38.14.158.231 0 B IP 38.14.158.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /6/ HTTP/1.1
Host: 2tawk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 07 May 2024 14:31:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.2tawk.com/6/
38.14.158.231 578 B IP 38.14.158.231:0
File type HTML document, ISO-8859 text, with very long lines (811), with CRLF line terminators
Hash 8b05bc38f0e355171aaa0f7c4d91ec43
ae9d95b77ac64b9249345ca571f435c4994fb5fb
d0e2ceecd381428f7adda9e5118c3a91484c71735d49970c7fae827875cb81ce
GET /6/ HTTP/1.1
Host: www.2tawk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 14:31:06 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.2tawk.com/common.js
38.14.158.231200 OK 1.2 kB IP 38.14.158.231:80
File type JavaScript source, ASCII text, with very long lines (523), with CRLF line terminators
Hash 27ff88a27fec815e04d384f26a39d9d2
2a8d999548f6ef4ebf511203692b4ee6d4c3a991
e0cc2459b1fe250b311e4069d99ef59d8b32df3464da10e32066230e80a15426
GET /common.js HTTP/1.1
Host: www.2tawk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/6/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 14:31:06 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.2tawk.com/tj.js
38.14.158.231200 OK 258 B IP 38.14.158.231:80
File type JavaScript source, ASCII text, with CRLF line terminators
Hash 563f08146eefbcdb91af610f03907882
e086c2d9935f945a909996020dd17b066cb44e4b
53a9d8b764e4e32a895986d0dc7ee85444bc67280ac1531cf3b128c572f2c7ce
GET /tj.js HTTP/1.1
Host: www.2tawk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/6/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 14:31:06 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.2tawk.com/favicon.ico
38.14.158.231200 OK 1.2 kB URL GET HTTP/1.1 www.2tawk.com/favicon.ico
IP 38.14.158.231:80
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.2tawk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/6/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 14:31:07 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sun, 12 May 2024 14:31:07 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
push.zhanzhang.baidu.com/push.js
182.61.201.93200 OK 227 B URL GET HTTP/1.1 push.zhanzhang.baidu.com/push.js
IP 182.61.201.93:80
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with no line terminators
Hash 1bb5a3267c9865ad4abe8d937734b62b
b5478dd2edb3e64242eced1db2dbd945ef81f592
674bc0c70f98d627b8a7e1d278a1f21ffe33815565f7d5371bf0275da57571b2
GET /push.js HTTP/1.1
Host: push.zhanzhang.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/javascript
Date: Tue, 07 May 2024 14:31:08 GMT
Etag: "4078521116"
Expires: Wed, 07 May 2025 14:31:08 GMT
Last-Modified: Wed, 25 Nov 2015 07:47:55 GMT
P3p: CP=" OTI DSP COR IVA OUR IND COM "
Server: apache
Set-Cookie: BAIDUID=B9734376ACD8FCC7A0F2B8D975A183EE:FG=1; max-age=31536000; expires=Wed, 07-May-25 14:31:08 GMT; domain=.baidu.com; path=/; version=1
Vary: Accept-Encoding
welcome.kv12faf-cjd4ks6d.vip/
107.148.151.45200 OK 14 kB URL GET HTTP/2 welcome.kv12faf-cjd4ks6d.vip/
IP 107.148.151.45:443
Certificate IssuerLet's Encrypt
Subjectwelcome.ask39dka-3j3kds.vip
Fingerprint73:66:FC:AB:75:10:94:25:33:2B:B8:66:07:56:45:BD:BF:5D:31:28
ValiditySun, 05 May 2024 07:52:42 GMT - Sat, 03 Aug 2024 07:52:41 GMT
File type HTML document, Unicode text, UTF-8 text
Hash cae2a707fbab106410f548a77fa68e81
f659c714265dd11eb61f9a8d1c2691e8ed5779b2
2165ee2db741a4ea1b36e9fdd67afde67805f7a93a4c76150d9178ee01fd21f1
GET / HTTP/1.1
Host: welcome.kv12faf-cjd4ks6d.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 14316
content-type: text/html; charset=utf-8
date: Tue, 07 May 2024 14:31:08 GMT
server: Apache
X-Firefox-Spdy: h2
sta2.imgclh.com/imgs/2023/04/03/8fc08c0346fcc0a4.gif
172.67.197.136200 OK 141 kB URL GET HTTP/2 sta2.imgclh.com/imgs/2023/04/03/8fc08c0346fcc0a4.gif
IP 172.67.197.136:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGoogle Trust Services LLC
Subjectimgclh.com
Fingerprint5E:47:41:BD:54:79:7A:E5:8A:08:61:55:D2:A3:F0:19:89:8F:FC:D3
ValidityTue, 26 Mar 2024 05:00:44 GMT - Mon, 24 Jun 2024 05:00:43 GMT
File type GIF image data, version 89a, 960 x 100
Size 141 kB (140774 bytes)
Hash f0e441ef3131255acdf935206c0d3635
03e14b2f6c54d3342f389fe5d773ee05e8b809fd
8d23939f6175a7229124ae55c8cd5920f2550138ee3ca273d4c708787d3090af
GET /imgs/2023/04/03/8fc08c0346fcc0a4.gif HTTP/1.1
Host: sta2.imgclh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:31:09 GMT
content-type: image/gif
content-length: 140774
last-modified: Mon, 03 Apr 2023 09:16:52 GMT
etag: "642a9984-225e6"
expires: Thu, 30 May 2024 18:39:51 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 589877
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XkA723zn5sOb3cJTTwCCF9gHSW6uaP6mw712RhJgqmBYvjUvSPjNBjnE1G2jRZEdY306YXjq5acn1vefELnJ%2BxGyZXcglpCO4Bjz9UWDBQCN1FzjIYC2W3qRv5HeF2MUn9w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8801e97aed92b4f1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/ads/tb.js
107.148.151.45200 OK 540 B URL GET HTTP/2 welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/ads/tb.js
IP 107.148.151.45:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectwelcome.ask39dka-3j3kds.vip
Fingerprint73:66:FC:AB:75:10:94:25:33:2B:B8:66:07:56:45:BD:BF:5D:31:28
ValiditySun, 05 May 2024 07:52:42 GMT - Sat, 03 Aug 2024 07:52:41 GMT
File type HTML document, Unicode text, UTF-8 text
Hash 61431b00daf22e53d6afa46306081186
709e9922fefc425f324c1c5677daece98123878a
d109ee25f25c587923f9122c5623930134e473dcd4c1a32d496c53b35b8198cd
GET /template/m1938pc/ads/tb.js HTTP/1.1
Host: welcome.kv12faf-cjd4ks6d.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 06:16:17 GMT
etag: "7bc-616d19bbb8e40-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 540
content-type: text/javascript
date: Tue, 07 May 2024 14:31:09 GMT
server: Apache
X-Firefox-Spdy: h2
welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/images/1.gif
107.148.151.45200 OK 254 B URL GET HTTP/2 welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/images/1.gif
IP 107.148.151.45:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectwelcome.ask39dka-3j3kds.vip
Fingerprint73:66:FC:AB:75:10:94:25:33:2B:B8:66:07:56:45:BD:BF:5D:31:28
ValiditySun, 05 May 2024 07:52:42 GMT - Sat, 03 Aug 2024 07:52:41 GMT
File type GIF image data, version 89a, 16 x 17
Hash b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef
GET /template/m1938pc/images/1.gif HTTP/1.1
Host: welcome.kv12faf-cjd4ks6d.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Aug 2023 11:58:22 GMT
etag: "fe-60290500f7380"
accept-ranges: bytes
content-length: 254
content-type: image/gif
date: Tue, 07 May 2024 14:31:09 GMT
server: Apache
X-Firefox-Spdy: h2
welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/css/ate.css
107.148.151.45200 OK 4.5 kB URL GET HTTP/2 welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/css/ate.css
IP 107.148.151.45:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectwelcome.ask39dka-3j3kds.vip
Fingerprint73:66:FC:AB:75:10:94:25:33:2B:B8:66:07:56:45:BD:BF:5D:31:28
ValiditySun, 05 May 2024 07:52:42 GMT - Sat, 03 Aug 2024 07:52:41 GMT
File type ASCII text, with CRLF line terminators
Hash 507a51f8b1d147fcf60eb2a898690259
e630900e6a1a0434719c5bdaf655362313e7e33c
9a9afeb3b64f2b7ccce5b842929a2fed579e24450e6c436386e7956b2de8e12a
GET /template/m1938pc/css/ate.css HTTP/1.1
Host: welcome.kv12faf-cjd4ks6d.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Aug 2022 07:27:10 GMT
etag: "126e5-5e5ddfa188f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4527
content-type: text/css
date: Tue, 07 May 2024 14:31:09 GMT
server: Apache
X-Firefox-Spdy: h2
welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/css/zui.css
107.148.151.45200 OK 25 kB URL GET HTTP/2 welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/css/zui.css
IP 107.148.151.45:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectwelcome.ask39dka-3j3kds.vip
Fingerprint73:66:FC:AB:75:10:94:25:33:2B:B8:66:07:56:45:BD:BF:5D:31:28
ValiditySun, 05 May 2024 07:52:42 GMT - Sat, 03 Aug 2024 07:52:41 GMT
File type assembler source, Unicode text, UTF-8 (with BOM) text
Hash 5660a22ccd545550e17c4ac22fe72135
a35b2c5e39c20cc8a1f6ded28a7adb521cc49a3f
aff7ebc6015eb363a857aeb10e4f104f2adf868573874d3db2fab2aa93e866c0
GET /template/m1938pc/css/zui.css HTTP/1.1
Host: welcome.kv12faf-cjd4ks6d.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 16 Sep 2023 13:41:04 GMT
etag: "1bf31-6057a0f78fc00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 25171
content-type: text/css
date: Tue, 07 May 2024 14:31:09 GMT
server: Apache
X-Firefox-Spdy: h2
www.imageoss.com/images/2024/05/07/150-17e009a74d7d764f2.gif
172.67.172.31200 OK 59 kB URL GET HTTP/2 www.imageoss.com/images/2024/05/07/150-17e009a74d7d764f2.gif
IP 172.67.172.31:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.imageoss.com
Fingerprint22:E5:D9:26:5F:EF:F4:BB:5F:C4:89:75:69:9A:66:FA:B2:BF:44:CB
ValidityFri, 03 May 2024 20:37:34 GMT - Thu, 01 Aug 2024 20:37:33 GMT
File type GIF image data, version 89a, 150 x 150
Hash cb7ed2cddfd87e48f2ac30b32ab91049
fee39c6733e42d547294d01efe849389798ea744
68800044a7d96856376fa6f4557a86178b68f1454e66da29503edce2fe941594
GET /images/2024/05/07/150-17e009a74d7d764f2.gif HTTP/1.1
Host: www.imageoss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:31:09 GMT
content-type: image/gif
content-length: 59002
last-modified: Tue, 07 May 2024 06:16:15 GMT
etag: "6639c72f-e67a"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 26691
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jL%2FN9le6tvoLKSRIVMAzdRkoWsQ3gg5vALNvxOX3TbMGMixo2VSx7vxfOSiZuPF1E9x5Icp86zm%2FE6SGilq5U14NpKYlx0XWmXctNsqevDjWuUfVYgIJD9Jpw%2BFOoZsLpXTQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8801e97f2dfa0b4d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
xl.cdn-xxx.com/image/ZB-27.gif
104.27.195.88200 OK 129 kB URL GET HTTP/2 xl.cdn-xxx.com/image/ZB-27.gif
IP 104.27.195.88:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGoogle Trust Services LLC
Subjectcdn-xxx.com
Fingerprint3B:63:53:AC:40:B2:C4:4B:37:61:1E:F8:DE:1C:3A:95:C2:AB:8B:DD
ValidityTue, 19 Mar 2024 20:12:51 GMT - Mon, 17 Jun 2024 20:12:50 GMT
File type GIF image data, version 89a, 100 x 100
Size 129 kB (129448 bytes)
Hash 30f951936925b0f6d91a8f94201c6ada
02c3e8ac0b626534d0110f6b8122f2e9bce3f895
7b7c9fe6c6d0e22d8661be16420e4604daf94337b785213b9f2a67b7f3ce2b60
GET /image/ZB-27.gif HTTP/1.1
Host: xl.cdn-xxx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:31:09 GMT
content-type: image/gif
content-length: 129448
cache-control: max-age=2592000
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "6537d617-1f9a8"
expires: Fri, 17 May 2024 19:05:50 GMT
last-modified: Tue, 24 Oct 2023 14:35:03 GMT
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 589871
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m7msP2l%2F0YFeXskqS41j0MLB1j4%2FVJy01AU%2BpxrVcLYILVWHJYiyEaFXu5009cq05qLgGbp20FS7rgsqQCIsmlQtTQ9DiT9CokOlfBOeKu%2FKUsTtXb8c7%2FQQIDkvjIEu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8801e97f2ab856a9-OSL
X-Firefox-Spdy: h2
img.mresou.com/img/23062801.jpg
104.21.233.160200 OK 22 kB URL GET HTTP/2 img.mresou.com/img/23062801.jpg
IP 104.21.233.160:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGoogle Trust Services LLC
Subjectmresou.com
Fingerprint13:28:3B:89:15:85:FA:0C:8F:C8:8A:DD:C5:63:05:02:C3:CD:ED:12
ValidityMon, 29 Apr 2024 20:40:01 GMT - Sun, 28 Jul 2024 20:40:00 GMT
File type JPEG image data, baseline, precision 8, 150x150, components 3
Hash fc0bb56254e0b8f96d0f1d2d8dd201c1
5e8bd71f34e2b7e3118cbc3b59befb0199ae9652
b1fc501c0b4187b1ce60e643322dfd2cee729fe3fa24a55dadb7fb9c0d4645bf
GET /img/23062801.jpg HTTP/1.1
Host: img.mresou.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:31:10 GMT
content-type: image/jpeg
content-length: 22364
last-modified: Wed, 28 Jun 2023 13:01:19 GMT
etag: "649c2f1f-575c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 3949565
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lJMRD43V4cRULqrSNlRdWYnd9Soi57i8OCkKAyDBkCTHUfD4yTThvnDPwhU8V7WMcJbqJuGUjk1C8oh7ioE3jTJAwq3%2F%2B%2FSqTgpMZzFZsmbiD9pDhX2Lsr27TxVathm5TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8801e97f7f3677b7-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
666bbb333www.com/eef93f954ba840d0994b763a1fc78c04.gif
64.32.19.13200 OK 55 kB URL GET HTTP/1.1 666bbb333www.com/eef93f954ba840d0994b763a1fc78c04.gif
IP 64.32.19.13:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subject333bbb666www.com
FingerprintC2:0D:FC:64:B3:A3:78:DB:EA:4F:0C:0A:3A:21:DB:4F:FC:09:21:DA
ValidityThu, 04 Apr 2024 12:17:04 GMT - Wed, 03 Jul 2024 12:17:03 GMT
File type GIF image data, version 89a, 300 x 200
Hash 6a74268586745b61539e595a16e9fdc2
aa50489929b670f3d27c0d6a145123daeb26c122
3ecfab23f2f85af5e9d301cbc3b132706b2af6e3fb13a9d3a60d1bcec64bb5af
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /eef93f954ba840d0994b763a1fc78c04.gif HTTP/1.1
Host: 666bbb333www.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 14:31:09 GMT
Content-Type: image/gif
Content-Length: 54826
Connection: keep-alive
Last-Modified: Thu, 02 May 2024 07:57:14 GMT
ETag: "6633475a-d62a"
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
r9n9ej2gmhde.sisiyy.com/2024/6117/960-120.webp
143.204.55.97200 OK 311 kB URL GET HTTP/2 r9n9ej2gmhde.sisiyy.com/2024/6117/960-120.webp
IP 143.204.55.97:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectr9n9ej2gmhde.sisiyy.com
FingerprintA2:DD:60:24:90:77:5C:0D:20:0C:AE:36:DA:66:83:14:B9:7F:8C:61
ValidityTue, 19 Mar 2024 06:47:03 GMT - Fri, 18 Apr 2025 06:47:02 GMT
File type RIFF (little-endian) data, Web/P image
Size 311 kB (311022 bytes)
Hash 7f7a16586f254cae9cacdb909f04a356
60a2fb5297cb85b5b33db030cbefe44e6cfc9bb5
d860295b4550a848afd917d6bfa658013094df9f49837673046045cd74a77bf1
GET /2024/6117/960-120.webp HTTP/1.1
Host: r9n9ej2gmhde.sisiyy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 311022
server: openresty
date: Mon, 29 Apr 2024 09:15:57 GMT
accept-ranges: bytes
etag: "6613e62b-4beee"
last-modified: Mon, 08 Apr 2024 12:42:19 GMT
x-m-log: QNM:dal125;QNM3
x-m-reqid: 40kAAOQZxEt9tcoX
x-qnm-cache: Hit
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 1577789
access-control-max-age: 129600
cache-control: Max-Age=129600
x-az-kvs-duration: 0
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y-NYK3dURBsFQ_TSCOyHJ68nWSx4ZtRRZIgmYlI5GUuQUbrjysXGWw==
X-Firefox-Spdy: h2
r9n9ej2gmhde.sisiyy.com/2024/8878/960-120.webp
143.204.55.97200 OK 312 kB URL GET HTTP/2 r9n9ej2gmhde.sisiyy.com/2024/8878/960-120.webp
IP 143.204.55.97:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectr9n9ej2gmhde.sisiyy.com
FingerprintA2:DD:60:24:90:77:5C:0D:20:0C:AE:36:DA:66:83:14:B9:7F:8C:61
ValidityTue, 19 Mar 2024 06:47:03 GMT - Fri, 18 Apr 2025 06:47:02 GMT
File type RIFF (little-endian) data, Web/P image
Size 312 kB (311578 bytes)
Hash 4e5927ed835b806fa5c31debb2cfdf34
2c862aa1eb52a11bd1445dedb2530a429ab94dbd
0187a8bbe5684d521a68ab0ecabd2c54b6ee7800e0f62da62287275ce8ca28b6
GET /2024/8878/960-120.webp HTTP/1.1
Host: r9n9ej2gmhde.sisiyy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 311578
server: openresty
date: Mon, 29 Apr 2024 09:15:57 GMT
accept-ranges: bytes
etag: "6613e650-4c11a"
last-modified: Mon, 08 Apr 2024 12:42:56 GMT
x-m-log: QNM:dal129;QNM3
x-m-reqid: agwAACApSUt9tcoX
x-qnm-cache: Hit
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 1577783
access-control-max-age: 129600
cache-control: Max-Age=129600
x-az-kvs-duration: 0
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bxgGx1vHDX4EhfhCjyGjJbFSYPYMXazvpv2z6CcJu-e2cDFfDKJgpQ==
X-Firefox-Spdy: h2
r9n9ej2gmhde.sisiyy.com/2024/9666/960-120.webp
143.204.55.97200 OK 251 kB URL GET HTTP/2 r9n9ej2gmhde.sisiyy.com/2024/9666/960-120.webp
IP 143.204.55.97:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectr9n9ej2gmhde.sisiyy.com
FingerprintA2:DD:60:24:90:77:5C:0D:20:0C:AE:36:DA:66:83:14:B9:7F:8C:61
ValidityTue, 19 Mar 2024 06:47:03 GMT - Fri, 18 Apr 2025 06:47:02 GMT
File type RIFF (little-endian) data, Web/P image
Size 251 kB (251160 bytes)
Hash 03ddb2504bdbddd6bb6f1c86220ba393
d270d799d5a352fa1dbc28498cceacf98dbadc02
e0100aa0e1be2544d644e0f44198a680e9c0d1ef62af7cb5ac35cc2db9f73ddc
GET /2024/9666/960-120.webp HTTP/1.1
Host: r9n9ej2gmhde.sisiyy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 251160
server: openresty
date: Mon, 29 Apr 2024 09:16:13 GMT
accept-ranges: bytes
etag: "661d3370-3d518"
last-modified: Mon, 15 Apr 2024 14:02:24 GMT
x-m-log: QNM:dal125;QNM3
x-m-reqid: 40kAAIM079GAtcoX
x-qnm-cache: Hit
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
age: 1577774
access-control-max-age: 129600
cache-control: Max-Age=129600
x-az-kvs-duration: 0
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WFN_l6MhUM99QaGhHSMoWXVQ_8BqTJy24HvS9kM78kmGX3FvWZncPg==
X-Firefox-Spdy: h2
welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/images/video-play.png
107.148.151.45200 OK 1.6 kB URL GET HTTP/2 welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/images/video-play.png
IP 107.148.151.45:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectwelcome.ask39dka-3j3kds.vip
Fingerprint73:66:FC:AB:75:10:94:25:33:2B:B8:66:07:56:45:BD:BF:5D:31:28
ValiditySun, 05 May 2024 07:52:42 GMT - Sat, 03 Aug 2024 07:52:41 GMT
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced
Hash be7ca0a4a7c0317398a11162b1e09b75
5dbe6a02524cfbf5f5111478a71f91a9259056b5
cbad06b58f97516faa5f745d4e09716b5db3f134d5b4644b159681aa24909dd4
GET /template/m1938pc/images/video-play.png HTTP/1.1
Host: welcome.kv12faf-cjd4ks6d.vip
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/template/m1938pc/css/zui.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Aug 2022 07:27:16 GMT
etag: "61f-5e5ddfa741d00"
accept-ranges: bytes
content-length: 1567
content-type: image/png
date: Tue, 07 May 2024 14:31:10 GMT
server: Apache
X-Firefox-Spdy: h2
api.share.baidu.com/s.gif?l=http://www.2tawk.com/6/
182.61.201.94200 OK 0 B URL GET HTTP/1.1 api.share.baidu.com/s.gif?l=http://www.2tawk.com/6/
IP 182.61.201.94:80
ASN #38365 Beijing Baidu Netcom Science and Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s.gif?l=http://www.2tawk.com/6/ HTTP/1.1
Host: api.share.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Date: Tue, 07 May 2024 14:31:10 GMT
photos.ecxvl.com/hjll.gif
172.67.204.98200 OK 1.1 MB URL GET HTTP/2 photos.ecxvl.com/hjll.gif
IP 172.67.204.98:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectecxvl.com
FingerprintF6:A7:45:E7:10:2A:94:61:83:82:BB:91:F7:7E:5B:33:7F:C4:2C:A4
ValidityWed, 03 Apr 2024 00:03:55 GMT - Tue, 02 Jul 2024 00:03:54 GMT
File type GIF image data, version 89a, 150 x 150
Size 1.1 MB (1139163 bytes)
Hash ae1c8abc72c71312897caea272408ddc
3a4a8479f355c5aa713b41f3ea5ed541fb67cbd6
875bca6650e2e18e7d2871df2bfb0e067e8f0df59e69cd8a9028c93c2e8da82c
GET /hjll.gif HTTP/1.1
Host: photos.ecxvl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:31:10 GMT
content-type: image/gif
content-length: 1139163
last-modified: Mon, 29 Jan 2024 12:45:57 GMT
etag: "65b79e05-1161db"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7E2aojjeiQzQDXkKM8S%2B5lCZ2X8lLLXZM6DVFK3KsSidAeqKoB35Um1oi3ogotKD7H1rFBUeclOPA584JhfcFDCWKF2TPT8uDGp5rNTuLZ4%2FvdjC5uxrN3fjTM%2BUnxgc4Q8T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8801e97f3e4db521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
777bbb333www.com/b81d01c2191d4544a7af79a021eb9839.gif
64.32.30.252200 OK 276 kB URL GET HTTP/1.1 777bbb333www.com/b81d01c2191d4544a7af79a021eb9839.gif
IP 64.32.30.252:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subject333bbb666www.com
FingerprintC2:0D:FC:64:B3:A3:78:DB:EA:4F:0C:0A:3A:21:DB:4F:FC:09:21:DA
ValidityThu, 04 Apr 2024 12:17:04 GMT - Wed, 03 Jul 2024 12:17:03 GMT
File type GIF image data, version 89a, 960 x 120
Size 276 kB (275557 bytes)
Hash 11860f404faba7f60bb234c85667399a
4fe02c13af45dd4cabbb1a382ad822b0552cbf02
da719a94a6242190011b6b84f65cb5ddd9a7c378a3769a0fa1579816f806656d
GET /b81d01c2191d4544a7af79a021eb9839.gif HTTP/1.1
Host: 777bbb333www.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 14:31:09 GMT
Content-Type: image/gif
Content-Length: 275557
Connection: keep-alive
Last-Modified: Thu, 02 May 2024 08:46:09 GMT
ETag: "663352d1-43465"
Server: cdn
X-Cache-Status: HIT
Accept-Ranges: bytes
taiwtp1.com/xin/96060.gif
220.128.218.220200 OK 69 kB URL GET HTTP/2 taiwtp1.com/xin/96060.gif
IP 220.128.218.220:443
ASN #3462 Data Communication Business Group
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjecttaiwtp1.com
FingerprintB0:43:78:32:80:A7:A0:F7:9E:6A:67:05:7A:BC:88:85:19:E6:24:E9
ValidityFri, 08 Mar 2024 08:00:28 GMT - Thu, 06 Jun 2024 08:00:27 GMT
File type GIF image data, version 89a, 960 x 60
Hash 1b81020d4419f48ddf8aaa0b7ce34a5c
432154678099ca224ed82b2490a33e5d78f510d5
8a88cbb8fdc88c9da52cdbf3467d9c8b9bed2821135ee631cb877b024bc34aa2
GET /xin/96060.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Apr 2011 19:48:53 GMT
content-type: image/gif
content-length: 68564
last-modified: Thu, 20 Oct 2022 07:11:01 GMT
etag: "6350f485-10bd4"
expires: Thu, 05 May 2011 19:48:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?79e9f7e1fcbaf25401c84e3d008280de
111.45.11.83200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?79e9f7e1fcbaf25401c84e3d008280de
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (615)
Hash e1ae1a79c7fc5110009dc37fda49775e
e3fc350c59007a19f6e9eda0a1ee88b59c38032b
073181c154bcbf5e596eac832f80f793be030a37aca11627939eb9e8a596991d
GET /hm.js?79e9f7e1fcbaf25401c84e3d008280de HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11253
Content-Type: application/javascript
Date: Tue, 07 May 2024 14:31:10 GMT
Etag: 03678a0cac11b8fa02cdf5052c93127c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=A8A8A288DE7E610C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
q6h-vza.com/sq960-120.gif
198.16.54.35200 OK 233 kB URL GET HTTP/2 q6h-vza.com/sq960-120.gif
IP 198.16.54.35:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subject2we-y3h.com
FingerprintDC:38:36:01:99:05:32:6D:C0:9E:06:87:8C:AC:4D:1B:88:D6:B4:26
ValidityWed, 24 Apr 2024 12:04:52 GMT - Tue, 23 Jul 2024 12:04:51 GMT
File type GIF image data, version 89a, 960 x 120
Size 233 kB (232959 bytes)
Hash 326cce373c636a893a98174893a1d356
d9e61854af6bf6b2eb07db4cbade6d23c5518a77
251f437d5789b5d5647e5c8c59ff3abd2f6b2ebac80a30f02b3f8821e88a3a22
GET /sq960-120.gif HTTP/1.1
Host: q6h-vza.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 14:31:10 GMT
content-type: image/gif
content-length: 232959
last-modified: Wed, 24 Apr 2024 12:15:23 GMT
etag: "38dff-616d69ff96cc0"
server: cdn-ddos-cc
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/247445232810a3a68424ff892d6c6cb2.jpg
209.142.71.122200 OK 96 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/247445232810a3a68424ff892d6c6cb2.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Hash 118b7ef2b1978af0b5efdbfa768b1e42
37a49daed3f61a86ab1a72b4af9c73031bdc289c
90a7eb7219f61f2101c007780f5a3248d4458173a3f3140281fc9bd6722db5e2
GET /upload/vod/20240507-1/247445232810a3a68424ff892d6c6cb2.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 95520
last-modified: Tue, 07 May 2024 09:12:18 GMT
etag: "6639f072-17520"
expires: Thu, 06 Jun 2024 09:16:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/7d3412e6b433ad6fbf002120cde1d22e.jpg
209.142.71.122200 OK 105 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/7d3412e6b433ad6fbf002120cde1d22e.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 105 kB (105248 bytes)
Hash cfbc7f92ed811d051950e7562f7ab7db
a47f48c6b4cf1734c5b6b75f1293d4e0aac4f1c9
09760356bec82c7c7533d7ddf84cb257180146538ae548226aee09bf138a56e2
GET /upload/vod/20240507-1/7d3412e6b433ad6fbf002120cde1d22e.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 105248
last-modified: Tue, 07 May 2024 09:12:22 GMT
etag: "6639f076-19b20"
expires: Thu, 06 Jun 2024 09:13:59 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.1378a.xyz/images/64fb1d13ddcc4d32f6ac6c5f.gif
43.202.168.202302 Found 0 B URL GET HTTP/2 img.1378a.xyz/images/64fb1d13ddcc4d32f6ac6c5f.gif
IP 43.202.168.202:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subject1378a.xyz
FingerprintA0:18:F8:8A:74:D1:1D:87:10:87:50:0A:07:CF:C0:59:D2:D3:02:67
ValidityTue, 07 May 2024 04:23:40 GMT - Mon, 05 Aug 2024 04:23:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/64fb1d13ddcc4d32f6ac6c5f.gif HTTP/1.1
Host: img.1378a.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
referrer-policy: no-referrer
cache-control: max-age=600
location: https://imgsrc.baidu.com/tieba/pic/item/37d3d539b6003af351f54256732ac65c1038b6bd.jpg
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/8f9673b2e6c371219be07381561cf90b.jpg
209.142.71.122200 OK 114 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/8f9673b2e6c371219be07381561cf90b.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 114 kB (114160 bytes)
Hash 2c1a55f99736fc2487181338106cc38e
160812910921aea55b14baa2aa75578f9e2973d4
24aeab0b8085eeca99b41c987f28450a329c072d7eced884dd2ac16b75316c94
GET /upload/vod/20240507-1/8f9673b2e6c371219be07381561cf90b.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 114160
last-modified: Tue, 07 May 2024 09:12:24 GMT
etag: "6639f078-1bdf0"
expires: Thu, 06 Jun 2024 09:13:59 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/0bc749eeaa88b18dd5847849ef026a76.jpg
209.142.71.122200 OK 98 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/0bc749eeaa88b18dd5847849ef026a76.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Hash 5db62472fcb5ffbcae9eaad5a2ea2a49
140c429e52cb525819b05357f74271e0febf98a9
db0cdb6d204c80d935c6aafce9c55b229f05280e3ce1167097c790b91ad0440f
GET /upload/vod/20240507-1/0bc749eeaa88b18dd5847849ef026a76.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 97776
last-modified: Tue, 07 May 2024 09:12:23 GMT
etag: "6639f077-17df0"
expires: Thu, 06 Jun 2024 09:13:59 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/dce663b009360bc4cec9ee9bfcb2ea9f.jpg
209.142.71.122200 OK 101 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/dce663b009360bc4cec9ee9bfcb2ea9f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 101 kB (100976 bytes)
Hash 7b7c158571567a0955c8d341e1529e90
ca16b85a716532fb9140e97a6635f8d357b4e10c
9356f0aa48b65f2d18049a0ea23f6c69f4da8f005e781b1f9a96c3575e5ed79d
GET /upload/vod/20240507-1/dce663b009360bc4cec9ee9bfcb2ea9f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 100976
last-modified: Tue, 07 May 2024 09:12:21 GMT
etag: "6639f075-18a70"
expires: Thu, 06 Jun 2024 09:13:59 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/acb3e09fd11d2def8ac34012eed2b84f.jpg
209.142.71.122200 OK 117 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/acb3e09fd11d2def8ac34012eed2b84f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 117 kB (116832 bytes)
Hash 638f129c4212b4004ed0a93432de71ec
1f8866e82dd3472481b1f283eb32dc8678eb1568
015cb6297d289567d5e2157030445b6c2a285900c51905076086bbff9ab261c0
GET /upload/vod/20240507-1/acb3e09fd11d2def8ac34012eed2b84f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 116832
last-modified: Tue, 07 May 2024 09:12:20 GMT
etag: "6639f074-1c860"
expires: Thu, 06 Jun 2024 09:13:59 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/4737abdba807368625edcc2b445b8043.jpg
209.142.71.122200 OK 162 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/4737abdba807368625edcc2b445b8043.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 162 kB (162464 bytes)
Hash e673e7d04be5f577cd01e6cad401286f
80f344aecf4402501a6cda05557bac65b205fd5e
e92fd7faf7f68d03b1052e70db3b82bd8bbae38c4328194b3527592401243913
GET /upload/vod/20240507-1/4737abdba807368625edcc2b445b8043.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 162464
last-modified: Tue, 07 May 2024 09:12:19 GMT
etag: "6639f073-27aa0"
expires: Thu, 06 Jun 2024 09:16:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/fcb1236adf71d386c2e12f5bd424e21f.jpg
209.142.71.122200 OK 52 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/fcb1236adf71d386c2e12f5bd424e21f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash 348f3d8b14e94a0915a2a575b6b1a187
342e1872de515b39ad1964efa66f33e48ba9dfb8
f7d20718090f92fcc1eceec1437dc5b54ccc01c209341f217951bfdb97bf0a74
GET /upload/vod/20240507-1/fcb1236adf71d386c2e12f5bd424e21f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 52240
last-modified: Tue, 07 May 2024 09:12:11 GMT
etag: "6639f06b-cc10"
expires: Thu, 06 Jun 2024 09:16:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/0b23f462a517ef2984f6a06bfd13987c.jpg
209.142.71.122200 OK 60 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/0b23f462a517ef2984f6a06bfd13987c.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash 23690755b8baf267977bc3cd4e2ecf8d
515dd43bc7b9a531613d53c06862e8656b8d89a1
f6a71552c372343a3692c803003f17f3770547849f5ac6911a2f7e3c09b22d0a
GET /upload/vod/20240507-1/0b23f462a517ef2984f6a06bfd13987c.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 59712
last-modified: Tue, 07 May 2024 09:12:10 GMT
etag: "6639f06a-e940"
expires: Thu, 06 Jun 2024 09:16:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
files.catbox.moe/txctsq.gif
108.181.20.35200 OK 466 kB URL GET HTTP/2 files.catbox.moe/txctsq.gif
IP 108.181.20.35:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectcatbox.moe
Fingerprint39:D9:8F:B6:28:27:0B:83:FF:34:5D:CD:EF:B7:DC:17:C4:51:98:5B
ValidityThu, 29 Feb 2024 08:26:47 GMT - Wed, 29 May 2024 08:26:46 GMT
File type GIF image data, version 89a, 120 x 120
Size 466 kB (465779 bytes)
Hash c5dff16d1a18c3fe89bd8a29c128bb3d
26fe4a2634295930c232b485ccccf4fee7e8a5ff
2c9db7af23cd0f1293de474531c89c44c2f0cc89ab5d0d0ac4060abed17bef2d
GET /txctsq.gif HTTP/1.1
Host: files.catbox.moe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:31:10 GMT
content-type: image/gif
content-length: 465779
last-modified: Wed, 20 Dec 2023 08:48:48 GMT
etag: "6582aa70-71b73"
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://files.catbox.moe; style-src https://files.catbox.moe 'unsafe-inline'; img-src 'self' data:; font-src 'self'; media-src 'self'; object-src 'self';
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
X-Firefox-Spdy: h2
zhibo128x.xyz/18/180180.gif
38.34.183.126200 OK 246 kB URL GET HTTP/1.1 zhibo128x.xyz/18/180180.gif
IP 38.34.183.126:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectzhibo128x.xyz
Fingerprint67:A6:C6:63:35:88:F1:1A:13:2E:04:66:4B:FD:55:0A:1E:E1:37:79
ValidityMon, 04 Mar 2024 15:14:07 GMT - Sun, 02 Jun 2024 15:14:06 GMT
File type GIF image data, version 89a, 100 x 100
Size 246 kB (245681 bytes)
Hash 8410d45b2bc678e3d3f6bace277f0194
a34fdab4212014ce03f99c3e15a7a29575e17015
ade534d1d48ad181eb469060240e069ed836e853d47a9c7ff49fb7c32eaf315c
GET /18/180180.gif HTTP/1.1
Host: zhibo128x.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 07 May 2024 14:31:10 GMT
Content-Type: image/gif
Content-Length: 245681
Connection: keep-alive
Last-Modified: Wed, 05 Jul 2023 18:14:43 GMT
ETag: "64a5b313-3bfb1"
Expires: Wed, 01 May 2024 08:42:59 GMT
Cache-Control: max-age=2592000
Via: mycdn
CDN-Cache: HIT
Accept-Ranges: bytes
hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2074528115&si=79e9f7e1fcbaf25401c84e3d008280de&su=http%3A%2F%2Fwww.2tawk.com%2F&v=1.3.0&lv=1&sn=41321&r=0&ww=1280&u=https%3A%2F%2Fwelcome.kv12faf-cjd4ks6d.vip%2F&tt=%E6%AC%A2%E8%BF%8E%E5%85%89%E4%B8%B4-%E6%A8%B1%E8%8A%B1%E8%A7%86%E9%A2%91-%E6%88%90%E4%BA%BA%E5%BD%B1%E8%A7%86
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2074528115&si=79e9f7e1fcbaf25401c84e3d008280de&su=http%3A%2F%2Fwww.2tawk.com%2F&v=1.3.0&lv=1&sn=41321&r=0&ww=1280&u=https%3A%2F%2Fwelcome.kv12faf-cjd4ks6d.vip%2F&tt=%E6%AC%A2%E8%BF%8E%E5%85%89%E4%B8%B4-%E6%A8%B1%E8%8A%B1%E8%A7%86%E9%A2%91-%E6%88%90%E4%BA%BA%E5%BD%B1%E8%A7%86
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=2074528115&si=79e9f7e1fcbaf25401c84e3d008280de&su=http%3A%2F%2Fwww.2tawk.com%2F&v=1.3.0&lv=1&sn=41321&r=0&ww=1280&u=https%3A%2F%2Fwelcome.kv12faf-cjd4ks6d.vip%2F&tt=%E6%AC%A2%E8%BF%8E%E5%85%89%E4%B8%B4-%E6%A8%B1%E8%8A%B1%E8%A7%86%E9%A2%91-%E6%88%90%E4%BA%BA%E5%BD%B1%E8%A7%86 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 07 May 2024 14:31:11 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0CE8C02F83D581A4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
img.hgimg01.com/upload/vod/20240507-1/6fb1f9d44f0edd9f019e9dc0e3ec6898.jpg
209.142.71.122200 OK 43 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/6fb1f9d44f0edd9f019e9dc0e3ec6898.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x478, components 3
Hash 4369126da56e1f398f0e8623a7cedc40
8b06dd5cb9cccc297137dfa208ab5702c1115965
ad743478f653b3c5aa118a4fa11ea6ad4cb546eb782ac055784893074cf16f85
GET /upload/vod/20240507-1/6fb1f9d44f0edd9f019e9dc0e3ec6898.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 43270
last-modified: Tue, 07 May 2024 09:09:08 GMT
etag: "6639efb4-a906"
expires: Thu, 06 Jun 2024 09:15:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/514b97b392096a84ed6bb77f5196e4b1.jpg
209.142.71.122200 OK 42 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/514b97b392096a84ed6bb77f5196e4b1.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x478, components 3
Hash 00bb8d4ebfb49ce99d3a47d40d704bfe
65d32723595eb4e1ce6dc3bfb1d0dde2638ebfef
f0aee923679097454954609c4ec24858153af856d4fe06170e5a8d986cd503de
GET /upload/vod/20240507-1/514b97b392096a84ed6bb77f5196e4b1.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 42352
last-modified: Tue, 07 May 2024 09:09:07 GMT
etag: "6639efb3-a570"
expires: Thu, 06 Jun 2024 09:15:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/d29cb2f87dae5280ad21fa4b769b13ec.jpg
209.142.71.122200 OK 38 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/d29cb2f87dae5280ad21fa4b769b13ec.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 720x417, components 3
Hash 28fa36a4d5383f1a4c84e255f2aaaf58
525786d07b229c55b77981935a5bcc961311cebb
c3d11a5ba04dd38fd5885c93bf098bc2e97cb59b0c306c9e9050a650530bd61d
GET /upload/vod/20240506-1/d29cb2f87dae5280ad21fa4b769b13ec.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 38432
last-modified: Mon, 06 May 2024 05:52:10 GMT
etag: "6638700a-9620"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/71d3311210284c3de22bcff00637e8fd.jpg
209.142.71.122200 OK 48 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/71d3311210284c3de22bcff00637e8fd.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x476, components 3
Hash dd77d1d97ceb77a203692437c9e39dd7
19d85b2abddd5259a632ac5dbea68da8e072b334
4803b14f44f7aed337611e1ba8f0241920f543896271d5edb9987dd4da3059f3
GET /upload/vod/20240506-1/71d3311210284c3de22bcff00637e8fd.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 47989
last-modified: Mon, 06 May 2024 05:52:09 GMT
etag: "66387009-bb75"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/b18baac064449daa69a693ed8404fd34.jpg
209.142.71.122200 OK 48 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/b18baac064449daa69a693ed8404fd34.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x476, components 3
Hash dd77d1d97ceb77a203692437c9e39dd7
19d85b2abddd5259a632ac5dbea68da8e072b334
4803b14f44f7aed337611e1ba8f0241920f543896271d5edb9987dd4da3059f3
GET /upload/vod/20240506-1/b18baac064449daa69a693ed8404fd34.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 47989
last-modified: Mon, 06 May 2024 05:52:08 GMT
etag: "66387008-bb75"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/850d37c87ec5191ca0252ae8525cbd29.jpg
209.142.71.122200 OK 44 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/850d37c87ec5191ca0252ae8525cbd29.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x476, components 3
Hash a897b4568be8855431367bf96cca46f5
adcce17cdff0d1189a5994c2a017e060b7b0ef2f
c053969ee6455132ad47453554f1cf8ad2924038015900f9f3fdfba9ec6fd321
GET /upload/vod/20240507-1/850d37c87ec5191ca0252ae8525cbd29.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 44277
last-modified: Tue, 07 May 2024 09:12:09 GMT
etag: "6639f069-acf5"
expires: Thu, 06 Jun 2024 09:12:31 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/be049265ec0854823a8fcf1a104feb01.jpg
209.142.71.122200 OK 46 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/be049265ec0854823a8fcf1a104feb01.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x476, components 3
Hash 0913d083fa0d4947f927fc17869b8723
c473c9bb8e35d0f7e46362993a06257d8f2856c2
c3f2d0c09a72c4b89ad0efa3224ba389e9ec068728d1124ef5009b07eca94c72
GET /upload/vod/20240507-1/be049265ec0854823a8fcf1a104feb01.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 45756
last-modified: Tue, 07 May 2024 09:12:09 GMT
etag: "6639f069-b2bc"
expires: Thu, 06 Jun 2024 09:12:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/0f5c01cfddd93db149d6a4f06d9d049c.jpg
209.142.71.122200 OK 48 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/0f5c01cfddd93db149d6a4f06d9d049c.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x480, components 3
Hash e7470fc2acdf89e90e576af16fe927cd
df39e8166292653dce19bef170075e276561052d
624091f04a25ea88c8b068d3bbe32335a6c95fb10c1f7c890c93dfc3c73a27e3
GET /upload/vod/20240507-1/0f5c01cfddd93db149d6a4f06d9d049c.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 47670
last-modified: Tue, 07 May 2024 09:12:06 GMT
etag: "6639f066-ba36"
expires: Thu, 06 Jun 2024 09:12:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/1f7aaea92abb11e2c76a6d62d6742821.jpg
209.142.71.122200 OK 30 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/1f7aaea92abb11e2c76a6d62d6742821.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 620x416, components 3
Hash 040655884be9a6e558b39de4004c01f7
a7b3f4d55546d189223e84b31d9be731efe4da8b
453ce62c8dee26fdce9f7023eda65f47914f91c9468524dea38a61297fc39bef
GET /upload/vod/20240507-1/1f7aaea92abb11e2c76a6d62d6742821.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 30371
last-modified: Tue, 07 May 2024 09:12:05 GMT
etag: "6639f065-76a3"
expires: Thu, 06 Jun 2024 09:12:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/3628ccfd426aadb8ff2319b829b8d02f.jpg
209.142.71.122200 OK 27 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/3628ccfd426aadb8ff2319b829b8d02f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 620x416, components 3
Hash b160d938ef025ab6ccf839c576a60a68
36d22015d3a219f67a1893347a5a2535493f4b01
e6c58d0b62c8766d8e1377ac0a485823af9157421e5cbfca8bf1a93046f5f5cd
GET /upload/vod/20240507-1/3628ccfd426aadb8ff2319b829b8d02f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 27123
last-modified: Tue, 07 May 2024 09:10:21 GMT
etag: "6639effd-69f3"
expires: Thu, 06 Jun 2024 09:11:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/220121b07e3ddda3a59b551c03b526a3.jpg
209.142.71.122200 OK 55 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/220121b07e3ddda3a59b551c03b526a3.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1176x648, components 3
Hash fc5b0dc239829d374387617c9d5fcca5
4a76f2fd8f40fd07e00ee5bf9256dbd9a8c3b9ba
2638f8d4b9264730133ae94317337982eb3c5e4cfcf008b749756c9dacfc3e2e
GET /upload/vod/20240507-1/220121b07e3ddda3a59b551c03b526a3.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 55417
last-modified: Tue, 07 May 2024 09:10:20 GMT
etag: "6639effc-d879"
expires: Thu, 06 Jun 2024 09:11:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/7db3830803456f661e1220e3981ed42b.jpg
209.142.71.122200 OK 55 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/7db3830803456f661e1220e3981ed42b.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1176x648, components 3
Hash fc5b0dc239829d374387617c9d5fcca5
4a76f2fd8f40fd07e00ee5bf9256dbd9a8c3b9ba
2638f8d4b9264730133ae94317337982eb3c5e4cfcf008b749756c9dacfc3e2e
GET /upload/vod/20240507-1/7db3830803456f661e1220e3981ed42b.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 55417
last-modified: Tue, 07 May 2024 09:10:19 GMT
etag: "6639effb-d879"
expires: Thu, 06 Jun 2024 09:11:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/601f5f53783873cb8a59435e317c6953.jpg
209.142.71.122200 OK 22 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/601f5f53783873cb8a59435e317c6953.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 587x331, components 3
Hash a9a3cdf0038c79f48aa57a160a6caf3a
e7798d7c090964cd55ce973c756f17a7be9226a0
130f75070be0670f0cbb65225c6058d385ac504d2bc51b5c0284752662dff1cd
GET /upload/vod/20240506-1/601f5f53783873cb8a59435e317c6953.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 22470
last-modified: Mon, 06 May 2024 05:52:43 GMT
etag: "6638702b-57c6"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/c5e491a18f1907ce27e53bc09a286a63.jpg
209.142.71.122200 OK 39 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/c5e491a18f1907ce27e53bc09a286a63.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x480, components 3
Hash d0c5a21cee8706797fcb667fc163acee
169f50f750725aaa03c6b54d3be44454a62d9322
a710dbc363a607c7740a1849bb647967a9bef06272d5afbda29ce6f1f2544876
GET /upload/vod/20240504-1/c5e491a18f1907ce27e53bc09a286a63.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 38956
last-modified: Sat, 04 May 2024 05:13:24 GMT
etag: "6635c3f4-982c"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/1b6aed82815bd9b1dd646e8239e9c8ff.jpg
209.142.71.122200 OK 38 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/1b6aed82815bd9b1dd646e8239e9c8ff.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x476, components 3
Hash 9880fa754545e9853d7d835f3a5c2f26
b6c21234149615424e47838247f1f47bbfefc88a
ff0ea524ba28a1d967feccc807b343059efeac705f05a5ff312de0a7d1f64059
GET /upload/vod/20240504-1/1b6aed82815bd9b1dd646e8239e9c8ff.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 38385
last-modified: Sat, 04 May 2024 05:13:27 GMT
etag: "6635c3f7-95f1"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/76c6b741c5570d1003a686c5153c9a28.jpg
209.142.71.122200 OK 28 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/76c6b741c5570d1003a686c5153c9a28.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 590x360, components 3
Hash 0070de996d6149b31ba49e63caa189bc
db4eccaf76653d97e364016356e24b64dda66916
846a8ecc2b8c5b76ad220e95b3fc10c7f453e442da0fdcdbc43923d13f1f6d1a
GET /upload/vod/20240504-1/76c6b741c5570d1003a686c5153c9a28.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 27777
last-modified: Sat, 04 May 2024 05:13:28 GMT
etag: "6635c3f8-6c81"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/aa15ab79121a85342bfcf436143515e0.jpg
209.142.71.122200 OK 65 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/aa15ab79121a85342bfcf436143515e0.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1024x576, components 3
Hash 69e68eaca9dfa5ba762c7675e1012a5d
c78212287b262ea33d5c56353cd8be95da45c38b
c61f0180a4feb2bbdd4e5065a197baf67a385934958b724dd6650e572c1e6c6d
GET /upload/vod/20240504-1/aa15ab79121a85342bfcf436143515e0.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 64552
last-modified: Sat, 04 May 2024 05:13:29 GMT
etag: "6635c3f9-fc28"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/5911686402623e41e9cf0cdfbe5405ed.jpg
209.142.71.122200 OK 50 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/5911686402623e41e9cf0cdfbe5405ed.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 960x540, components 3
Hash 8c8fd3e4b4b3b30ac58fb065414493f9
ccc438abe0dff77f336d5b3056331b2fbb7eae77
1f4fd68a070c83c2f4f90f650c5f189e649d738492ca1f3124226aa5e0208564
GET /upload/vod/20240504-1/5911686402623e41e9cf0cdfbe5405ed.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 49732
last-modified: Sat, 04 May 2024 05:13:33 GMT
etag: "6635c3fd-c244"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/96c5cc1789997dafa4ee13f268b6f9ff.jpg
209.142.71.122200 OK 33 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/96c5cc1789997dafa4ee13f268b6f9ff.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 640x360, components 3
Hash f3a68e228d24f04489e707e5a67f6714
98cd7d03d9d412a21a46bb95cc8bbe09f3a71291
482edf2ddaf407023c4e0edd84c7de2d8c7c1660eaedd207c2875cd3054b71ce
GET /upload/vod/20240504-1/96c5cc1789997dafa4ee13f268b6f9ff.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 32614
last-modified: Sat, 04 May 2024 05:13:34 GMT
etag: "6635c3fe-7f66"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/f01c8e3538a6aba2c83b1fe00b68bb12.jpg
209.142.71.122200 OK 39 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/f01c8e3538a6aba2c83b1fe00b68bb12.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x480, components 3
Hash d0c5a21cee8706797fcb667fc163acee
169f50f750725aaa03c6b54d3be44454a62d9322
a710dbc363a607c7740a1849bb647967a9bef06272d5afbda29ce6f1f2544876
GET /upload/vod/20240504-1/f01c8e3538a6aba2c83b1fe00b68bb12.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 38956
last-modified: Sat, 04 May 2024 05:13:23 GMT
etag: "6635c3f3-982c"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240503-1/51d06cb2eeb05ef983e46e19539ce319.jpg
209.142.71.122200 OK 32 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240503-1/51d06cb2eeb05ef983e46e19539ce319.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 640x358, components 3
Hash d7defdbeba552bea8c7398834ce13b43
23356015a08230b249377ace7430512082f103e9
da7c0f252194514dacde0c4f55afdff9f16a9d8618b79345b6734b67b5e0d22e
GET /upload/vod/20240503-1/51d06cb2eeb05ef983e46e19539ce319.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 31683
last-modified: Fri, 03 May 2024 05:09:08 GMT
etag: "66347174-7bc3"
expires: Sun, 02 Jun 2024 05:33:01 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240503-1/a2d294a1f6fd6202cc718f65e7fb8aa7.jpg
209.142.71.122200 OK 32 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240503-1/a2d294a1f6fd6202cc718f65e7fb8aa7.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 640x358, components 3
Hash d7defdbeba552bea8c7398834ce13b43
23356015a08230b249377ace7430512082f103e9
da7c0f252194514dacde0c4f55afdff9f16a9d8618b79345b6734b67b5e0d22e
GET /upload/vod/20240503-1/a2d294a1f6fd6202cc718f65e7fb8aa7.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 31683
last-modified: Fri, 03 May 2024 05:09:09 GMT
etag: "66347175-7bc3"
expires: Sun, 02 Jun 2024 05:33:01 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240503-1/669cfe6e51a4b71ffcc4a7f9f9515ac5.jpg
209.142.71.122200 OK 43 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240503-1/669cfe6e51a4b71ffcc4a7f9f9515ac5.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 852x480, components 3
Hash 9a666d73adadc2433424fda97b7fde0f
d30ed6687215a356ccf1978bc5048977e1956f07
dfa8f7624a9571d49a3476529bdb83196b9e4b041ce39897aa9093f5c57e8a08
GET /upload/vod/20240503-1/669cfe6e51a4b71ffcc4a7f9f9515ac5.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 42583
last-modified: Fri, 03 May 2024 05:09:12 GMT
etag: "66347178-a657"
expires: Sun, 02 Jun 2024 05:33:01 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240503-1/f7c78107bdd03c24bb7c3152fd9ec895.jpg
209.142.71.122200 OK 24 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240503-1/f7c78107bdd03c24bb7c3152fd9ec895.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 587x331, components 3
Hash 2ebb32178aa57d96052957bffceec50d
06749f59fa86ca3765980d9484a3cac76134cd15
49bd8ef095042239dfbdaa4e9ab6fd11012c47ca9b2e77bad63c3d66adc564ce
GET /upload/vod/20240503-1/f7c78107bdd03c24bb7c3152fd9ec895.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 23520
last-modified: Fri, 03 May 2024 05:09:13 GMT
etag: "66347179-5be0"
expires: Sun, 02 Jun 2024 05:33:01 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240503-1/f3563863f342536f970c4b35235f3477.jpg
209.142.71.122200 OK 55 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240503-1/f3563863f342536f970c4b35235f3477.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1004x565, components 3
Hash 33d1e02b591816b4894716dc67a84c8b
e910064abbd9acb9e51f805216091405f1b3d502
5f2aa67f028349801605685ed7f6a810b6e688e5a40517c3b89f36675a61040f
GET /upload/vod/20240503-1/f3563863f342536f970c4b35235f3477.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 55009
last-modified: Fri, 03 May 2024 05:09:15 GMT
etag: "6634717b-d6e1"
expires: Sun, 02 Jun 2024 05:33:01 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/d187f7f8cdad3c1315a661f6c641a87f.jpg
209.142.71.122200 OK 52 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/d187f7f8cdad3c1315a661f6c641a87f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x360, components 3
Hash d024507c4fd16f35046718336d8eccee
f977319d5e6674adb7ef4c3fe045d9e343966aaa
f4994e7bd1aba52dd6930b0b6a1f9118d67638499591c758640f52ae9cd48305
GET /upload/vod/20240507-1/d187f7f8cdad3c1315a661f6c641a87f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 52106
last-modified: Tue, 07 May 2024 09:10:17 GMT
etag: "6639eff9-cb8a"
expires: Thu, 06 Jun 2024 09:11:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/7970304878a9d28be5928bc428a088e2.jpg
209.142.71.122200 OK 17 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/7970304878a9d28be5928bc428a088e2.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 621x349, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 7b349757a141b44d5cc2b30d0cc62382
b264ecde324246b4b9aa30e529668834a84a90ce
7946223105fb2347032c92c2816aadef05dc69f0059e9e59df49b1d0cb5e0725
GET /upload/vod/20240507-1/7970304878a9d28be5928bc428a088e2.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 16668
last-modified: Tue, 07 May 2024 09:10:16 GMT
etag: "6639eff8-411c"
expires: Thu, 06 Jun 2024 09:12:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/973bd7cbfd425f6ba2ba66b5e44a2c4a.jpg
209.142.71.122200 OK 53 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/973bd7cbfd425f6ba2ba66b5e44a2c4a.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x422, components 3
Hash 910c67eec3e5960042000be6a1465e15
d5ec03432e7467161a1c220fe817ae052c22b3b1
4451c1ecfdf11ed6179ae8cbbca6754faaded89abc41d51c8dc96aa6037bf3e7
GET /upload/vod/20240507-1/973bd7cbfd425f6ba2ba66b5e44a2c4a.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 53031
last-modified: Tue, 07 May 2024 09:10:14 GMT
etag: "6639eff6-cf27"
expires: Thu, 06 Jun 2024 09:12:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/9b88dbd24418ed704d426499e1bd0a87.jpg
209.142.71.122200 OK 60 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/9b88dbd24418ed704d426499e1bd0a87.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x364, components 3
Hash ed83e98c94d48b071fdfd7c6099e282e
fcc3ed1e6b40ff6ff9fe1e5467a7709ebedab8a3
d3dfc4c01396a01cd3daefa23311197281f7948f5f789803c3f04f80c006549a
GET /upload/vod/20240506-1/9b88dbd24418ed704d426499e1bd0a87.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 60444
last-modified: Mon, 06 May 2024 05:52:21 GMT
etag: "66387015-ec1c"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/4baa3d940d4784515ba0bc5d9b8697cf.jpg
209.142.71.122200 OK 52 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/4baa3d940d4784515ba0bc5d9b8697cf.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 621x345, components 3
Hash e3314a1f2e6fb054529903f2cbd07385
483eee02d3ac33bb2137fdafbad251f0d0667ee1
982856b0ea0d8482a9d2b4faea6037a6b77bfda48c3b690622dd6e2eb8102f2b
GET /upload/vod/20240506-1/4baa3d940d4784515ba0bc5d9b8697cf.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 52103
last-modified: Mon, 06 May 2024 05:52:19 GMT
etag: "66387013-cb87"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/117327c7b66c1f551ebc9f6309236c78.jpg
209.142.71.122200 OK 22 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/117327c7b66c1f551ebc9f6309236c78.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 671x377, components 3
Hash b83f1966bfec3888526d9d42242bd011
4943d166575beda532d4a653da106cd9d9f344e1
7836b4c40e1ee85636eda4ffc5615c2a07c79cd2f0b95c29499d1e571d67e64d
GET /upload/vod/20240506-1/117327c7b66c1f551ebc9f6309236c78.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 21622
last-modified: Mon, 06 May 2024 05:52:18 GMT
etag: "66387012-5476"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/22237d9bf42a81c38982bcb7a0f9b1a1.jpg
209.142.71.122200 OK 97 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/22237d9bf42a81c38982bcb7a0f9b1a1.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Hash 751d9c61b3084ac0b869f43e2854c3ce
d485af4f700dc4412f366d348f3524afdd584a5a
6e922e5cbbebe9e4aeb0982bccd0be3c1c345ddc5346a78ec10c6445ee9ef612
GET /upload/vod/20240507-1/22237d9bf42a81c38982bcb7a0f9b1a1.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 96976
last-modified: Tue, 07 May 2024 09:12:12 GMT
etag: "6639f06c-17ad0"
expires: Thu, 06 Jun 2024 09:16:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/53c4ba408e278f026b53d73b69ac9279.jpg
209.142.71.122200 OK 128 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/53c4ba408e278f026b53d73b69ac9279.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 128 kB (128032 bytes)
Hash ea0d85893d4f08bcd76548141110873e
23b23a1e238ed6c2999b137d2bc638923efd4f2a
64b6df7e95940ee4673802225f4a4a0a2c65c85d5cbd5f740b04ea988afc70b8
GET /upload/vod/20240506-1/53c4ba408e278f026b53d73b69ac9279.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 128032
last-modified: Mon, 06 May 2024 05:53:05 GMT
etag: "66387041-1f420"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/6c7bcd73aabac06630c2fe4b614c83be.jpg
209.142.71.122200 OK 100 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/6c7bcd73aabac06630c2fe4b614c83be.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 100 kB (100464 bytes)
Hash eda7272a54f0d4c428e0f73eb8e6d297
58308ea90baf95f65d0f4ecddbbbcbfc809f966c
2078b948c5567eeedc593feae1ef7222d12be9a1c1595ff6130e9fc70e8af1dc
GET /upload/vod/20240506-1/6c7bcd73aabac06630c2fe4b614c83be.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 100464
last-modified: Mon, 06 May 2024 05:53:04 GMT
etag: "66387040-18870"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/d4c8c8a781400c83691ef3685bb0969d.jpg
209.142.71.122200 OK 123 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/d4c8c8a781400c83691ef3685bb0969d.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 123 kB (122608 bytes)
Hash 001bba41e98ba183bf8946c7dc55b459
1a2006c0087ef41914e6174b10bb9ec570b7a619
c80c427136a8247009492f537ca865373fa60e112d538742394c95813b7a302b
GET /upload/vod/20240506-1/d4c8c8a781400c83691ef3685bb0969d.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:57 GMT
content-type: image/jpeg
content-length: 122608
last-modified: Mon, 06 May 2024 05:53:00 GMT
etag: "6638703c-1def0"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/ba55420449e3effff6c987b76a9a6717.jpg
209.142.71.122200 OK 81 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/ba55420449e3effff6c987b76a9a6717.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash bbedcd32f93a740837e487b097c4acbd
ccb7615678e2c96f93bd648193aba78923ea501d
2c73fd294346753c49e5bc66fa26dea6e568e5a4aa70465fd8c380323ff38401
GET /upload/vod/20240506-1/ba55420449e3effff6c987b76a9a6717.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 80784
last-modified: Mon, 06 May 2024 05:52:51 GMT
etag: "66387033-13b90"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/4d03f9442be4c2f304848f5c360f1797.jpg
209.142.71.122200 OK 83 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/4d03f9442be4c2f304848f5c360f1797.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash dd43ec005acd9e352a73d7c928bb0295
54e45b68ca692afc4312b8b129616661c868ea72
e25c82a0bf62e11b0780cea8b624c8910e7cb795f34bd5fa042ecf4aaad6e7f7
GET /upload/vod/20240507-1/4d03f9442be4c2f304848f5c360f1797.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 82798
last-modified: Tue, 07 May 2024 09:09:09 GMT
etag: "6639efb5-1436e"
expires: Thu, 06 Jun 2024 09:10:03 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/af68904a3d0249a5c40a730ed5212300.jpg
209.142.71.122200 OK 83 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/af68904a3d0249a5c40a730ed5212300.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash 1aca5f09214d664d7dcab3334dba6ed1
d64e5fa1472f8b0fb6966fddbd77aa2794771ead
4345c5092f2e68653ea7c6b536395099dd7377cff891b708dc5c6e06e5afe7d6
GET /upload/vod/20240507-1/af68904a3d0249a5c40a730ed5212300.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 82872
last-modified: Tue, 07 May 2024 09:08:33 GMT
etag: "6639ef91-143b8"
expires: Thu, 06 Jun 2024 09:15:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/323a6d609e00fd55646b342a208ed29a.jpg
209.142.71.122200 OK 73 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/323a6d609e00fd55646b342a208ed29a.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1176x648, components 3
Hash f838583b8982a3fe48e051c07cb72fe8
7769bf6132ad7269178c91f33ebd89f7655299e7
86e969c463c11f48c0eec705d6c7aa2900baeac4399e2960b72d91e0e170143a
GET /upload/vod/20240507-1/323a6d609e00fd55646b342a208ed29a.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 73412
last-modified: Tue, 07 May 2024 09:08:32 GMT
etag: "6639ef90-11ec4"
expires: Thu, 06 Jun 2024 09:10:02 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/1b4067b9cc9c2da2e59434f808691e07.jpg
209.142.71.122200 OK 73 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/1b4067b9cc9c2da2e59434f808691e07.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1176x648, components 3
Hash f838583b8982a3fe48e051c07cb72fe8
7769bf6132ad7269178c91f33ebd89f7655299e7
86e969c463c11f48c0eec705d6c7aa2900baeac4399e2960b72d91e0e170143a
GET /upload/vod/20240507-1/1b4067b9cc9c2da2e59434f808691e07.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 73412
last-modified: Tue, 07 May 2024 09:08:31 GMT
etag: "6639ef8f-11ec4"
expires: Thu, 06 Jun 2024 09:08:33 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/1ebd49fe7d092630e6d2961506b6d49f.jpg
209.142.71.122200 OK 76 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/1ebd49fe7d092630e6d2961506b6d49f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1436x668, components 3
Hash 7fb735ca20351b76bbea023b9c128d11
d55030353f29569e27e859c06d42d0b8ad0d8484
d954142b40d9a442ec51cc148ac84402220882c00c17ae406ae5ee2feb652049
GET /upload/vod/20240507-1/1ebd49fe7d092630e6d2961506b6d49f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 76512
last-modified: Tue, 07 May 2024 09:08:30 GMT
etag: "6639ef8e-12ae0"
expires: Thu, 06 Jun 2024 09:08:33 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/35bd72e42645eb712f6e2b58ce4a5421.jpg
209.142.71.122200 OK 109 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/35bd72e42645eb712f6e2b58ce4a5421.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1200x800, components 3
Size 109 kB (108812 bytes)
Hash 5db468f346be588a4044734deaf54e98
908edb4f5dc112d152d488c697b0c9dcabd7bc8d
7600f06e630a01644febc46e82db04aac236c2866f3efe5f145493159189cc50
GET /upload/vod/20240506-1/35bd72e42645eb712f6e2b58ce4a5421.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 108812
last-modified: Mon, 06 May 2024 05:52:07 GMT
etag: "66387007-1a90c"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/66ed8c8c33932bb17b5339a9edfb7157.jpg
209.142.71.122200 OK 122 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/66ed8c8c33932bb17b5339a9edfb7157.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1960x1100, components 3
Size 122 kB (122138 bytes)
Hash e5d73a03003d71400f9598c7deb3583d
fb2f7cd89e6f43acb7460a6c4fc7eeef2889b2be
1cac30bd8a38e59b40c7554965fdeead253a8049b23115abb32ab9ed5f7e0505
GET /upload/vod/20240507-1/66ed8c8c33932bb17b5339a9edfb7157.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 122138
last-modified: Tue, 07 May 2024 09:12:07 GMT
etag: "6639f067-1dd1a"
expires: Thu, 06 Jun 2024 09:12:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/935d9a1616b6209a8c12ded98b0f0559.jpg
209.142.71.122200 OK 88 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/935d9a1616b6209a8c12ded98b0f0559.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1200x800, components 3
Hash dad2e0dab72c90e24ad5f96375f0225d
8f5a6936953621e2273b2a20625651f1bd2a59fe
8715a3381cdbf83960b608440d1958d4566b3889144543e1b91c11046790dc24
GET /upload/vod/20240507-1/935d9a1616b6209a8c12ded98b0f0559.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 87695
last-modified: Tue, 07 May 2024 09:12:04 GMT
etag: "6639f064-1568f"
expires: Thu, 06 Jun 2024 09:12:07 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/8e784f22f550d27b1a115d2aef99239f.jpg
209.142.71.122200 OK 77 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/8e784f22f550d27b1a115d2aef99239f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash a5432fa711b19745fbdf85099e870e5e
c8867454fa2e02e9058f4d2728798e5a81f77218
9ecb3d05bc8d89782434b49e55c702b5a1e4b3e0f8a2ebc2dfb154245465068b
GET /upload/vod/20240506-1/8e784f22f550d27b1a115d2aef99239f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 77170
last-modified: Mon, 06 May 2024 05:52:39 GMT
etag: "66387027-12d72"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/a577b2fdbc2d6c5eb7dbd5ef326389b5.jpg
209.142.71.122200 OK 83 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/a577b2fdbc2d6c5eb7dbd5ef326389b5.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash b12bdd0348784d829e32d11b1f85d914
597fb3f829ed7a5aaf73923b4e4dc9dc55e3cb12
b4dfbad5cd799c6e3610501816522b10d51fdcde314065ee4b8d2c79f699d6a1
GET /upload/vod/20240506-1/a577b2fdbc2d6c5eb7dbd5ef326389b5.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 83061
last-modified: Mon, 06 May 2024 05:52:38 GMT
etag: "66387026-14475"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/09eb51f0b8869972a0f623b34050737c.jpg
209.142.71.122200 OK 68 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/09eb51f0b8869972a0f623b34050737c.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1280x720, components 3
Hash c1340da9373371e7d43ab7d0486049f5
0a52172f115b80458266d2e51ddae8236e87957f
48ddefc32466b809d2c3f5333b511c2a508edfe4afec8c5b75a5ec64ae542a8d
GET /upload/vod/20240504-1/09eb51f0b8869972a0f623b34050737c.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 67511
last-modified: Sat, 04 May 2024 05:13:35 GMT
etag: "6635c3ff-107b7"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/2ce0c97ee153a433a05a4421dd5d617f.jpg
209.142.71.122200 OK 74 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/2ce0c97ee153a433a05a4421dd5d617f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1000x780, components 3
Hash 35a87fed5f99a3caeddf22fe3b4df0a7
598b52980df784da9cd2f1e9750bf8e2cab909f8
a8ab13c4e66c0f96ace5a80b4898ba1723652a7a96ce42322f47468c057e1683
GET /upload/vod/20240504-1/2ce0c97ee153a433a05a4421dd5d617f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 74306
last-modified: Sat, 04 May 2024 05:13:19 GMT
etag: "6635c3ef-12242"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/115b4fc9489e9eff29735977f67d05c0.jpg
209.142.71.122200 OK 129 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/115b4fc9489e9eff29735977f67d05c0.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3
Size 129 kB (129200 bytes)
Hash 8a79e92b020c4f15532a37b86d27b144
b032de9d3d43843d5c14e28ae8b0151c29152400
1b71e900edb4385d5d03aeea6f8cfb8742c2d31f932ebf6079ba2ac3ae4a0243
GET /upload/vod/20240507-1/115b4fc9489e9eff29735977f67d05c0.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 129200
last-modified: Tue, 07 May 2024 09:10:15 GMT
etag: "6639eff7-1f8b0"
expires: Thu, 06 Jun 2024 09:12:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/90b13cfa80ff867ba97450448fcf156f.jpg
209.142.71.122200 OK 68 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/90b13cfa80ff867ba97450448fcf156f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x358, components 3
Hash cc39172a1f9f6c84a897a453c5aef043
b77a728b19c2ed221b7c961c0c79471a3eaf6caa
687f1752a6d6e5fa85fb845bdf0ce9654fb9e1da6a36663aa536cb49a8cc321d
GET /upload/vod/20240506-1/90b13cfa80ff867ba97450448fcf156f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 68310
last-modified: Mon, 06 May 2024 05:52:25 GMT
etag: "66387019-10ad6"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/2079d495e7cf24e7581db405be98b6f2.jpg
209.142.71.122200 OK 101 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/2079d495e7cf24e7581db405be98b6f2.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3
Size 101 kB (100680 bytes)
Hash e6d4fd83f4f4354b6d76d828549a51a3
bb1648039a0cc207518b85a876a2c04fcf887fd6
d7f5a8ebcaea4138ff325e55a35488b21fcf3805cea920835bf31af189fa038e
GET /upload/vod/20240506-1/2079d495e7cf24e7581db405be98b6f2.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 100680
last-modified: Mon, 06 May 2024 05:52:24 GMT
etag: "66387018-18948"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/2831d444d2dc6a88da9ee125aaf1875d.jpg
209.142.71.122200 OK 83 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/2831d444d2dc6a88da9ee125aaf1875d.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x358, components 3
Hash f7610847c2de6d9d2a17b23c45921c5e
83c5fd3d1fd28e0fd83a0c778c6071a0d250f37d
1c43b5b8519bbfc56a5d798b581a2078ee186e3718206326e2575d8e295f006b
GET /upload/vod/20240506-1/2831d444d2dc6a88da9ee125aaf1875d.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 83144
last-modified: Mon, 06 May 2024 05:52:21 GMT
etag: "66387015-144c8"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/938e2457332a753ae3349dec62ce58b2.jpg
209.142.71.122200 OK 71 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/938e2457332a753ae3349dec62ce58b2.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x358, components 3
Hash a0d0bff7b5310e67fbb0d3e44a14b8d8
c803b31762ba46f22e4a1d21ea80b45c68f13767
23d1571ef3a84876446311338a7f1c3c8b3ebf874a13b9c4f7104095f074b31b
GET /upload/vod/20240506-1/938e2457332a753ae3349dec62ce58b2.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 71285
last-modified: Mon, 06 May 2024 05:52:20 GMT
etag: "66387014-11675"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/37ff50edef7ffd49e1cd4446f71cc1b0.jpg
209.142.71.122200 OK 74 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/37ff50edef7ffd49e1cd4446f71cc1b0.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 700x394, components 3
Hash b97a73f57d8e69dca70b52a5361fc746
c38361a2495c28ac2a218567de3492247f62f08c
aa137ec830d1f6acf00b3e2cd626cb9137d1cba9fa6d2e4c0e034eb1871d6aeb
GET /upload/vod/20240506-1/37ff50edef7ffd49e1cd4446f71cc1b0.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 73953
last-modified: Mon, 06 May 2024 05:52:17 GMT
etag: "66387011-120e1"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/eb0169b42c6d06d3e0b776aa788447a8.jpg
209.142.71.122200 OK 84 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/eb0169b42c6d06d3e0b776aa788447a8.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x538, components 3
Hash 4a88f6f7cc299cf23ff67a3a975ba592
5438f91930c13acbd47c6fcace09ed9711ac45ad
2315516fd6890a52fe0a11efa2ade18a1c37bb7255bd2b7baddb3c3ac0a66365
GET /upload/vod/20240506-1/eb0169b42c6d06d3e0b776aa788447a8.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 83459
last-modified: Mon, 06 May 2024 05:52:16 GMT
etag: "66387010-14603"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/48165bf8879c39357ce569b0aaab107f.jpg
209.142.71.122200 OK 108 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/48165bf8879c39357ce569b0aaab107f.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3
Size 108 kB (108499 bytes)
Hash 317f83008dd25087cb26a4fb0410215b
7b2240bafb6c75cea091c031229d3d66eadf0932
f25024232955933223c5a0eab776bdf43f89cb27252de9b27f7cbe086dc50cea
GET /upload/vod/20240506-1/48165bf8879c39357ce569b0aaab107f.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 108499
last-modified: Mon, 06 May 2024 05:52:15 GMT
etag: "6638700f-1a7d3"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/4ec778bfd9f2afecb3fed77b9644bafb.jpg
209.142.71.122200 OK 183 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/4ec778bfd9f2afecb3fed77b9644bafb.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 183 kB (183040 bytes)
Hash 91c1a5d5290eedbb8a2c2d175a49585e
2033eeae9cd4c7b3dbf9b478f32f3918037d3d0b
3f1d8014560423bfd806098463ffa55354bd506923d2f834f3daffc84917957c
GET /upload/vod/20240506-1/4ec778bfd9f2afecb3fed77b9644bafb.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 183040
last-modified: Mon, 06 May 2024 05:52:49 GMT
etag: "66387031-2cb00"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/6db16e222065e171c85bd20979179c7c.jpg
209.142.71.122200 OK 167 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/6db16e222065e171c85bd20979179c7c.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 167 kB (166624 bytes)
Hash 29a689784476df790b207c85e0cf1e2a
0a7e625143cbfd11881d01b6b7a3629586e1ddc1
c3c398f5725832231c4f96a8949a1906549431083353ba1e7a5f373f224af790
GET /upload/vod/20240507-1/6db16e222065e171c85bd20979179c7c.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 166624
last-modified: Tue, 07 May 2024 09:09:12 GMT
etag: "6639efb8-28ae0"
expires: Thu, 06 Jun 2024 09:10:03 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/4b398c2858445291251c5e75fc7f0d46.jpg
209.142.71.122200 OK 160 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/4b398c2858445291251c5e75fc7f0d46.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 160 kB (159520 bytes)
Hash 6cd95ff0b643caf58342b2353cc738fd
12079592b6441e200099ca68298d31d203a920cb
db4404cfce191ed402c7d09deca34ecc4e8e6434d0e32c9745ce3a043e7deb57
GET /upload/vod/20240506-1/4b398c2858445291251c5e75fc7f0d46.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 159520
last-modified: Mon, 06 May 2024 05:52:11 GMT
etag: "6638700b-26f20"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/ed7d8f7894e1ad8fbebaac9a6f839b93.jpg
209.142.71.122200 OK 137 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/ed7d8f7894e1ad8fbebaac9a6f839b93.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 137 kB (137120 bytes)
Hash 016f901c888266b27e2bb9555a773306
3cfb2b9c65bdf3c74814febdacfaf0eeeeb811d4
59ca2d1af9300d4eb58e3a9b8979fb45095d47e271ade61aee01097256a42701
GET /upload/vod/20240506-1/ed7d8f7894e1ad8fbebaac9a6f839b93.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 137120
last-modified: Mon, 06 May 2024 05:52:06 GMT
etag: "66387006-217a0"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/00755ba9ebf45d3822a3ed2f394365b6.jpg
209.142.71.122200 OK 179 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/00755ba9ebf45d3822a3ed2f394365b6.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1960x1100, components 3
Size 179 kB (178843 bytes)
Hash c9562cbc5039faf8222189cb34522cc1
ee147c8900a3967d97bcf2dc8fcfa077c2cb610d
b26645c6122d9dbd04f6ef4aeea7e8cf9d92fb2ff7c40657523a5efb61881c70
GET /upload/vod/20240507-1/00755ba9ebf45d3822a3ed2f394365b6.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 178843
last-modified: Tue, 07 May 2024 09:12:08 GMT
etag: "6639f068-2ba9b"
expires: Thu, 06 Jun 2024 09:12:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/e7e5ab3ee09f7b0e83ad72ee2c5d0cde.jpg
209.142.71.122200 OK 140 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/e7e5ab3ee09f7b0e83ad72ee2c5d0cde.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 140 kB (140528 bytes)
Hash 86861b9737206a9c41f6ab1e3bbafddb
de6caf5e119d3cbb2f07e541dc033e84aab15a75
00fdfeb47a098be93483f694d5553638e5e398099626d8e6873ff647bf7947f4
GET /upload/vod/20240506-1/e7e5ab3ee09f7b0e83ad72ee2c5d0cde.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 140528
last-modified: Mon, 06 May 2024 05:52:44 GMT
etag: "6638702c-224f0"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240503-1/6356ad085e1b6d36be389a88d98dc64d.jpg
209.142.71.122200 OK 180 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240503-1/6356ad085e1b6d36be389a88d98dc64d.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 2534x1424, components 3
Size 180 kB (180257 bytes)
Hash fab25901cbaf1b32ac519bf93fb8df0f
311486a50d010ba9ace4a5672ce7645fa085458a
9bcd427775f2ff4721e396d5aa9e226af4bd900596f96c846c88003d3548a34c
GET /upload/vod/20240503-1/6356ad085e1b6d36be389a88d98dc64d.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 180257
last-modified: Fri, 03 May 2024 05:09:14 GMT
etag: "6634717a-2c021"
expires: Sun, 02 Jun 2024 05:33:01 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/1399fe05eb1cde0fe5e4b4059948d36c.jpg
209.142.71.122200 OK 155 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/1399fe05eb1cde0fe5e4b4059948d36c.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=711, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1273], baseline, precision 8, 1280x720, components 3
Size 155 kB (154902 bytes)
Hash ad6ce46203fad6565a7e8a9270c4748c
ca44d671ca0afd0af06130c039b4351f738b3a24
74702230326c6c87455bcf0f13f63a15e275f9a41cc3c0c76ad89f2fd9ebbefa
GET /upload/vod/20240506-1/1399fe05eb1cde0fe5e4b4059948d36c.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 154902
last-modified: Mon, 06 May 2024 05:52:22 GMT
etag: "66387016-25d16"
expires: Wed, 05 Jun 2024 07:02:25 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/6005e14c49a8e0cd1af534ba6770726c.jpg
209.142.71.122200 OK 255 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/6005e14c49a8e0cd1af534ba6770726c.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 2872x1616, components 3
Size 255 kB (255090 bytes)
Hash 632c6b2082e23cbab1d027d4625c31a8
260affe5b17105dbedd29dfc055a347c441b729f
19d6f84958c844d5277a5a7106eb2c33d0c5b3c97ed804420437a2a451da02a1
GET /upload/vod/20240507-1/6005e14c49a8e0cd1af534ba6770726c.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 255090
last-modified: Tue, 07 May 2024 09:09:11 GMT
etag: "6639efb7-3e472"
expires: Thu, 06 Jun 2024 09:12:32 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/1c5a50b14a5da116dbed3699804087ef.jpg
209.142.71.122200 OK 263 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/1c5a50b14a5da116dbed3699804087ef.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 1920x1080, components 3
Size 263 kB (263280 bytes)
Hash a0106e0fae8f2c8d2f671f21ca64a0fb
98c60192786c940c864edf293c1cfa8bbf318ac7
9427d982cdc4ec06b7b71da381440568612b8b9a3e862b1fc75bd234404a2803
GET /upload/vod/20240507-1/1c5a50b14a5da116dbed3699804087ef.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 263280
last-modified: Tue, 07 May 2024 09:09:06 GMT
etag: "6639efb2-40470"
expires: Thu, 06 Jun 2024 09:10:03 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/29a9a4367d0e668c0b54671b14c68906.jpg
209.142.71.122200 OK 271 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/29a9a4367d0e668c0b54671b14c68906.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 2872x1616, components 3
Size 271 kB (271028 bytes)
Hash fcf0d1ef8d1a829e8c3ae3776cb142ac
fd27fba4bb9369c8ae941e1cfbf22ec46243493a
05797677bde2707df1b7716bd39cf8f3d8fc3add850bc431235982e47547c013
GET /upload/vod/20240506-1/29a9a4367d0e668c0b54671b14c68906.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 271028
last-modified: Mon, 06 May 2024 05:52:40 GMT
etag: "66387028-422b4"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240506-1/2c47c263ba07f0eddd3d26f6522bca76.jpg
209.142.71.122200 OK 436 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240506-1/2c47c263ba07f0eddd3d26f6522bca76.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 4320x2428, components 3
Size 436 kB (435538 bytes)
Hash 1515fe4ff63dc5c964356b53ffb48369
ddea796a6f6df015125fd3b3a3f058ac1d356faf
a4d1e9279c2411ed2c63d6adeb4129baec1288bb3aab596d5c7929b9a97e6cd2
GET /upload/vod/20240506-1/2c47c263ba07f0eddd3d26f6522bca76.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 435538
last-modified: Mon, 06 May 2024 05:52:37 GMT
etag: "66387025-6a552"
expires: Wed, 05 Jun 2024 06:42:19 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240504-1/d8374e8715fb7da04b9f12100ddd9c01.jpg
209.142.71.122200 OK 244 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240504-1/d8374e8715fb7da04b9f12100ddd9c01.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, baseline, precision 8, 3424x1920, components 3
Size 244 kB (243933 bytes)
Hash e1b56f2ef322dc919e9e513b5ffa3ee2
d2aef0312acf6c9a4f77864ed1ea927b1c3ea2dc
c8f99f83e31bc06726e240f72b6d9ce9228d52d3a5ecacf77da5849aa5825d82
GET /upload/vod/20240504-1/d8374e8715fb7da04b9f12100ddd9c01.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 243933
last-modified: Sat, 04 May 2024 05:13:22 GMT
etag: "6635c3f2-3b8dd"
expires: Mon, 03 Jun 2024 05:50:27 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.hgimg01.com/upload/vod/20240507-1/f3d8c1200df03f89262eef17e9560183.jpg
209.142.71.122200 OK 197 kB URL GET HTTP/2 img.hgimg01.com/upload/vod/20240507-1/f3d8c1200df03f89262eef17e9560183.jpg
IP 209.142.71.122:443
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerUnizeto Technologies S.A.
Subjectimg.hgimg01.com
FingerprintDD:EC:3C:8B:06:9D:88:A7:AB:58:4C:24:A2:7E:C9:92:18:1C:B0:72
ValidityWed, 01 May 2024 09:35:10 GMT - Sat, 31 May 2025 09:35:09 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x364, components 3
Size 197 kB (196784 bytes)
Hash b197f1cbd26659c085e123cd79f5e4a6
ca5b9743a2feb7d2131bea50a6c4140d0a65dc0f
f7eaba8c7cb212a1923ae9971239248eebe8a8449ff335c6bc6a6eda487bd189
GET /upload/vod/20240507-1/f3d8c1200df03f89262eef17e9560183.jpg HTTP/1.1
Host: img.hgimg01.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 14:30:58 GMT
content-type: image/jpeg
content-length: 196784
last-modified: Tue, 07 May 2024 09:10:18 GMT
etag: "6639effa-300b0"
expires: Thu, 06 Jun 2024 09:11:06 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: max-age=2592000, public, max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
imgsrc.baidu.com/tieba/pic/item/37d3d539b6003af351f54256732ac65c1038b6bd.jpg
104.193.88.109200 OK 25 kB URL GET HTTP/2 imgsrc.baidu.com/tieba/pic/item/37d3d539b6003af351f54256732ac65c1038b6bd.jpg
IP 104.193.88.109:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1020 x 60
Hash edb0e0745fe1ce51b71b2dcfec486c58
03e96bdda66106f9f76a721c4520af213c3c5c77
1d659201aba0c958e20c651c65627563827a97fa0d4969c8737f9d0f3e52374f
GET /tieba/pic/item/37d3d539b6003af351f54256732ac65c1038b6bd.jpg HTTP/1.1
Host: imgsrc.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 07 May 2024 14:31:13 GMT
content-type: image/gif
content-length: 24836
expires: Thu, 30 May 2024 08:55:23 GMT
last-modified: Sat, 03 Jan 1970 00:00:00 GMT
etag: edb0e0745fe1ce51b71b2dcfec486c58
age: 624950
accept-ranges: bytes
access-control-allow-origin: *
ohc-global-saved-time: Tue, 30 Apr 2024 08:55:23 GMT
ohc-cache-hit: sfo01-sys-jorcol07.sfo01.baidu.com [2]
ohc-response-time: 1 0 0 0 0 0
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?569ca73acb40f859d8d11d8f2794cf95
14.215.182.140200 OK 11 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?569ca73acb40f859d8d11d8f2794cf95
IP 14.215.182.140:443
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (615)
Hash fd8cf1212a2cb35a04abb2115b4c73b7
93bbf104c8b5fc5503801c14b659891f89de406e
9216ca611bc1aafb151a300a23ba480ba48cacdf667352eab15ffea836dca33e
GET /hm.js?569ca73acb40f859d8d11d8f2794cf95 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11253
Content-Type: application/javascript
Date: Tue, 07 May 2024 14:31:13 GMT
Etag: a5ec5bb852856e3c8fc54c00e4858824
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=5F8755F6586FC9D9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=861108397&si=569ca73acb40f859d8d11d8f2794cf95&v=1.3.0&lv=1&sn=41324&r=0&ww=1280&u=http%3A%2F%2Fwww.2tawk.com%2F6%2F&tt=%E8%AE%B8%E6%98%8C%E8%BF%94%E6%B0%96%E6%96%B0%E8%83%BD%E6%BA%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
111.45.11.83200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=861108397&si=569ca73acb40f859d8d11d8f2794cf95&v=1.3.0&lv=1&sn=41324&r=0&ww=1280&u=http%3A%2F%2Fwww.2tawk.com%2F6%2F&tt=%E8%AE%B8%E6%98%8C%E8%BF%94%E6%B0%96%E6%96%B0%E8%83%BD%E6%BA%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 111.45.11.83:443
ASN #56040 China Mobile communications corporation
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=861108397&si=569ca73acb40f859d8d11d8f2794cf95&v=1.3.0&lv=1&sn=41324&r=0&ww=1280&u=http%3A%2F%2Fwww.2tawk.com%2F6%2F&tt=%E8%AE%B8%E6%98%8C%E8%BF%94%E6%B0%96%E6%96%B0%E8%83%BD%E6%BA%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.2tawk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Tue, 07 May 2024 14:31:13 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=15C914B869714AB1; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
imgsrc.baidu.com/forum/pic/item/024f78f0f736afc3e8312b54f519ebc4b74512c5.jpg
104.193.88.109200 OK 233 kB URL GET HTTP/2 imgsrc.baidu.com/forum/pic/item/024f78f0f736afc3e8312b54f519ebc4b74512c5.jpg
IP 104.193.88.109:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 960 x 120
Size 233 kB (232650 bytes)
Hash 4b27d41a2128600fde62fbb7f6d4f8ed
0612d8918617330bc746f5846dfaf04f81c8465a
39ccf13d8ffed481f1075b1a896c3750815f6a3bb8044ec876493659d91bd941
GET /forum/pic/item/024f78f0f736afc3e8312b54f519ebc4b74512c5.jpg HTTP/1.1
Host: imgsrc.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 07 May 2024 14:31:13 GMT
content-type: image/gif
content-length: 232650
access-control-allow-origin: *
etag: 4b27d41a2128600fde62fbb7f6d4f8ed
expires: Thu, 06 Jun 2024 14:31:13 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
imgsrc.baidu.com/forum/pic/item/09fa513d269759eec165a4faf4fb43166d22dfcf.jpg
104.193.88.109200 OK 85 kB URL GET HTTP/2 imgsrc.baidu.com/forum/pic/item/09fa513d269759eec165a4faf4fb43166d22dfcf.jpg
IP 104.193.88.109:443
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 200 x 200
Hash 7c7282d06f4d8c18aa9c8d90edefcd29
eb230b66267afe4bf59d4eb27c6bbafa74f59be8
fc8f3ffb381649d5e1739f5246ecbf6608ae3ccd7629bb254a675619f87f6171
GET /forum/pic/item/09fa513d269759eec165a4faf4fb43166d22dfcf.jpg HTTP/1.1
Host: imgsrc.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: JSP3/2.0.14
date: Tue, 07 May 2024 14:31:13 GMT
content-type: image/gif
content-length: 84776
access-control-allow-origin: *
etag: 7c7282d06f4d8c18aa9c8d90edefcd29
expires: Thu, 06 Jun 2024 14:31:13 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
X-Firefox-Spdy: h2
api.pandeku.com/Public/uploads/650aeeb8ce29b.gif
0.0.0.0 0 B URL GET api.pandeku.com/Public/uploads/650aeeb8ce29b.gif
IP 0.0.0.0:0
Requested by https://welcome.kv12faf-cjd4ks6d.vip/
Certificate IssuerLet's Encrypt
Subjectapi.pandeku.com
Fingerprint5F:56:F3:2A:68:D2:47:29:F6:94:D6:D4:21:6E:89:35:28:81:F3:CC
ValidityMon, 06 May 2024 15:57:25 GMT - Sun, 04 Aug 2024 15:57:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Public/uploads/650aeeb8ce29b.gif HTTP/1.1
Host: api.pandeku.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://welcome.kv12faf-cjd4ks6d.vip/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache