r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16927
Expires: Wed, 30 Nov 2022 13:12:47 GMT
Date: Wed, 30 Nov 2022 08:30:40 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1724
Cache-Control: max-age=95355
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:40 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 10:59:55 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3801
Expires: Wed, 30 Nov 2022 09:34:01 GMT
Date: Wed, 30 Nov 2022 08:30:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 08:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 659
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DTjh24t7UF/t7kvdaf1YhCfkgnfNbGll7wAOobCGBHJFtT+Uwe0zqbspQWT7ttoIhwAVhHMT7nU=
x-amz-request-id: 2BT0KNSZKC9B1JD4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 07:45:08 GMT
age: 2732
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sikizwa.com/
154.221.164.10301 Moved Permanently 0 B IP 154.221.164.10:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 30 Nov 2022 08:30:40 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.sikizwa.com/index.php
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 08:08:56 GMT
cache-control: public,max-age=3600
age: 1305
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1724
Cache-Control: max-age=90291
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:41 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:35:32 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.51.98101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.51.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: anrs4f/WjxYgnzjhdc0Jew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TwoTfv+mQxQRCMFysjr7Q5he22A=
www.sikizwa.com/index.php
154.221.164.10200 OK 534 B URL HTTP/1.1 www.sikizwa.com/index.php
IP 154.221.164.10:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (636), with CRLF line terminators
Hash b5445af6ab69322fdf0dd18fddef1bdb
df3ace79528d40b825b364d1382b3f9c269f0cd0
3d3891ab04ef30ae019b0ddfa2442798864fb130b2bed33f8f767cac397fbda0
GET /index.php HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.sikizwa.com/common.js
154.221.164.10200 OK 822 B URL HTTP/1.1 www.sikizwa.com/common.js
IP 154.221.164.10:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Hash 6995f13355499348c74d8d05830edb35
82325c8623aa870b022ee46726c4e9d3dee0b20c
e72e6c52f476845f1bd58f72bbcc9dfce75d31ce8ddfdce8566fdd778679c95b
GET /common.js HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:41 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.sikizwa.com/tj.js
154.221.164.10200 OK 258 B IP 154.221.164.10:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type ASCII text, with CRLF line terminators
Hash 26a5c5b20a4e78d272657eb8326bec2a
9af85dae5763f9b4bf50b4d22b0c7e0c8c7ec05a
b4029fe098e742b81a869f1c589dc3d3f6d86487b94ae8ebefa1e81c2fdfcfad
GET /tj.js HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:41 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive
www.sikizwa.com/favicon.ico
154.221.164.10200 OK 1.2 kB URL HTTP/1.1 www.sikizwa.com/favicon.ico
IP 154.221.164.10:0
ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c
GET /favicon.ico HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/index.php
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:42 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Mon, 05 Dec 2022 08:30:42 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 536cd283dee06cf1ceb9e15e4850db92
47aafca572d34f9726a0174ac902178556e581d8
63a5acf87962da6656f828422545af0ccc0888f0a2a15ebd2160ffb3714e6241
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7658
x-amzn-requestid: e729e5b6-0c92-4ed3-b449-4a30d5bb4b89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEyEQSIAMFWsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1e-1bba7e9a2d15d66779b1896c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AuN9hTb4YydNZjvpnTGyE313wl-O3F_p4jC_NUSe8kr3RB_4AjOEMw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:09 GMT
age: 38074
etag: "47aafca572d34f9726a0174ac902178556e581d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:46 GMT
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
age: 38757
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f621857774e4b4adda95f58081644859
639165dc66d171b8266f22cd495181427112bc80
341fd33d3d9486079c182d60e21c355244b6597e6e09ba51ecee2e331b38ca2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10068
x-amzn-requestid: 7f386e94-3c17-44a1-a36b-3d0eeff4623d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEQQoAMFihA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-5069acfd038ffb2c124b7bd8;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ec2HkhHmHE2ddGBpLsJ5Rn7SCMjyR5kzaTyrguDoI9xOohgsCi08CQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:26 GMT
age: 38777
etag: "639165dc66d171b8266f22cd495181427112bc80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e135c29a8769eb12ef8c26f99097400
87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d
ce41ff79c382efc54aa2fd3ab64293d2d2b706a7f21585f4bd8bbcd9a3566126
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7971
x-amzn-requestid: e47d10e4-2b60-4998-b5fa-5b145e60aac2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgWHgGoAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-5b9710a07b0a59730e73dce4;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OURSF_raDXrHV3-3ScaEdorNpW9ZKSIQjv6WUCQYHhruGz372BU_QA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 37151
etag: "87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 23:32:45 GMT
age: 32278
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8825a2c5c0d98323f489e0b816b7f1d8
05f46985ea4ace57460120876da8e19db08857b3
1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhIGGtloAMFxjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d64lSE184IwrwZKVC8KOUINEBclth9b7xRGV9T1uNfAptgXz0bxKhw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:14:25 GMT
age: 36978
etag: "05f46985ea4ace57460120876da8e19db08857b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash eee6605b838f2494f70d956e4ea5bea6
f7e9956baad0d9145f988c9dee6fd23093e8a006
a54da4c6ebaa05e403c17e71133b36d444e06663378ef882c8b0f5ab98632904
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:39:00 GMT
ETag: "f7e9956baad0d9145f988c9dee6fd23093e8a006"
Last-Modified: Wed, 30 Nov 2022 06:39:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2229
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772238ff2bb0b517-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash eee6605b838f2494f70d956e4ea5bea6
f7e9956baad0d9145f988c9dee6fd23093e8a006
a54da4c6ebaa05e403c17e71133b36d444e06663378ef882c8b0f5ab98632904
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:39:00 GMT
ETag: "f7e9956baad0d9145f988c9dee6fd23093e8a006"
Last-Modified: Wed, 30 Nov 2022 06:39:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2229
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772238ff2d43b4eb-OSL
hm.baidu.com/hm.js?566503f01fa664d44733b97af3d0120f
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?566503f01fa664d44733b97af3d0120f
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (621)
Hash a11706191c4dfb61a770f712a491777c
3e74fc9fddad99db70793e436051846cdabbb94c
a8785be158378e75ce8d74cc59333bac7948d7061560796a286bd0df38011dd9
GET /hm.js?566503f01fa664d44733b97af3d0120f HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:43 GMT
Etag: f5ce2d382f404f46476c67f7f6a672ea
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E5ED138591F25039; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
niugetv9.top/
38.60.24.90200 OK 23 kB IP 38.60.24.90:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14226), with CRLF, LF line terminators
Hash ebea3774196b13a5e02c2f4c3397f801
8df79e47ffc17ebeb4db61e75bcb533ac0caadb0
9d7ae1333986dd8e5283133113e60327f36e55e8c9768b617a3857c912d084f1
GET / HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:43 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (624)
Hash 43475ec11523fc40130c757897487349
d1b43251bcff44d01ce660be21778d9643dba8f6
0ad37b34e88d0f4681cd44932c59a6f49abe4090b58e09d5eb8fae9912008829
GET /hm.js?f3d6365cc089588672da4dd3e692e58e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11262
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:43 GMT
Etag: 2a721266982f7611d2edba133931a272
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7E81217E4398FEE2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
niugetv9.top/template/m1938pc/static/js/jquery.min.js
38.60.24.90200 OK 38 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/js/jquery.min.js
IP 38.60.24.90:0
File type ASCII text, with very long lines (32077)
Hash c0750a85ce0399accd8ded17e2564d6b
ba767d35271e9b39305f156814495650f269ddb6
9de8ff805e6807598c4c2987a8368ff4b2240606f6285902c844baf5a04655ac
GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-17b8b"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 3cea89731d385311ea04861df55772b3
7a025885c0688e2efd18a0bb1e6622ea293c4c3d
10988e29ba3738d2603ebc6d71e9bc1fec4c4e17791c56749865a26e46095d59
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:43 GMT
Etag: 0c6bbe6d35bda93089fe6ac133a2952c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D298B96158C3DC12; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
niugetv9.top/template/m1938pc/static/js/bootstrap.min.js
38.60.24.90200 OK 13 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/js/bootstrap.min.js
IP 38.60.24.90:0
File type ASCII text, with very long lines (39553)
Hash 89cfee4061db2dd37f5e2668f1c7ebfb
1ecc979a3bc78d4987cb642f3f64e80d56d57d39
dcff2dfb3ebcdba16ed0e4b9024fa681edc77ace8a686d9bd5aea6dc282e8168
GET /template/m1938pc/static/js/bootstrap.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-9b00"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js
38.60.24.90200 OK 1.3 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js
IP 38.60.24.90:0
File type ASCII text, with very long lines (3309)
Hash 8e5f2c601d9dc5b0d53cb406774e99c9
562d3c568f650e9cc977328d440fc94c46fe9f8e
0f18d8d9a5b33df370579bebc38911b2f344a8fb99bcdd66e83a6fa48c25e01a
GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-d35"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
niugetv9.top/template/m1938pc/static/css/swiper.min.css
38.60.24.90200 OK 3.3 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/css/swiper.min.css
IP 38.60.24.90:0
File type ASCII text, with very long lines (17459)
Hash e73a49e6a4e9772b6add191cf694bd34
00038fe32a6e97fbbeb281939adfb363cdd5f54f
5a1a24bd85867233f36de37f59b96bfeeb4290619781494713b8216902b30988
GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-455f"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2139054621&si=566503f01fa664d44733b97af3d0120f&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2139054621&si=566503f01fa664d44733b97af3d0120f&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2139054621&si=566503f01fa664d44733b97af3d0120f&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:44 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=891BB040CA15892E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
niugetv9.top/template/m1938pc/static/js/swiper.min.js
38.60.24.90200 OK 28 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/js/swiper.min.js
IP 38.60.24.90:0
File type ASCII text, with very long lines (31999)
Hash 3694d961c3b4a420105cf9563c4cafe7
f75e4b2319d4bc0ea3af5ad3b8cf2e0679575767
3e5b269624b5703cb234c5217a66e9e77b5ffe6f70e2dd0425f3a8951dcba27c
GET /template/m1938pc/static/js/swiper.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-178a3"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=17495862&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=17495862&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=17495862&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:44 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0904768772D402FE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
niugetv9.top/template/m1938pc/static/css/common.css
38.60.24.90200 OK 1.7 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/css/common.css
IP 38.60.24.90:0
Hash 1bfc16865e4e7621e5c91f2a4505e7fe
7b556b6e7f13fc6e86ab74b1e8b539fc30d7af89
dd1cca1a3a887f0bf1af7b0c06fe6ef5f0cdfa720d9f3c7230843830ba709c26
GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-19c0"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
niugetv9.top/template/m1938pc/static/js/global.js
38.60.24.90200 OK 225 B URL HTTP/1.1 niugetv9.top/template/m1938pc/static/js/global.js
IP 38.60.24.90:0
Hash daa83033a5dfaa134d09d60dad0f02ec
c6bc6e2ba0d0d84ae34d3e7ec586d5b2884f6539
868c454612344976f793e1a2c8a20d947f4b90cb4784509ab146c561590f2226
GET /template/m1938pc/static/js/global.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Content-Length: 225
Last-Modified: Sat, 12 Nov 2022 16:24:06 GMT
Connection: keep-alive
ETag: "636fc8a6-e1"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes
niugetv9.top/template/m1938pc/static/css/style.css
38.60.24.90200 OK 9.6 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/css/style.css
IP 38.60.24.90:0
File type assembler source, Unicode text, UTF-8 text, with very long lines (367)
Hash 76c3cfbf09c2924d1324d18e71e4086c
e2955681a2b3e4806b34e4953517088ae3875059
48e3528c19a5f4f1dbd10bf600f3232f614369099eabb26a55b2baada479de09
GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Thu, 03 Jun 2021 01:54:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b83650-bf0e"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
niugetv9.top/template/m1938pc/static/css/bootstrap.min.css
38.60.24.90200 OK 24 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/css/bootstrap.min.css
IP 38.60.24.90:0
File type ASCII text, with very long lines (65369)
Hash fa8eee12898882e0b97ca29c7920c483
427b362e999391c7ad6d1c37e0178a4fc906fa10
239818d1da6510c291bb39dfa0b5f5873a81a4d63ae877fe97a9053842b58cf2
GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-1da6a"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fa0d66c0778ae7bdd1007bd1f7959522
a709c595563e0144c625ef660c143fcd5dfb4897
de7907a7d9d65c9d6028ea81d86eb9c8e722ebcb4f5b37ff29d1b1b1845d58fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4459
Cache-Control: max-age=169320
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: "6386f5b1-117"
Expires: Fri, 02 Dec 2022 07:32:44 GMT
Last-Modified: Wed, 30 Nov 2022 06:18:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fa0d66c0778ae7bdd1007bd1f7959522
a709c595563e0144c625ef660c143fcd5dfb4897
de7907a7d9d65c9d6028ea81d86eb9c8e722ebcb4f5b37ff29d1b1b1845d58fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4459
Cache-Control: max-age=169320
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: "6386f5b1-117"
Expires: Fri, 02 Dec 2022 07:32:44 GMT
Last-Modified: Wed, 30 Nov 2022 06:18:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
s2.loli.net/2022/11/21/HXSObKxZrpNoT8w.gif
104.26.1.190404 Not Found 14 kB URL HTTP/2 s2.loli.net/2022/11/21/HXSObKxZrpNoT8w.gif
IP 104.26.1.190:0
File type PNG image data, 630 x 557, 8-bit colormap, non-interlaced\012- data
Hash 2d65a379c6d17fb9a9a6e9ae5112e79e
3c81d9aefdc66c7c034bd83d8cf06a94782487ca
a810996e1b9632593734f13a465418280c6fc1ba72f1aff719577192dd47df85
GET /2022/11/21/HXSObKxZrpNoT8w.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 30 Nov 2022 08:30:44 GMT
content-type: image/png
content-length: 14266
etag: "61aa33ab-37ba"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 135675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nYESjmcc3LKCQUoMHyIdFNdPllBktH%2BPeIgFMysN%2BJYbIavNqXKUitKxyuoRCu5kP2crK8oHYtGHpQMX2VYy2UBuzrIB8zE9l2OjohvCCepnTw6k1sRCojpBEoYu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77223908485d0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s2.loli.net/2022/11/21/GjPS2c1pFvEmyUd.gif
104.26.1.190404 Not Found 14 kB URL HTTP/2 s2.loli.net/2022/11/21/GjPS2c1pFvEmyUd.gif
IP 104.26.1.190:0
File type PNG image data, 630 x 557, 8-bit colormap, non-interlaced\012- data
Hash 2d65a379c6d17fb9a9a6e9ae5112e79e
3c81d9aefdc66c7c034bd83d8cf06a94782487ca
a810996e1b9632593734f13a465418280c6fc1ba72f1aff719577192dd47df85
GET /2022/11/21/GjPS2c1pFvEmyUd.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Wed, 30 Nov 2022 08:30:44 GMT
content-type: image/png
content-length: 14266
etag: "61aa33ab-37ba"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 135675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bsXKiFX9TgFdg%2B2jR8gz7inH1UZCZj%2BaCdrWvtt5TmxpJiW2CQN3%2BpWqtMVeiITGeWhPBvFW3iagYdxm0B9b18lpgZDSf54ElB26Vo%2F1mtHldKgFXvcYtwRlRQyt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77223908687f0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=583699985&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=583699985&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=583699985&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:44 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C13E829839FD702D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
niugetv9.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
38.60.24.90404 Not Found 146 B URL HTTP/1.1 niugetv9.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
IP 38.60.24.90:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://niugetv9.top/template/m1938pc/static/css/style.css
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
niugetv9.top/template/m1938pc/static/fonts/iconfont.woff
38.60.24.90200 OK 2.9 kB URL HTTP/1.1 niugetv9.top/template/m1938pc/static/fonts/iconfont.woff
IP 38.60.24.90:0
File type Web Open Font Format, TrueType, length 2924, version 1.0\012- data
Hash 1b05b2b67ca6e3fe976ed8d2d1aa31d5
c7055832382daf713a911d67501e26873db045f8
ac1718a88630db8d2fd67997ad9796acdc8a6a88361b2b7058832caeec4fb22d
GET /template/m1938pc/static/fonts/iconfont.woff HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://niugetv9.top/template/m1938pc/static/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:45 GMT
Content-Type: font/woff
Content-Length: 2924
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Connection: keep-alive
ETag: "60b765dc-b6c"
Accept-Ranges: bytes
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 5619b95184df8e276ee22f798737313b
d84182ba1220b48f303954271fcc88a05541e5e2
591c1183f6882ba044100c41a9011f73a331fbd4ad20b734491f767b8b59f4c4
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: f2931af943c2ae296c85f3ab69b3bbb9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=78E0C8D3C8A5D8BA; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 8c662e15c6f000c48aa00aa75cb03d1b
145bbc3e4a3868139310f2d47c75cd71ce92678a
39f9478ac6e284f485df8e96728af88519a97ccb31e5f5d47ade0ae45084f850
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 0c6bbe6d35bda93089fe6ac133a2952c
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: c1f8917af5f294917ecef21a2ad6455e
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=4C63231755D1FACD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e01498b0901a1fd826b6c09cd17a212
049b063b7630cbf8fb18bcb9398272eaf4a6ba1f
ffa95b4c0a09fa4d5db44e89c217cd6ba48df6a7e05e16573203af5a1d1f49cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FFA95B4C0A09FA4D5DB44E89C217CD6BA48DF6A7E05E16573203AF5A1D1F49CD"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2083
Expires: Wed, 30 Nov 2022 09:05:28 GMT
Date: Wed, 30 Nov 2022 08:30:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58e1cdcab714767db284606599711bb6
29df717a4c00be82a7935a11dc017aceeb64f773
7da60405f867b12849e97460a454f409efab4b59fd1cebac6d805efa51cebb8a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7DA60405F867B12849E97460A454F409EFAB4B59FD1CEBAC6D805EFA51CEBB8A"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3684
Expires: Wed, 30 Nov 2022 09:32:09 GMT
Date: Wed, 30 Nov 2022 08:30:45 GMT
Connection: keep-alive
kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
137.175.13.78301 Moved Permanently 162 B URL HTTP/2 kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
IP 137.175.13.78:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: text/html
content-length: 162
location: https://kvtbbb.top/68a7807de3933bf7079116fa9df99e6f.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif
45.154.215.92301 Moved Permanently 162 B URL HTTP/2 kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif
IP 45.154.215.92:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /67a0474849f4ee10ccbe3b0d2cebf337.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:45 GMT
content-type: text/html
content-length: 162
location: https://kvtooo.top/67a0474849f4ee10ccbe3b0d2cebf337.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
niugetv3.top/img/ylf-1.gif
104.21.41.222301 Moved Permanently 0 B URL HTTP/1.1 niugetv3.top/img/ylf-1.gif
IP 104.21.41.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/ylf-1.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 08:30:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 30 Nov 2022 09:30:45 GMT
Location: https://niugetv3.top/img/ylf-1.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xHxGIzbLDm7idV53PFFDqJtLrT0E9BsQXRBepLfwJveMqzHkYnEMqxjK%2BuB7wo6k24KqyZjgu4%2BBUb1hImFt3G%2FSFDeiMEfTt7%2FEpx7YB4YpSa8%2FsYcacrG7qswU9Ms%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722390e1959b4ee-OSL
alt-svc: h2=":443"; ma=60
niugetv3.top/img/17172.gif
104.21.41.222301 Moved Permanently 0 B URL HTTP/1.1 niugetv3.top/img/17172.gif
IP 104.21.41.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/17172.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 08:30:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 30 Nov 2022 09:30:45 GMT
Location: https://niugetv3.top/img/17172.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqEa%2F743IpMFsBv0rkDphb0atgSTg7LAKzsu0PrbLwDo9pbC5u7EW73KcuYHrQSStzVLzOwyKkCPE1RK0%2B5X5Hm4yZQTOn8%2Fb%2FEOQtbn7FgeaJ3wNgjx53hZRJ2%2BbIU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722390e1b41b52d-OSL
alt-svc: h2=":443"; ma=60
niugetv3.top/img/1717.gif
104.21.41.222301 Moved Permanently 0 B URL HTTP/1.1 niugetv3.top/img/1717.gif
IP 104.21.41.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/1717.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/
HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 08:30:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 30 Nov 2022 09:30:45 GMT
Location: https://niugetv3.top/img/1717.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L2lO25RepFIT3euM1LxU8dPWA9%2BHbfftqfVgTid1kbW7WthWkfOcoM%2F3XOLUJ4PfdJPvKMNF4Wi7C6KFrmqmlEaqwmWJ8YppB%2Far4E8eyMNNFJ4jUqBgTDWyKAugWU0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722390e1f34b529-OSL
alt-svc: h2=":443"; ma=60
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2014546217&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2014546217&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2014546217&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:45 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=EF798EC3E990ED59; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1605071894&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
103.235.46.191200 OK 43 B URL HTTP/1.1 hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1605071894&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1605071894&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:45 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A66DBEAA89470F88; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash 1f86d719fc290cff51da52fec6792537
7c4d6ff0177effc452a91ddd01b3eab5f0fab8b6
973397bcf2dc1e65645d73a79acdaf174742a55ad0d7fbe455742b866530ab10
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: f2931af943c2ae296c85f3ab69b3bbb9
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:45 GMT
Etag: 265165da59c2ab4a9f16fddb13619d02
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B63C435B3B0A1D14; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash a406623ee7a0509bc3c078ff327572ca
221690b24bf4c03c57faec885fc6797bde9c8e49
8666d532681c3d9fce40124899eabb678e62234447f3342e6da902500a5a9594
GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: c1f8917af5f294917ecef21a2ad6455e
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:45 GMT
Etag: 19d91fa485d32f1414853d07808e7530
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=80CD17B3C01CF823; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
kvevv.com/4b6dde2b3f39cee4956a18a192534906.gif
54.192.150.84200 OK 325 kB URL HTTP/1.1 kvevv.com/4b6dde2b3f39cee4956a18a192534906.gif
IP 54.192.150.84:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 325 kB (325185 bytes)
Hash f6abc830b4c6c36a82db7bc9c87d79db
deda6d00011a2f90e666ce239ce43139f8e8b2ef
eca7c8dc365cd60e9fc4076bce5e618d6cf1ed7176d2da027be2b23f065109a9
GET /4b6dde2b3f39cee4956a18a192534906.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 325185
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:06:14 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 30 Nov 2022 08:06:15 GMT
ETag: "f6abc830b4c6c36a82db7bc9c87d79db"
X-Cache: Hit from cloudfront
Via: 1.1 3d1e30eb4cc84a00e30ba5e6b067e3f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN2-C1
X-Amz-Cf-Id: 1zhPKQ_upRk5L0pEp8FyecXgdY5KwHoUYjnULrWZhQT7I3eutdNNjA==
Age: 1471
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
103.235.46.191200 OK 11 kB URL HTTP/1.1 hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP 103.235.46.191:0
ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd.
File type ASCII text, with very long lines (617)
Hash e1c32802195bdcb4db6ccbe497e44ef0
d6de2f2d8537c0c3812d7ac7841ca93b7e89ea57
3ecaac616e332d0b6d3704933d2ec02961af61b0baf11b5e9633e3a2346a11ec
GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 265165da59c2ab4a9f16fddb13619d02
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:45 GMT
Etag: 4878e311b5e7cf918569ac14d02a14c7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=017680F2A8E91BB4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
niugetv3.top/img/ylf-1.gif
104.21.41.222200 OK 876 kB URL HTTP/2 niugetv3.top/img/ylf-1.gif
IP 104.21.41.222:0
File type GIF image data, version 89a, 980 x 120\012- data
Size 876 kB (875859 bytes)
Hash 5d8bd2cf8dfd1fdeebc625f2a664a5f5
b3cc24d971059319e859932dd124bcc4d64a7a8f
f1c047bf61b6c302e1afd72b6c49e7d5e397689109620cefdb055ce09d6483b6
GET /img/ylf-1.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: image/gif
content-length: 875859
last-modified: Fri, 18 Nov 2022 14:33:12 GMT
etag: "637797a8-d5d53"
expires: Fri, 30 Dec 2022 08:30:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rLj1Zg618iwwf5A7HoeaxcE2VUymckx7N208mmizADcrM83Oxvy1iK3%2BoZ8V%2BbdzFcDR6FORQkNx1ziZB0XRTG9IjbPhnMueioflJzY9NtFPr9YJ0rGzZouBKbpKE2Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391498eb0af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
niugetv3.top/img/17172.gif
104.21.41.222200 OK 3.2 MB URL HTTP/2 niugetv3.top/img/17172.gif
IP 104.21.41.222:0
File type GIF image data, version 89a, 600 x 240\012- data
Size 3.2 MB (3197145 bytes)
Hash 4dff729097677e6c8875d87ecb1cc40a
b2a83ac93f0177346ba2a2ba69280db169a89d0e
fdade7b3735760517f548e086b27db22b3701015daf7d94dd94a4a284373a154
GET /img/17172.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: image/gif
content-length: 3197145
last-modified: Thu, 27 Oct 2022 13:06:28 GMT
etag: "635a8254-30c8d9"
expires: Fri, 30 Dec 2022 08:30:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fkrQZSlsmKXdfE4eetrXniIg4Zyl2bkiuFIyqPM05uhYiXFSqY0EBJzQp%2BZT2AT%2BVAGVGDc1iAMtwOZjPt8lh5GdkQ2aXcTw9L2v8pPMMuOUzctaYihH%2FelEnrjm3B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391498f40af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
niugetv3.top/img/1717.gif
104.21.41.222200 OK 2.8 MB URL HTTP/2 niugetv3.top/img/1717.gif
IP 104.21.41.222:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 2.8 MB (2812930 bytes)
Hash b84dd689257112c2eeb9ff11c1eb1de7
125c585e21293764e1e52ca97dc256af76a67fc5
bd957c468bded0806e0a7ab33334f11f4a8952467f2fa13c2c606cf0bfc0ce83
GET /img/1717.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: image/gif
content-length: 2812930
last-modified: Wed, 26 Oct 2022 16:39:02 GMT
etag: "635962a6-2aec02"
expires: Fri, 30 Dec 2022 08:30:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=69ErKggYSfTyuaROcHVqiZy8PVI1DZynNXkjB%2Fji86Zs63moxZHwUh70uy9IexMhxf2gfTeZHzibUpo3Dr%2BQz%2BJCrx5F9cWaJs0PcmR3H6KNZdmJd3RttnbLBr4xFik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77223914a8f80af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe88fefcadc31dc5284c48143b9d446b
5b3cc09720489c31eeae72481bbfdb606272a9fb
47c7ed39784f221a46b7b2c9a8ce65108ad1bc6688914733afa2d7b9810f5cec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47C7ED39784F221A46B7B2C9A8CE65108AD1BC6688914733AFA2D7B9810F5CEC"
Last-Modified: Tue, 29 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18982
Expires: Wed, 30 Nov 2022 13:47:09 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 02e3a106a8f52c86b20080a6efcd0a8d
15fbb38c8a76b6df9e7c31e2abcb75b806181268
cc11ff40e33cde8fd9cb2fc2b42c7ac1ee24a4aa58f4b0db10f538f4ab413835
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC11FF40E33CDE8FD9CB2FC2B42C7AC1EE24A4AA58F4B0DB10F538F4AB413835"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8305
Expires: Wed, 30 Nov 2022 10:49:11 GMT
Date: Wed, 30 Nov 2022 08:30:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d27e0525e331a4c3ae096be1a00433af
764b36118b987432e13dd88b9b446a8ec0dc13e9
0929458f0ff0dceccb96bfc844263380c5424939c2e03a59bc4d71d764c4271c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0929458F0FF0DCECCB96BFC844263380C5424939C2E03A59BC4D71D764C4271C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4264
Expires: Wed, 30 Nov 2022 09:41:51 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 313a4af0587cf0130df762583804464b
2e81dd41e78c4b094f32575b1727a1c9207a1af1
77c2410d58d53811ae7b701ff4c501b6a21c9af6d27189170e725573ce07db2f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77C2410D58D53811AE7B701FF4C501B6A21C9AF6D27189170E725573CE07DB2F"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2154
Expires: Wed, 30 Nov 2022 09:06:41 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif
137.175.13.78301 Moved Permanently 162 B URL HTTP/2 kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif
IP 137.175.13.78:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
45.154.214.219301 Moved Permanently 162 B URL HTTP/2 kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP 45.154.214.219:0
ASN #201106 Spartan Host Ltd
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: text/html
content-length: 162
location: https://kvhjjj.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP 142.250.74.131:0
Hash 380fc74ad0e94f2ab86dea65a186385f
fdc37b5360ac431beaee656f81e4dc6ed4bd3c1c
a6b7d4eba8c5d0b14da00ed947c0cbb7540441909c0e1070b504472e5000754a
POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 9a2b6e9ee4a90ee4ae2f56876ce9c129
d80a9b33d106e60313116b163348f67478cb0437
f181c58614c12d48323e87d4f590cd9e28def3d70195dc336fa9942089ab1005
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 05:02:54 GMT
ETag: "d80a9b33d106e60313116b163348f67478cb0437"
Last-Modified: Wed, 30 Nov 2022 05:02:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1710
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a796fb4f9-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 9a2b6e9ee4a90ee4ae2f56876ce9c129
d80a9b33d106e60313116b163348f67478cb0437
f181c58614c12d48323e87d4f590cd9e28def3d70195dc336fa9942089ab1005
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 05:02:54 GMT
ETag: "d80a9b33d106e60313116b163348f67478cb0437"
Last-Modified: Wed, 30 Nov 2022 05:02:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1710
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a7fef0b49-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash b51d5d7a722f12d44f6e09089c432a85
f3c93177561702ce9c78724f852471974b249c23
d0995cec1dab88a8e5c7b7afc68c2f7796b68389dacbde4852fc139093a6a7fa
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 04:56:24 GMT
ETag: "f3c93177561702ce9c78724f852471974b249c23"
Last-Modified: Wed, 30 Nov 2022 04:56:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1367
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a7970b4f9-OSL
www.tukudhgg.vip/lm/klm01.gif
172.67.208.179200 OK 78 kB URL HTTP/2 www.tukudhgg.vip/lm/klm01.gif
IP 172.67.208.179:0
File type GIF image data, version 89a, 320 x 190\012- data
Hash f12d32b75b26394038be19df19aea586
286e3cee23dee594ce497c1f2020ccb842e0ae69
06a090053e07f41505d1949525aa511001d14069cb8560f933d60740f9e3eba9
GET /lm/klm01.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 78524
last-modified: Wed, 24 Aug 2022 10:34:37 GMT
etag: "6305febd-132bc"
expires: Sat, 24 Dec 2022 06:29:29 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 485262
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yU0Szq7%2BZbaiIlSiK1wX4Jq%2Bc%2F%2F5vquBVeutOp1oHCnqUXk1kcm9vVa9dF3%2FaMqFlhntNMnx%2B229yH0JsoRtwMA1VFV8M3oo2d7GXNs1biV6mZ36FNR8O8Q0v7T1w1nKMQ33"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391a7814b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 28b61a654e2e522f468123787d2abf83
3a8aaf795a912a321a3c9b4e6b3b1c85bc479068
d56effa2aa4f72664c100167dbb809c615a2d9a667151b1c9f5b440f3a7f65b0
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:53:05 GMT
ETag: "3a8aaf795a912a321a3c9b4e6b3b1c85bc479068"
Last-Modified: Wed, 30 Nov 2022 06:53:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 762
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a898bb4f9-OSL
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 97f9aecdc46865736ab4e14f76637ee2
d19bd7b91612873a00e7a18c23c57f75c4d09379
e9241a8c0d952943a9f37bf32147822f31391e73efacc54b47db3a23c34ebe9d
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 16:34:29 GMT
Expires: Sun, 04 Dec 2022 16:34:28 GMT
Etag: "d19bd7b91612873a00e7a18c23c57f75c4d09379"
Cache-Control: max-age=374020,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391a5d19fac0-OSL
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 97f9aecdc46865736ab4e14f76637ee2
d19bd7b91612873a00e7a18c23c57f75c4d09379
e9241a8c0d952943a9f37bf32147822f31391e73efacc54b47db3a23c34ebe9d
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 16:34:29 GMT
Expires: Sun, 04 Dec 2022 16:34:28 GMT
Etag: "d19bd7b91612873a00e7a18c23c57f75c4d09379"
Cache-Control: max-age=374020,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391a5960b4f4-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d9e7f9b5c49126259a37072aef06af8b
a1d6f3cc663c4a80e6e4ebd5d74ddf2ae45eb627
f7fdf989578ef9fbba472766bf4df386df43f2189fe33460b6340a2ae0bb485e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7FDF989578EF9FBBA472766BF4DF386DF43F2189FE33460B6340A2AE0BB485E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14187
Expires: Wed, 30 Nov 2022 12:27:14 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac4867e76887aae1908b974f84a1535a
fc0266fd652c2bea414094b29b8bfde56c067180
b8cbb3a6f08134ea5fe20b617d895cec92ef2df8a76a567fb9bcb39968432124
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8CBB3A6F08134EA5FE20B617D895CEC92EF2DF8A76A567FB9BCB39968432124"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18868
Expires: Wed, 30 Nov 2022 13:45:15 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf544ef7c11a3e0720d2ef64814ca5ac
f645d5baf08aa53e4ca6c3891236581f8f44c35c
5d3dd983185cb5de1765ead906d7c45cdf80b2f6a6563208b3e654c0a75ab5a8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D3DD983185CB5DE1765EAD906D7C45CDF80B2F6A6563208B3E654C0A75AB5A8"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1807
Expires: Wed, 30 Nov 2022 09:00:54 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac4867e76887aae1908b974f84a1535a
fc0266fd652c2bea414094b29b8bfde56c067180
b8cbb3a6f08134ea5fe20b617d895cec92ef2df8a76a567fb9bcb39968432124
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8CBB3A6F08134EA5FE20B617D895CEC92EF2DF8A76A567FB9BCB39968432124"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3644
Expires: Wed, 30 Nov 2022 09:31:31 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4a2660451f4fab38d4674a926abe5a59
4af559c5ec2e12c25ba7962902ce047f02088c0f
82550870a98650dc4eb166d822ee3e9f22bd201ee451b4401152da4377c8281b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82550870A98650DC4EB166D822EE3E9F22BD201EE451B4401152DA4377C8281B"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13414
Expires: Wed, 30 Nov 2022 12:14:21 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
www.tukky.vip/91uu/91uuspk200.gif
104.21.27.152200 OK 330 kB URL HTTP/2 www.tukky.vip/91uu/91uuspk200.gif
IP 104.21.27.152:0
File type GIF image data, version 89a, 320 x 200\012- data
Size 330 kB (329800 bytes)
Hash c8515e829d6c15278640453ade073548
20019ae01ae180c537c65d9370dd6dff01e56346
6ca0b4ef7e96f09b8fdb715877485314fa5da8e9e9b501f7d0906609a003f894
GET /91uu/91uuspk200.gif HTTP/1.1
Host: www.tukky.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 329800
last-modified: Mon, 17 Oct 2022 03:32:11 GMT
etag: "634cccbb-50848"
expires: Sat, 24 Dec 2022 20:17:00 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 435609
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3E7TVI5VhesSzbz2ovgEJnDlYA%2B8RHo9UBhiESHZvKtoOEJPccFK7ww%2Bpt94Nho2TjA%2FXtvBvzMmvHX1gbZVH8pb6dTYkSUymYC4QxT9XCUj59mRJNMHJr%2BudRq5NFWG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391aeddbb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mjcommon.yybfxo.com/picture/11-12/640-120.gif
47.246.44.220200 OK 345 kB URL HTTP/1.1 mjcommon.yybfxo.com/picture/11-12/640-120.gif
IP 47.246.44.220:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 640 x 120\012- data
Size 345 kB (344895 bytes)
Hash 984a925f1fbd04da361545740121c81d
7312171a9ec8fed1d68e34a0bc40a4ff150c3944
c5dc6a8dbe82003ba31a43714fe70d5625c039b4ac8717ff01450460f854b584
GET /picture/11-12/640-120.gif HTTP/1.1
Host: mjcommon.yybfxo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 344895
Connection: keep-alive
Date: Tue, 29 Nov 2022 15:19:28 GMT
x-oss-request-id: 63862300482D3738330D6FA1
x-oss-cdn-auth: success
Accept-Ranges: bytes
ETag: "984A925F1FBD04DA361545740121C81D"
Last-Modified: Sat, 12 Nov 2022 09:07:55 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10366200340160173222
x-oss-storage-class: Standard
x-oss-meta-atime: 1668244058
x-oss-meta-ctime: 1668244060
x-oss-meta-gid: 1000
x-oss-meta-mode: 33261
x-oss-meta-mtime: 1668244058
x-oss-meta-uid: 1000
Content-MD5: mEqSXx+9BNo2FUV0ASHIHQ==
x-oss-server-time: 126
Ali-Swift-Global-Savetime: 1669735168
Via: cache15.l2de2[3050,3050,304-0,M], cache2.l2de2[3052,0], cache8.se1[0,0,200-0,H], cache3.se1[1,0]
Age: 61879
X-Cache: HIT TCP_MEM_HIT dirn:1:16609475
X-Swift-SaveTime: Tue, 29 Nov 2022 15:19:28 GMT
X-Swift-CacheTime: 86400
Timing-Allow-Origin: *
EagleId: 2ff62c9716697970474691647e
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c19665eb0fab82bae94ff9267071b5a6
ff3602646efe6491ba6b805ab73b0a0bfb8560b2
df36f9063b6c15da79a0e02d9098335e004583d4cf1050eed6f7fca2b7830039
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF36F9063B6C15DA79A0E02D9098335E004583D4CF1050EED6F7FCA2B7830039"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8702
Expires: Wed, 30 Nov 2022 10:55:49 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP 142.250.74.131:0
Hash 9b88ef3a164860bf62379946ef5b8d85
a15f7a8c3474cff86b398ad3601cc9ce39efae61
af7f935fbd0af125959b0cc85bcea2002e69eec41a8e42f2a8c55ffbf00ff0e8
POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP 142.250.74.131:0
Hash b697ee50a930a06db863a2e38a8bad87
832f64ee0b1d9daf4883846604612b5c6c892517
eb1b25c36eef8ea629e206cf38961dc53eb0658c5d18ff1d1e1b84f48ad4afc5
POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP 142.250.74.131:0
Hash b697ee50a930a06db863a2e38a8bad87
832f64ee0b1d9daf4883846604612b5c6c892517
eb1b25c36eef8ea629e206cf38961dc53eb0658c5d18ff1d1e1b84f48ad4afc5
POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP 142.250.74.131:0
Hash b697ee50a930a06db863a2e38a8bad87
832f64ee0b1d9daf4883846604612b5c6c892517
eb1b25c36eef8ea629e206cf38961dc53eb0658c5d18ff1d1e1b84f48ad4afc5
POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e97c305c122cd72602947d1eed7f3f64
99ae6f7583d688c0fe86ae6220fb1bcf28e7a2b2
c8f1097db53f2e04d72376e5705f6b1096fb173ea5ddf7faa4902401521783e0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C8F1097DB53F2E04D72376E5705F6B1096FB173EA5DDF7FAA4902401521783E0"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16227
Expires: Wed, 30 Nov 2022 13:01:14 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
int.jstatic.xyz/happy/newyear/yiren/yiren140.gif
188.114.96.1200 OK 47 kB URL HTTP/2 int.jstatic.xyz/happy/newyear/yiren/yiren140.gif
IP 188.114.96.1:0
File type GIF image data, version 89a, 240 x 140\012- data
Hash eb340fa6893251f2af76ebef29cf6600
64c8dcdb9a57321c84136068a5f7a16363bc5430
962f36c8324e275fa8df04007b238d7a47d28bf3ab01d189d78271d8ea88d663
GET /happy/newyear/yiren/yiren140.gif HTTP/1.1
Host: int.jstatic.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 47044
last-modified: Sat, 01 Oct 2022 12:28:45 GMT
etag: "6338327d-b7c4"
expires: Thu, 29 Dec 2022 13:45:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 67512
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h51b4b06Ji0aPY7UZFhsxQeUtrkZ%2FWAklsCMJcIWWgx58wUMezpNEaox5GMX5SkO%2BRty%2Bis350fScOxxTBQMRaxsX5vHiLNlJ1h3PhvmUYovFhZIKMBH1KYY3NXxTZGa1S0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391b8b4eb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP 142.250.74.131:0
Hash 47d72ffdfb0ddd8daa1475652e208579
160ea52d15aa4a23359518cded8208be3b3ef4c7
7fb36f311df57766805ca38b459f5b268ea84da6147095791fd94924d7a70c2b
POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
47.246.44.252200 OK 9.2 kB URL HTTP/2 img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
IP 47.246.44.252:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Hash 43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e
GET /imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg HTTP/1.1
Host: img.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/jpeg
content-length: 9166
date: Tue, 10 May 2022 07:04:29 GMT
last-modified: Fri, 13 Aug 2021 10:28:00 GMT
picasso-ret-code: SUCCESS
request-time: 0.160
expires: Wed, 10 May 2023 07:04:29 GMT
cache-control: max-age=31536000
ali-swift-global-savetime: 1652166269
via: cache31.l2ot7-1[0,0,200-0,H], cache5.l2ot7-1[1,0], cache1.se1[0,0,200-0,H], cache1.se1[2,0]
access-control-allow-origin: *
age: 17630778
x-cache: HIT TCP_MEM_HIT dirn:2:226351109
x-swift-savetime: Wed, 31 Aug 2022 14:41:30 GMT
x-swift-cachetime: 21745379
s-rt: 2
timing-allow-origin: *
eagleid: 2ff62c9516697970476725589e
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8f7dfdeaa0ff255bad7aa94b9abe931b
7e32d9ba838c340b3ca7c7cd731dba38ee654470
7dfb2675a73a66db2e698a6ebba72bc1932dbbc2cf1cb7a65a0b91aee84f30f7
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7DFB2675A73A66DB2E698A6EBBA72BC1932DBBC2CF1CB7A65A0B91AEE84F30F7"
Last-Modified: Tue, 29 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2591
Expires: Wed, 30 Nov 2022 09:13:58 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive
madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg
104.21.234.135200 OK 46 kB URL HTTP/2 madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg
IP 104.21.234.135:0
File type JPEG image data, baseline, precision 8, 600x340, components 3\012- data
Hash 8cee135b65dc2de4efafc419f4b353d0
fffc6829df1aa62783f66eca0ac618512d64dbe8
28cf9e87185f5cff027ac436cd6fe1b1b7f44e5b31df3e18c99f0898d1785932
GET /videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/jpeg
content-length: 46200
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 17 Aug 2022 19:41:16 GMT
etag: W/"b478-182ad53098f"
expires: Wed, 30 Nov 2022 17:33:51 GMT
cf-cache-status: HIT
age: 10616
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qxyZMTq4ieA81TvqPx97GvQUrcIKpG0dj736ZKdzCGG6Mv15BRg9tEBABFqMFPx0vcvVsseTcExiLlk83FUBOYMTA1aNDlacNwCUVtaNiLxgqbYXtGTjZFcsmd5%2FswjlmwrDzmz1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391bfa3972d6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kvtooo.top/67a0474849f4ee10ccbe3b0d2cebf337.gif
188.114.96.1200 OK 324 kB URL HTTP/2 kvtooo.top/67a0474849f4ee10ccbe3b0d2cebf337.gif
IP 188.114.96.1:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 324 kB (324467 bytes)
Hash 51223186e981513fc73e79a1bf5b62d1
280e6af2e99c9381a9101c6b5820bd0d5b682df1
d3437c90208ae243d19d4316d1fe074314bcb00be9f2025819f47064c76b3833
GET /67a0474849f4ee10ccbe3b0d2cebf337.gif HTTP/1.1
Host: kvtooo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 324467
last-modified: Tue, 22 Nov 2022 18:04:15 GMT
etag: "637d0f1f-4f373"
expires: Fri, 30 Dec 2022 04:16:58 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 15229
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iVR6jlQSEfyAtMjmw4NKfPt%2BZnRJXT1ZvzMS9YzC4OD9gKcAp3g8fSVSBqabv9ziOyRBnk0iTx1wTIdAIJKCKwpDAOdVFq8H5I6Sk53J4uyZ%2BsiXuVvseK9%2FDypY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391c3bc0b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pic.picnewsss.com/tu-2022290039/960-120.gif
23.225.139.251200 OK 363 kB URL HTTP/2 pic.picnewsss.com/tu-2022290039/960-120.gif
IP 23.225.139.251:0
File type GIF image data, version 89a, 960 x 120\012- data
Size 363 kB (362862 bytes)
Hash c3bde1a0936121317a37c1ea11d3c59a
5c61c5caea1804742596aff4779247ca14fe0fe3
0e54eb7dcb90dc18351c3b5c97e684fee4b4b1de27f3d2e263f81103a20edd81
GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Wed, 30 Nov 2022 05:47:59 GMT
etag: "1669787279"
expires: Fri, 30 Dec 2022 05:47:59 GMT
last-modified: Wed, 30 Nov 2022 05:47:59 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 362862
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash e1c41fb5c5fdd1f845f478aee50c3d82
953bb277d4b20658d93b1ae2218536c027a4f758
81c5ada21f6083ce7fdad2242db33ff2f1d636520903c193bdca3fba023dc12e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 04:01:13 GMT
Expires: Mon, 05 Dec 2022 04:01:12 GMT
Etag: "953bb277d4b20658d93b1ae2218536c027a4f758"
Cache-Control: max-age=415224,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391c48420b51-OSL
monaitv.me/upload/vod/2022-01-23/16429204853.jpg
137.175.72.61200 OK 38 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-01-23/16429204853.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 938x634, components 3\012- data
Hash aeecc5edad9ec3acd1ddf61b040e9c31
8f109b958ef65b7cf7e90293e60feabe1e327998
1bf46b0fe421f7108a86f291ff5121f45c22b7c0c4854ecc7d8d5fbe9e6ee593
GET /upload/vod/2022-01-23/16429204853.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 37536
Last-Modified: Tue, 15 Nov 2022 10:47:04 GMT
Connection: keep-alive
ETag: "63736e28-92a0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 53a9e6075e0614555254a4c3908fba86
731233b1e5b778588a42355e2123948ecf800cbb
0f348a69f07626c93e6dacdae01c1f7b6c0d94f484b9a645ce755cf565249f91
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:32:10 GMT
Expires: Tue, 06 Dec 2022 04:32:09 GMT
Etag: "731233b1e5b778588a42355e2123948ecf800cbb"
Cache-Control: max-age=503481,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391da9900b51-OSL
monaitv.me/upload/vod/2022-01-21/16427415961.jpg
137.175.72.61200 OK 45 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-01-21/16427415961.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 658x438, components 3\012- data
Hash 1cbe0c6671389df4a1255d621c3c128f
f855f5115a207d4404d16178f4300ad84d8bfd46
bae480ad0dfe46b3ebee54e0be148b614a6bdbf1ab8164620d56a93329ff8e93
GET /upload/vod/2022-01-21/16427415961.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 45203
Last-Modified: Tue, 15 Nov 2022 10:46:46 GMT
Connection: keep-alive
ETag: "63736e16-b093"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP 142.250.74.131:0
Hash 380fc74ad0e94f2ab86dea65a186385f
fdc37b5360ac431beaee656f81e4dc6ed4bd3c1c
a6b7d4eba8c5d0b14da00ed947c0cbb7540441909c0e1070b504472e5000754a
POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
8499753.com/8499/hongse/960x60.gif
23.224.101.37200 OK 331 kB URL HTTP/2 8499753.com/8499/hongse/960x60.gif
IP 23.224.101.37:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /8499/hongse/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 331043
last-modified: Sat, 12 Nov 2022 04:48:00 GMT
etag: "50d23-5ed3eb5f982bf"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
8499753.com/8499/960x60.gif
23.224.101.37200 OK 331 kB URL HTTP/2 8499753.com/8499/960x60.gif
IP 23.224.101.37:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /8499/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 331043
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "50d23-5ed03aef4304d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2022-05-05/165173678012.jpg
137.175.72.61200 OK 73 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-05-05/165173678012.jpg
IP 137.175.72.61:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 500x333, components 3\012- data
Hash d7a6510257bb747ed9d56228502b5219
5d0fd20d55ff68c572aba2d316f40807e44eff6d
87dc3d2e149f996e8e880ec3eed1b39be86f9ed4133d5ba79289a2eac6020eb5
GET /upload/vod/2022-05-05/165173678012.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 72912
Last-Modified: Tue, 15 Nov 2022 10:48:05 GMT
Connection: keep-alive
ETag: "63736e65-11cd0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash bc50d83d2f2ed082c3720ab0bd6debe2
1d0eaf586a77cf581c998d368ce70fb61d9a81b8
476aa940ba8752a335d989b68cac5d6d7c2898c694688686c1a444990aabbe39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=108711
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63861a5f-117"
Expires: Thu, 01 Dec 2022 14:42:39 GMT
Last-Modified: Tue, 29 Nov 2022 14:42:39 GMT
Server: nginx
Content-Length: 279
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 0324565bc97b86256a8014cac8c8aea6
fac460354d5a55c454bb6761ab4ffc9aab57136b
13bcedb8a4b1fb7f5a12a53d6e2a1c7a92c90a63f9d242a9b23cce7bce4ebf01
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:00:57 GMT
last-modified: Tue, 29 Nov 2022 23:26:20 GMT
expires: Tue, 06 Dec 2022 23:26:19 GMT
etag: "fac460354d5a55c454bb6761ab4ffc9aab57136b"
cache-control: max-age=603555,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb4
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 77220d61aa8a9bd7-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795257
via: cache19.l2de2[511,511,304-0,M], cache1.l2de2[512,0], cache5.se1[0,0,200-0,H], cache3.se1[0,0], cache3.se1[3,0]
age: 1791
x-cache: HIT TCP_MEM_HIT dirn:1:311575962
x-swift-savetime: Wed, 30 Nov 2022 08:00:57 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9716697970481332189e, 2ff62c9716697970481332189e
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 0c4debbb5143cd9c3be5bbf856626379
73c670b6dce2c6e85a8d4c89f58496eebb376839
f35ce8ab762c1ff0ca8bb4b2cfabb06ebe9856107642fde80e3ff8c33b5ae985
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:08:03 GMT
last-modified: Tue, 29 Nov 2022 06:55:29 GMT
expires: Tue, 06 Dec 2022 06:55:28 GMT
etag: "73c670b6dce2c6e85a8d4c89f58496eebb376839"
cache-control: max-age=600680,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 772217cfca908ff4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795683
via: cache16.l2de2[0,0,304-0,H], cache21.l2de2[0,0], cache3.se1[0,0,200-0,H], cache3.se1[1,0], cache4.se1[3,0]
age: 1365
x-cache: HIT TCP_MEM_HIT dirn:2:301886532
x-swift-savetime: Wed, 30 Nov 2022 08:15:08 GMT
x-swift-cachetime: 1375
timing-allow-origin: *, *
eagleid: 2ff62c9816697970481298025e, 2ff62c9816697970481298025e
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 0324565bc97b86256a8014cac8c8aea6
fac460354d5a55c454bb6761ab4ffc9aab57136b
13bcedb8a4b1fb7f5a12a53d6e2a1c7a92c90a63f9d242a9b23cce7bce4ebf01
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:00:57 GMT
last-modified: Tue, 29 Nov 2022 23:26:20 GMT
expires: Tue, 06 Dec 2022 23:26:19 GMT
etag: "fac460354d5a55c454bb6761ab4ffc9aab57136b"
cache-control: max-age=603555,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb4
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 77220d61aa8a9bd7-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795257
via: cache19.l2de2[511,443,304-0,C], cache11.l2de2[445,0], cache3.se1[0,0,200-0,H], cache3.se1[2,0], cache7.se1[3,0]
age: 1791
x-cache: HIT TCP_MEM_HIT dirn:2:312663638
x-swift-savetime: Wed, 30 Nov 2022 08:00:57 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9b16697970481295954e, 2ff62c9b16697970481295954e
ocsp.trust-provider.cn/
47.246.44.205200 OK 599 B IP 47.246.44.205:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Hash 0c4debbb5143cd9c3be5bbf856626379
73c670b6dce2c6e85a8d4c89f58496eebb376839
f35ce8ab762c1ff0ca8bb4b2cfabb06ebe9856107642fde80e3ff8c33b5ae985
POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:08:03 GMT
last-modified: Tue, 29 Nov 2022 06:55:29 GMT
expires: Tue, 06 Dec 2022 06:55:28 GMT
etag: "73c670b6dce2c6e85a8d4c89f58496eebb376839"
cache-control: max-age=600680,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 772217cfca908ff4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795683
via: cache16.l2de2[0,0,304-0,H], cache21.l2de2[0,0], cache3.se1[0,0,200-0,H], cache3.se1[1,0], cache3.se1[3,0]
age: 1365
x-cache: HIT TCP_MEM_HIT dirn:2:301886532
x-swift-savetime: Wed, 30 Nov 2022 08:15:08 GMT
x-swift-cachetime: 1375
timing-allow-origin: *, *
eagleid: 2ff62c9716697970481342192e, 2ff62c9716697970481342192e
nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
172.67.170.188200 OK 318 kB URL HTTP/2 nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
IP 172.67.170.188:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 318 kB (317903 bytes)
Hash fb3f1f47e7cd3c017411f4a08cb222b7
9ef0eebfa48d7d3c66398066ad781c2e4c5c2fce
864310898b7de94e28b82e0e318d801e6537365a75078d2f94b98a25c81e98a9
GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 317903
last-modified: Sat, 13 Aug 2022 11:03:31 GMT
etag: "62f78503-4d9cf"
expires: Thu, 29 Dec 2022 23:17:46 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 33182
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LfW74swTFHobEqDgfudPg0ol4UwKUZSnh5wAE5zo13qYlZCAmUaaSXhLqrKZ6i0dGb32pNUKhpDJ53z16AMJc5Lilcsj0M%2FqGvqhy99dWDSSi8e8dAT5deQEFVSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391f3d7bb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 60be9e248a19af148c3186ec7c1178cc
d7222300d95edc3587fed013f3f775b21b2b214b
5792630410e60ea547cb827ca0c74674486c78c72dca1b35e974b335a091d701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5645
Cache-Control: max-age=140311
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63867fc2-2d7"
Expires: Thu, 01 Dec 2022 23:29:19 GMT
Last-Modified: Tue, 29 Nov 2022 21:55:14 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 60be9e248a19af148c3186ec7c1178cc
d7222300d95edc3587fed013f3f775b21b2b214b
5792630410e60ea547cb827ca0c74674486c78c72dca1b35e974b335a091d701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4898
Cache-Control: max-age=139564
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63867fc2-2d7"
Expires: Thu, 01 Dec 2022 23:16:52 GMT
Last-Modified: Tue, 29 Nov 2022 21:55:14 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP 142.250.74.131:0
Hash 9b88ef3a164860bf62379946ef5b8d85
a15f7a8c3474cff86b398ad3601cc9ce39efae61
af7f935fbd0af125959b0cc85bcea2002e69eec41a8e42f2a8c55ffbf00ff0e8
POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c869d64281c645eb920c7b3574197190
8f842ce3a2f0e9bdef073a0a53e1fa963992ec47
0745f4c0330e33e02ccd8f4244f7059f5506644f5ea58374b5a430c2e4bd68c4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0745F4C0330E33E02CCD8F4244F7059F5506644F5EA58374B5A430C2E4BD68C4"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Wed, 30 Nov 2022 10:33:01 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 60be9e248a19af148c3186ec7c1178cc
d7222300d95edc3587fed013f3f775b21b2b214b
5792630410e60ea547cb827ca0c74674486c78c72dca1b35e974b335a091d701
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5645
Cache-Control: max-age=140311
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63867fc2-2d7"
Expires: Thu, 01 Dec 2022 23:29:19 GMT
Last-Modified: Tue, 29 Nov 2022 21:55:14 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 727
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e97c305c122cd72602947d1eed7f3f64
99ae6f7583d688c0fe86ae6220fb1bcf28e7a2b2
c8f1097db53f2e04d72376e5705f6b1096fb173ea5ddf7faa4902401521783e0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C8F1097DB53F2E04D72376E5705F6B1096FB173EA5DDF7FAA4902401521783E0"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16226
Expires: Wed, 30 Nov 2022 13:01:14 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8f7dfdeaa0ff255bad7aa94b9abe931b
7e32d9ba838c340b3ca7c7cd731dba38ee654470
7dfb2675a73a66db2e698a6ebba72bc1932dbbc2cf1cb7a65a0b91aee84f30f7
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7DFB2675A73A66DB2E698A6EBBA72BC1932DBBC2CF1CB7A65A0B91AEE84F30F7"
Last-Modified: Tue, 29 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Wed, 30 Nov 2022 09:13:58 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive
kvtbbb.top/68a7807de3933bf7079116fa9df99e6f.gif
172.67.147.13200 OK 366 kB URL HTTP/2 kvtbbb.top/68a7807de3933bf7079116fa9df99e6f.gif
IP 172.67.147.13:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 366 kB (366444 bytes)
Hash 86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf
GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kvtbbb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Thu, 29 Dec 2022 16:35:55 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 57293
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2tdC%2Bf7CxxTrcSgaWXvqf8YV8ZX0UkmE8oLDYGu2z6EG3mMDmTvvuPsxwzEaXM1ECFaNJqd3sXhS%2Bcw0gIRkElAvF9PkCsPu9fj%2B6AWvMcmuaHv23Qz0U61xnVbP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391fab1cb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.u2765.com/images/637c9dccac84359a7f268ae1.gif
185.239.226.87302 Found 440 kB URL HTTP/2 img.u2765.com/images/637c9dccac84359a7f268ae1.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
File type GIF image data, version 89a, 960 x 60\012- data
Size 440 kB (439790 bytes)
Hash 07ad6948d174b603a75e166a521bbb04
d08af2d0fc9693ce636e66cbb89277875d7954f4
40853d1d4eb09490225dfe79a563bcc574195734b42387a2a4043f854bc3ca2b
GET /images/637c9dccac84359a7f268ae1.gif HTTP/1.1
Host: img.u2765.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/50372422c79c43218a1f1a337e6e6727
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a79ac765075efd28343ced078b01042d
ca3f2283df343a6f42ce1695141b8bd11c652c86
adc914c632b1344c3a3d2ddd3edf74c9ddba10fd56f7acab760d77a2f2cbbd45
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 05:33:18 GMT
Expires: Tue, 06 Dec 2022 05:33:17 GMT
Etag: "ca3f2283df343a6f42ce1695141b8bd11c652c86"
Cache-Control: max-age=507148,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391f9b660b51-OSL
p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6
47.246.44.229200 OK 420 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 420 kB (420442 bytes)
Hash 7020ecb5ebdf5d2d41668f76d36f5982
30c768ceb1463fffc0145f1e73c808f8f6d2bb51
3a55db6e5e4fa541729efffaa932549e491e07af768e1c3c3d1dad65ae53a8bb
GET /obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 420442
date: Wed, 23 Nov 2022 19:05:33 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 23 Nov 2022 14:25:30 GMT
nw-session-id: 202211232225300101580270672D784638mtkdn02dy
nw-session-trace: 2022-11-23T22:25:30.548689345+08:00 81
x-bdcdn-cache-status: TCP_HIT
x-length: 420442
x-powered-by: ImageX
x-response-date: Wed, 23 Nov 2022 22:25:30 GMT
x-tt-logid: 202211232225300101580270672D784638
via: n132-085-052, cache5.l2de2[0,0,206-0,H], cache21.l2de2[2,0], cache21.l2de2[3,0], cache1.se1[0,0,200-0,H], cache5.se1[3,0]
x-request-ip: fdbd:dc03:15:231::134
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01e30c4ab5eb7be2436f4e80c37d0bf865ef2d9e490926580dd610aecbe3b3a013e27c67d9bdcc334baaf37a5076138f2c0511e61569a5cdf088a257cc92e49364e17f9f5ac608c83dc1ec0d4b13ce6f2b753315b127c46b57bfdd2e2fb9612211
x-response-lb: image
ali-swift-global-savetime: 1669230333
age: 566715
x-cache: HIT TCP_HIT dirn:4:464078017
x-swift-savetime: Fri, 25 Nov 2022 09:11:11 GMT
x-swift-cachetime: 31398862
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970482462448e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e
47.246.44.229200 OK 516 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 516 kB (516218 bytes)
Hash 8d339af776b8da39e4e1fdb55f96b6af
d6b84760fea01429a13f8ff040172507361097c0
fd6e67ed60cceb42d84e753cce3f4c5ede43ae84f4038ffea335a840302fa2df
GET /obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 516218
date: Mon, 28 Nov 2022 12:56:26 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 28 Nov 2022 06:11:24 GMT
nw-session-id: 202211281411240101351572260E7A95E2rnj6p01dy
nw-session-trace: 2022-11-28T14:11:24.520557842+08:00 97
x-bdcdn-cache-status: TCP_HIT
x-length: 516218
x-powered-by: ImageX
x-response-date: Mon, 28 Nov 2022 14:11:24 GMT
x-tt-logid: 202211281411240101351572260E7A95E2
via: n132-078-079, cache16.l2de2[0,13,206-0,H], cache19.l2de2[15,0], cache19.l2de2[15,0], cache2.se1[0,1,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc03:8:579::167
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 015494d4cc1a514076628c47d10c6f3c8a79fbc3b70d2eb9169b9ffab2c91d5994ec73d257b37eae2c728d19f931f4de0d8b6d4b7724d5a90bd8540ce7c181f17f6116eccaefbd7d14c7f93c0e6ee128de9235bf6ffb15c725a76320e23d99276a
x-response-lb: image
ali-swift-global-savetime: 1669640186
age: 156862
x-cache: HIT TCP_HIT dirn:3:63133740
x-swift-savetime: Mon, 28 Nov 2022 15:23:46 GMT
x-swift-cachetime: 31527160
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970482472450e
X-Firefox-Spdy: h2
p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6
47.246.44.229200 OK 385 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 960 x 60\012- data
Size 385 kB (384932 bytes)
Hash 6b1533d50f7375dff2f5b3969e7ec1da
6dfd13e56902faedb34a9d2e6d27e51605ddb0f1
2f235ff0c8fd65b40619ef5448206c505716aa41dcee03850c00b1352c986f7c
GET /obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 384932
date: Tue, 22 Nov 2022 10:08:41 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Tue, 22 Nov 2022 10:08:41 GMT
nw-session-id: 202211221808410101351601674FE863345mzx501dy
nw-session-trace: 2022-11-22T18:08:41.647742825+08:00 42
x-bdcdn-cache-status: TCP_MISS
x-length: 384932
x-powered-by: ImageX
x-response-date: Tue, 22 Nov 2022 18:08:41 GMT
x-tt-logid: 202211221808410101351601674FE86334
via: n132-082-090, cache8.l2de2[0,0,206-0,H], cache5.l2de2[1,0], cache5.l2de2[1,0], cache2.se1[0,0,200-0,H], cache5.se1[3,0]
x-request-ip: fdbd:dc03:8:579::167
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01828e55a3aae08103c59996ea14c72a4affd5f336396c83fef04801501cdc16c039bb9b50be36e4583a9a652be70d4c26d43a9fbfbc9d261778259a62d27b92becca44012ddd205b00b27dc756b3cf65e7a30213d49dde86765893b92cc85453b
x-response-lb: image
ali-swift-global-savetime: 1669111721
age: 685327
x-cache: HIT TCP_HIT dirn:6:21554454
x-swift-savetime: Tue, 22 Nov 2022 11:19:45 GMT
x-swift-cachetime: 31531736
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970482342445e
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash a888dbe61aa6b521799b9015e41a9c4a
8b5a0da67b07e0b2595c053af1ca00117f546463
5ef8b526f86af4b5b0ea72c15c270aecac3dbae7fd0bbba80db0cb536fe1cb1e
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:23:55 GMT
ETag: "8b5a0da67b07e0b2595c053af1ca00117f546463"
Last-Modified: Wed, 30 Nov 2022 06:23:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2230
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772239204fa5b517-OSL
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP 142.250.74.131:0
Hash 47d72ffdfb0ddd8daa1475652e208579
160ea52d15aa4a23359518cded8208be3b3ef4c7
7fb36f311df57766805ca38b459f5b268ea84da6147095791fd94924d7a70c2b
POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 3ffc11834eea41e3af39ea3e497c8666
ee46bd051fdf8e471195404dd36519c711750688
1ec054444a9d00b943b41b05d768a3e60f379a9cc91fe33077686f2738af48d5
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 10:57:25 GMT
Expires: Mon, 05 Dec 2022 10:57:24 GMT
Etag: "ee46bd051fdf8e471195404dd36519c711750688"
Cache-Control: max-age=440195,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722392028cefac0-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0cb73df63ba1877b24ca16cac81a0b
ec232f5414546ed878d30df7fceb2c20dda2aecf
4bf8a28bfc0282262a05b1eb43f60e1de181cb4d0d3d30a9289a317591289013
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BF8A28BFC0282262A05B1EB43F60E1DE181CB4D0D3D30A9289A317591289013"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 14:30:48 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3d0cb73df63ba1877b24ca16cac81a0b
ec232f5414546ed878d30df7fceb2c20dda2aecf
4bf8a28bfc0282262a05b1eb43f60e1de181cb4d0d3d30a9289a317591289013
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BF8A28BFC0282262A05B1EB43F60E1DE181CB4D0D3D30A9289A317591289013"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 14:30:48 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0a4a2b67c05626f10853822984c228ca
1ec38e19e6e9e01af282c2de745157bed73d5376
b2c684579e1f4b32b388b7da653110e1d98dbed0b04a820565a55ca7be1a60cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2C684579E1F4B32B388B7DA653110E1D98DBED0B04A820565A55CA7BE1A60CB"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=346
Expires: Wed, 30 Nov 2022 08:36:34 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive
p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3
47.246.44.229200 OK 66 kB URL HTTP/2 p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3
IP 47.246.44.229:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type GIF image data, version 89a, 200 x 200\012- data
Hash 9d629444f249b855a94e8a882d5ec47d
c06f98e56cf9977aaa7addb0e0acee4d982f6248
a81c159959e121cf31b8fb9fff87a139cb549a928b07ff43306ac65a2dcb6a0c
GET /obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 65638
date: Thu, 24 Nov 2022 17:04:00 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 24 Nov 2022 17:04:00 GMT
nw-session-id: 202211250104000102090801531EE6926Csfzgg02dy
nw-session-trace: 2022-11-25T01:04:00.722129358+08:00 73
x-bdcdn-cache-status: TCP_MISS
x-length: 65638
x-powered-by: ImageX
x-response-date: Fri, 25 Nov 2022 01:04:00 GMT
x-tt-logid: 202211250104000102090801531EE6926C
via: n204-098-054, cache10.l2de2[0,0,206-0,H], cache17.l2de2[1,0], cache17.l2de2[1,0], cache5.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc01:26:259::153
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01ca22b6e36e3f31e53156b8c1b9275e2a54e22ec5fa313783764a03842e9750a0a7ec1b4f7a798a21a47d5248bf2e9442c66bae0b17d8290d806bf3a82392ede5fb1912d52b89c2efd48888dfe0420c77be8fe85a874695a645e46616c04286b4
x-response-lb: image
ali-swift-global-savetime: 1669309440
age: 487608
x-cache: HIT TCP_HIT dirn:4:51967107
x-swift-savetime: Fri, 25 Nov 2022 13:07:35 GMT
x-swift-cachetime: 31463785
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970484172562e
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash bc50d83d2f2ed082c3720ab0bd6debe2
1d0eaf586a77cf581c998d368ce70fb61d9a81b8
476aa940ba8752a335d989b68cac5d6d7c2898c694688686c1a444990aabbe39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=108711
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63861a5f-117"
Expires: Thu, 01 Dec 2022 14:42:39 GMT
Last-Modified: Tue, 29 Nov 2022 14:42:39 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c869d64281c645eb920c7b3574197190
8f842ce3a2f0e9bdef073a0a53e1fa963992ec47
0745f4c0330e33e02ccd8f4244f7059f5506644f5ea58374b5a430c2e4bd68c4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0745F4C0330E33E02CCD8F4244F7059F5506644F5EA58374B5A430C2E4BD68C4"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Wed, 30 Nov 2022 10:33:01 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fe9821b9b0061a02bdf15ca40648d578
f760581f2b33b219d7c11ca8853756821b72b94b
2ac5ad2af2cf252ebbfcd6c1ceffa365ec0c1fe7ea0c1ad58c10f5f5023fd136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=128914
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "6386694a-117"
Expires: Thu, 01 Dec 2022 20:19:22 GMT
Last-Modified: Tue, 29 Nov 2022 20:19:22 GMT
Server: nginx
Content-Length: 279
kvhjjj.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
104.21.234.216200 OK 967 kB URL HTTP/2 kvhjjj.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP 104.21.234.216:0
File type GIF image data, version 89a, 960 x 80\012- data
Size 967 kB (966741 bytes)
Hash e6e170a45f5089c336f21c4453d4e00f
20fcfbe9d22eb6868add8b1782234d1b888c0337
a37eaf9f04a634f3e85dcd7353eb1fa224ddefa8d1e04b65a946b3cebf97ea75
GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvhjjj.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 966741
last-modified: Sat, 12 Mar 2022 15:18:45 GMT
etag: "622cb9d5-ec055"
expires: Fri, 16 Dec 2022 22:30:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1159224
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MQjPrqW5c1QwPC34VUvVEvU2sVM9KJu5LanPCNsqHuRFNc20G7gdrGq0HHor2ea%2BPJ0Ar4HUK%2FKDzMPx8S2%2Bfmvr3IpCjvgjuUfyqg9LGTJpVlDdF4Zvo%2B2J9baY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772239211ec58e0f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2022-09-01/16620057333.jpg
137.175.72.61200 OK 277 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-09-01/16620057333.jpg
IP 137.175.72.61:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1594x897, components 3\012- data
Size 277 kB (276941 bytes)
Hash ad2a2212d840983805ef57dc5ca8dce1
3a18199ba4ed992ddb4596495d9b5a34bf72f94f
2268273be36a32192f3745f030a80ec3d11ed8d03d6d37573e6a0fec8a99b42e
GET /upload/vod/2022-09-01/16620057333.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 276941
Last-Modified: Tue, 15 Nov 2022 10:54:06 GMT
Connection: keep-alive
ETag: "63736fce-439cd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fe9821b9b0061a02bdf15ca40648d578
f760581f2b33b219d7c11ca8853756821b72b94b
2ac5ad2af2cf252ebbfcd6c1ceffa365ec0c1fe7ea0c1ad58c10f5f5023fd136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "6386694a-117"
Server: ECS (amb/6BB4)
Content-Length: 279
taiwtp1.com/xin/960240.gif
220.128.218.220200 OK 436 kB URL HTTP/2 taiwtp1.com/xin/960240.gif
IP 220.128.218.220:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 960 x 240\012- data
Size 436 kB (436473 bytes)
Hash 732bd86d0a1c250c8ee8f6ebf30d358e
9f8ec516e191af6504caead933e550627ed80af9
8f3edf67a76ef4c9b72fe1dc842ec813009e0fd7bb1945c96d564eb385d068ee
GET /xin/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:28:20 GMT
content-type: image/gif
content-length: 436473
last-modified: Thu, 20 Oct 2022 07:11:15 GMT
etag: "6350f493-6a8f9"
expires: Fri, 30 Dec 2022 08:28:20 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
play.ncbofang4.com/20220909/Gnfm5HFp/1.jpg
137.175.72.158200 OK 614 kB URL HTTP/1.1 play.ncbofang4.com/20220909/Gnfm5HFp/1.jpg
IP 137.175.72.158:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x563, components 3\012- data
Size 614 kB (614177 bytes)
Hash a31b202199e30ec328233468c6ae3831
41830c2b6a68b0dbe5889927b1e3b134caaedb5b
faab6ac849365ca31db54ba5fc40986065b9abbf373c6d65372af7e4dc0e1b32
GET /20220909/Gnfm5HFp/1.jpg HTTP/1.1
Host: play.ncbofang4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:23:24 GMT
Content-Type: image/jpeg
Content-Length: 614177
Last-Modified: Thu, 24 Nov 2022 03:43:31 GMT
Connection: keep-alive
ETag: "637ee863-95f21"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
3688qq.com/4b282cc16ec34dcba5f961c935029278.gif
103.170.15.90200 OK 359 kB URL HTTP/1.1 3688qq.com/4b282cc16ec34dcba5f961c935029278.gif
IP 103.170.15.90:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 60\012- data
Size 359 kB (358672 bytes)
Hash 668143938c3bb811847d83330decd423
f86300da5d773b84bc65d3c901a4767fd8566c48
a06c47f458fdbd01ba8ba0202fb615e94e2353d65098b480ede52a13a645f859
Analyzer Verdict Alert quad9 Sinkholed
GET /4b282cc16ec34dcba5f961c935029278.gif HTTP/1.1
Host: 3688qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "637e164a-57910"
Date: Sat, 26 Nov 2022 03:33:23 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 23 Nov 2022 12:47:06 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-20
Content-Length: 358672
monaitv.me/upload/vod/2022-07-20/16583211837.jpg
137.175.72.61200 OK 351 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-07-20/16583211837.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x513, components 3\012- data
Size 351 kB (351106 bytes)
Hash 65420069ef9f7e9a57712d1f5057d687
868a2c552949d0b0ded645c398b0ce0146b5491f
80607cc199744ec5258419c2b0f551d647b15a2c1bfdf89210f9eba2594de5a1
GET /upload/vod/2022-07-20/16583211837.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 351106
Last-Modified: Tue, 15 Nov 2022 10:53:46 GMT
Connection: keep-alive
ETag: "63736fba-55b82"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ads-6686.top/960X240.gif
123.253.107.62200 OK 2.3 MB IP 123.253.107.62:0
File type GIF image data, version 89a, 960 x 240\012- data
Size 2.3 MB (2291400 bytes)
Hash e95cb7b655d12501799b1e020ef32265
3fdba737a19ffd6c2c43b48dd655c5f91d92bba4
6a877f0bcfe685891a093893ce37fa8ff60d3264ecf9ebff6f6b7a6848516f71
GET /960X240.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: load-edge/2.1.1
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 2291400
last-modified: Mon, 14 Nov 2022 08:20:48 GMT
etag: "6371fa60-22f6c8"
strict-transport-security: max-age=31536000
lp-geo: edge-d196
lp-addr: 91.90.42.154
lp-request: 391d39fb-3f49-489f-87f2-9392aeb34f59
lp-id: eb1826fb35afe68119c3ad70e9bc3e88
expires: Wed, 30 Nov 2022 08:35:47 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn-xinghuatupian-cdn.com/xh/200x200.gif
154.197.20.70200 OK 174 kB URL HTTP/2 cdn-xinghuatupian-cdn.com/xh/200x200.gif
IP 154.197.20.70:0
File type GIF image data, version 89a, 200 x 200\012- data
Size 174 kB (173918 bytes)
Hash 244b4e49ec5bb4f58c3489cf450ecd47
9cd1a210e9b24bb4d9e3f933512066b251981426
b8daee26c934893d31997c7652c2b683191c7259692e764499c964408be0cf19
GET /xh/200x200.gif HTTP/1.1
Host: cdn-xinghuatupian-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 173918
last-modified: Sun, 02 Oct 2022 06:51:55 GMT
etag: "6339350b-2a75e"
expires: Fri, 30 Dec 2022 02:57:27 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2022-04-29/165120557510.jpg
137.175.72.61200 OK 370 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-04-29/165120557510.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 660x422, components 3\012- data
Size 370 kB (369721 bytes)
Hash bb2a327dc8b3fc82fa9c6ecd8988518b
a4db3504f093beecd09e89c199c1511fbde74493
0f39a049cb1ab00706025059f92e940acfc344b65298486e372aefc811541476
GET /upload/vod/2022-04-29/165120557510.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 369721
Last-Modified: Tue, 15 Nov 2022 10:48:04 GMT
Connection: keep-alive
ETag: "63736e64-5a439"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ads-6686.top/600X300.gif
123.253.107.62200 OK 2.0 MB IP 123.253.107.62:0
File type GIF image data, version 89a, 600 x 300\012- data
Size 2.0 MB (1963053 bytes)
Hash d30acbce9f6b70d5db3de8add527b4e4
ce6f310e4afc8b622d5b83182c1982f21a6f0948
0bd87a1b457da36aba0fdc9ed7001f5e1b1bd6821f90861faab660af7f7589d6
GET /600X300.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: load-edge/2.1.1
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 1963053
last-modified: Mon, 14 Nov 2022 07:36:41 GMT
etag: "6371f009-1df42d"
strict-transport-security: max-age=31536000
lp-geo: edge-d196
lp-addr: 91.90.42.154
lp-request: 009342cd-d003-48f2-ae3c-c1312c8e1891
lp-id: e97ef7f10ee77818d6f7a0e5a4f1e93b
expires: Wed, 30 Nov 2022 08:35:47 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2022-09-09/166271180212.jpg
137.175.72.61200 OK 31 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-09-09/166271180212.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 998x496, components 3\012- data
Hash 02fc19d7ae6cd2928d2d79e9f29b7891
443df580fdcf92534b5d962ab90e000ab49cb95b
eb3368625b7328bbb43751ec7ededd5569bb4b2158c306772befd8625fd5cf31
GET /upload/vod/2022-09-09/166271180212.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 30797
Last-Modified: Tue, 15 Nov 2022 10:46:54 GMT
Connection: keep-alive
ETag: "63736e1e-784d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
monaitv.me/upload/vod/2022-09-09/166271180317.jpg
137.175.72.61200 OK 116 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-09-09/166271180317.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 999x558, components 3\012- data
Size 116 kB (116387 bytes)
Hash c320799a53998277d9e0b15c326c2f07
4992d1028c4e232b69022b52ab579432dd737c68
4e536bd3ef7785ed13125d3c8de44126db3f7f91500e34bda7e39f0dfa54e6a8
GET /upload/vod/2022-09-09/166271180317.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 116387
Last-Modified: Tue, 15 Nov 2022 10:46:11 GMT
Connection: keep-alive
ETag: "63736df3-1c6a3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
8499133.com/8499/150x150.gif
172.247.50.228200 OK 135 kB URL HTTP/2 8499133.com/8499/150x150.gif
IP 172.247.50.228:0
File type GIF image data, version 89a, 150 x 150\012- data
Size 135 kB (134747 bytes)
Hash 48c8ab8ae6b52201e71decda0b783d26
5817a61ac305b0b96542b5aced965e79cf67d010
011e88ae2efb7e2c7a98115adcc443c2b965206d34a45c98f7012d476de9aeb8
GET /8499/150x150.gif HTTP/1.1
Host: 8499133.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 134747
last-modified: Sun, 13 Nov 2022 10:03:32 GMT
etag: "20e5b-5ed573c48c405"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
9366qq.com/d1c4e9fab26a450f81996ecd67b392b3.gif
45.61.212.123200 OK 426 kB URL HTTP/1.1 9366qq.com/d1c4e9fab26a450f81996ecd67b392b3.gif
IP 45.61.212.123:0
File type GIF image data, version 89a, 960 x 60\012- data
Size 426 kB (425642 bytes)
Hash 05224c1ad7b782f551cbccdcf9f27fa5
c6ee7c8a6a149c7bd96c9e25ac1784fdbca84eb0
0b24fd89f9a5bbd8278bccf94b310be958f495b91597c0bf0c8faa7980ab5897
Analyzer Verdict Alert quad9 Sinkholed
GET /d1c4e9fab26a450f81996ecd67b392b3.gif HTTP/1.1
Host: 9366qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "637e165c-67eaa"
Date: Sat, 26 Nov 2022 07:07:47 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 23 Nov 2022 12:47:24 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-23
Content-Length: 425642
523zyw.com/upload/vod/2022-06-12/165504085514.jpg
137.175.72.61200 OK 179 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-06-12/165504085514.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 1000x666, components 3\012- data
Size 179 kB (179353 bytes)
Hash 134e669b1e710b58dbad92fd85219662
040a39c0ff86938f1e790ef0937d4f9f0c2ad222
034ef7302f7c43998aa4185ffeb73668918940a0099f29d253c4525c662347e9
GET /upload/vod/2022-06-12/165504085514.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 179353
Connection: keep-alive
Last-Modified: Sun, 12 Jun 2022 13:34:15 GMT
Accept-Ranges: bytes
ETag: "f265ef1b617ed81:0"
523zyw.com/upload/vod/2022-06-11/165495332110.jpg
137.175.72.61200 OK 161 kB URL HTTP/1.1 523zyw.com/upload/vod/2022-06-11/165495332110.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x539, components 3\012- data
Size 161 kB (161065 bytes)
Hash 6ef63b47f6e33870ce0a20eb64930261
8fb1ab32828d1810b0fa70b32cc88cf490fd1a39
74cb76df2888f6e9bd88a930c72a3e5cbf2d2294548a4c8a76a2074bfbd95c69
GET /upload/vod/2022-06-11/165495332110.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 161065
Connection: keep-alive
Last-Modified: Sat, 11 Jun 2022 13:15:21 GMT
Accept-Ranges: bytes
ETag: "5aab24d957dd81:0"
monaitv.me/upload/vod/2022-07-22/165849653111.jpg
137.175.72.61200 OK 464 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-07-22/165849653111.jpg
IP 137.175.72.61:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, xresolution=110, yresolution=118, resolutionunit=2, software=www.meitu.com, datetime=2019:09:30 16:51:48], baseline, precision 8, 800x499, components 3\012- data
Size 464 kB (463866 bytes)
Hash 75844e3ed00976f4f7383a6eea0d8759
2e3a39ea44e0b82bed8a4a200736458bc94b53ff
b3303407e2da2d99fa5bcafe160e711f256aacb88dfe88d75b42b634d08521df
GET /upload/vod/2022-07-22/165849653111.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 463866
Last-Modified: Tue, 15 Nov 2022 10:48:31 GMT
Connection: keep-alive
ETag: "63736e7f-713fa"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif
103.170.15.75200 OK 1.8 MB URL HTTP/1.1 592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif
IP 103.170.15.75:0
ASN #7483 Skycloud Computing co., Ltd.
File type GIF image data, version 89a, 960 x 240\012- data
Size 1.8 MB (1833203 bytes)
Hash b7b8c8d351470288a0c28f34bbdbfac6
d3f0b5bbaff9cda595c8525365618228e756d55d
bcd291e3c8c9fbccc8953982200b8ffe1804289e13f0a68b44aa189227e569d8
GET /be2d6c93b7fe43b4b25d4a8810bc5bfc.gif HTTP/1.1
Host: 592773xgg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6364f659-1bf8f3"
Date: Thu, 24 Nov 2022 07:52:20 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 04 Nov 2022 11:24:09 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-05
Content-Length: 1833203
monaitv.me/upload/vod/2022-09-09/16627118029.jpg
137.175.72.61200 OK 47 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-09-09/16627118029.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 992x488, components 3\012- data
Hash 4eedcf8e2d52dc8a400ff30738caf215
d89db5850e719700dda24888f59f571e3dbca054
431d0792b638762572d713d7e733d34c0487b752dfb0bdd72b687f27b5cd24cc
GET /upload/vod/2022-09-09/16627118029.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 47061
Last-Modified: Tue, 15 Nov 2022 10:46:23 GMT
Connection: keep-alive
ETag: "63736dff-b7d5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
monaitv.me/upload/vod/2022-08-12/166030313415.jpg
137.175.72.61200 OK 493 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-08-12/166030313415.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x550, components 3\012- data
Size 493 kB (492705 bytes)
Hash b7efdaf4a63fa8cd6d74945228b66de9
f4c212122cd23dc301f004a9962744c4213023ec
81eb5f739f1a0fbdfcc06fae5b9251fa8a40528ddbea6484e9aa596b9bc1a0a9
GET /upload/vod/2022-08-12/166030313415.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 492705
Last-Modified: Tue, 15 Nov 2022 10:45:58 GMT
Connection: keep-alive
ETag: "63736de6-784a1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0
43.129.255.47200 OK 331 kB URL HTTP/2 p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0
IP 43.129.255.47:0
ASN #132203 Tencent Building, Kejizhongyi Avenue
File type GIF image data, version 89a, 960 x 60\012- data
Size 331 kB (331043 bytes)
Hash 09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725
GET /qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 331043
vary: Accept,Origin
last-modified: Tue, 08 Nov 2022 23:42:24 GMT
cache-control: max-age=2592000
x-delay: 40036 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 331043
chid: 0
fid: 0
x-nws-log-uuid: 92255050-6e3c-4013-b510-7192e0c4e29b
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2022-09-09/166271180211.jpg
137.175.72.61200 OK 106 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-09-09/166271180211.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 997x501, components 3\012- data
Size 106 kB (106318 bytes)
Hash 41c5fd42d49af84b1eef2e311d9af3af
7ed7cd318d2ac4ebdaef4721419c782673c548a8
6c92a37400bbd36b66bd392550ecdccc7666cd8e505ba97fefa0804870e7710d
GET /upload/vod/2022-09-09/166271180211.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 106318
Last-Modified: Tue, 15 Nov 2022 10:46:51 GMT
Connection: keep-alive
ETag: "63736e1b-19f4e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
monaitv.me/upload/vod/2022-09-09/166271180210.jpg
137.175.72.61200 OK 105 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-09-09/166271180210.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1003x499, components 3\012- data
Size 105 kB (104763 bytes)
Hash 292418be8755af3cbc2fa481a2282a32
dfacfa4813ccae92f102d1db6be4fdd8c1048a04
605ac4ca2f038c94aa20c7b96aeb1e3a61e5dce05f850d80581fc11f4c81c203
GET /upload/vod/2022-09-09/166271180210.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 104763
Last-Modified: Tue, 15 Nov 2022 10:48:46 GMT
Connection: keep-alive
ETag: "63736e8e-1993b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
monaitv.me/upload/vod/2022-07-25/16587541307.jpg
137.175.72.61200 OK 742 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-07-25/16587541307.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1079x700, components 3\012- data
Size 742 kB (742134 bytes)
Hash c610e020967f1c0af5981053ec8441e2
a9e34374b6b05acfb6d3e63ba50da0fc6f21279e
b25118de38677ff1936e0d6902b6f1b76c976e1a57eae595b25d9009941b329b
GET /upload/vod/2022-07-25/16587541307.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 742134
Last-Modified: Tue, 15 Nov 2022 10:46:41 GMT
Connection: keep-alive
ETag: "63736e11-b52f6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
47.75.19.163200 OK 532 kB URL HTTP/1.1 vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP 47.75.19.163:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type GIF image data, version 89a, 960 x 80\012- data
Size 532 kB (531945 bytes)
Hash 904c4f51a02c9f03f27ac2593d4c061e
faa7b399e3dc1e36e450636f0fafcaaca901f59e
107d811d56db4017059b2c99a4829faa9e20ce7fa395b3182bdb456ff93fbee6
GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: image/gif
Content-Length: 531945
Connection: keep-alive
x-oss-request-id: 638714B722C82A3134897263
Accept-Ranges: bytes
ETag: "904C4F51A02C9F03F27AC2593D4C061E"
Last-Modified: Sun, 20 Nov 2022 05:06:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9035815038154931791
x-oss-storage-class: Standard
x-oss-version-id: CAEQPxiBgIC4ltzNpBgiIDdlODc5YmI4ZDVjNjQ3ZDk5OTI1NWRlZmIwMjk2Zjc5
Content-MD5: kExPUaAsnwPyesJZPUwGHg==
x-oss-server-time: 2
monaitv.me/upload/vod/2021-12-25/16404063220.jpg
137.175.72.61200 OK 96 kB URL HTTP/1.1 monaitv.me/upload/vod/2021-12-25/16404063220.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x557, components 3\012- data
Hash c5d09b3062f65682c7066181a645cb64
5f5f4a70b6268b3e71f62b9551c3136615c0ba8e
164928f4839c0bd88b7767923d0b7491906b8e80ab65ddf6bbeb793adafaca69
GET /upload/vod/2021-12-25/16404063220.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 95845
Last-Modified: Tue, 15 Nov 2022 10:46:56 GMT
Connection: keep-alive
ETag: "63736e20-17665"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 40e20d544e797fc5c202ee07308440d4
b53d8d66b6de14f81e9c3264c71758fdc0f4887b
4027e22714fc5c33538c9c9234e88a9e48f510c70886e7b4da4c828e7ec8e898
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 11:50:11 GMT
Expires: Mon, 05 Dec 2022 11:50:10 GMT
Etag: "b53d8d66b6de14f81e9c3264c71758fdc0f4887b"
Cache-Control: max-age=443360,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772239278b210b51-OSL
ocsp.digicert.com/
93.184.220.29200 OK 55 B IP 93.184.220.29:0
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4344
Cache-Control: max-age=107307
Content-Type: text/html
Date: Wed, 30 Nov 2022 08:30:49 GMT
Etag: "638603ec-2d7"
Expires: Thu, 01 Dec 2022 14:19:16 GMT
Last-Modified: Tue, 29 Nov 2022 13:06:52 GMT
Server: ECS (amb/6BA2)
X-Cache: HIT
Content-Length: 55
monaitv.me/upload/vod/2022-01-30/164351545011.jpg
137.175.72.61200 OK 21 kB URL HTTP/1.1 monaitv.me/upload/vod/2022-01-30/164351545011.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 538x356, components 3\012- data
Hash 7df431a42de911a8f7a970cd15e56f12
b30fe0853b961e9ce73d6c8b75e616ab41f0bf9c
d51b8c3cc29cf08b7a76e6c01a2176ae3a1718c2e12bf4e753d084e8c7e400cf
GET /upload/vod/2022-01-30/164351545011.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 20661
Last-Modified: Tue, 15 Nov 2022 10:57:24 GMT
Connection: keep-alive
ETag: "63737094-50b5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
askzyimg.com/20221002/SSHz8Yis/1.jpg
198.16.55.254200 OK 8.9 kB URL HTTP/2 askzyimg.com/20221002/SSHz8Yis/1.jpg
IP 198.16.55.254:0
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash cab5e40f59ddaf68888493c7e377f189
e685bf72d76f79cf35b7361e21198564bc84ab6a
08a516fe2983bc9e1abbdba8807b3962b4c7d7f4d7ad7b126bc9e7c9ccf04d27
GET /20221002/SSHz8Yis/1.jpg HTTP/1.1
Host: askzyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:49 GMT
content-type: image/jpeg
content-length: 8941
last-modified: Mon, 03 Oct 2022 14:23:40 GMT
etag: "633af06c-22ed"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2021-12-12/16392868814.jpg
137.175.72.61200 OK 244 kB URL HTTP/1.1 monaitv.me/upload/vod/2021-12-12/16392868814.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 739x462, components 3\012- data
Size 244 kB (243739 bytes)
Hash 185cd389bfbf621c8e8b3a57168bec3f
38d2a4fd4fa53b6a1a0285931b7059063290bc7f
675b247d0cf2ccadd778280c4200f7b80731a7fa388538a6ff982c33f99fbd29
GET /upload/vod/2021-12-12/16392868814.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 243739
Last-Modified: Tue, 15 Nov 2022 10:50:59 GMT
Connection: keep-alive
ETag: "63736f13-3b81b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
20.78.78.186200 OK 248 kB URL HTTP/1.1 u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
IP 20.78.78.186:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 650 x 350\012- data
Size 248 kB (247851 bytes)
Hash a9bf695dc5e2ed4a1d5e17818bb895f6
5018e0b9d477d7a536586297fbd2404fc407e295
6cd4ba0841e74acee6bcbc0933c03a0932d5e267a3a2b2af1b8f1abd6a7c0010
GET /a13ccf8571ea4a7ab6b41a306a625f57.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:25:12 GMT
ETag: W/"62936628-3c8da"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip
monaitv.me/upload/vod/2021-12-13/16393698094.jpg
137.175.72.61200 OK 63 kB URL HTTP/1.1 monaitv.me/upload/vod/2021-12-13/16393698094.jpg
IP 137.175.72.61:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x533, components 3\012- data
Hash 3babefcb616c0b719a8e47c99b6b435e
0e166bf30e4ccf20b261d6b2d4c2fc4ef49ad3b9
070905b6567376f9ba83fb281a06c4eb7433362607e25181b4d3ae24af475fb4
GET /upload/vod/2021-12-13/16393698094.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 62905
Last-Modified: Tue, 15 Nov 2022 10:48:33 GMT
Connection: keep-alive
ETag: "63736e81-f5b9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
wap.mgivkqk.cn/sc/2118?n=ovruvary
47.246.44.172200 OK 0 B URL HTTP/2 wap.mgivkqk.cn/sc/2118?n=ovruvary
IP 47.246.44.172:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
GET /sc/2118?n=ovruvary HTTP/1.1
Host: wap.mgivkqk.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: text/javascript; charset=utf-8
date: Wed, 30 Nov 2022 08:30:48 GMT
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-origin: *
cache-control: max-age=1800
pragma: max-age=1800
strict-transport-security: max-age=31536000
via: cache25.l2hk2[7,0], cache11.l2de2[199,0], cache3.se1[221,0]
timing-allow-origin: *
eagleid: 2ff62c9716697970481922239e
X-Firefox-Spdy: h2
img.u2763.com/images/63844fadb5eb6667f536d0d4.gif
185.239.226.87302 Found 0 B URL HTTP/2 img.u2763.com/images/63844fadb5eb6667f536d0d4.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
GET /images/63844fadb5eb6667f536d0d4.gif HTTP/1.1
Host: img.u2763.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e
X-Firefox-Spdy: h2
img.1200555.com/images/637e1290c967c48ec27be3de.gif
185.239.226.87302 Found 0 B URL HTTP/2 img.1200555.com/images/637e1290c967c48ec27be3de.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
GET /images/637e1290c967c48ec27be3de.gif HTTP/1.1
Host: img.1200555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6
X-Firefox-Spdy: h2
wap.mgivkqk.cn/sc/2065?n=cjhxiqee
47.246.44.172200 OK 0 B URL HTTP/2 wap.mgivkqk.cn/sc/2065?n=cjhxiqee
IP 47.246.44.172:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
GET /sc/2065?n=cjhxiqee HTTP/1.1
Host: wap.mgivkqk.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: text/javascript; charset=utf-8
date: Wed, 30 Nov 2022 08:30:48 GMT
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-origin: *
cache-control: max-age=1800
pragma: max-age=1800
strict-transport-security: max-age=31536000
via: cache22.l2hk2[7,0], cache5.l2de2[195,0], cache3.se1[216,0]
timing-allow-origin: *
eagleid: 2ff62c9716697970481832235e
X-Firefox-Spdy: h2
img.u1662.com/images/637c9e75ac84359a7f268ae4.gif
185.239.226.87302 Found 0 B URL HTTP/2 img.u1662.com/images/637c9e75ac84359a7f268ae4.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
GET /images/637c9e75ac84359a7f268ae4.gif HTTP/1.1
Host: img.u1662.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2021-12-12/163928814415.jpg
137.175.72.61200 OK 0 B URL HTTP/1.1 monaitv.me/upload/vod/2021-12-12/163928814415.jpg
IP 137.175.72.61:0
GET /upload/vod/2021-12-12/163928814415.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 392438
Last-Modified: Tue, 15 Nov 2022 10:50:47 GMT
Connection: keep-alive
ETag: "63736f07-5fcf6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif
120.77.166.72200 OK 0 B URL HTTP/1.1 sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif
IP 120.77.166.72:0
ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd.
GET /af/q960x80-6.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: image/gif
Content-Length: 562130
Connection: keep-alive
x-oss-request-id: 638714B77D8D3F3430251A0B
Accept-Ranges: bytes
ETag: "8BEED805EF37D0FA42646C105C8AADD8"
Last-Modified: Tue, 27 Sep 2022 07:43:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15479893720264865523
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: i+7YBe830PpCZGwQXIqt2A==
x-oss-server-time: 3
kjimg10.360buyimg.com/ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif
182.140.218.3200 OK 0 B URL HTTP/2 kjimg10.360buyimg.com/ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif
IP 182.140.218.3:0
ASN #38283 CHINANET SiChuan Telecom Internet Data Center
GET /ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 1021535
cache-control: max-age=315360000
expires: Mon, 22 Nov 2032 14:51:41 GMT
last-modified: Fri, 25 Nov 2022 14:36:11 GMT
age: 409148
via: http/1.1 ORI-CLOUD-HUN-MIX-25 (jcs [cHs f ]), http/1.1 SCchengdu-CT-11-MIX-25 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1669387901977-0-0-0-12-12;200;200-1669775197602-0-0-0-4-4;200-1669797048560-0-0-0-1-1
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2021-12-12/163928882117.jpg
137.175.72.61200 OK 0 B URL HTTP/1.1 monaitv.me/upload/vod/2021-12-12/163928882117.jpg
IP 137.175.72.61:0
GET /upload/vod/2021-12-12/163928882117.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 367385
Last-Modified: Tue, 15 Nov 2022 10:50:46 GMT
Connection: keep-alive
ETag: "63736f06-59b19"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
120.52.95.234200 OK 0 B URL HTTP/2 p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP 120.52.95.234:0
ASN #133119 China Unicom IP network
GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:49 GMT
content-type: image/gif
content-length: 677521
set-cookie: hccesp_lttk=AAAAAgAAAAAAAAAFAAAAAQAAAAeBwwi0wpEfjDtjEGdD0lQu5M4hrZWjTLCHLQtgu4fMEQAAAAAAAAAAAAAAQG/YMWON4yiLYz+0/xuncnX7dFc2Xm3dsqBtwDNWfGsMbX1awkDMrHc/0D/KLEZ7s+PYXpIMWgKULvnrBb/CES8=; Expires=Thu, 30 Nov 2023 08:30:49 GMT; path=/;
server: openresty
age: 13668704
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=6
via: CHN-HElangfang-AREACUCC1-CACHE5[6],CHN-HElangfang-AREACUCC1-CACHE35[0,TCP_HIT,2],CHN-TJ-GLOBAL1-CACHE60[39],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,36]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2
8644aaw.com/a.gif
60.244.96.178200 OK 0 B IP 60.244.96.178:0
ASN #24154 Asia Pacific Broadband Fixed Lines Co., Ltd.
GET /a.gif HTTP/1.1
Host: 8644aaw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:43 GMT
content-type: image/gif
content-length: 397051
last-modified: Wed, 05 Oct 2022 08:47:42 GMT
etag: "633d44ae-60efb"
expires: Fri, 30 Dec 2022 08:30:43 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
img.1170555.com/images/637e12abc967c48ec27be3df.gif
185.239.226.87302 Found 0 B URL HTTP/2 img.1170555.com/images/637e12abc967c48ec27be3df.gif
IP 185.239.226.87:0
ASN #134835 Starry Network Limited
GET /images/637e12abc967c48ec27be3df.gif HTTP/1.1
Host: img.1170555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3
X-Firefox-Spdy: h2
monaitv.me/upload/vod/2021-12-12/163928684210.jpg
137.175.72.61200 OK 0 B URL HTTP/1.1 monaitv.me/upload/vod/2021-12-12/163928684210.jpg
IP 137.175.72.61:0
GET /upload/vod/2021-12-12/163928684210.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 349052
Last-Modified: Tue, 15 Nov 2022 10:51:43 GMT
Connection: keep-alive
ETag: "63736f3f-5537c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes
monaitv.me/upload/vod/2021-12-12/163928619412.jpg
137.175.72.61200 OK 0 B URL HTTP/1.1 monaitv.me/upload/vod/2021-12-12/163928619412.jpg
IP 137.175.72.61:0
GET /upload/vod/2021-12-12/163928619412.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 371911
Last-Modified: Tue, 15 Nov 2022 10:46:35 GMT
Connection: keep-alive
ETag: "63736e0b-5acc7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes