1; max-age=31536000; expires=Tue, 14-Nov-23 15:24:23 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
www.akxjzzs.com/favicon.ico
38.238.28.244200 OK 1.2 kB URL HTTP/1.1 www.akxjzzs.com/favicon.ico
IP 38.238.28.244:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.akxjzzs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.akxjzzs.com/index.html/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:23 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sat, 19 Nov 2022 15:24:23 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
122.10.49.229/m168se.html
122.10.49.229200 OK 630 B URL HTTP/1.1 122.10.49.229/m168se.html
IP 122.10.49.229:0
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document, Unicode text, UTF-8 text
Hash 9f54f714dae46df71a2d06803f262c13
e3e437575096eb4e7fa888223c190402a4869780
551b5796557bbe3c5e91c140865bd18802402a70cceac618d7401ce222bd4e93
GET /m168se.html HTTP/1.1
Host: 122.10.49.229
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.akxjzzs.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:23 GMT
Content-Type: text/html
Content-Length: 630
Last-Modified: Mon, 14 Nov 2022 14:41:41 GMT
Connection: keep-alive
ETag: "637253a5-276"
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 8e2a5860738a0074d23a3f6dee91206e
5ed96f0b8302a03d83acb58fe4b889c51d374a8c
8492104935dad10dcc9d903426f560ebcd0e8d78bd014c25b380b67e1b359a37
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 18 Nov 2022 13:18:25 GMT
ETag: "5ed96f0b8302a03d83acb58fe4b889c51d374a8c"
Last-Modified: Mon, 14 Nov 2022 13:18:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1112
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a0c0fa1e2e0afa-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14913
Expires: Mon, 14 Nov 2022 19:32:57 GMT
Date: Mon, 14 Nov 2022 15:24:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14913
Expires: Mon, 14 Nov 2022 19:32:57 GMT
Date: Mon, 14 Nov 2022 15:24:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 929d046b7cbed155022099e982ba0592
18ff58f5b4d98748552d6604bdcba9c57eb8f412
3c70c27c11afeaea96e782a0e7b7ae9c2f3ed35c94673fcd4361cb7406b078a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C70C27C11AFEAEA96E782A0E7B7AE9C2F3ED35C94673FCD4361CB7406B078A9"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14913
Expires: Mon, 14 Nov 2022 19:32:57 GMT
Date: Mon, 14 Nov 2022 15:24:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfc7286992b2cebdf1ebb58f85576e61
a49a1bf9716e32979810931d04d1f84216d096c1
7c5288d4ae39202e00c7fd482faa10b5610d31edf0bba9fc69fa4fc1f422b837
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7494
x-amzn-requestid: b07e424a-c11e-442f-8636-e0670cb6f864
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bd8heGBtoAMFYQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f0e09-7dcda14e5077563d726752ae;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 03:07:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VXu3wEUmBJjK6YiXRFYVAuZ3h-ApKkvK1miRBXpo6faKsx8OOXu0JQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:14:47 GMT
age: 43777
etag: "a49a1bf9716e32979810931d04d1f84216d096c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0db3498954921b58948ad8a4e7fd49f
6b618c3ff6e589f9e01650bd0a619acb70d8004e
fa3baa9e32e455ab2eeefab0c76714bf0ff5f67a5ccd7c10b3f5c21d8138c5cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6535
x-amzn-requestid: 3333aa65-c0c7-4704-9af1-fb0a49f830fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDtHbhoAMFSsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-51c3e4513240b7e5662b8e6e;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6dTOcWIKFuo-Thf3zUH_1WY70yFyQkj3w2xPrb6Ntjf8TUFPVG-_lA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:01:14 GMT
age: 62590
etag: "6b618c3ff6e589f9e01650bd0a619acb70d8004e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac5583760066002adcbba078f6dd1be4
39ca30395586cf1a0a0fa739f7279af807f548a3
cb5986e3330858716cd290297a81d77e371b838637fc57eece94810211715a7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9921
x-amzn-requestid: 933f6aa6-3bec-4f71-aba8-ef9e77942ae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjycgGB-oAMFsDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371644f-47d26359464b62b7276316e6;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9DG6rCPdRRiHKrAVXztWJwZlUYYCb893lXH8YDzEMGSEUbeaVkABWw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:04:26 GMT
age: 62398
etag: "39ca30395586cf1a0a0fa739f7279af807f548a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:52:43 GMT
age: 63101
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e9320a4be9c69eeda4a855b5a9535a5
a91bbc712fc0194b44d33fb7e04e49724ddfe14a
7aa0049111b04d0514dd3378ebe62bf3207b8725a6c1facf3d07ab465c6a6095
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb74e86a9-6c63-4a82-8e8b-64abdadca859.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6729
x-amzn-requestid: 6ceabd9e-4ac5-4835-b112-4aaeb81c9576
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bgfNIEZkoAMFgGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63701253-0e9112ee682f0895683d80cb;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 21:38:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WyYtTIJd4s0XtBHAhe-PHXlBHnD2f4cDqaml3Ut-CCejf0eJNfwyeg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:47:32 GMT
age: 63412
etag: "a91bbc712fc0194b44d33fb7e04e49724ddfe14a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f1e763f44800e4de06d69a3b2af74da
35afe48832221fe42de30260b9bcb15867109031
5f234c025d1f586b4364d2ef8c2818d3d4d441691444bb885e89f4c150b3d2a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F213417cd-cf64-4d28-ae86-bd6f16cecb3b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9322
x-amzn-requestid: 0becd817-a29e-46bf-b9d6-2d18e12f5fe9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDvE8DoAMFsiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-5b4bf1674c4edf80458cf53f;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6eUvvtJ48e5eRUJffmsuc9-blgv2dHt-Lsemnf-i8mLQ9CpY0Y94sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:13:29 GMT
age: 61855
etag: "35afe48832221fe42de30260b9bcb15867109031"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.share.baidu.com/s.gif?l=http://www.akxjzzs.com/index.html/
182.61.201.94200 OK 0 B URL HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.akxjzzs.com/index.html/
IP 182.61.201.94:0
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.akxjzzs.com/index.html/ HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.akxjzzs.com/
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Mon, 14 Nov 2022 15:24:24 GMT
149.29.127.147/0.09459332133236764
149.29.127.147404 Not Found 146 B URL HTTP/1.1 149.29.127.147/0.09459332133236764
IP 149.29.127.147:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /0.09459332133236764 HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.10.49.229/
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 14 Nov 2022 15:24:24 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
149.29.127.161/0.42457705270268054
149.29.127.161404 Not Found 146 B URL HTTP/1.1 149.29.127.161/0.42457705270268054
IP 149.29.127.161:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /0.42457705270268054 HTTP/1.1
Host: 149.29.127.161
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.10.49.229/
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 14 Nov 2022 15:24:24 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
149.29.127.155/0.40480639324158985
149.29.127.155404 Not Found 146 B URL HTTP/1.1 149.29.127.155/0.40480639324158985
IP 149.29.127.155:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /0.40480639324158985 HTTP/1.1
Host: 149.29.127.155
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.10.49.229/
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 14 Nov 2022 15:24:24 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
hm.baidu.com/hm.js?1cd13257b2a5f95bca7d324ec7d04b60
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?1cd13257b2a5f95bca7d324ec7d04b60
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash d150829644e31c3734c980c9258c7050
9ec2e7abaf416e8ea07785ecfa8d2bbb7b6f7389
a42740be17079f27434f81bda9ecefb382cce0b5919310ac625848d55cdd8800
GET /hm.js?1cd13257b2a5f95bca7d324ec7d04b60 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.akxjzzs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11333
Content-Type: application/javascript
Date: Mon, 14 Nov 2022 15:24:24 GMT
Etag: 4eeba3a51564571d2d413dd24b3f2345
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=047283CBB8F03255; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
149.29.127.147/
149.29.127.147200 OK 22 kB IP 149.29.127.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (1244), with LF, NEL line terminators
Hash dcd8af458b0f446dfef52911a12695d7
e8961d3fc21216ed5c05220c3330c4aeee950ea5
489c8c9447d7a9d9a4e05f8d22cb1cc69968b417a6f53d037f638e468247bbd8
GET / HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://122.10.49.229/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:24 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
149.29.127.147/template/m1938pc/css/zui.css
149.29.127.147200 OK 26 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/css/zui.css
IP 149.29.127.147:0
File type assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Hash c9d5a8f184eb747e91741194316aee05
87ce54cebeb87dd3adf6778b5da449be0992c702
fa7a4e1aa4b861be4cb5e4a91c9ec7b1cf10ba63786649d8c168b5bd4f961888
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:25 GMT
Content-Type: text/css
Last-Modified: Sat, 12 Nov 2022 12:57:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"636f9836-1b7fc"
Expires: Tue, 15 Nov 2022 03:24:25 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
149.29.127.147/template/m1938pc/css/ate.css
149.29.127.147200 OK 6.0 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/css/ate.css
IP 149.29.127.147:0
File type ASCII text, with CRLF line terminators
Hash 775ec9fd65a59632efdf68fc5af2dfad
a51c8530feab204356baa78c94848b688de1caf5
683dab144184920b21b643c2e6de55202e5528633318697e652fec75a8016d93
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:25 GMT
Content-Type: text/css
Last-Modified: Thu, 21 Apr 2022 12:25:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62614d4a-126e4"
Expires: Tue, 15 Nov 2022 03:24:25 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
ak-d.tripcdn.com/images/0Z03f223495fl86ls3FAF.gif
96.6.16.143200 OK 1.2 MB URL HTTP/2 ak-d.tripcdn.com/images/0Z03f223495fl86ls3FAF.gif
IP 96.6.16.143:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 1.2 MB (1197751 bytes)
Hash 6938343bc2a842c4d2c9c96f4dde0298
00e2b1b902b196b3c005facb934c10e2a2ca1961
5ccc1726994dfc6d2667e13bf946785f79bb01401fedb59db1cbdf6942dbaee6
GET /images/0Z03f223495fl86ls3FAF.gif HTTP/1.1
Host: ak-d.tripcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 1197751
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=7486028
expires: Thu, 09 Feb 2023 06:51:33 GMT
date: Mon, 14 Nov 2022 15:24:25 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1946711152&si=1cd13257b2a5f95bca7d324ec7d04b60&v=1.2.97&lv=1&sn=49433&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.akxjzzs.com%2Findex.html%2F&tt=%E6%AD%A6%E6%B1%89%E6%B9%8D%E5%BA%B7%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1946711152&si=1cd13257b2a5f95bca7d324ec7d04b60&v=1.2.97&lv=1&sn=49433&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.akxjzzs.com%2Findex.html%2F&tt=%E6%AD%A6%E6%B1%89%E6%B9%8D%E5%BA%B7%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1946711152&si=1cd13257b2a5f95bca7d324ec7d04b60&v=1.2.97&lv=1&sn=49433&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.akxjzzs.com%2Findex.html%2F&tt=%E6%AD%A6%E6%B1%89%E6%B9%8D%E5%BA%B7%E9%87%91%E8%9E%8D%E6%9C%8D%E5%8A%A1%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.akxjzzs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 14 Nov 2022 15:24:25 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A185FD975F01FC09; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
149.29.127.147/template/m1938pc/ads/img/spk5.jpg
149.29.127.147200 OK 27 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk5.jpg
IP 149.29.127.147:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.98.100", baseline, precision 8, 638x378, components 3\012- data
Hash d7603dc1b229c08999abed67adb502ac
54c441cd973289db604c2ee8a9b7121616c1a871
b284bcf5f87ce6f498d8e3bc39b3fbd1300597553be3a0bd0414c78a6e2d835e
GET /template/m1938pc/ads/img/spk5.jpg HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:25 GMT
Content-Type: image/jpeg
Content-Length: 26754
Last-Modified: Thu, 10 Nov 2022 05:48:57 GMT
Connection: keep-alive
ETag: "636c90c9-6882"
Expires: Wed, 14 Dec 2022 15:24:25 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
122.10.17.7/dclm.js
122.10.17.7200 OK 1.8 kB IP 122.10.17.7:0
ASN #134548 DXTL Tseung Kwan O Service
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1502)
Hash a5511cae1dd2aca40fc59b69bfc85d84
d3df0428cd5af089f1970895216203d9131ea182
c6ee28b1f52c99f263622284689db2b94f2d8607984f94938f8dbb158136f6e8
GET /dclm.js HTTP/1.1
Host: 122.10.17.7
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:25 GMT
Content-Type: application/javascript
Last-Modified: Mon, 07 Nov 2022 16:29:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63693278-10a8"
Expires: Tue, 15 Nov 2022 03:24:25 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b255485d706f57320a9b087b9db0096
80100e241af66fb584d4ed813f829e76cab005ae
666371c7d80ede88e78126fe377a002bb6f8096fb9f997850864f3e000b4ee84
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "666371C7D80EDE88E78126FE377A002BB6F8096FB9F997850864F3E000B4EE84"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9027
Expires: Mon, 14 Nov 2022 17:54:52 GMT
Date: Mon, 14 Nov 2022 15:24:25 GMT
Connection: keep-alive
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/rbrcmqx0c2x1109rbrcmqx0c2x211483.jpg
104.22.13.214200 OK 7.4 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/rbrcmqx0c2x1109rbrcmqx0c2x211483.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bed3f37a43ff1f5cf1d1e1392695fce1
a7179f123dcec78170c608f67acc4a9c4b189cc1
e0e97793e622e7ea8e78a7457208a9ae15382ed0dc32dcf4f7f668a45902b865
GET /upload/vod/2022/11-14/11/rbrcmqx0c2x1109rbrcmqx0c2x211483.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 7430
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8688
content-disposition: inline; filename="rbrcmqx0c2x1109rbrcmqx0c2x211483.webp"
etag: "6371b161-21f0"
last-modified: Mon, 14 Nov 2022 03:09:21 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c104689a0b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/gmxf4yz5zox1109gmxf4yz5zox141467.jpg
104.22.13.214200 OK 13 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/gmxf4yz5zox1109gmxf4yz5zox141467.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 24923429c21191c1d550ece890cd33c4
6f4972e953a58c1dab9919b6392455ebb55154af
3903e8ebe46d46be70b46f25f0b731e18ddfece82e2897c3a035f8bdd7fcf5a2
GET /upload/vod/2022/11-14/11/gmxf4yz5zox1109gmxf4yz5zox141467.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/jpeg
content-length: 12856
cf-bgj: imgq:85,h2pri
cf-polished: origSize=13507, status=webp_bigger
etag: "6371b15a-34c3"
last-modified: Mon, 14 Nov 2022 03:09:14 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a0c104689c0b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/vrc5ilfa4xr1109vrc5ilfa4xr101457.jpg
104.22.13.214200 OK 5.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/vrc5ilfa4xr1109vrc5ilfa4xr101457.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 66dcadd10fdd7c6171ffdee23b5afc4a
c33e1b8d6f512442ef1d4a86236d900edf3bfe5b
a9058f2c1e0544e923b242aa97a1bc918b372cd8535b11156d5c01973d423c12
GET /upload/vod/2022/11-14/11/vrc5ilfa4xr1109vrc5ilfa4xr101457.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 4954
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7170
content-disposition: inline; filename="vrc5ilfa4xr1109vrc5ilfa4xr101457.webp"
etag: "6371b156-1c02"
last-modified: Mon, 14 Nov 2022 03:09:10 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10468a80b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/14rwbpvm5e4110914rwbpvm5e4181475.jpg
104.22.13.214200 OK 7.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/14rwbpvm5e4110914rwbpvm5e4181475.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae15cb307e59cda30c2e01b30743133e
97b31ed21a043d0845800a3a438345e4eedb5319
b0eda26ade4cac0e410c5bc5b6f4b4b45d12b3b1e8c4be50b453a22275ee353f
GET /upload/vod/2022/11-14/11/14rwbpvm5e4110914rwbpvm5e4181475.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 7692
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=10056
content-disposition: inline; filename="14rwbpvm5e4110914rwbpvm5e4181475.webp"
etag: "6371b15e-2748"
last-modified: Mon, 14 Nov 2022 03:09:18 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10468a10b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/tc1u3gnaaxz1109tc1u3gnaaxz201479.jpg
104.22.13.214200 OK 6.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/tc1u3gnaaxz1109tc1u3gnaaxz201479.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f179f378ba4c3c7372bdde47cdf73bef
0c3a54a461abaa326d5b58288d5cb5353d361b89
01171abc8601db3ede0434fa1d98b3753e7efcb873268f28f6f60731d3f21e02
GET /upload/vod/2022/11-14/11/tc1u3gnaaxz1109tc1u3gnaaxz201479.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 6342
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7416
content-disposition: inline; filename="tc1u3gnaaxz1109tc1u3gnaaxz201479.webp"
etag: "6371b160-1cf8"
last-modified: Mon, 14 Nov 2022 03:09:20 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10468a60b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/qwuqennhovd1109qwuqennhovd171473.jpg
104.22.13.214200 OK 14 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/qwuqennhovd1109qwuqennhovd171473.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 481eeee0e225748987faf0c566cd715a
7358f69390536d369cf51b3a3d05d60f4f5a2141
3106b0f1407c0b2ec3e9edda635d53739b195665189f81a230901e3026f66c39
GET /upload/vod/2022/11-14/11/qwuqennhovd1109qwuqennhovd171473.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/jpeg
content-length: 13451
cf-bgj: imgq:85,h2pri
cf-polished: origSize=14145, status=webp_bigger
etag: "6371b15d-3741"
last-modified: Mon, 14 Nov 2022 03:09:17 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a0c10468a00b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/5yueogo3fkj11095yueogo3fkj161471.jpg
104.22.13.214200 OK 6.7 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/5yueogo3fkj11095yueogo3fkj161471.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cb200b4aca4e16cf2c5f82397bf556cf
8f371ab672fd853381026e0008424bb3b2326a7a
92567106e8290fab0d823732fe36b06db6b2a9cb8651e0a6b9640ec87a290276
GET /upload/vod/2022/11-14/11/5yueogo3fkj11095yueogo3fkj161471.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 6678
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7863
content-disposition: inline; filename="5yueogo3fkj11095yueogo3fkj161471.webp"
etag: "6371b15c-1eb7"
last-modified: Mon, 14 Nov 2022 03:09:16 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c104689f0b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/zyktjlg5hme1109zyktjlg5hme151469.jpg
104.22.13.214200 OK 5.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/zyktjlg5hme1109zyktjlg5hme151469.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 028bb506b2c065331be48fcea5358659
5e0412c30a156a255e27acfb0864cd2436cd89c6
2099d0424f1aecf654825769af642ea7c5697a4a2c54dd53d73d56cc48e4ac6b
GET /upload/vod/2022/11-14/11/zyktjlg5hme1109zyktjlg5hme151469.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 5480
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6640
content-disposition: inline; filename="zyktjlg5hme1109zyktjlg5hme151469.webp"
etag: "6371b15b-19f0"
last-modified: Mon, 14 Nov 2022 03:09:15 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c104689e0b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/rwep4erut231109rwep4erut23211481.jpg
104.22.13.214200 OK 8.8 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/rwep4erut231109rwep4erut23211481.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8c193f1cb0dd9f2dc0e5e139a1bfc52a
350102b88e1a2696d5bc6e7661e2c034d7f4db24
017712d4d36a9a78ba47b372d7d80a11e384ea712239bdf14d535f29378afb1f
GET /upload/vod/2022/11-14/11/rwep4erut231109rwep4erut23211481.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 8804
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9891
content-disposition: inline; filename="rwep4erut231109rwep4erut23211481.webp"
etag: "6371b161-26a3"
last-modified: Mon, 14 Nov 2022 03:09:21 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10468a70b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/4wz1pfy5s5511094wz1pfy5s55191477.jpg
104.22.13.214200 OK 6.9 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/4wz1pfy5s5511094wz1pfy5s55191477.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0b792ac49088fd67388e1559c7a3a36d
734dec2eef0f1802eb05b44848faee2336f373f0
cd37c679cc9ed46bc09eac18d9ae746b80c1c5a6f8941a217207181fd0a9d438
GET /upload/vod/2022/11-14/11/4wz1pfy5s5511094wz1pfy5s55191477.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 6924
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9557
content-disposition: inline; filename="4wz1pfy5s5511094wz1pfy5s55191477.webp"
etag: "6371b15f-2555"
last-modified: Mon, 14 Nov 2022 03:09:19 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10468a40b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/oijvoy4kxuh1109oijvoy4kxuh111459.jpg
104.22.13.214200 OK 5.5 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/oijvoy4kxuh1109oijvoy4kxuh111459.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c7398dd94fcd4cf160529e9fad0e34d2
73b065deea709f14e99133ae3fce7fcb4505d6aa
e729c4880f8dd0be02e6defc2ce66bec429b6fc815104013375bcd5ad6eda50a
GET /upload/vod/2022/11-14/11/oijvoy4kxuh1109oijvoy4kxuh111459.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 5452
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=7482
content-disposition: inline; filename="oijvoy4kxuh1109oijvoy4kxuh111459.webp"
etag: "6371b157-1d3a"
last-modified: Mon, 14 Nov 2022 03:09:11 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10468a90b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/pqq2gkwnphn1109pqq2gkwnphn131465.jpg
104.22.13.214200 OK 6.3 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/pqq2gkwnphn1109pqq2gkwnphn131465.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a27b2618bac875d5f55360a1f12b88bf
b5488f104bbec695da96a10e503a45c5cb5aac7d
58a1e1e62b6c63ef0caf196152d46118ffab75cd51614d2cf749c8dbbf14c3ea
GET /upload/vod/2022/11-14/11/pqq2gkwnphn1109pqq2gkwnphn131465.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 6328
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=8098
content-disposition: inline; filename="pqq2gkwnphn1109pqq2gkwnphn131465.webp"
etag: "6371b159-1fa2"
last-modified: Mon, 14 Nov 2022 03:09:13 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10468aa0b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/xf2qpp5zion1109xf2qpp5zion221485.jpg
104.22.13.214200 OK 9.2 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/xf2qpp5zion1109xf2qpp5zion221485.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d2b5509a71cb29a37e1e96b1cc07d599
3fbcfe9dbff0337203293118c2c49ec096cd74d0
4036e70f7e4a59b6743ff08785d2114439d2ff5cf64573911c8e7ed6d615a318
GET /upload/vod/2022/11-14/11/xf2qpp5zion1109xf2qpp5zion221485.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: image/webp
content-length: 9194
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9996
content-disposition: inline; filename="xf2qpp5zion1109xf2qpp5zion221485.webp"
etag: "6371b162-270c"
last-modified: Mon, 14 Nov 2022 03:09:22 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2496
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c10488ba0b65-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff66b92c4fa741029768982dd97bce4c
b419236f5938d28f7d57c9a723b8340b07860062
286f2348b9f593439c8fe9af64164470d33bd2529567fd5850cfb3c20dd1d386
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "286F2348B9F593439C8FE9AF64164470D33BD2529567FD5850CFB3C20DD1D386"
Last-Modified: Sun, 13 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3754
Expires: Mon, 14 Nov 2022 16:26:59 GMT
Date: Mon, 14 Nov 2022 15:24:25 GMT
Connection: keep-alive
hm.baidu.com/hm.js?c34175a344a7cbbdf7846e6823f15d4c
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?c34175a344a7cbbdf7846e6823f15d4c
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (620)
Hash 044be9863b3976e0ac8d29204eb966dc
43ae0c6cd83f928938ea30bc5a552941d03f4b9e
e60a26984e2f201d7ee862d788c38594448e5f953d346c02ffdf4b5f18eafaf6
GET /hm.js?c34175a344a7cbbdf7846e6823f15d4c HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11333
Content-Type: application/javascript
Date: Mon, 14 Nov 2022 15:24:25 GMT
Etag: 3417ad015e7b6d969cb6bb74939b88c4
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=BE9951B9525F783D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b255485d706f57320a9b087b9db0096
80100e241af66fb584d4ed813f829e76cab005ae
666371c7d80ede88e78126fe377a002bb6f8096fb9f997850864f3e000b4ee84
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "666371C7D80EDE88E78126FE377A002BB6F8096FB9F997850864F3E000B4EE84"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9027
Expires: Mon, 14 Nov 2022 17:54:52 GMT
Date: Mon, 14 Nov 2022 15:24:25 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b255485d706f57320a9b087b9db0096
80100e241af66fb584d4ed813f829e76cab005ae
666371c7d80ede88e78126fe377a002bb6f8096fb9f997850864f3e000b4ee84
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "666371C7D80EDE88E78126FE377A002BB6F8096FB9F997850864F3E000B4EE84"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9027
Expires: Mon, 14 Nov 2022 17:54:52 GMT
Date: Mon, 14 Nov 2022 15:24:25 GMT
Connection: keep-alive
kzett.com/5e33fab68eed3463dd7baf63eaa71d4d.gif
78.46.107.74301 Moved Permanently 162 B URL HTTP/2 kzett.com/5e33fab68eed3463dd7baf63eaa71d4d.gif
IP 78.46.107.74:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /5e33fab68eed3463dd7baf63eaa71d4d.gif HTTP/1.1
Host: kzett.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 14 Nov 2022 15:24:25 GMT
content-type: text/html
content-length: 162
location: https://kvtjjj.top/5e33fab68eed3463dd7baf63eaa71d4d.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dimg04.c-ctrip.com/images/0104f120009e1ktp8CE01.gif
104.110.17.24200 OK 102 kB URL HTTP/2 dimg04.c-ctrip.com/images/0104f120009e1ktp8CE01.gif
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 102 kB (101985 bytes)
Hash c61822db7cccd2af27ef130788c54e32
55b5e48ddbc0f543d9bba813de0e1829f5924890
79a805ac65a72d3cf84f91b7a3a921fb2dedae70f15d5db440c35554e3bc2d47
GET /images/0104f120009e1ktp8CE01.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 12 May 2015 01:00:00 GMT
x-edgeconnect-midmile-rtt: 18
x-edgeconnect-origin-mex-latency: 144
content-type: image/gif
content-length: 101985
access-control-allow-origin: *
cache-control: max-age=10373815
expires: Tue, 14 Mar 2023 17:01:21 GMT
date: Mon, 14 Nov 2022 15:24:26 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b255485d706f57320a9b087b9db0096
80100e241af66fb584d4ed813f829e76cab005ae
666371c7d80ede88e78126fe377a002bb6f8096fb9f997850864f3e000b4ee84
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "666371C7D80EDE88E78126FE377A002BB6F8096FB9F997850864F3E000B4EE84"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9026
Expires: Mon, 14 Nov 2022 17:54:52 GMT
Date: Mon, 14 Nov 2022 15:24:26 GMT
Connection: keep-alive
dimg04.c-ctrip.com/images/0101c120009vzvnd96C79.gif
104.110.17.24200 OK 748 kB URL HTTP/2 dimg04.c-ctrip.com/images/0101c120009vzvnd96C79.gif
IP 104.110.17.24:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 748 kB (747613 bytes)
Hash e81a9d5a533135961634ca2a1016879c
0af8af89a43c7b7596d2df15af06c990ec03ced1
8a20e89a426025e05e3869419080cc534a377c0e7908eaa2f6410f33f4c23179
GET /images/0101c120009vzvnd96C79.gif HTTP/1.1
Host: dimg04.c-ctrip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 747613
access-control-allow-origin: *
last-modified: Tue, 12 May 2015 01:00:00 GMT
cache-control: max-age=8791207
expires: Fri, 24 Feb 2023 09:24:33 GMT
date: Mon, 14 Nov 2022 15:24:26 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/lyn444nyugc1109lyn444nyugc121461.jpg
104.22.13.214200 OK 5.0 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/lyn444nyugc1109lyn444nyugc121461.jpg
IP 104.22.13.214:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c155d4ca54e999b6c8b1262b49a86815
b4f0254431f614b445322c435ee032428a219c76
ff6bbef7c623406ae37a8a73783c4f3ac692de1fe6a02a9022bfa9031c0b11f2
GET /upload/vod/2022/11-14/11/lyn444nyugc1109lyn444nyugc121461.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/webp
content-length: 5030
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=6106
content-disposition: inline; filename="lyn444nyugc1109lyn444nyugc121461.webp"
etag: "6371b158-17da"
last-modified: Mon, 14 Nov 2022 03:09:12 GMT
vary: Accept
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2497
accept-ranges: bytes
server: cloudflare
cf-ray: 76a0c106cb790b65-OSL
X-Firefox-Spdy: h2
lbfm.lbpictupian.com/upload/vod/2022/11-14/11/qidkzowhos21109qidkzowhos2121463.jpg
104.22.13.214200 OK 9.6 kB URL HTTP/2 lbfm.lbpictupian.com/upload/vod/2022/11-14/11/qidkzowhos21109qidkzowhos2121463.jpg
IP 104.22.13.214:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, progressive, precision 8, 320x240, components 3\012- data
Hash 74ec8520bcd781b4f5ff6cce7f0f65d9
d00855c7f1b31967dfcb29a762c7fc212816e95a
00954b4464c4d96d3d7a37c1986c382160b7080bc13197880648f190def9b118
GET /upload/vod/2022/11-14/11/qidkzowhos21109qidkzowhos2121463.jpg HTTP/1.1
Host: lbfm.lbpictupian.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/jpeg
content-length: 9561
cf-bgj: imgq:85,h2pri
cf-polished: origSize=10061, status=webp_bigger
etag: "6371b158-274d"
last-modified: Mon, 14 Nov 2022 03:09:12 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2497
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a0c106eb8f0b65-OSL
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 7269e6b584855a8cae4b6442eae983f4
29211d234e73937e8e038289fa3f96eddfa5ceef
c1bd31e693dde253a561373130ef13845fbd60328872fa97700936ad63f09d6b
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 12:58:47 GMT
Expires: Mon, 21 Nov 2022 12:58:46 GMT
Etag: "29211d234e73937e8e038289fa3f96eddfa5ceef"
Cache-Control: max-age=595459,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1072c39b4ff-OSL
149.29.127.147/template/m1938pc/ads/img/app5.gif
149.29.127.147200 OK 98 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/app5.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 108 x 108\012- data
Hash 8544104c698588d94d3e87ab61a901b3
5e476e6e2a2c6ecd72c81b03fba768dd4da7f6cd
28e156a64363e505f844b719f6e34ed241f6760af029a93e0e13a0b30c175511
GET /template/m1938pc/ads/img/app5.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:25 GMT
Content-Type: image/gif
Content-Length: 98336
Last-Modified: Thu, 10 Nov 2022 05:40:46 GMT
Connection: keep-alive
ETag: "636c8ede-18020"
Expires: Wed, 14 Dec 2022 15:24:25 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 08e72b74327dc68995f495f816d9ddef
3903a6070fdaa061b0b1d1ee5830aeb741e61314
c601d41047601ede40b0e565e3546f9bc845c80df84c4f312fffc24ea852c97a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 15:57:15 GMT
Expires: Sat, 19 Nov 2022 15:57:14 GMT
Etag: "3903a6070fdaa061b0b1d1ee5830aeb741e61314"
Cache-Control: max-age=433367,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1071966b4f4-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 99bb65e3528eca46ce8e70a37123cd69
1a8c76a635edd9904990461f74757cb1ddce7f0a
2895c0a2ca664d32e9dade9eb66d6d415bcfad294b38986889bfdd9338116118
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 18:50:26 GMT
Expires: Sat, 19 Nov 2022 18:50:25 GMT
Etag: "1a8c76a635edd9904990461f74757cb1ddce7f0a"
Cache-Control: max-age=443758,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1070e6fb512-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 99bb65e3528eca46ce8e70a37123cd69
1a8c76a635edd9904990461f74757cb1ddce7f0a
2895c0a2ca664d32e9dade9eb66d6d415bcfad294b38986889bfdd9338116118
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 18:50:26 GMT
Expires: Sat, 19 Nov 2022 18:50:25 GMT
Etag: "1a8c76a635edd9904990461f74757cb1ddce7f0a"
Cache-Control: max-age=443758,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c107285ab4e8-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8b4dfcd4cad745f4aa3d239bf919874d
28d5314a34d1a8b256b73c0308fc13ed70190272
a8f4d5ff779c22b3dc5763e6d082ad603d7e0bdca66ec26e4baa767a8c3dbc31
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2022 06:26:17 GMT
Expires: Fri, 18 Nov 2022 06:26:16 GMT
Etag: "28d5314a34d1a8b256b73c0308fc13ed70190272"
Cache-Control: max-age=312709,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1072c5fb4f1-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 235051910483b7d226e6ab82f7c1dd50
8aa625215d637156d7ac74281acf0b8635e23e8c
d80e300dcab172e3f44325e1a10f712191b35ad30662835a08ec347676578de4
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 18 Nov 2022 13:30:36 GMT
ETag: "8aa625215d637156d7ac74281acf0b8635e23e8c"
Last-Modified: Mon, 14 Nov 2022 13:30:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 196
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a0c108a8320b55-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash ad3864ebc09232290bf4ba4abbf654a7
68dd97fdcb48f6645ea52f9299cb5eaaaeef4682
16def7ebf48a6c6fa4c2077b66a37a696415183df75a3e24ae1fa1b825c16d31
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 18 Nov 2022 14:00:28 GMT
ETag: "68dd97fdcb48f6645ea52f9299cb5eaaaeef4682"
Last-Modified: Mon, 14 Nov 2022 14:00:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2430
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a0c108ab911bfe-OSL
149.29.127.147/template/m1938pc/ads/img/1.gif
149.29.127.147200 OK 254 B URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/1.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 16 x 17\012- data
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/ads/img/1.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 254
Last-Modified: Thu, 21 Apr 2022 12:25:48 GMT
Connection: keep-alive
ETag: "62614d4c-fe"
Expires: Wed, 14 Dec 2022 15:24:26 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 730ab8084dfe5815ab10cd8d7be9dae1
f94bc3ff5b18cd5a99913c50a79605fb3a458342
7f8c72d7d1e4feabda08e13507bdd0c67c8c5ff7558b4fef87e2658ab59a76cb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2022 15:31:13 GMT
Expires: Sun, 20 Nov 2022 15:31:12 GMT
Etag: "f94bc3ff5b18cd5a99913c50a79605fb3a458342"
Cache-Control: max-age=518205,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c108986cb512-OSL
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash bf92c18165ea60a2e1db5be3c6427a26
28281d442af618ba6f44c2998d76848ccb947df3
c53de01b2e50f05c69c297fcad2ab832186aafdaddd1da10216021789762cadd
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 04:39:34 GMT
Expires: Sat, 19 Nov 2022 04:39:33 GMT
Etag: "28281d442af618ba6f44c2998d76848ccb947df3"
Cache-Control: max-age=392706,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c107ace0b4ff-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5a96fd1ea367bb0c42a568270d01f590
15046d6a894c40a70c938dcdf8f36ec317bb4b86
92f13a51eea7272f1a8592b1718e6003dd0f7a630474e6b36c771d7f42b31da3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 04:52:22 GMT
Expires: Mon, 21 Nov 2022 04:52:21 GMT
Etag: "15046d6a894c40a70c938dcdf8f36ec317bb4b86"
Cache-Control: max-age=566274,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c108bad2b4e8-OSL
149.29.127.147/template/m1938pc/fonts/e61a601604fe408d85f635b56e71b3a1.woff
149.29.127.147404 Not Found 146 B URL HTTP/1.1 149.29.127.147/template/m1938pc/fonts/e61a601604fe408d85f635b56e71b3a1.woff
IP 149.29.127.147:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/m1938pc/fonts/e61a601604fe408d85f635b56e71b3a1.woff HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://149.29.127.147/template/m1938pc/css/zui.css
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 652546c7c32f6938e057985f362e6201
3b09cd23bd9d96193a14f3e09d2f4f3a67513b28
cf85b9e377c888be7cb49ce7e71682d553ae36dd36af72a0be81e20e68b50ae2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 04:05:51 GMT
Expires: Sat, 19 Nov 2022 04:05:50 GMT
Etag: "3b09cd23bd9d96193a14f3e09d2f4f3a67513b28"
Cache-Control: max-age=390683,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c108de67b4f1-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash f96cff18e137c3eff3fb64304c98b2b5
d64ed7dfe8b5108c2337c4204497faf9ba8a3b74
6cbfe8e985d79bba15562b24896fbdff156148ea8e05df7588426667c10a9baf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2022 20:23:24 GMT
Expires: Sun, 20 Nov 2022 20:23:23 GMT
Etag: "d64ed7dfe8b5108c2337c4204497faf9ba8a3b74"
Cache-Control: max-age=535736,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c10908feb512-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e8fb781872eb0ad24d202bd3755383ed
0ece1795d6d01bcbb5686054a5e5e08b63ec8156
2e6df9681450fc842034c7e902939e4e3ed908d41d269fc40293debd630bb944
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2022 11:18:41 GMT
Expires: Fri, 18 Nov 2022 11:18:40 GMT
Etag: "0ece1795d6d01bcbb5686054a5e5e08b63ec8156"
Cache-Control: max-age=330253,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1090b50b4e8-OSL
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2016852759&si=c34175a344a7cbbdf7846e6823f15d4c&su=http%3A%2F%2F122.10.49.229%2F&v=1.2.97&lv=1&sn=49434&r=0&ww=1268&ct=!!&u=http%3A%2F%2F149.29.127.147%2F&tt=%E5%96%B5%E5%BD%B1%E9%99%A2-%E8%A7%86%E9%A2%91-%E7%94%B5%E5%BD%B1-%E7%9F%AD%E8%A7%86%E9%A2%91-%E5%96%B5%E5%BD%B1%E9%99%A2%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2016852759&si=c34175a344a7cbbdf7846e6823f15d4c&su=http%3A%2F%2F122.10.49.229%2F&v=1.2.97&lv=1&sn=49434&r=0&ww=1268&ct=!!&u=http%3A%2F%2F149.29.127.147%2F&tt=%E5%96%B5%E5%BD%B1%E9%99%A2-%E8%A7%86%E9%A2%91-%E7%94%B5%E5%BD%B1-%E7%9F%AD%E8%A7%86%E9%A2%91-%E5%96%B5%E5%BD%B1%E9%99%A2%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2016852759&si=c34175a344a7cbbdf7846e6823f15d4c&su=http%3A%2F%2F122.10.49.229%2F&v=1.2.97&lv=1&sn=49434&r=0&ww=1268&ct=!!&u=http%3A%2F%2F149.29.127.147%2F&tt=%E5%96%B5%E5%BD%B1%E9%99%A2-%E8%A7%86%E9%A2%91-%E7%94%B5%E5%BD%B1-%E7%9F%AD%E8%A7%86%E9%A2%91-%E5%96%B5%E5%BD%B1%E9%99%A2%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 14 Nov 2022 15:24:26 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=9DDD53550D959557; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5c707ec519bbc7bbbe75d7f50663cb6
2ae05a9d1741cd68c5b28083bf22041378c83f0b
c72f780178f108fd6c7bd2d7d1c7cc2528b5db9d56e43f44aa99975b2745d7d4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "C72F780178F108FD6C7BD2D7D1C7CC2528B5DB9D56E43F44AA99975B2745D7D4"
Last-Modified: Sun, 13 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Mon, 14 Nov 2022 16:19:36 GMT
Date: Mon, 14 Nov 2022 15:24:26 GMT
Connection: keep-alive
kvtjjj.top/5e33fab68eed3463dd7baf63eaa71d4d.gif
172.67.217.8200 OK 933 kB URL HTTP/2 kvtjjj.top/5e33fab68eed3463dd7baf63eaa71d4d.gif
IP 172.67.217.8:0
File type GIF image data, version 89a, 960 x 70\012- data
Size 933 kB (932853 bytes)
Hash 1cfeb9d5d938597e0e4fe4928d9a7a88
2beb92cae45576d6da9a912f2a425b5f98779ea4
f1d3b16b301fd75a0038ac60deba8ae25373b30d9e9862f764d5886b5e74f43d
GET /5e33fab68eed3463dd7baf63eaa71d4d.gif HTTP/1.1
Host: kvtjjj.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://149.29.127.147/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
content-length: 932853
last-modified: Fri, 21 Oct 2022 12:07:36 GMT
etag: "63528b88-e3bf5"
expires: Wed, 14 Dec 2022 01:04:53 GMT
cache-control: max-age=16070400
cf-cache-status: HIT
age: 51573
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zVFznky%2F%2FElBsELcpduz1o4cDDGMquViiy6SLw7Oc7lylkXdEmkI6mP%2FfkK1y2pSO%2F5AD%2FZDjLwe5ZDFki75R8PIfW7ZgvK4a%2F2azsaBiK316pw8v5E4Wf4iw2vR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a0c1098bfe0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
149.29.127.147/template/m1938pc/ads/img/spk6.gif
149.29.127.147200 OK 320 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk6.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 448 x 359\012- data
Size 320 kB (320301 bytes)
Hash 7d3239796daffe24e71eb0e44146f02b
533c9fe388fdb5cc5f807a7358dcd4d1b14bf817
7ae555d64a9c2cbf44806af21930c753b5dc3649be922206fc10ea83efa19523
GET /template/m1938pc/ads/img/spk6.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:25 GMT
Content-Type: image/gif
Content-Length: 320301
Last-Modified: Thu, 10 Nov 2022 05:40:49 GMT
Connection: keep-alive
ETag: "636c8ee1-4e32d"
Expires: Wed, 14 Dec 2022 15:24:25 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 802d6cb3dce4552d70b2204630aa921f
aae9d2b7addcade10a0e66889f07d5e2ce93e16c
2eb9ae2e1051f6e139da69a9cc0d96e4c66db7699a87d9b36c06d2b8ee9568ab
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 10:05:43 GMT
Expires: Sat, 19 Nov 2022 10:05:42 GMT
Etag: "aae9d2b7addcade10a0e66889f07d5e2ce93e16c"
Cache-Control: max-age=412275,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1088b1bb4f4-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0097ef0fb7aff4740673bbe3dc0671fc
a500c24387cb3964155499a6566097d0afee65a3
15b21a9cc8b96a0a5d559c99a5cb4bc2064ec3368a91137386daa5a2655e11b5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2022 12:08:09 GMT
Expires: Sun, 20 Nov 2022 12:08:08 GMT
Etag: "a500c24387cb3964155499a6566097d0afee65a3"
Cache-Control: max-age=506021,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c109696cb512-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 08888285453a8af870f2b71bb48c173d
097a3138da47682e3eae7a7ee39872ecc67aa17d
ac3c2eefec68f64e20597c87cbac151445a8b3820d94d4d04a013c52f2eb32a5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2022 05:43:34 GMT
Expires: Sun, 20 Nov 2022 05:43:33 GMT
Etag: "097a3138da47682e3eae7a7ee39872ecc67aa17d"
Cache-Control: max-age=482946,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1092f0ab4ff-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 2f44f0758cda6d0313bfc1b935ed1419
b174974446f95878440497bc71ad4b525d4acb3f
8df0752c3805d5286d175561ffe3f544805e53047acf7618f294b118171c426e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 10:57:50 GMT
Expires: Sat, 19 Nov 2022 10:57:49 GMT
Etag: "b174974446f95878440497bc71ad4b525d4acb3f"
Cache-Control: max-age=415402,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c10a2a9cb512-OSL
149.29.127.147/template/m1938pc/images/video-play.png
149.29.127.147200 OK 1.6 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/images/video-play.png
IP 149.29.127.147:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/png
Content-Length: 1567
Last-Modified: Thu, 21 Apr 2022 12:26:06 GMT
Connection: keep-alive
ETag: "62614d5e-61f"
Expires: Wed, 14 Dec 2022 15:24:26 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c18a785e16b087e0cdd06444c64986ba
a56bfc281fbc42d0ea431bd33a23e8a7935396ab
54f193197a340b2c02d926b0df0e4555beb93409d9c2ff70f0c27837f8a13422
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2022 12:53:50 GMT
Expires: Fri, 18 Nov 2022 12:53:49 GMT
Etag: "a56bfc281fbc42d0ea431bd33a23e8a7935396ab"
Cache-Control: max-age=335962,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1095f48b4f1-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b7308f45a57b942bea99cb3ee4237ad9
ae5725cac0b786c70675d48abb79f0756ec5ed33
5b9601f6aa87292641d12c8161c980569db102e9a14dc01fa76b8a44586180ba
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2022 22:54:39 GMT
Expires: Sun, 20 Nov 2022 22:54:38 GMT
Etag: "ae5725cac0b786c70675d48abb79f0756ec5ed33"
Cache-Control: max-age=544811,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c10a7b0bb512-OSL
149.29.127.147/template/m1938pc/fonts/iconfont.woff
149.29.127.147200 OK 525 B URL HTTP/1.1 149.29.127.147/template/m1938pc/fonts/iconfont.woff
IP 149.29.127.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f66ed8f90ffb0fc831098b7701d3ba8a
1bc63ccb714f1272c80b224aa8fd9da94914825d
6ccac1f3560824c5e11e27d1798e447cfc5a930e5824009d6b1cf8eb98e248de
GET /template/m1938pc/fonts/iconfont.woff HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://149.29.127.147/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: font/woff
Content-Length: 525
Last-Modified: Thu, 21 Apr 2022 12:34:02 GMT
Connection: keep-alive
ETag: "62614f3a-20d"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0097ef0fb7aff4740673bbe3dc0671fc
a500c24387cb3964155499a6566097d0afee65a3
15b21a9cc8b96a0a5d559c99a5cb4bc2064ec3368a91137386daa5a2655e11b5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2022 12:08:09 GMT
Expires: Sun, 20 Nov 2022 12:08:08 GMT
Etag: "a500c24387cb3964155499a6566097d0afee65a3"
Cache-Control: max-age=506021,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c1098c01b4e8-OSL
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5c707ec519bbc7bbbe75d7f50663cb6
2ae05a9d1741cd68c5b28083bf22041378c83f0b
c72f780178f108fd6c7bd2d7d1c7cc2528b5db9d56e43f44aa99975b2745d7d4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "C72F780178F108FD6C7BD2D7D1C7CC2528B5DB9D56E43F44AA99975B2745D7D4"
Last-Modified: Sun, 13 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Mon, 14 Nov 2022 16:19:36 GMT
Date: Mon, 14 Nov 2022 15:24:26 GMT
Connection: keep-alive
149.29.127.147/template/m1938pc/ads/img/app4.gif
149.29.127.147200 OK 109 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/app4.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 109 kB (108625 bytes)
Hash 7f746939550d2ae41686ebf019a90ed7
8fccfd19873d3f91ba8b2d36680c42b650c653b2
16b6f5f802abc23c5788ad49bf0d3036db36fac0fd728e19548de61c54316252
GET /template/m1938pc/ads/img/app4.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:25 GMT
Content-Type: image/gif
Content-Length: 108625
Last-Modified: Mon, 07 Nov 2022 16:18:45 GMT
Connection: keep-alive
ETag: "63692fe5-1a851"
Expires: Wed, 14 Dec 2022 15:24:25 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 9a645b4fbc5b07195e6dcb70337aeda2
2b371ed48a715ef9bed441d7e4c7f593889fcbcc
fa0b3cd872bb7f63cf5e045efaedabb5f42e48266a9575889d32e7e299706480
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2022 15:22:05 GMT
Expires: Fri, 18 Nov 2022 15:22:04 GMT
Etag: "2b371ed48a715ef9bed441d7e4c7f593889fcbcc"
Cache-Control: max-age=344857,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c10aea0eb4f1-OSL
u1077.com/5376db32719b4f829e4b287d37cae39c.gif
45.61.212.137200 OK 46 kB URL HTTP/2 u1077.com/5376db32719b4f829e4b287d37cae39c.gif
IP 45.61.212.137:0
File type GIF image data, version 89a, 300 x 174\012- data
Hash 92a3415f953b4793889b9f48ce9be1f8
05b8afbca4a01cab6d4900e02b9ad982d2eb355a
ab6c6a47208fa273b87ed1813fad7c3a04252895487be8eaa100920bbb13190b
GET /5376db32719b4f829e4b287d37cae39c.gif HTTP/1.1
Host: u1077.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6371fd65-b343"
server: nginx
date: Mon, 14 Nov 2022 08:38:51 GMT
content-type: image/gif
last-modified: Mon, 14 Nov 2022 08:33:41 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-07
content-length: 45891
X-Firefox-Spdy: h2
img.lytuchuang3.com/upload/vod/20221114-1/d540b320fee06bb9913242e2d7db0b75.jpg
154.12.54.82200 OK 6.7 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/d540b320fee06bb9913242e2d7db0b75.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 14239909c3d6d7960b84d4267e6e0d24
063d4c24804c737048b171d038b21f6ec4e4c71d
3134b9e876901487d68b8dc0c3d753ebaed49ce1e44f1881366e4a59a3a8fe67
GET /upload/vod/20221114-1/d540b320fee06bb9913242e2d7db0b75.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 6715
Last-Modified: Sun, 13 Nov 2022 16:20:11 GMT
Connection: keep-alive
ETag: "6371193b-1a3b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/124678324cca1fcb4e3ce7047454c901.jpg
154.12.54.82200 OK 10 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/124678324cca1fcb4e3ce7047454c901.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 854x1131, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 82a663749f377f8cd64dcdc74305eb71
41b5baf1b98a0ecfbf68b6ba971d0bf715c73a44
afdbbfc3895be77ed8638d9898943030e52b5143513d044bc1a672b358fe039e
GET /upload/vod/20221114-1/124678324cca1fcb4e3ce7047454c901.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 10074
Last-Modified: Sun, 13 Nov 2022 16:20:16 GMT
Connection: keep-alive
ETag: "63711940-275a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/556c1500749429705f563884bd7e8855.jpg
154.12.54.82200 OK 7.0 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/556c1500749429705f563884bd7e8855.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1708x2277, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 7ea3b94a6f476fc809966fb9380ef02e
fbfc1ec3e434f9ca4a7e5a6feb3a602525efcbfd
a43eeb8e0dda0812c1c877df7e7849ffc9740134dfe627d6981a12cd4e647bb6
GET /upload/vod/20221114-1/556c1500749429705f563884bd7e8855.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 6975
Last-Modified: Sun, 13 Nov 2022 16:24:24 GMT
Connection: keep-alive
ETag: "63711a38-1b3f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/b09ab7c2ff3e8f89582ae512c57ac4fd.jpg
154.12.54.82200 OK 8.9 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/b09ab7c2ff3e8f89582ae512c57ac4fd.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash aa09c33909675fd3b9a6a31dc468dcdf
18a91d3cf012597b540d65a58a06d34475307b21
e7271d05a5083ce36899481a0f712ec3512c98478a462a89851f261759d419bd
GET /upload/vod/20221114-1/b09ab7c2ff3e8f89582ae512c57ac4fd.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 8925
Last-Modified: Sun, 13 Nov 2022 16:21:43 GMT
Connection: keep-alive
ETag: "63711997-22dd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/e2319782d8be931a608aa232fce431c6.jpg
154.12.54.82200 OK 8.0 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/e2319782d8be931a608aa232fce431c6.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 4748eaeba0cdd3c758bc55f82408262f
5294273536263341c5adc7cda77c1354d6c17608
30d417afcee57a413438d258b3314dece008bcaa69deb21487d81d525eb5daec
GET /upload/vod/20221114-1/e2319782d8be931a608aa232fce431c6.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 7995
Last-Modified: Sun, 13 Nov 2022 16:24:27 GMT
Connection: keep-alive
ETag: "63711a3b-1f3b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u1044.com/f35ad3078c1340949c17e29bb840b29a.gif
45.61.212.137200 OK 70 kB URL HTTP/2 u1044.com/f35ad3078c1340949c17e29bb840b29a.gif
IP 45.61.212.137:0
File type GIF image data, version 89a, 180 x 180\012- data
Hash 67275b45a207b88fdb89464f1e03a46f
3c87e58ce0597a307bd6369163a39df67371b3df
5be4b853f464d46739aa80f7ebfb7f2cfdcd0cee88bc0bf697ba1d243ddc3eb5
GET /f35ad3078c1340949c17e29bb840b29a.gif HTTP/1.1
Host: u1044.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6371f810-11334"
server: nginx
date: Mon, 14 Nov 2022 08:35:47 GMT
content-type: image/gif
last-modified: Mon, 14 Nov 2022 08:10:56 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-07
content-length: 70452
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 2f44f0758cda6d0313bfc1b935ed1419
b174974446f95878440497bc71ad4b525d4acb3f
8df0752c3805d5286d175561ffe3f544805e53047acf7618f294b118171c426e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 10:57:50 GMT
Expires: Sat, 19 Nov 2022 10:57:49 GMT
Etag: "b174974446f95878440497bc71ad4b525d4acb3f"
Cache-Control: max-age=415402,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a0c10a1d60b4f4-OSL
149.29.127.147/template/m1938pc/fonts/iconfont.ttf
149.29.127.147200 OK 257 B URL HTTP/1.1 149.29.127.147/template/m1938pc/fonts/iconfont.ttf
IP 149.29.127.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b6bf2659c287c7e192ff7c20853205e4
91087c59b4f1a108c0515d4daeb8d4cc49b62da5
a3cc4d1f67765644ce73654ad2d0a1e9f2b85553268d2f3e4d438da3bda75bb4
GET /template/m1938pc/fonts/iconfont.ttf HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/template/m1938pc/css/zui.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: application/octet-stream
Content-Length: 257
Last-Modified: Thu, 21 Apr 2022 12:34:00 GMT
Connection: keep-alive
ETag: "62614f38-101"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/b7b8b6c53883ca86314c6aeeeceefbbe.jpg
154.12.54.82200 OK 8.6 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/b7b8b6c53883ca86314c6aeeeceefbbe.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 240x320, components 3\012- data
Hash 58d62d3f17982719fbcb033d8534dda6
c21214b8cd894b59ee502089e15741063061387e
72328d5cce419fc8cc8cecc673f6da662f60aa6027bd015f2ae42c7c018a1ad2
GET /upload/vod/20221114-1/b7b8b6c53883ca86314c6aeeeceefbbe.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 8577
Last-Modified: Sun, 13 Nov 2022 16:16:14 GMT
Connection: keep-alive
ETag: "6371184e-2181"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/23bf36eda204f6921b341147ae3fb6bb.jpg
154.12.54.82200 OK 8.3 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/23bf36eda204f6921b341147ae3fb6bb.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1708x2277, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 774e316a77212d021ba97fd828c70a22
e40bfea5a140f78d04a93b272f451409495926cd
31c0e1072b2006d6d66a579ed3972a2a7f805ac5da4d1a10237dd5681a04913f
GET /upload/vod/20221114-1/23bf36eda204f6921b341147ae3fb6bb.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 8261
Last-Modified: Sun, 13 Nov 2022 16:16:16 GMT
Connection: keep-alive
ETag: "63711850-2045"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/cb5e49f6916ef80684832e6cbe255add.jpg
154.12.54.82200 OK 8.3 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/cb5e49f6916ef80684832e6cbe255add.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 23x30, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash ff3f59010929e3aa41952e937ab60dc3
3d9d00a8ab75c79e77f784106992b3470bd8d671
80d193107758c74dc32ce7008b932f27116993233caa4d233d1d3289d33f7445
GET /upload/vod/20221114-1/cb5e49f6916ef80684832e6cbe255add.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 8328
Last-Modified: Sun, 13 Nov 2022 16:16:15 GMT
Connection: keep-alive
ETag: "6371184f-2088"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/37283d6d3cdc40b9578fe6efbab1add3.jpg
154.12.54.82200 OK 9.1 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/37283d6d3cdc40b9578fe6efbab1add3.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 18f0dc5d500ef4f885cfbe18dd10d07d
347a78087e50c6b46467641082bd11ec0d4d7e26
d475be88c44fa81fe9fc044ef661a1507c990a6a5959ab1add5bc2ca69563993
GET /upload/vod/20221114-1/37283d6d3cdc40b9578fe6efbab1add3.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 9111
Last-Modified: Sun, 13 Nov 2022 16:16:13 GMT
Connection: keep-alive
ETag: "6371184d-2397"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/dc91b2292ba5fafcb52f17718dfd86bf.jpg
154.12.54.82200 OK 13 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/dc91b2292ba5fafcb52f17718dfd86bf.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 24866722e2e440bb57484b738e000616
731addc87a698f995a2cd54e8b65d3b12967018d
d98c9a53bc953b1f077ad596d1a7308bc8106644c9587bca32b6c2f19d512421
GET /upload/vod/20221114-1/dc91b2292ba5fafcb52f17718dfd86bf.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/jpeg
Content-Length: 12953
Last-Modified: Sun, 13 Nov 2022 16:16:13 GMT
Connection: keep-alive
ETag: "6371184d-3299"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
8499225.com/8499/150x150.gif
172.247.50.226200 OK 135 kB URL HTTP/2 8499225.com/8499/150x150.gif
IP 172.247.50.226:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 135 kB (134747 bytes)
Hash 48c8ab8ae6b52201e71decda0b783d26
5817a61ac305b0b96542b5aced965e79cf67d010
011e88ae2efb7e2c7a98115adcc443c2b965206d34a45c98f7012d476de9aeb8
GET /8499/150x150.gif HTTP/1.1
Host: 8499225.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
content-length: 134747
last-modified: Sun, 13 Nov 2022 10:03:32 GMT
etag: "20e5b-5ed573c48c405"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
8499165.com/8499/s/960x80.gif
172.247.50.228200 OK 421 kB URL HTTP/2 8499165.com/8499/s/960x80.gif
IP 172.247.50.228:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 421 kB (421071 bytes)
Hash 41fc4b2f1acf5b50b851104423f2d6c4
27a1bf7990c02235227ebda30ddfee1aeb4e33db
c49449d823452f844a67cda8057f6d3896f977a92a4d8de62707a9f218291ce0
GET /8499/s/960x80.gif HTTP/1.1
Host: 8499165.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
content-length: 421071
last-modified: Wed, 09 Nov 2022 06:23:10 GMT
etag: "66ccf-5ed03b0c9cba8"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
u1102.com/d8ecdecd95e3460790e30000837c89b2.png
103.170.15.52200 OK 57 kB URL HTTP/2 u1102.com/d8ecdecd95e3460790e30000837c89b2.png
IP 103.170.15.52:0
ASN #7483 Skycloud Computing co., Ltd.
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash ad178154cdc0b94a3fff47990c915c59
d8d45701aee7858d7e9500fb2daf5ef9c1e114c4
f902716fe2369343448788df7f13775c0d0728e6a1afaa8996aeed486464cde9
GET /d8ecdecd95e3460790e30000837c89b2.png HTTP/1.1
Host: u1102.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6371f856-dd7a"
server: nginx
date: Mon, 14 Nov 2022 08:12:09 GMT
content-type: image/png
last-modified: Mon, 14 Nov 2022 08:12:06 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-42
content-length: 56698
X-Firefox-Spdy: h2
u1099.com/73e57c5375ba44f7a49a98da882612bd.png
103.170.15.52200 OK 81 kB URL HTTP/2 u1099.com/73e57c5375ba44f7a49a98da882612bd.png
IP 103.170.15.52:0
ASN #7483 Skycloud Computing co., Ltd.
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 35e55bd418c0bb1ad4fdf2f2867e5102
7ec6859a8a7f22431ad759435dfac9337890d216
3e9a01ad36d379d7608aad2569be6dd631bab87dbd215bd23d1702a101ad2fbb
GET /73e57c5375ba44f7a49a98da882612bd.png HTTP/1.1
Host: u1099.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6371f899-13b91"
server: nginx
date: Mon, 14 Nov 2022 08:40:19 GMT
content-type: image/png
last-modified: Mon, 14 Nov 2022 08:13:13 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-42
content-length: 80785
X-Firefox-Spdy: h2
img.lytuchuang3.com/upload/vod/20221114-1/b8b43a3e43a777b532e21bc4a0192228.jpg
154.12.54.82200 OK 10 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/b8b43a3e43a777b532e21bc4a0192228.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash e9e76e6e84c545a73c7c3ebc8e47da3e
f2fedb10d79c537150a1ef35e5e2e77b0f29f65a
9291d1f84d2ac8a560598f0d6211fc1ca2313e62bdd19d0b84e250ff0797f459
GET /upload/vod/20221114-1/b8b43a3e43a777b532e21bc4a0192228.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 10084
Last-Modified: Sun, 13 Nov 2022 16:22:31 GMT
Connection: keep-alive
ETag: "637119c7-2764"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/811de8f1cc3afe0ed597ee8946ecfef5.jpg
154.12.54.82200 OK 7.4 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/811de8f1cc3afe0ed597ee8946ecfef5.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash c17bcb1168060519365cfb041336b3d8
741db5594415e2361ffa4d2909b9c972c811e502
29653b576f06cfd3cd81f96bc91a94d008b378f0711c43f0d4a9fe3367d28584
GET /upload/vod/20221114-1/811de8f1cc3afe0ed597ee8946ecfef5.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 7431
Last-Modified: Sun, 13 Nov 2022 16:26:54 GMT
Connection: keep-alive
ETag: "63711ace-1d07"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/f74e4cd62ead1a56279baf2127776e67.jpg
154.12.54.82200 OK 7.8 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/f74e4cd62ead1a56279baf2127776e67.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash c80bcc9d28e571cb46b43ca7b699ed7a
58f65155dee41d660980cd1c5205351f3ee8cccb
5bb77c51a532b71bf0886cefbcda62e66787076d833312cb21379623c9935702
GET /upload/vod/20221114-1/f74e4cd62ead1a56279baf2127776e67.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 7792
Last-Modified: Sun, 13 Nov 2022 16:25:20 GMT
Connection: keep-alive
ETag: "63711a70-1e70"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
static.yximgs.com/bs2/adcarsku/skud48ff3dc-abc1-449c-8ac1-d74e02429580.gif
184.31.15.75200 OK 306 kB URL HTTP/2 static.yximgs.com/bs2/adcarsku/skud48ff3dc-abc1-449c-8ac1-d74e02429580.gif
IP 184.31.15.75:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 150 x 150\012- data
Size 306 kB (305847 bytes)
Hash 26635540786aa1d1308a1996607acb19
09b8852d85ac59ef3fd4011e9246005a2edf5d45
17c7788f075af17f0c2cdebf4f2f912261b50c8e15ce814d59338a806542740d
GET /bs2/adcarsku/skud48ff3dc-abc1-449c-8ac1-d74e02429580.gif HTTP/1.1
Host: static.yximgs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 305847
x-amz-request-id: 2df9b0281622469186c043e62e2dbb3b
x-amz-id-2: fGBhaN0tH5VnuPNHQ9xDmYKsiLe5h0O7K87DUmN/bfIcoxMhcRLb+YBZMOoV8ps=
etag: "26635540786AA1D1308A1996607ACB19"
last-modified: Wed, 09 Nov 2022 13:09:37 GMT
x-amz-storage-class: STANDARD
x-bs-object-status: 0
x-kslogid: 668001201947199182
accept-ranges: bytes
cache-control: max-age=2153642
expires: Fri, 09 Dec 2022 13:38:29 GMT
date: Mon, 14 Nov 2022 15:24:27 GMT
akamai-mon-iucid-del: 1076937
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
x-tcp-cca:
x-ks-cache: Hit from 184.31.15.75
x-mai-cache-status: Y0-L0-0
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-expose-headers: Server,range,hdntl,hdnts,Akamai-Mon-Iucid-Ing,Akamai-Mon-Iucid-Del,Akamai-Request-BC
access-control-allow-headers: origin,range,hdntl,hdnts,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
static.yximgs.com/bs2/adcarsku/skubf4ff4d0-a743-497b-bdf4-e66375c07bde.gif
184.31.15.75200 OK 562 kB URL HTTP/2 static.yximgs.com/bs2/adcarsku/skubf4ff4d0-a743-497b-bdf4-e66375c07bde.gif
IP 184.31.15.75:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 960 x 80\012- data
Size 562 kB (561802 bytes)
Hash 6992b4cd488bb4437ec954ab09a3fa00
e41fc5970be04ab5801e80ce785ff0832b305793
54d436cbf368311b0aa7bb497ac1b5a4330067953e11b4ad2da233e07e923d05
GET /bs2/adcarsku/skubf4ff4d0-a743-497b-bdf4-e66375c07bde.gif HTTP/1.1
Host: static.yximgs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 561802
x-amz-request-id: f6d73a089aa84fca887671d16f2ae237
x-amz-id-2: fGBhaN0tF4p/va1BX4NE2Ie9jKT7h1W5KNCEX2RlbqZaqUA+NA7N8Y1efacZ8A==
etag: "6992B4CD488BB4437EC954AB09A3FA00"
last-modified: Tue, 01 Nov 2022 11:14:32 GMT
x-amz-storage-class: STANDARD
x-bs-object-status: 0
x-kslogid: 667472242452287085
accept-ranges: bytes
cache-control: max-age=1624743
expires: Sat, 03 Dec 2022 10:43:30 GMT
date: Mon, 14 Nov 2022 15:24:27 GMT
akamai-mon-iucid-del: 1076937
alt-svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
x-tcp-cca:
x-ks-cache: Hit from 184.31.15.75
x-mai-cache-status: Y0-L0-0
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-expose-headers: Server,range,hdntl,hdnts,Akamai-Mon-Iucid-Ing,Akamai-Mon-Iucid-Del,Akamai-Request-BC
access-control-allow-headers: origin,range,hdntl,hdnts,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
529723929.com/b6fc5d08c835465f83c19655ab1bdb42.gif
47.75.19.145200 OK 34 kB URL HTTP/1.1 529723929.com/b6fc5d08c835465f83c19655ab1bdb42.gif
IP 47.75.19.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 200 x 200\012- data
Hash 0d292e7442f0f83089197490e5f0f97f
770dc9902a71e66bdc85a94ba66911b9208ce2fe
3b0d57bf66427ffc8686ad07e4649d90c790bce309c10b5739f7d3e562478003
GET /b6fc5d08c835465f83c19655ab1bdb42.gif HTTP/1.1
Host: 529723929.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 34367
Connection: keep-alive
x-oss-request-id: 63725DAA1F856330353EAEBB
Accept-Ranges: bytes
ETag: "0D292E7442F0F83089197490E5F0F97F"
Last-Modified: Sat, 12 Nov 2022 04:47:27 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 11045730692600475625
x-oss-storage-class: Standard
Content-MD5: DSkudELw+DCJGXSQ5fD5fw==
x-oss-server-time: 1
img.lytuchuang3.com/upload/vod/20221114-1/ba9a76cbac20b6c39113f63f4fb157ea.jpg
154.12.54.82200 OK 12 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/ba9a76cbac20b6c39113f63f4fb157ea.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash e1fb1313353f8e65785da6a466cc97cd
19ae3f9aee36bf9135ef1416e1c00789e139b74a
52c6b0ce6e47f137e8422e3fbec34297c9ed55fa15d138f23b44d9069ca7d05a
GET /upload/vod/20221114-1/ba9a76cbac20b6c39113f63f4fb157ea.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 11490
Last-Modified: Sun, 13 Nov 2022 16:21:42 GMT
Connection: keep-alive
ETag: "63711996-2ce2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/52812df142fa87ab1e914b7931e98e24.jpg
154.12.54.82200 OK 9.0 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/52812df142fa87ab1e914b7931e98e24.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1708x2277, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 836eb465d916ff7d3bc21aa134e3d5c5
0eca2dbe4d163a32a18f1dbf0f5e3d71eef57817
515af36b0c14b43e05c17806ff583b292f7a9dd71e961b55d3ff1ba449106da0
GET /upload/vod/20221114-1/52812df142fa87ab1e914b7931e98e24.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 9019
Last-Modified: Sun, 13 Nov 2022 16:26:54 GMT
Connection: keep-alive
ETag: "63711ace-233b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/b4a428f43ea7f843ed354bf8f7b38005.jpg
154.12.54.82200 OK 5.2 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/b4a428f43ea7f843ed354bf8f7b38005.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 34x45, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash b3f56dedd9e0d149fd5416855d78fac8
046c8f12fa7a0a6b6b286e509eabf3d82ba97ba8
c74d7b5e496834b0999ce752d6429246eb52686a7da5ef16ce40523e8ab29cc0
GET /upload/vod/20221114-1/b4a428f43ea7f843ed354bf8f7b38005.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 5235
Last-Modified: Sun, 13 Nov 2022 16:26:54 GMT
Connection: keep-alive
ETag: "63711ace-1473"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
149.29.127.147/template/m1938pc/ads/img/zggt.jpg
149.29.127.147200 OK 7.6 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/zggt.jpg
IP 149.29.127.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, progressive, precision 8, 1020x60, components 3\012- data
Hash f384655759c7636820f4541a21c5ae43
93619eb32c623bc70974a22d4ca2f441d6dfc845
c46cd3858323fa82a2bc02c5f1c979a7dbf61ff18641f74b0c431c66c12ceb31
GET /template/m1938pc/ads/img/zggt.jpg HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 7608
Last-Modified: Thu, 10 Nov 2022 08:30:37 GMT
Connection: keep-alive
ETag: "636cb6ad-1db8"
Expires: Wed, 14 Dec 2022 15:24:27 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
u1077.com/2f84dd92261f47fd8b5d8f5e26221ac6.gif
45.61.212.137200 OK 383 kB URL HTTP/2 u1077.com/2f84dd92261f47fd8b5d8f5e26221ac6.gif
IP 45.61.212.137:0
File type GIF image data, version 89a, 960 x 100\012- data
Size 383 kB (382842 bytes)
Hash 3ee8c68d9bcee9dba9e18883f7a79dd7
ca6173103323ab2685f5c50c81c2e80d50583ab9
150795ba625225a034b7d362f7f69c1523bbbafb9820610a47b9abad1c030af9
GET /2f84dd92261f47fd8b5d8f5e26221ac6.gif HTTP/1.1
Host: u1077.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6363960d-5d77a"
server: nginx
date: Thu, 03 Nov 2022 10:45:00 GMT
content-type: image/gif
last-modified: Thu, 03 Nov 2022 10:21:01 GMT
accept-ranges: bytes
x-cache: HIT from cloud-us4-cdnb-07
content-length: 382842
X-Firefox-Spdy: h2
149.29.127.147/template/m1938pc/ads/img/spk4.gif
149.29.127.147200 OK 156 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk4.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 100 x 100\012- data
Size 156 kB (156311 bytes)
Hash c1cd6fbcc60e4242fb31eb894d7d9450
1b0a2ba85f38fa452a391250067e916ac7b61345
aca31490b0e0478395648fb5f6ce318b56a4a443c7a64e069c71cee6c0f0bb44
GET /template/m1938pc/ads/img/spk4.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 156311
Last-Modified: Thu, 10 Nov 2022 05:40:51 GMT
Connection: keep-alive
ETag: "636c8ee3-26297"
Expires: Wed, 14 Dec 2022 15:24:26 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/a39adcc5ec0f259c19c6e2ecfbab3edd.jpg
154.12.54.82200 OK 9.9 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/a39adcc5ec0f259c19c6e2ecfbab3edd.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1708x2277, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash ccf6f197a508c8d9346a16b1d05be1b0
0343769b24e54d739f4da7fdd2d3d5d9a8e1d0eb
331e51b17e4941c8d2b5c8294e8bf550ea24b1da745ae2666cc925be45b51752
GET /upload/vod/20221114-1/a39adcc5ec0f259c19c6e2ecfbab3edd.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 9884
Last-Modified: Sun, 13 Nov 2022 16:25:54 GMT
Connection: keep-alive
ETag: "63711a92-269c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/8d922a63d9c03a86f9c8a7c4d2398084.jpg
154.12.54.82200 OK 12 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/8d922a63d9c03a86f9c8a7c4d2398084.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 8fd4f3e5d6595e109521ed6d4496257c
2c2c8b179d5e7af09937e8d61cffd003265b5e6b
2e393a24450adb8494fc667b9d60a3be42032c95ee8ff228d64b40b601ac8f70
GET /upload/vod/20221114-1/8d922a63d9c03a86f9c8a7c4d2398084.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 12063
Last-Modified: Sun, 13 Nov 2022 16:20:13 GMT
Connection: keep-alive
ETag: "6371193d-2f1f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/680244121319fa0eb9cfa4edf11a0c61.jpg
154.12.54.82200 OK 12 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/680244121319fa0eb9cfa4edf11a0c61.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 6308f25c23afaacfb65538132c7a1517
84c7d6f7b7feea9b313ac126f9b678d0369df591
13f4c1b9619d21aef3b848529f78050f24649bfaa40abeb454732764cb3c76cf
GET /upload/vod/20221114-1/680244121319fa0eb9cfa4edf11a0c61.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 11523
Last-Modified: Sun, 13 Nov 2022 16:24:29 GMT
Connection: keep-alive
ETag: "63711a3d-2d03"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
628536nyv.com/a560e00e7bb844119014562b6f612399.gif
103.170.15.112200 OK 654 kB URL HTTP/1.1 628536nyv.com/a560e00e7bb844119014562b6f612399.gif
IP 103.170.15.112:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 654 kB (653713 bytes)
Hash 6e1b913d233fb64271527a796618f37b
a858c96c304244dfa9d5cd159a3a5c80c6b98598
4dc0708abb2de56eaee1961f8143ec911357863a2b259c4154701ddd128d3a37
Analyzer Verdict Alert quad9 Sinkholed
GET /a560e00e7bb844119014562b6f612399.gif HTTP/1.1
Host: 628536nyv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "635b8daa-9f991"
Date: Thu, 03 Nov 2022 14:24:15 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 28 Oct 2022 08:07:06 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-42
Content-Length: 653713
img.lytuchuang3.com/upload/vod/20221114-1/74313846c537153eb2e28c0ce27921a3.jpg
154.12.54.82200 OK 5.7 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/74313846c537153eb2e28c0ce27921a3.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1708x2277, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash 7b187db0287ab5d22e37c185af1289f2
b3dcdfdbd530166045cfa856b638c6a4fdfb7b87
3826877b51e9f1107536587d41118706ed5e4e06921679bc6489190b1f24f51d
GET /upload/vod/20221114-1/74313846c537153eb2e28c0ce27921a3.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 5724
Last-Modified: Sun, 13 Nov 2022 16:24:28 GMT
Connection: keep-alive
ETag: "63711a3c-165c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/28110e68231905fb486bcd06cf65c5b2.jpg
154.12.54.82200 OK 7.7 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/28110e68231905fb486bcd06cf65c5b2.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 3x4, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 240x320, components 3\012- data
Hash f4819bf990a8d26adee26d589a8adf1e
694b8dbfd8f5746665ad136be2dfe1b8fbb93eeb
21bc0f201d8e3ca74ab745e7c6cc0b53fd83edb8245fcb426fb26bc28c4c7145
GET /upload/vod/20221114-1/28110e68231905fb486bcd06cf65c5b2.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 7654
Last-Modified: Sun, 13 Nov 2022 16:24:29 GMT
Connection: keep-alive
ETag: "63711a3d-1de6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/eed55d4ee32865d918d7e4d8970b298e.jpg
154.12.54.82200 OK 11 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/eed55d4ee32865d918d7e4d8970b298e.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8b5fa2cabc06cabdae9de695215babc0
ce5f3825b14354c5e76b5305e2b4ed91acace988
4255b638299b0931ce1e501421d5b8365c3a214b3a263bf8d28c6c42208c516c
GET /upload/vod/20221114-1/eed55d4ee32865d918d7e4d8970b298e.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 10623
Last-Modified: Sun, 13 Nov 2022 16:21:52 GMT
Connection: keep-alive
ETag: "637119a0-297f"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
149.29.127.147/template/m1938pc/ads/img/spk9.gif
149.29.127.147200 OK 952 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk9.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 128 x 128\012- data
Size 952 kB (952051 bytes)
Hash 0346f46c9ea7293bfdc12c43b779e9b9
2376ae3f21eea9c29f55f84c00d254c7f384b983
23d116eec6873c289c8397e3d02a70d17ded56b94eff5e87c3f5cb1b994d87c8
GET /template/m1938pc/ads/img/spk9.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 952051
Last-Modified: Sat, 29 Oct 2022 04:42:14 GMT
Connection: keep-alive
ETag: "635caf26-e86f3"
Expires: Wed, 14 Dec 2022 15:24:26 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
149.29.127.147/template/m1938pc/ads/img/spk8.gif
149.29.127.147200 OK 1.3 MB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk8.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 1.3 MB (1264586 bytes)
Hash 24276ed40d33cdc7c91be6aee4a5c649
406a93691820e9768a0190f7a216c61b939ce22c
e6ed2d7c48fa4150292f76a06067d50597c16e7f402b030c9d2d22d8540ff733
GET /template/m1938pc/ads/img/spk8.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 1264586
Last-Modified: Thu, 10 Nov 2022 05:40:45 GMT
Connection: keep-alive
ETag: "636c8edd-134bca"
Expires: Wed, 14 Dec 2022 15:24:26 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
u1099.com/e6e108fd1b7c4a2aa42c221f79469989.gif
103.170.15.52200 OK 370 kB URL HTTP/2 u1099.com/e6e108fd1b7c4a2aa42c221f79469989.gif
IP 103.170.15.52:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 788 x 444\012- data
Size 370 kB (370136 bytes)
Hash 5c9ee480d87e26cbc26d673cac7a2932
407908718aa34eac1fa97ce420cc72ecbc48e1b3
81da43620eb4f622703ff01970de99bb41071bb5336f0ca11ef60e5f0dccd57d
GET /e6e108fd1b7c4a2aa42c221f79469989.gif HTTP/1.1
Host: u1099.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6371f81f-5a5d8"
server: nginx
date: Mon, 14 Nov 2022 08:24:28 GMT
content-type: image/gif
last-modified: Mon, 14 Nov 2022 08:11:11 GMT
accept-ranges: bytes
x-cache: HIT from yd11_02-cdn-g01-la2-42
content-length: 370136
X-Firefox-Spdy: h2
149.29.127.147/template/m1938pc/ads/img/nwess.gif
149.29.127.147200 OK 26 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/nwess.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 712 x 105\012- data
Hash 9092217b47dfc7613a3afe93732a945b
630b1ad522248a5f313e612b3c30a17dc4992ebd
55d38a017673f851129bdb2617c869c80a4f35b23914581d8425b0e27011c64b
GET /template/m1938pc/ads/img/nwess.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/gif
Content-Length: 26396
Last-Modified: Sun, 06 Nov 2022 07:47:51 GMT
Connection: keep-alive
ETag: "636766a7-671c"
Expires: Wed, 14 Dec 2022 15:24:27 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X60.gif
47.75.19.16200 OK 96 kB URL HTTP/1.1 yaoji666.oss-cn-hongkong.aliyuncs.com/gg/960X60.gif
IP 47.75.19.16:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Hash 57557d6b489d522d480d9b82ce29db65
da2d3b35f0c9534e84e50310aeafe73173037315
4b96548579c0d9b380b10ce78bdb3e8edfd35e180519b319c6b1181e7b325952
GET /gg/960X60.gif HTTP/1.1
Host: yaoji666.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 95856
Connection: keep-alive
x-oss-request-id: 63725DAAFDBA0C3433C2D9EA
Accept-Ranges: bytes
ETag: "57557D6B489D522D480D9B82CE29DB65"
Last-Modified: Sat, 09 Jul 2022 12:37:07 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15928828585404051914
x-oss-storage-class: Standard
x-oss-server-side-encryption: AES256
Content-MD5: V1V9a0idUi1IDZuCzinbZQ==
x-oss-server-time: 2
149.29.127.147/template/m1938pc/ads/img/spk2.gif
149.29.127.147200 OK 89 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk2.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 267 x 160\012- data
Hash 482e725b00bf18359cae59cd413aea13
aaf8f22b9470066e250989a25a09a7486c3aaf28
85b083b68289347328190d67fe187ba65d44e1d0072a254fd9f06d3510133083
GET /template/m1938pc/ads/img/spk2.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 89034
Last-Modified: Thu, 10 Nov 2022 05:48:58 GMT
Connection: keep-alive
ETag: "636c90ca-15bca"
Expires: Wed, 14 Dec 2022 15:24:26 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/b42bb5783618fd14997e9132cc0290a9.jpg
154.12.54.82200 OK 8.0 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/b42bb5783618fd14997e9132cc0290a9.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 8760719a7453933f1e3c34919b64c75f
baa29af2c80311ac557d831dd84e4b27b3595731
c2fbcaf17bef9c2144391f2283a97a65cfa9ce70cabbf048615990b68d3c1229
GET /upload/vod/20221114-1/b42bb5783618fd14997e9132cc0290a9.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 8039
Last-Modified: Sun, 13 Nov 2022 16:21:51 GMT
Connection: keep-alive
ETag: "6371199f-1f67"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/8646580a0e097ea20184bf610d3849ac.jpg
154.12.54.82200 OK 11 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/8646580a0e097ea20184bf610d3849ac.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 711x500, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 3b90e4344feab1970aa1c3b98b9925cb
e6a7427103221e88edef0e70f79292acedb9d265
3512946962ca72bd245c968fc0de0748a6de1002af55cbe2282aa394d472726f
GET /upload/vod/20221114-1/8646580a0e097ea20184bf610d3849ac.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 11357
Last-Modified: Sun, 13 Nov 2022 16:20:02 GMT
Connection: keep-alive
ETag: "63711932-2c5d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/b3acb3c7833d5db6d73a7be5ea925f7b.jpg
154.12.54.82200 OK 12 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/b3acb3c7833d5db6d73a7be5ea925f7b.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 117x116, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f193226c9bdd07abadc4b9ab314a0b69
fec76fe4fb04ac2622b97d9114e5d1a7adcefe2a
2f0d78dc74b380e7dba5649b6e2cc18a6a076048e5905a896da43727d3146e5d
GET /upload/vod/20221114-1/b3acb3c7833d5db6d73a7be5ea925f7b.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 11600
Last-Modified: Sun, 13 Nov 2022 16:20:02 GMT
Connection: keep-alive
ETag: "63711932-2d50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
339282bdb.com/4b1e33387a7d4dddb2a8b216300b97b5.gif
45.61.212.50200 OK 818 kB URL HTTP/1.1 339282bdb.com/4b1e33387a7d4dddb2a8b216300b97b5.gif
IP 45.61.212.50:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 818 kB (817676 bytes)
Hash 2c0914501592136ef2d10a4111e355ed
d927d360f758036d51f4876f2ab97ac6d8ed5181
688662d5acf1c6584aa70e4a8ae273489b3a3b33e6b38f93571d85e99856d793
GET /4b1e33387a7d4dddb2a8b216300b97b5.gif HTTP/1.1
Host: 339282bdb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "635e1e72-c7a0c"
Date: Mon, 31 Oct 2022 17:39:24 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Sun, 30 Oct 2022 06:49:22 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us1-cdnb-20
Content-Length: 817676
img.lytuchuang3.com/upload/vod/20221114-1/042f0b4179e7b6c174ecea02e292e857.jpg
154.12.54.82200 OK 12 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/042f0b4179e7b6c174ecea02e292e857.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b82df33edd52f9e8999751cd89aadc7c
56acb2535ab060cc430bc8ac49208e924fdaeb61
08204f56aa12d161c81e43705f15add894f821e84f08dae6e3d1bbd318f4beb7
GET /upload/vod/20221114-1/042f0b4179e7b6c174ecea02e292e857.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 11639
Last-Modified: Sun, 13 Nov 2022 16:20:02 GMT
Connection: keep-alive
ETag: "63711932-2d77"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/3e6f5e399f81cfc8c69f0e3580eaf230.jpg
154.12.54.82200 OK 12 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/3e6f5e399f81cfc8c69f0e3580eaf230.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash b3427970b1cde580fe57d62fd01b7136
ba722407f95331c8f8e7aaaab966b69b3d973cc3
a0c92ef37db5ce0ed82059cf163effad1c78158cfb8010385d6a3ddc7c0840b4
GET /upload/vod/20221114-1/3e6f5e399f81cfc8c69f0e3580eaf230.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 11542
Last-Modified: Sun, 13 Nov 2022 16:20:02 GMT
Connection: keep-alive
ETag: "63711932-2d16"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/3d18deef46eda239b327f75f6eff8f51.jpg
154.12.54.82200 OK 10 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/3d18deef46eda239b327f75f6eff8f51.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 29d6d8e28c6532d3206bc7e2d77ef361
4744d85bac0936db3df2b637fc3c96d9f83f5430
a8d1aca1b02aa06b63c1096775f0e3f85e69a7ba12f5a8e213ed484d2f6ea672
GET /upload/vod/20221114-1/3d18deef46eda239b327f75f6eff8f51.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 10087
Last-Modified: Sun, 13 Nov 2022 16:20:02 GMT
Connection: keep-alive
ETag: "63711932-2767"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
149.29.127.147/template/m1938pc/ads/img/app2.gif
149.29.127.147200 OK 888 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/app2.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 240 x 240\012- data
Size 888 kB (887927 bytes)
Hash 7eccd9547d689f4c7ead2f749029550e
e76e4336879abc5708682ddb2c31e50fcf3a0033
adfce6eb5ffed013778ec1bff1084dd559a782896af286f974a54a62c9fcf4e9
GET /template/m1938pc/ads/img/app2.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/gif
Content-Length: 887927
Last-Modified: Mon, 07 Nov 2022 16:18:44 GMT
Connection: keep-alive
ETag: "63692fe4-d8c77"
Expires: Wed, 14 Dec 2022 15:24:27 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/8be733ce88adc67daea782d88dde2818.jpg
154.12.54.82200 OK 11 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/8be733ce88adc67daea782d88dde2818.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash ed2e82a9e5efd7f977ef2ee9adc88253
f2275e2dc82a379b3eb14c85a706ee5ed582b5ff
1f0982073650740d86438a56633e4cf3444d10884a1e5714f977281c139350d4
GET /upload/vod/20221114-1/8be733ce88adc67daea782d88dde2818.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 10744
Last-Modified: Sun, 13 Nov 2022 16:20:02 GMT
Connection: keep-alive
ETag: "63711932-29f8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/39a7d4ccde5481af88a75547146f4180.jpg
154.12.54.82200 OK 6.0 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/39a7d4ccde5481af88a75547146f4180.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 133f08d72c59fce169d5fd155f54cfdb
0c14bee9d2d7e6d8600b62989b127a683e3135f2
1c7c9b67ea61dd66f853aed19998f8f927a5cd69a8f5d898f8958069939e733d
GET /upload/vod/20221114-1/39a7d4ccde5481af88a75547146f4180.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 6045
Last-Modified: Sun, 13 Nov 2022 16:25:27 GMT
Connection: keep-alive
ETag: "63711a77-179d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/0284fa81722fb017e9838993fb0a0ee5.jpg
154.12.54.82200 OK 10 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/0284fa81722fb017e9838993fb0a0ee5.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 104491c9fe18ddb90086ecd43f550153
d01ba25bc38cb01cf602d19ed3cc6f517df9a8ad
7a2c8a2ef44e57d9b9c2d3b7316af4299dbfa060608b71162c634bce5199317f
GET /upload/vod/20221114-1/0284fa81722fb017e9838993fb0a0ee5.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 10071
Last-Modified: Sun, 13 Nov 2022 16:20:02 GMT
Connection: keep-alive
ETag: "63711932-2757"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 9250cad9cd78f1436f44c59e52c7ad64
b5204c3ddde38f9836d07287b49af5cefbc42041
47d76f858bf62f104472a319b3e475dbba2fd3c37aae79e4eecfcdecfd64666a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 18 Nov 2022 15:08:20 GMT
ETag: "b5204c3ddde38f9836d07287b49af5cefbc42041"
Last-Modified: Mon, 14 Nov 2022 15:08:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a0c10ecabe0afa-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 9250cad9cd78f1436f44c59e52c7ad64
b5204c3ddde38f9836d07287b49af5cefbc42041
47d76f858bf62f104472a319b3e475dbba2fd3c37aae79e4eecfcdecfd64666a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 18 Nov 2022 15:08:20 GMT
ETag: "b5204c3ddde38f9836d07287b49af5cefbc42041"
Last-Modified: Mon, 14 Nov 2022 15:08:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a0c10ec8dfb50f-OSL
149.29.127.147/template/m1938pc/ads/img/spk1.gif
149.29.127.147200 OK 30 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk1.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 110361b3922dc7a195f88df9864d41fe
213bbeffb00e369ba49816f4fa59b3704a30a320
bdfa6e0ef973df17610ff0653b4b777c8513f7e39020e39f88987d4fbf7d613e
GET /template/m1938pc/ads/img/spk1.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/gif
Content-Length: 29608
Last-Modified: Thu, 10 Nov 2022 05:48:55 GMT
Connection: keep-alive
ETag: "636c90c7-73a8"
Expires: Wed, 14 Dec 2022 15:24:27 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
ali.static.yximgs.com/bs2/adcarsku/sku33c954fa-20f2-4947-bd62-8ca345db9212.gif
47.246.44.230200 OK 254 kB URL HTTP/2 ali.static.yximgs.com/bs2/adcarsku/sku33c954fa-20f2-4947-bd62-8ca345db9212.gif
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 150 x 150\012- data
Size 254 kB (254386 bytes)
Hash f9ba8bc4a1734b392b245e5f5f841aa3
25495f3b9df6f475d5569721fc09902d9587f0b8
7720ab1f9e1836a30c3bac2e66944fe528cc5ddf112560888ecae41669557ad6
GET /bs2/adcarsku/sku33c954fa-20f2-4947-bd62-8ca345db9212.gif HTTP/1.1
Host: ali.static.yximgs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 254386
date: Tue, 08 Nov 2022 11:15:34 GMT
cache-control: max-age=604800
expires: Tue, 15 Nov 2022 11:15:34 GMT
last-modified: Tue, 01 Nov 2022 11:15:33 GMT
x-rsp-code: 060,040
x-ks-cache: HIT from 47.246.44.230
x-kimg: egae
x-amz-request-id: a04b245b01f84493934acdc4dc2b6f84
x-amz-id-2: cW9ze91yHpEluOpJSdcLxpvt0uWn21nsfpaPCmZmJ6ZaqUA+NA7N8Y1efacZ8A==
etag: "F9BA8BC4A1734B392B245E5F5F841AA3"
x-amz-storage-class: STANDARD
x-bs-object-status: 0
x-kslogid: 667301334540697664
accept-ranges: bytes
ali-swift-global-savetime: 1667906134
via: cache36.l2et2-2[0,0,304-0,H], cache50.l2et2-2[0,0], cache3.l2ot7-1[0,0,304-0,H], cache13.l2ot7-1[2,0], cache3.se1[0,0,200-0,H], cache2.se1[3,0]
age: 533333
x-cache: HIT TCP_HIT dirn:11:109955789
x-swift-savetime: Tue, 08 Nov 2022 14:28:14 GMT
x-swift-cachetime: 593240
x-ks-request-id: 2ff62c9616684394676916738e
kwaisign: 54ce530f5bc8e78d8ecf7d72d9935eff
access-control-max-age: 2592000
x-ks-client-ip: 91.90.42.154
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9616684394676916738e
X-Firefox-Spdy: h2
ali.static.yximgs.com/bs2/adcarsku/sku166178af-9fd2-4f28-bc2c-ac5ec93b75ac.gif
47.246.44.230200 OK 475 kB URL HTTP/2 ali.static.yximgs.com/bs2/adcarsku/sku166178af-9fd2-4f28-bc2c-ac5ec93b75ac.gif
IP 47.246.44.230:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 80\012- data
Size 475 kB (474754 bytes)
Hash 187c69beaa798211a2760f0e7944d8cc
645bc6d28abf2cf3756a014fb2fc9075d0f0fe20
50bc3ac7422522639cd47b65d6cb5683ba8f80395087ba0c105e47edb69b81d4
GET /bs2/adcarsku/sku166178af-9fd2-4f28-bc2c-ac5ec93b75ac.gif HTTP/1.1
Host: ali.static.yximgs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 474754
date: Wed, 09 Nov 2022 12:11:36 GMT
cache-control: max-age=604800
expires: Wed, 16 Nov 2022 12:11:36 GMT
last-modified: Wed, 09 Nov 2022 12:07:48 GMT
x-amz-request-id: adfb13a262cd412983f588cc24ddc596
x-amz-id-2: fGBhaN0tB5UlqPMeTsJJ1purkKLxwB7heZ2XTCl0drkcoAZxNh3PtopSPg==
etag: "187C69BEAA798211A2760F0E7944D8CC"
x-amz-storage-class: STANDARD
x-bs-object-status: 0
x-kslogid: 667995896207953565
accept-ranges: bytes
x-rsp-code: 060,040
x-ks-cache: HIT from 47.246.44.230
x-kimg: egae
ali-swift-global-savetime: 1667995896
via: cache58.l2eu95-3[0,0,200-0,H], cache70.l2eu95-3[1,0], cache24.l2ot7-1[0,0,200-0,H], cache35.l2ot7-1[3,0], cache3.se1[0,0,200-0,H], cache2.se1[4,0]
age: 443571
x-cache: HIT TCP_HIT dirn:2:251347851
x-swift-savetime: Wed, 09 Nov 2022 16:59:22 GMT
x-swift-cachetime: 587534
x-ks-request-id: 2ff62c9616684394677026748e
kwaisign: 54ce530f5bc8e78d8ecf7d72d9935eff
access-control-max-age: 2592000
x-ks-client-ip: 91.90.42.154
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9616684394677026748e
X-Firefox-Spdy: h2
img.lytuchuang3.com/upload/vod/20221114-1/1d599eb05faf3fec0dd84904104f16c5.jpg
154.12.54.82200 OK 13 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/1d599eb05faf3fec0dd84904104f16c5.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5be1979c51024cafeabc44df8206f732
046ea58ab8af8406c2015dea482ff3d036833dbf
eefd46f44f980b365049c7aa3353bc86d0218f5fe93b57b1708254a14cb24b24
GET /upload/vod/20221114-1/1d599eb05faf3fec0dd84904104f16c5.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 13068
Last-Modified: Sun, 13 Nov 2022 16:25:27 GMT
Connection: keep-alive
ETag: "63711a77-330c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/6f9c44823cd94d1c585eb715c149b5fa.jpg
154.12.54.82200 OK 13 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/6f9c44823cd94d1c585eb715c149b5fa.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash f23dd614cde15202f69d3e1f4856caec
5a4842e6186ba604fdbf5cb6075cfc477079009e
2134d4f11b0a040489d321544ac5baba2f1b7b4390e61ff0ba9791fb2e8afe47
GET /upload/vod/20221114-1/6f9c44823cd94d1c585eb715c149b5fa.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 13321
Last-Modified: Sun, 13 Nov 2022 16:25:27 GMT
Connection: keep-alive
ETag: "63711a77-3409"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/5141ba57dd6aa98037315c70686c04f7.jpg
154.12.54.82200 OK 9.7 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/5141ba57dd6aa98037315c70686c04f7.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash dcf285352c81e3917dbdabad9ffa0c59
c844d080c5cd74a54d6402711dcb68c77d601323
9476542277b39319c12369ba1227e0adf5c1b167f91943c75a8f020d2c3a536b
GET /upload/vod/20221114-1/5141ba57dd6aa98037315c70686c04f7.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 9700
Last-Modified: Sun, 13 Nov 2022 16:25:27 GMT
Connection: keep-alive
ETag: "63711a77-25e4"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
149.29.127.147/template/m1938pc/ads/img/app1.gif
149.29.127.147200 OK 240 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/app1.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 100 x 56\012- data
Size 240 kB (239836 bytes)
Hash cb3725e7f763aac8fe56edc1e959201c
80d573883daca0b79ceea18ea26b3ea0d50296af
4de6251812bdb5d46af7a538770d667dc7b31aaa7c31d1adac8bba3ccfd29491
GET /template/m1938pc/ads/img/app1.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/gif
Content-Length: 239836
Last-Modified: Mon, 07 Nov 2022 16:17:14 GMT
Connection: keep-alive
ETag: "63692f8a-3a8dc"
Expires: Wed, 14 Dec 2022 15:24:27 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
149.29.127.147/template/m1938pc/ads/img/app3.gif
149.29.127.147200 OK 376 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/app3.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 272 x 272\012- data
Size 376 kB (376400 bytes)
Hash 15c0fdf094e165b2b5d6c773c134851f
7e92fd11d95c651e410f9294b29d31e6fc53b223
2fd7016f25898b4a556103289a7bfc0cd562a0408b8f7a572725a8c9863696b3
GET /template/m1938pc/ads/img/app3.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 376400
Last-Modified: Mon, 07 Nov 2022 16:18:41 GMT
Connection: keep-alive
ETag: "63692fe1-5be50"
Expires: Wed, 14 Dec 2022 15:24:26 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/926ea167249a92f43350a7ea77237ece.jpg
154.12.54.82200 OK 7.1 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/926ea167249a92f43350a7ea77237ece.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 8e4c847452603d869bf45fad23c911e4
b6efe2703c937bf791376e160ea202f9ccf55bc1
0e38908a17743da6a47f15621225320fe3c62555f02ea7134c8cf37fe4c6972a
GET /upload/vod/20221114-1/926ea167249a92f43350a7ea77237ece.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 7114
Last-Modified: Sun, 13 Nov 2022 16:25:26 GMT
Connection: keep-alive
ETag: "63711a76-1bca"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/476a5d080d6a25a38edf4eb587b1fc17.jpg
154.12.54.82200 OK 15 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/476a5d080d6a25a38edf4eb587b1fc17.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1e40edf1f193d215d66dfa9da5d8843c
b14e44d2eb496521e0b6e2408750aafeed6e6660
8f9d91947c30b85fbd4be1b3c429658ef2068e523bbf19f1def59252504c46e8
GET /upload/vod/20221114-1/476a5d080d6a25a38edf4eb587b1fc17.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 15159
Last-Modified: Sun, 13 Nov 2022 16:25:26 GMT
Connection: keep-alive
ETag: "63711a76-3b37"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/0d21961da2b0ecfc22e61a3ac4426a01.jpg
154.12.54.82200 OK 9.1 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/0d21961da2b0ecfc22e61a3ac4426a01.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 2667x2000, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 1109294f34b5a574bce43b886ccc90dd
9c945a774bb4cdc7ff9c9419bf81439970b9f988
d9854f5965127a83346408dd423ee350a7801030c1b085becac573457ace1c35
GET /upload/vod/20221114-1/0d21961da2b0ecfc22e61a3ac4426a01.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 9063
Last-Modified: Sun, 13 Nov 2022 16:25:26 GMT
Connection: keep-alive
ETag: "63711a76-2367"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u1011.com/cfa4498e2b704b9c997d4f86627aa29f.gif
103.189.108.98200 OK 213 kB URL HTTP/2 u1011.com/cfa4498e2b704b9c997d4f86627aa29f.gif
IP 103.189.108.98:0
File type GIF image data, version 89a, 600 x 348\012- data
Size 213 kB (212557 bytes)
Hash aa8d45cceeb8655942dfac03690c37b9
83e7859e253712fd2e6da3be06c14e1e8aa43090
953cd7cad1c1e61f2349128f753c85204e71ab8cdd40d09f03e58b4b3d6a542d
GET /cfa4498e2b704b9c997d4f86627aa29f.gif HTTP/1.1
Host: u1011.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
etag: "6371f8aa-33e4d"
server: nginx
date: Mon, 14 Nov 2022 15:18:04 GMT
content-type: image/gif
last-modified: Mon, 14 Nov 2022 08:13:30 GMT
accept-ranges: bytes
x-cache: HIT from ty8-cdn108-088
content-length: 212557
X-Firefox-Spdy: h2
img.lytuchuang3.com/upload/vod/20221114-1/f1e1787a935e42bc3ed0eecf9e987c29.jpg
154.12.54.82200 OK 8.7 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/f1e1787a935e42bc3ed0eecf9e987c29.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 111x80, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 7405147ed3b10d55d828bf0e883e7e2f
f8082669c375164f1dc1e70aafd82b61e6882d61
0010ff405e720426e34d50e316a8d4be12c4e094158c6ad0e946394f8f2eb8af
GET /upload/vod/20221114-1/f1e1787a935e42bc3ed0eecf9e987c29.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 8708
Last-Modified: Sun, 13 Nov 2022 16:20:34 GMT
Connection: keep-alive
ETag: "63711952-2204"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/1475d21a7f7e24a78944b8bad995d541.jpg
154.12.54.82200 OK 10 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/1475d21a7f7e24a78944b8bad995d541.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 85x64, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 5a98183cd22b09910dd40f569ed18892
1240d922c60982df684b46c764e242061b52d499
711892c3633edf3aa1c418ea7de4a48f28b966d634d6568e294578917dc1da9f
GET /upload/vod/20221114-1/1475d21a7f7e24a78944b8bad995d541.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 10526
Last-Modified: Sun, 13 Nov 2022 16:25:26 GMT
Connection: keep-alive
ETag: "63711a76-291e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/9918fdceca56b03d6319d5032717da2b.jpg
154.12.54.82200 OK 13 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/9918fdceca56b03d6319d5032717da2b.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc57.89.100", baseline, precision 8, 320x240, components 3\012- data
Hash 883017d0832608f6172426ccfcb387d7
a2679c28f77e10f456c159d396c9d142f697ef8d
16ccc39e84ec2c9fde73f85a50dc04ab682221b37c37ab2c6ea63cf2a9a66777
GET /upload/vod/20221114-1/9918fdceca56b03d6319d5032717da2b.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 12994
Last-Modified: Sun, 13 Nov 2022 16:22:35 GMT
Connection: keep-alive
ETag: "637119cb-32c2"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
528791725.com/8bcd2bfe9b2049c5b7fe741f671ef33d.gif
47.75.19.145200 OK 584 kB URL HTTP/1.1 528791725.com/8bcd2bfe9b2049c5b7fe741f671ef33d.gif
IP 47.75.19.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 584 kB (584025 bytes)
Hash ebf4ee75bbd43b703e1b1b861ba166e2
c241029604f77ad6b4f56894bc51decfededfde7
d6655adbfa7089435d168e9b1432e524f0bf11be8b80ddc499bef69bd5a376ea
GET /8bcd2bfe9b2049c5b7fe741f671ef33d.gif HTTP/1.1
Host: 528791725.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 584025
Connection: keep-alive
x-oss-request-id: 63725DAA9DB578383177376A
Accept-Ranges: bytes
ETag: "EBF4EE75BBD43B703E1B1B861BA166E2"
Last-Modified: Fri, 28 Oct 2022 06:05:10 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9573701292697531384
x-oss-storage-class: Standard
Content-MD5: 6/TudbvUO3A+GxuGG6Fm4g==
x-oss-server-time: 1
398375178.com/8cd2e6de69e24b8a966d29d74c279de0.gif
47.75.19.145200 OK 452 kB URL HTTP/1.1 398375178.com/8cd2e6de69e24b8a966d29d74c279de0.gif
IP 47.75.19.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 452 kB (452273 bytes)
Hash df16374d7e4ccf1c7ff3814012167dad
bf7f89f135684b9182f4dc5bd4dd296060427eef
670f99c726a10b701a44db00b29b694b79a4461185e623e3e8b5f766d287a54f
GET /8cd2e6de69e24b8a966d29d74c279de0.gif HTTP/1.1
Host: 398375178.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Mon, 14 Nov 2022 15:24:26 GMT
Content-Type: image/gif
Content-Length: 452273
Connection: keep-alive
x-oss-request-id: 63725DAA8A23F73236EAE495
Accept-Ranges: bytes
ETag: "DF16374D7E4CCF1C7FF3814012167DAD"
Last-Modified: Sat, 12 Nov 2022 04:46:49 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 18150228080237609491
x-oss-storage-class: Standard
Content-MD5: 3xY3TX5Mzxx/84FAEhZ9rQ==
x-oss-server-time: 2
149.29.127.147/template/m1938pc/ads/img/spk7.gif
149.29.127.147200 OK 187 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk7.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 320 x 320\012- data
Size 187 kB (186721 bytes)
Hash adc5084dc551741011aee8127097803e
60dc753355bb44c84ec3f9df8ef619aac5d992da
289a98779670343605e6ce938d205956287ff255ec9abbfe46c93b0cadc8cf79
GET /template/m1938pc/ads/img/spk7.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/gif
Content-Length: 186721
Last-Modified: Sat, 29 Oct 2022 04:37:28 GMT
Connection: keep-alive
ETag: "635cae08-2d961"
Expires: Wed, 14 Dec 2022 15:24:27 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
149.29.127.147/template/m1938pc/ads/img/spk3.gif
149.29.127.147200 OK 514 kB URL HTTP/1.1 149.29.127.147/template/m1938pc/ads/img/spk3.gif
IP 149.29.127.147:0
File type GIF image data, version 89a, 320 x 186\012- data
Size 514 kB (513487 bytes)
Hash eb6ae4c3d42252ba0149361e28da9f18
b42e20c95a707951729969f9250f0b66f3ab4992
43abb0219a75601add12728d8c9a91af813a1342cc8b70acc6d5d5429af2fb62
GET /template/m1938pc/ads/img/spk3.gif HTTP/1.1
Host: 149.29.127.147
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://149.29.127.147/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/gif
Content-Length: 513487
Last-Modified: Thu, 10 Nov 2022 05:40:55 GMT
Connection: keep-alive
ETag: "636c8ee7-7d5cf"
Expires: Wed, 14 Dec 2022 15:24:27 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/286b24b303db5dfdcdfd81b7c481cd7b.jpg
154.12.54.82200 OK 149 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/286b24b303db5dfdcdfd81b7c481cd7b.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size 149 kB (149390 bytes)
Hash 85b359d90340daf7115d5a05bb392bc5
da8085ff9b5a113f9945ba6b5b3f441dc17c5ee4
431b38c9facf468e81eaed5fda53d87ef3b3c8ea15f32bb0fdedbd2bf5533325
GET /upload/vod/20221114-1/286b24b303db5dfdcdfd81b7c481cd7b.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 149390
Last-Modified: Sun, 13 Nov 2022 16:25:04 GMT
Connection: keep-alive
ETag: "63711a60-2478e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/195eebec0b1bc14734e84b4753143d84.jpg
154.12.54.82200 OK 183 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/195eebec0b1bc14734e84b4753143d84.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size 183 kB (182698 bytes)
Hash 5bf9d1160881d51721d05d3426f7cfb0
d5afddec132907c85f9bdfa819905b2975853d19
b38f264da1ad52591895e013d834dbb6b314433159b588413b12b651802276bb
GET /upload/vod/20221114-1/195eebec0b1bc14734e84b4753143d84.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 182698
Last-Modified: Sun, 13 Nov 2022 16:25:04 GMT
Connection: keep-alive
ETag: "63711a60-2c9aa"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/2bf326a51f3914208b012022e6e59ef7.jpg
154.12.54.82200 OK 152 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/2bf326a51f3914208b012022e6e59ef7.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size 152 kB (151596 bytes)
Hash f3f59f21a3c120144ea74a41c7a2a431
89c740b144e4744618a64721a815fd006976d9a2
753b61df3d64aaf2676f098b732e8021a0c3c349dc857cbc5978d5f9f6244d85
GET /upload/vod/20221114-1/2bf326a51f3914208b012022e6e59ef7.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:27 GMT
Content-Type: image/jpeg
Content-Length: 151596
Last-Modified: Sun, 13 Nov 2022 16:26:25 GMT
Connection: keep-alive
ETag: "63711ab1-2502c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/740e02bb0b87334c156cabe522f4299c.jpg
154.12.54.82200 OK 170 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/740e02bb0b87334c156cabe522f4299c.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size 170 kB (170259 bytes)
Hash 835488879e3bb5239676eda5aa20b355
e9c61d33d5255343472b27ba73828974127a2bf0
7927e860d87a0ab1c5166028e9eebf6e132b054e7ced21e8e7751e0eb874a635
GET /upload/vod/20221114-1/740e02bb0b87334c156cabe522f4299c.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:28 GMT
Content-Type: image/jpeg
Content-Length: 170259
Last-Modified: Sun, 13 Nov 2022 16:22:59 GMT
Connection: keep-alive
ETag: "637119e3-29913"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
img.lytuchuang3.com/upload/vod/20221114-1/1924a4fe9522921df4caa4cd1e6b2224.jpg
154.12.54.82200 OK 180 kB URL HTTP/1.1 img.lytuchuang3.com/upload/vod/20221114-1/1924a4fe9522921df4caa4cd1e6b2224.jpg
IP 154.12.54.82:0
ASN #22769 DDOSING-BGP-NETWORK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 680x453, components 3\012- data
Size 180 kB (179480 bytes)
Hash 7efad3b8dc263b34b5567c5ff2b9a0a9
708de580944cae7f55ba86fb96c8028a5b8cc143
9f1fdf5137fac4fbcc0579ffb8b5b59270ee55212fd151b282f55e2d0005d0ef
GET /upload/vod/20221114-1/1924a4fe9522921df4caa4cd1e6b2224.jpg HTTP/1.1
Host: img.lytuchuang3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 14 Nov 2022 15:24:28 GMT
Content-Type: image/jpeg
Content-Length: 179480
Last-Modified: Sun, 13 Nov 2022 16:23:03 GMT
Connection: keep-alive
ETag: "637119e7-2bd18"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p.qlogo.cn/qqmail_head/ajNVdqHZLLCPQk7wicT3V7nUXWyXAIWjGGsQaQocCSj5HVVVjOHqQRvr5DvibVN5yNMCzY0kHY7fU/0
43.129.255.47200 OK 421 kB URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLCPQk7wicT3V7nUXWyXAIWjGGsQaQocCSj5HVVVjOHqQRvr5DvibVN5yNMCzY0kHY7fU/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 80\012- data
Size 421 kB (421071 bytes)
Hash 41fc4b2f1acf5b50b851104423f2d6c4
27a1bf7990c02235227ebda30ddfee1aeb4e33db
c49449d823452f844a67cda8057f6d3896f977a92a4d8de62707a9f218291ce0
GET /qqmail_head/ajNVdqHZLLCPQk7wicT3V7nUXWyXAIWjGGsQaQocCSj5HVVVjOHqQRvr5DvibVN5yNMCzY0kHY7fU/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
content-length: 421071
vary: Accept,Origin
last-modified: Tue, 08 Nov 2022 23:57:12 GMT
cache-control: max-age=2592000
x-delay: 50627 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 421071
chid: 0
fid: 0
x-nws-log-uuid: 7a1badc0-7667-4c3f-81c2-72e1e12fd439
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
43.129.255.47200 OK 1.6 MB URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 640 x 200\012- data
Size 1.6 MB (1607696 bytes)
Hash 9c26f4dcfdfa72ecdcbe3ea854547b4c
fed85b90734400d6810be2b07403f5c8a194a507
ebd842d015d6684a6995a73f1e81f0dea219815318f8993501da9ca79cca74d2
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZTee7pdNQtTmNRpGbcuGVd3R5dJqQ2WeTg/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 14 Nov 2022 15:24:27 GMT
content-type: image/gif
content-length: 1607696
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:45 GMT
cache-control: max-age=2592000
x-delay: 955 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1607696
chid: 0
fid: 0
x-nws-log-uuid: 07f275f6-bd18-4c27-bc65-69983aeb29ed
X-Firefox-Spdy: h2
p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
43.129.255.47200 OK 1.4 MB URL HTTP/2 p.qlogo.cn/qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 640 x 200\012- data
Size 1.4 MB (1362871 bytes)
Hash b43c54ced7fcd33ebd9405eb26d533b7
05e5eb23ef5a79364bc8f8fd778d54a9fa335174
7db80c626560b0016fd427d864bb6116a44a858eb7968728cd872814939a24b2
GET /qqmail_head/ajNVdqHZLLBTqF8e2kN78G9Zt8uAv6By0U3zmELvuZSJJkZNBPXDBGibpXqaicajKqyibnCUUUEomk/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
content-length: 1362871
vary: Accept,Origin
last-modified: Sat, 10 Jul 2021 16:21:47 GMT
cache-control: max-age=2592000
x-delay: 633 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 1362871
chid: 0
fid: 0
x-nws-log-uuid: 055d1a0b-1ac2-460a-a02a-38e5e126ee06
X-Firefox-Spdy: h2
n0644.com/5dc2a794d761474ebf370f934be4c237.gif
20.243.254.232200 OK 0 B URL HTTP/2 n0644.com/5dc2a794d761474ebf370f934be4c237.gif
IP 20.243.254.232:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /5dc2a794d761474ebf370f934be4c237.gif HTTP/1.1
Host: n0644.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Mon, 14 Nov 2022 08:12:22 GMT
etag: W/"6371f866-56578"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
img.9565x.com/images/636ba68efeeb8010d1e7baf8.gif
23.225.228.58302 Found 0 B URL HTTP/2 img.9565x.com/images/636ba68efeeb8010d1e7baf8.gif
IP 23.225.228.58:0
GET /images/636ba68efeeb8010d1e7baf8.gif HTTP/1.1
Host: img.9565x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://static.yximgs.com/bs2/adcarsku/skud48ff3dc-abc1-449c-8ac1-d74e02429580.gif
cache-control: max-age=3600
X-Firefox-Spdy: h2
img.8729x.com/images/636b9812bc00ae02cb23ef7c.gif
23.225.228.58302 Found 0 B URL HTTP/2 img.8729x.com/images/636b9812bc00ae02cb23ef7c.gif
IP 23.225.228.58:0
GET /images/636b9812bc00ae02cb23ef7c.gif HTTP/1.1
Host: img.8729x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://ali.static.yximgs.com/bs2/adcarsku/sku166178af-9fd2-4f28-bc2c-ac5ec93b75ac.gif
cache-control: max-age=3600
X-Firefox-Spdy: h2
n0611.com/3c18de7f686c47228115c812896c57cd.gif
20.243.255.199200 OK 0 B URL HTTP/2 n0611.com/3c18de7f686c47228115c812896c57cd.gif
IP 20.243.255.199:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /3c18de7f686c47228115c812896c57cd.gif HTTP/1.1
Host: n0611.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Mon, 14 Nov 2022 08:11:50 GMT
etag: W/"6371f846-57818"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
img.9212x.com/images/6360ffd4f063a0336d55a5a7.gif
23.225.228.58302 Found 0 B URL HTTP/2 img.9212x.com/images/6360ffd4f063a0336d55a5a7.gif
IP 23.225.228.58:0
GET /images/6360ffd4f063a0336d55a5a7.gif HTTP/1.1
Host: img.9212x.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://ali.static.yximgs.com/bs2/adcarsku/sku33c954fa-20f2-4947-bd62-8ca345db9212.gif
cache-control: max-age=3600
X-Firefox-Spdy: h2
img.u1119.com/images/6360ff96f063a0336d55a5a5.gif
23.225.228.58302 Found 0 B URL HTTP/2 img.u1119.com/images/6360ff96f063a0336d55a5a5.gif
IP 23.225.228.58:0
GET /images/6360ff96f063a0336d55a5a5.gif HTTP/1.1
Host: img.u1119.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
location: https://static.yximgs.com/bs2/adcarsku/skubf4ff4d0-a743-497b-bdf4-e66375c07bde.gif
cache-control: max-age=3600
X-Firefox-Spdy: h2
n0611.com/799aecd88e544cf0b590eca815a4f1cc.gif
20.243.255.199200 OK 0 B URL HTTP/2 n0611.com/799aecd88e544cf0b590eca815a4f1cc.gif
IP 20.243.255.199:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /799aecd88e544cf0b590eca815a4f1cc.gif HTTP/1.1
Host: n0611.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Mon, 14 Nov 2022 08:33:18 GMT
etag: W/"6371fd4e-1d8d"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
n0499.com/7dea3111e3d34091b83a1e8633647fd6.gif
20.18.120.113200 OK 0 B URL HTTP/2 n0499.com/7dea3111e3d34091b83a1e8633647fd6.gif
IP 20.18.120.113:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /7dea3111e3d34091b83a1e8633647fd6.gif HTTP/1.1
Host: n0499.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Mon, 14 Nov 2022 08:10:37 GMT
etag: W/"6371f7fd-80eeb"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
n0633.com/82e9bf59fe8e4935a0592bfd89e5df4f.gif
20.243.255.199200 OK 0 B URL HTTP/2 n0633.com/82e9bf59fe8e4935a0592bfd89e5df4f.gif
IP 20.243.255.199:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /82e9bf59fe8e4935a0592bfd89e5df4f.gif HTTP/1.1
Host: n0633.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://149.29.127.147/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 15:24:26 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Mon, 14 Nov 2022 08:12:59 GMT
etag: W/"6371f88b-64308"
server: WAF/2.4-12.1
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2