Report - sikizwa.com/

Report Overview

Submitted URL
sikizwa.com/
IP
154.221.164.10
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Submitted
2022-11-30 08:30:56
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
sikizwa.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	343 B	196 B	154.221.164.10
www.sikizwa.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	3.6 kB	154.221.164.10
vns86.oss-cn-hongkong.aliyuncs.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	532 kB	47.75.19.163
img.u2763.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	182 B	185.239.226.87
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	5.7 kB	104.18.20.226
zerossl.ocsp.sectigo.com	4049	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	3.7 kB	172.64.155.188
kvhjjj.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	968 kB	104.21.234.216
img.u1662.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	182 B	185.239.226.87
u0062.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	248 kB	20.78.78.186
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
niugetv9.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	148 kB	38.60.24.90
kvegg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	422 B	45.154.215.92
kvmaa.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	422 B	137.175.13.78
madou8img.5100m.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	425 B	47 kB	104.21.234.135
kvtooo.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	325 kB	188.114.96.1
592773xgg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	1.8 MB	103.170.15.75
img.1170555.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	182 B	185.239.226.87
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	6.4 kB	142.250.74.131
www.tukky.vip	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	331 kB	104.21.27.152
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.4 kB	23.36.77.32
img.alicdn.com	8663	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	434 B	9.8 kB	47.246.44.252
monaitv.me	789781	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.8 kB	3.7 MB	137.175.72.61
523zyw.com	922633	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	802 B	341 kB	137.175.72.61
kjimg10.360buyimg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	447 B	525 B	182.140.218.3
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
9366qq.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	426 kB	45.61.212.123
wap.mgivkqk.cn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	728 B	963 B	47.246.44.172
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.51.98
kzeoo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	422 B	137.175.13.78
int.jstatic.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	48 kB	188.114.96.1
play.ncbofang4.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	614 kB	137.175.72.158
askzyimg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	9.3 kB	198.16.55.254
hm.baidu.com	8254	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.8 kB	96 kB	103.235.46.191
www.tukudhgg.vip	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	79 kB	172.67.208.179
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.9 kB	104.18.32.68
taiwtp1.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	437 kB	220.128.218.220
img.1200555.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	182 B	185.239.226.87
p26.toutiaoimg.com	75286	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	438 B	1.5 kB	120.52.95.234
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.4 kB	20 kB	23.36.77.32
ocsp.trust-provider.cn	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	6.0 kB	47.246.44.205
nvhbbb.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	319 kB	172.67.170.188
kvtbbb.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	367 kB	172.67.147.13
p3.douyinpic.com	23536	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	1.4 MB	47.246.44.229
p.qlogo.cn	48578	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	332 kB	43.129.255.47
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	8.5 kB	93.184.220.29
ads-6686.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	752 B	4.3 MB	123.253.107.62
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
kvemm.com	222018	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	422 B	45.154.214.219
mjcommon.yybfxo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	346 kB	47.246.44.220
8499753.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	765 B	663 kB	23.224.101.37
sz88.oss-cn-shenzhen.aliyuncs.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	524 B	120.77.166.72
8644aaw.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	345 B	60.244.96.178
kvevv.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	326 kB	54.192.150.84
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	7.7 kB	104.18.20.226
3688qq.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	359 kB	103.170.15.90
8499133.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	135 kB	172.247.50.228
s2.loli.net	100401	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	788 B	30 kB	104.26.1.190
pic.picnewsss.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	363 kB	23.225.139.251
img.u2765.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	440 kB	185.239.226.87
cdn-xinghuatupian-cdn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	174 kB	154.197.20.70
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
niugetv3.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	6.9 MB	104.21.41.222

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-30	medium	3688qq.com	Sinkholed
2022-11-30	medium	9366qq.com	Sinkholed

JavaScript (39)

	URL	Size	First Seen	Last Seen
	niugetv9.top/	171 B	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 63e4fd2a84f89efd1364f9f9954dadde dfed70ca59e8bc37d4fae9372ef52cdfbba76649 ded31b35af2233f5e599da3373c9b8310112e99e65faf827338f6a4b60c8d2fc Loading...

	niugetv9.top/	5.4 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash ef552a4dc81d98c284f75e49d2bb4a0a 5cd317145e2fc154d7a787960d10c5c7c1e260c8 cc05f011c3fb396c7e1b9dd0a16888866fcf9414ea3f26d47cb55746e787e5cd Loading...

	niugetv9.top/	865 B	2023-03-08	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:09:21 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 98a4f352b880d558b81065f5dc002a9d 5096709bd1dea70fd320fe82c375e977a7338934 dec74ef18d872bb91eeae1562ac4dc6f1d9e18afcf2e6cbdd0e8d9a7f7cdbde8 Loading...

	www.sikizwa.com/index.php	39 B	2023-03-11	2023-03-11
Pretty URL www.sikizwa.com/index.php IP 154.221.164.10 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 081f1cb90a84a83f0828b784ca632716 325988684ae3b117072c98da098334fd632ec5aa 7b4f7bc986cf69b423aee3d77d7af931a402a32f31bac0a75d115d14d5d4aba5 Loading...

	niugetv9.top/template/m1938pc/static/js/jquery.min.js	97 kB	2023-03-07	2024-05-09
Pretty URL niugetv9.top/template/m1938pc/static/js/jquery.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-09 01:59:55 Times Seen119252 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	niugetv9.top/	8.8 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 742d1e47c2716417b00bad1e11784204 5ffae32dafaad7c052b8d08644febc1b8fd85225 ce62a0e79427d271d2df7aa661b66a71c0b643fff721e3e91a209754a38c965a Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 197747eb489766ae9d306e0731ab7f0e 272c5bec6d5c8caecaebef9f730cfd62bb7b539f e60c5290233d6f101a1abbeddc77debe3e69886cbaacee7f102eee0290e924fa Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash a9ec4aa9df0d3951b04115ac84a78c9d 49edf56b474705780b458e75b0ebc76c5a9ed1e5 34f24f0f414fa34e60efaef52086321eeb75124cb423819bf94adcf0dfc33e2f Loading...

	www.sikizwa.com/common.js	1.8 kB	2023-03-11	2023-03-11
Pretty URL www.sikizwa.com/common.js IP 154.221.164.10 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:46:18 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 039cff144f86b246c9116887e9b29b21 98d8b653662692b7dd244bad33ef40e81e20a71b c5ceb1235f5a57b57a347e0d35193b1399cc970e7f2bdf5b7705072f9c2a1259 Loading...

	niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js	3.4 kB	2023-03-07	2024-05-09
Pretty URL niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:48 Last Seen2024-05-09 01:19:33 Times Seen4150 Hash 112c8d1b40b3e62e883c743e9d71e0bf 338318e930487b2791a7bcf53ad4601630cc41e2 ad79ce7e34d1a788809bb853031133de2ae45f3c19ac4955dae46c7490188c2e Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 71f999f6f81f1fe0fe3ac4d9d1c5bee2 fa67df6710c4183ab09aba45b9b4daea7cdffdb9 eb1cb929d13787f3bcbec4108779fc7554e61aae8f526946b026567532b182f5 Loading...

	niugetv9.top/	15 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash abe5049656ff22bfd5e96e6dba2080de 76524f02cc7212d6f21efbc2d927e2e1220a4ab1 2de45e60285d101fb02f9e769b719e66492315aef5748623a6a30699131ce2d4 Loading...

	niugetv9.top/	171 B	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 6b76fff37a36ba5e6a19356328485c90 17812aa4dc9c42871726db5badfe379b8a253e4b f394f8d9670b7edeeaec94a617e73d3cf7bbfbfceae715217081d80f7d136bbd Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 994d7d2d11cafcfef8ba6be23a036d72 70686fc644183ef0f378abe961bdd65b83be5780 6adcbe1a3421abbe7c7dd87581a9eead32e8c4efc8af39009cd3dbe167431e53 Loading...

	hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash a850b4078262cf12b85dbd7932941e25 1115933055a8ebef79ed639a84369e40eec9adac 7dc7c2476fb7ef89362f03ecb438280ae0daf4c362c77fd5bf5577d46c52c079 Loading...

	niugetv9.top/template/m1938pc/static/js/global.js	225 B	2023-03-07	2023-09-28
Pretty URL niugetv9.top/template/m1938pc/static/js/global.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:56 Last Seen2023-09-28 09:34:39 Times Seen20 Hash daa83033a5dfaa134d09d60dad0f02ec c6bc6e2ba0d0d84ae34d3e7ec586d5b2884f6539 868c454612344976f793e1a2c8a20d947f4b90cb4784509ab146c561590f2226 Loading...

	niugetv9.top/	254 B	2023-03-07	2023-04-02
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:35 Last Seen2023-04-02 21:31:12 Times Seen3 Hash 3886b99a5f1702e3ae7b42e6d977852d fb269551e217ecd157e281f89520040b04aff628 4f714efdc83be2b936cb887a57888c559da75c14c80108737f0a4b129a00e7c5 Loading...

	niugetv9.top/	236 B	2023-03-07	2023-04-02
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:35 Last Seen2023-04-02 21:31:12 Times Seen3 Hash 972172b87a1814c948b6b4e505d1493d 926456939c45384d387b86525c9fc28428a753c0 0ac2fd418c92ff77c17a60cf1edc4de15094c81e943422a8a7d0ad5ff0a7516b Loading...

	niugetv9.top/	386 B	2023-03-07	2024-01-24
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:05 Last Seen2024-01-24 07:55:37 Times Seen110 Hash b9f9d9b5a9226709c5400c5339ad9026 1489836c52e1398984a1f7f84acd9cea97bdd8ad e5776022bbe71e026ab65aad61f115b6782653431de77d5a4e77f690810dc955 Loading...

	www.sikizwa.com/tj.js	258 B	2023-03-11	2023-03-11
Pretty URL www.sikizwa.com/tj.js IP 154.221.164.10 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 26a5c5b20a4e78d272657eb8326bec2a 9af85dae5763f9b4bf50b4d22b0c7e0c8c7ec05a b4029fe098e742b81a869f1c589dc3d3f6d86487b94ae8ebefa1e81c2fdfcfad Loading...

	hm.baidu.com/hm.js?566503f01fa664d44733b97af3d0120f	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?566503f01fa664d44733b97af3d0120f IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash aaedf3d8af1fdc03ba299bae3a53b387 a1644a5d5bf2548b05e39d945902eb3485f6f16f 8371552e5e066bb2b46e3dcf60b3bb91f563f1fa31536ee3b0e9a4982f9af1de Loading...

	niugetv9.top/template/m1938pc/static/js/swiper.min.js	96 kB	2023-03-07	2024-05-07
Pretty URL niugetv9.top/template/m1938pc/static/js/swiper.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:19 Last Seen2024-05-07 18:49:03 Times Seen1609 Hash fb13ef3e875ca3497ede35d3774be9d3 ab0743a89d522438c17ae7eaf5943fd4590ee3d0 4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083 Loading...

	niugetv9.top/	356 B	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash a531a0f6402e38caff4d559ad44097ee e2da961ec846e8229cd8f5466c57a54b0715cdd2 adc278e3fd9aa65c958029f680a2262910c78c1ceef52c0a1f85eb850b1900dc Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 7945cc1ff8a8fe80142a4182c297751f 48ed318beada4cd89c3b1b7fe761e219277583a2 c12659d82ee707de74ce3d5da4848431bd8d2b3f370e453d45aedf758e2c78e2 Loading...

	wap.mgivkqk.cn/sc/2118?n=ovruvary	11 kB	2023-03-11	2023-03-11
Pretty URL wap.mgivkqk.cn/sc/2118?n=ovruvary IP 47.246.44.172 ASN #24429 Zhejiang Taobao Network Co.,Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:40:50 Last Seen2023-03-11 22:54:52 Times Seen1 Hash c9af3646c5642c3193f3a948a3168780 9ea2603cbd1ce5564b0f17913bfc687c0bf816d7 d9abc8d3594d9cd34b08e90e5054135c836039a81e64d60ca574825dc915218e Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-11	2023-03-11
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:52 Last Seen2023-03-11 22:54:52 Times Seen1 Hash 8a9a3d85d2a07adc4c7d7066fb41e3ab 8fa13e09020402d3c52ed99756edaeddbca799d1 058bc5430b8a619bfe6298965bde607204b33ff67fd9a30e88e5618dd2616dfe Loading...

	wap.mgivkqk.cn/sc/2065?n=cjhxiqee	11 kB	2023-03-11	2023-03-11
Pretty URL wap.mgivkqk.cn/sc/2065?n=cjhxiqee IP 47.246.44.172 ASN #24429 Zhejiang Taobao Network Co.,Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:40:53 Last Seen2023-03-11 22:54:52 Times Seen1 Hash c07ef71f54365aa6888da39af7e436f6 b487f0e05814bcec4ba5315a1238fa28a22a7427 428088d36e4b57bf34d7af0f474ad71c97deb29a3d03c5975f1870178da32149 Loading...

	niugetv9.top/	254 B	2023-03-07	2023-03-13
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:15 Last Seen2023-03-13 00:53:14 Times Seen1 Hash 6f99ad135c073f87ec1060fc943dea4c 10597bcc5eeb6049655cc520d71e8aa17f2d9821 c797f3b8524957f2150bcb64a68653a1028d6b4a3a40032bed769b945e837196 Loading...

	niugetv9.top/template/m1938pc/static/js/bootstrap.min.js	40 kB	2023-03-07	2024-05-09
Pretty URL niugetv9.top/template/m1938pc/static/js/bootstrap.min.js IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-09 00:43:00 Times Seen12353 Hash 2f34b630ffe30ba2ff2b91e3f3c322a1 b16fd8226bd6bfb08e568f1b1d0a21d60247cefb 9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe Loading...

	niugetv9.top/	5.5 kB	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:53 Last Seen2023-03-11 22:54:53 Times Seen1 Hash fb088aab41bd4602477562e1b4eae851 6b4b01486d6e24d7e4ac35f6d0a68c8271fb4abe 1051677e2d4db3c1ee982cea9f1525a1231e4ebf32175e61a5f92ed73f45eaa8 Loading...

	niugetv9.top/	356 B	2023-03-11	2023-03-11
Pretty URL niugetv9.top/ IP 38.60.24.90 ASN #174 COGENT-174 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:54:53 Last Seen2023-03-11 22:54:53 Times Seen1 Hash 9f80de863914b6b6e1194bf8a2f502e7 f140d51d3031dd9d986accc653e95107dd41396c 714fd4315543b2d7fe74467cd74b75fb5e24f91f04ec621a372dc330ff7c7c25 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 06609e1c230e1eae4c553c78a4457b41	5 B	2023-03-07	2024-05-07
Pretty Observations First Seen2023-03-07 01:10:44 Last Seen2024-05-07 17:14:56 Times Seen340 Hash 06609e1c230e1eae4c553c78a4457b41 7a76989908fbeb7a3636c4e492b58558c6a37cb0 a0b69f041ba716e2e1eba506e3ed0a7bdadd55c5c72471a7190ef8d5954222ec Loading...

	#2 Eval - f89a543a387f20f490170dff82f82f6d	459 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:54:53 Last Seen2023-03-11 22:54:53 Times Seen1 Hash f89a543a387f20f490170dff82f82f6d be69cf45c66da451bab11701664ef412c7a488eb 87c7664815601ece8b6f7168090d22d3e5d7d7b0ce72afffbf0c6d67e9cd22b8 Loading...

	#3 Eval - 65003ebe00a39aba65c80d46cd782a9d	4 B	2023-03-08	2023-03-11
Pretty Observations First Seen2023-03-08 20:00:05 Last Seen2023-03-11 22:54:53 Times Seen1 Hash 65003ebe00a39aba65c80d46cd782a9d 65c5a23cc88664414d85c2b49e68f17849f8fb83 0696aac8a2c3e115108f1ff080f20fc704dfa31c8f3196db5ce57d9bc870261f Loading...

		Size	First Seen	Last Seen
	#1 Write - b41c326655a1e61ea6f6dcc70f797eb7	201 B	2023-03-07	2024-05-09
Pretty Observations First Seen2023-03-07 01:06:53 Last Seen2024-05-09 01:25:24 Times Seen3764 Hash b41c326655a1e61ea6f6dcc70f797eb7 a416e2affbcd88fe88775b1dd7256dbb7b0e2b87 2d7d346bf62ff160f8d7d20318bedeb9dc7c79d0e2845f6061de5beabda471ca Loading...

	#2 Write - d847b733c0d07a9e10d6995199e11edb	567 B	2023-03-08	2023-03-11
Pretty Observations First Seen2023-03-08 16:09:22 Last Seen2023-03-11 22:54:53 Times Seen1 Hash d847b733c0d07a9e10d6995199e11edb e258603beb426388b5dbb4a99e8b3b86c61f1a13 156dc2de3f920cba5e4084247a5dcfc953d1436e95c395505d18c53b023c41c5 Loading...

	#3 Write - e152c610ba467b1af8ea4e396cd362b2	440 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:54:53 Last Seen2023-03-11 22:54:53 Times Seen1 Hash e152c610ba467b1af8ea4e396cd362b2 68df01937da1861e419f435a535968f7aa7ca06c f17073f2544cdbcac40dc6cf338e537aca82bd4d52661b9af98c181f8a3ca289 Loading...

	#4 Write - 12ec28d5834b13900a06a64211b64007	7.1 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:54:53 Last Seen2023-03-11 22:54:53 Times Seen1 Hash 12ec28d5834b13900a06a64211b64007 b5b556effccbd7a9efdb069b11bea8b69225ddff 335f687368fa45f5561188da7eabb18eaafddbfce5401ed7aa6b14db4fe81fa1 Loading...

	#5 Write - 8572a99da3be96298567eef9cf157ec5	7.0 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:54:53 Last Seen2023-03-11 22:54:53 Times Seen1 Hash 8572a99da3be96298567eef9cf157ec5 6f823a4d9188cc427eaa3d911f9cad01114f1b4b f1c9dea44933625bef41bde6425f20e7a4d4efd870d0894b871fdfa6f3f7ad7b Loading...

HTTP Transactions (186)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16927
Expires: Wed, 30 Nov 2022 13:12:47 GMT
Date: Wed, 30 Nov 2022 08:30:40 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1724
Cache-Control: max-age=95355
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:40 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 10:59:55 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3801
Expires: Wed, 30 Nov 2022 09:34:01 GMT
Date: Wed, 30 Nov 2022 08:30:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 08:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 659
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: DTjh24t7UF/t7kvdaf1YhCfkgnfNbGll7wAOobCGBHJFtT+Uwe0zqbspQWT7ttoIhwAVhHMT7nU=
x-amz-request-id: 2BT0KNSZKC9B1JD4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 07:45:08 GMT
age: 2732
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

sikizwa.com/

154.221.164.10

301 Moved Permanently

0 B

URL HTTP/1.1
sikizwa.com/
IP
154.221.164.10:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 30 Nov 2022 08:30:40 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.sikizwa.com/index.php

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 08:08:56 GMT
cache-control: public,max-age=3600
age: 1305
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1724
Cache-Control: max-age=90291
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:41 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 09:35:32 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.149.51.98

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.51.98:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: anrs4f/WjxYgnzjhdc0Jew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TwoTfv+mQxQRCMFysjr7Q5he22A=

www.sikizwa.com/index.php

154.221.164.10

200 OK

534 B

URL HTTP/1.1
www.sikizwa.com/index.php
IP
154.221.164.10:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (636), with CRLF line terminators
Size
534 B (534 bytes)
Hash
b5445af6ab69322fdf0dd18fddef1bdb
df3ace79528d40b825b364d1382b3f9c269f0cd0
3d3891ab04ef30ae019b0ddfa2442798864fb130b2bed33f8f767cac397fbda0

HTTP Headers

GET /index.php HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.sikizwa.com/common.js

154.221.164.10

200 OK

822 B

URL HTTP/1.1
www.sikizwa.com/common.js
IP
154.221.164.10:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Size
822 B (822 bytes)
Hash
6995f13355499348c74d8d05830edb35
82325c8623aa870b022ee46726c4e9d3dee0b20c
e72e6c52f476845f1bd58f72bbcc9dfce75d31ce8ddfdce8566fdd778679c95b

HTTP Headers

GET /common.js HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:41 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.sikizwa.com/tj.js

154.221.164.10

200 OK

258 B

URL HTTP/1.1
www.sikizwa.com/tj.js
IP
154.221.164.10:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
ASCII text, with CRLF line terminators
Size
258 B (258 bytes)
Hash
26a5c5b20a4e78d272657eb8326bec2a
9af85dae5763f9b4bf50b4d22b0c7e0c8c7ec05a
b4029fe098e742b81a869f1c589dc3d3f6d86487b94ae8ebefa1e81c2fdfcfad

HTTP Headers

GET /tj.js HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:41 GMT
Content-Type: application/x-javascript
Content-Length: 258
Connection: keep-alive

www.sikizwa.com/favicon.ico

154.221.164.10

200 OK

1.2 kB

URL HTTP/1.1
www.sikizwa.com/favicon.ico
IP
154.221.164.10:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.sikizwa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:42 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Mon, 05 Dec 2022 08:30:42 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Wed, 30 Nov 2022 12:23:52 GMT
Date: Wed, 30 Nov 2022 08:30:43 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7658 bytes)
Hash
536cd283dee06cf1ceb9e15e4850db92
47aafca572d34f9726a0174ac902178556e581d8
63a5acf87962da6656f828422545af0ccc0888f0a2a15ebd2160ffb3714e6241

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7658
x-amzn-requestid: e729e5b6-0c92-4ed3-b449-4a30d5bb4b89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEyEQSIAMFWsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1e-1bba7e9a2d15d66779b1896c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AuN9hTb4YydNZjvpnTGyE313wl-O3F_p4jC_NUSe8kr3RB_4AjOEMw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:09 GMT
age: 38074
etag: "47aafca572d34f9726a0174ac902178556e581d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9674 bytes)
Hash
5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:46 GMT
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
age: 38757
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10068 bytes)
Hash
f621857774e4b4adda95f58081644859
639165dc66d171b8266f22cd495181427112bc80
341fd33d3d9486079c182d60e21c355244b6597e6e09ba51ecee2e331b38ca2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10068
x-amzn-requestid: 7f386e94-3c17-44a1-a36b-3d0eeff4623d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEQQoAMFihA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-5069acfd038ffb2c124b7bd8;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ec2HkhHmHE2ddGBpLsJ5Rn7SCMjyR5kzaTyrguDoI9xOohgsCi08CQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:44:26 GMT
age: 38777
etag: "639165dc66d171b8266f22cd495181427112bc80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7971 bytes)
Hash
9e135c29a8769eb12ef8c26f99097400
87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d
ce41ff79c382efc54aa2fd3ab64293d2d2b706a7f21585f4bd8bbcd9a3566126

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7971
x-amzn-requestid: e47d10e4-2b60-4998-b5fa-5b145e60aac2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgWHgGoAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-5b9710a07b0a59730e73dce4;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OURSF_raDXrHV3-3ScaEdorNpW9ZKSIQjv6WUCQYHhruGz372BU_QA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:11:32 GMT
age: 37151
etag: "87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 23:32:45 GMT
age: 32278
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8885 bytes)
Hash
8825a2c5c0d98323f489e0b816b7f1d8
05f46985ea4ace57460120876da8e19db08857b3
1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhIGGtloAMFxjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d64lSE184IwrwZKVC8KOUINEBclth9b7xRGV9T1uNfAptgXz0bxKhw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:14:25 GMT
age: 36978
etag: "05f46985ea4ace57460120876da8e19db08857b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
eee6605b838f2494f70d956e4ea5bea6
f7e9956baad0d9145f988c9dee6fd23093e8a006
a54da4c6ebaa05e403c17e71133b36d444e06663378ef882c8b0f5ab98632904

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:39:00 GMT
ETag: "f7e9956baad0d9145f988c9dee6fd23093e8a006"
Last-Modified: Wed, 30 Nov 2022 06:39:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2229
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772238ff2bb0b517-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
eee6605b838f2494f70d956e4ea5bea6
f7e9956baad0d9145f988c9dee6fd23093e8a006
a54da4c6ebaa05e403c17e71133b36d444e06663378ef882c8b0f5ab98632904

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:39:00 GMT
ETag: "f7e9956baad0d9145f988c9dee6fd23093e8a006"
Last-Modified: Wed, 30 Nov 2022 06:39:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2229
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772238ff2d43b4eb-OSL

hm.baidu.com/hm.js?566503f01fa664d44733b97af3d0120f

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?566503f01fa664d44733b97af3d0120f
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (621)
Size
11 kB (11259 bytes)
Hash
a11706191c4dfb61a770f712a491777c
3e74fc9fddad99db70793e436051846cdabbb94c
a8785be158378e75ce8d74cc59333bac7948d7061560796a286bd0df38011dd9

HTTP Headers

GET /hm.js?566503f01fa664d44733b97af3d0120f HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11259
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:43 GMT
Etag: f5ce2d382f404f46476c67f7f6a672ea
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=E5ED138591F25039; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

niugetv9.top/

38.60.24.90

200 OK

23 kB

URL HTTP/1.1
niugetv9.top/
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14226), with CRLF, LF line terminators
Size
23 kB (23157 bytes)
Hash
ebea3774196b13a5e02c2f4c3397f801
8df79e47ffc17ebeb4db61e75bcb533ac0caadb0
9d7ae1333986dd8e5283133113e60327f36e55e8c9768b617a3857c912d084f1

HTTP Headers

GET / HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.sikizwa.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:43 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?f3d6365cc089588672da4dd3e692e58e
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (624)
Size
11 kB (11262 bytes)
Hash
43475ec11523fc40130c757897487349
d1b43251bcff44d01ce660be21778d9643dba8f6
0ad37b34e88d0f4681cd44932c59a6f49abe4090b58e09d5eb8fae9912008829

HTTP Headers

GET /hm.js?f3d6365cc089588672da4dd3e692e58e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11262
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:43 GMT
Etag: 2a721266982f7611d2edba133931a272
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7E81217E4398FEE2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

niugetv9.top/template/m1938pc/static/js/jquery.min.js

38.60.24.90

200 OK

38 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/jquery.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (32077)
Size
38 kB (38004 bytes)
Hash
c0750a85ce0399accd8ded17e2564d6b
ba767d35271e9b39305f156814495650f269ddb6
9de8ff805e6807598c4c2987a8368ff4b2240606f6285902c844baf5a04655ac

HTTP Headers

GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-17b8b"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
3cea89731d385311ea04861df55772b3
7a025885c0688e2efd18a0bb1e6622ea293c4c3d
10988e29ba3738d2603ebc6d71e9bc1fec4c4e17791c56749865a26e46095d59

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:43 GMT
Etag: 0c6bbe6d35bda93089fe6ac133a2952c
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D298B96158C3DC12; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

niugetv9.top/template/m1938pc/static/js/bootstrap.min.js

38.60.24.90

200 OK

13 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/bootstrap.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (39553)
Size
13 kB (12719 bytes)
Hash
89cfee4061db2dd37f5e2668f1c7ebfb
1ecc979a3bc78d4987cb642f3f64e80d56d57d39
dcff2dfb3ebcdba16ed0e4b9024fa681edc77ace8a686d9bd5aea6dc282e8168

HTTP Headers

GET /template/m1938pc/static/js/bootstrap.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-9b00"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js

38.60.24.90

200 OK

1.3 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/jquery.lazyload.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (3309)
Size
1.3 kB (1342 bytes)
Hash
8e5f2c601d9dc5b0d53cb406774e99c9
562d3c568f650e9cc977328d440fc94c46fe9f8e
0f18d8d9a5b33df370579bebc38911b2f344a8fb99bcdd66e83a6fa48c25e01a

HTTP Headers

GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-d35"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/css/swiper.min.css

38.60.24.90

200 OK

3.3 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/swiper.min.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (17459)
Size
3.3 kB (3288 bytes)
Hash
e73a49e6a4e9772b6add191cf694bd34
00038fe32a6e97fbbeb281939adfb363cdd5f54f
5a1a24bd85867233f36de37f59b96bfeeb4290619781494713b8216902b30988

HTTP Headers

GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-455f"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2139054621&si=566503f01fa664d44733b97af3d0120f&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2139054621&si=566503f01fa664d44733b97af3d0120f&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=2139054621&si=566503f01fa664d44733b97af3d0120f&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:44 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=891BB040CA15892E; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

niugetv9.top/template/m1938pc/static/js/swiper.min.js

38.60.24.90

200 OK

28 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/swiper.min.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (31999)
Size
28 kB (27510 bytes)
Hash
3694d961c3b4a420105cf9563c4cafe7
f75e4b2319d4bc0ea3af5ad3b8cf2e0679575767
3e5b269624b5703cb234c5217a66e9e77b5ffe6f70e2dd0425f3a8951dcba27c

HTTP Headers

GET /template/m1938pc/static/js/swiper.min.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-178a3"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=17495862&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=17495862&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=17495862&si=f3d6365cc089588672da4dd3e692e58e&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:44 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=0904768772D402FE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

niugetv9.top/template/m1938pc/static/css/common.css

38.60.24.90

200 OK

1.7 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/common.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text
Size
1.7 kB (1685 bytes)
Hash
1bfc16865e4e7621e5c91f2a4505e7fe
7b556b6e7f13fc6e86ab74b1e8b539fc30d7af89
dd1cca1a3a887f0bf1af7b0c06fe6ef5f0cdfa720d9f3c7230843830ba709c26

HTTP Headers

GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-19c0"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/js/global.js

38.60.24.90

200 OK

225 B

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/js/global.js
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text
Size
225 B (225 bytes)
Hash
daa83033a5dfaa134d09d60dad0f02ec
c6bc6e2ba0d0d84ae34d3e7ec586d5b2884f6539
868c454612344976f793e1a2c8a20d947f4b90cb4784509ab146c561590f2226

HTTP Headers

GET /template/m1938pc/static/js/global.js HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: application/javascript
Content-Length: 225
Last-Modified: Sat, 12 Nov 2022 16:24:06 GMT
Connection: keep-alive
ETag: "636fc8a6-e1"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes

niugetv9.top/template/m1938pc/static/css/style.css

38.60.24.90

200 OK

9.6 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/style.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
assembler source, Unicode text, UTF-8 text, with very long lines (367)
Size
9.6 kB (9606 bytes)
Hash
76c3cfbf09c2924d1324d18e71e4086c
e2955681a2b3e4806b34e4953517088ae3875059
48e3528c19a5f4f1dbd10bf600f3232f614369099eabb26a55b2baada479de09

HTTP Headers

GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Thu, 03 Jun 2021 01:54:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b83650-bf0e"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

niugetv9.top/template/m1938pc/static/css/bootstrap.min.css

38.60.24.90

200 OK

24 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/css/bootstrap.min.css
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (65369)
Size
24 kB (23941 bytes)
Hash
fa8eee12898882e0b97ca29c7920c483
427b362e999391c7ad6d1c37e0178a4fc906fa10
239818d1da6510c291bb39dfa0b5f5873a81a4d63ae877fe97a9053842b58cf2

HTTP Headers

GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-1da6a"
Expires: Wed, 30 Nov 2022 20:30:44 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
fa0d66c0778ae7bdd1007bd1f7959522
a709c595563e0144c625ef660c143fcd5dfb4897
de7907a7d9d65c9d6028ea81d86eb9c8e722ebcb4f5b37ff29d1b1b1845d58fb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4459
Cache-Control: max-age=169320
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: "6386f5b1-117"
Expires: Fri, 02 Dec 2022 07:32:44 GMT
Last-Modified: Wed, 30 Nov 2022 06:18:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
fa0d66c0778ae7bdd1007bd1f7959522
a709c595563e0144c625ef660c143fcd5dfb4897
de7907a7d9d65c9d6028ea81d86eb9c8e722ebcb4f5b37ff29d1b1b1845d58fb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4459
Cache-Control: max-age=169320
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: "6386f5b1-117"
Expires: Fri, 02 Dec 2022 07:32:44 GMT
Last-Modified: Wed, 30 Nov 2022 06:18:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279

s2.loli.net/2022/11/21/HXSObKxZrpNoT8w.gif

104.26.1.190

404 Not Found

14 kB

URL HTTP/2
s2.loli.net/2022/11/21/HXSObKxZrpNoT8w.gif
IP
104.26.1.190:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 630 x 557, 8-bit colormap, non-interlaced\012- data
Size
14 kB (14266 bytes)
Hash
2d65a379c6d17fb9a9a6e9ae5112e79e
3c81d9aefdc66c7c034bd83d8cf06a94782487ca
a810996e1b9632593734f13a465418280c6fc1ba72f1aff719577192dd47df85

HTTP Headers

GET /2022/11/21/HXSObKxZrpNoT8w.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 30 Nov 2022 08:30:44 GMT
content-type: image/png
content-length: 14266
etag: "61aa33ab-37ba"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 135675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nYESjmcc3LKCQUoMHyIdFNdPllBktH%2BPeIgFMysN%2BJYbIavNqXKUitKxyuoRCu5kP2crK8oHYtGHpQMX2VYy2UBuzrIB8zE9l2OjohvCCepnTw6k1sRCojpBEoYu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77223908485d0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

s2.loli.net/2022/11/21/GjPS2c1pFvEmyUd.gif

104.26.1.190

404 Not Found

14 kB

URL HTTP/2
s2.loli.net/2022/11/21/GjPS2c1pFvEmyUd.gif
IP
104.26.1.190:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 630 x 557, 8-bit colormap, non-interlaced\012- data
Size
14 kB (14266 bytes)
Hash
2d65a379c6d17fb9a9a6e9ae5112e79e
3c81d9aefdc66c7c034bd83d8cf06a94782487ca
a810996e1b9632593734f13a465418280c6fc1ba72f1aff719577192dd47df85

HTTP Headers

GET /2022/11/21/GjPS2c1pFvEmyUd.gif HTTP/1.1
Host: s2.loli.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Wed, 30 Nov 2022 08:30:44 GMT
content-type: image/png
content-length: 14266
etag: "61aa33ab-37ba"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 135675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bsXKiFX9TgFdg%2B2jR8gz7inH1UZCZj%2BaCdrWvtt5TmxpJiW2CQN3%2BpWqtMVeiITGeWhPBvFW3iagYdxm0B9b18lpgZDSf54ElB26Vo%2F1mtHldKgFXvcYtwRlRQyt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77223908687f0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=583699985&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=583699985&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=583699985&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.3.0&lv=1&sn=30778&r=0&ww=1280&u=http%3A%2F%2Fwww.sikizwa.com%2Findex.php&tt=%E4%B8%9C%E5%8C%97%E8%B6%BE%E5%85%84%E4%BA%92%E8%81%94%E7%BD%91%E5%95%86%E5%9F%8E%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.sikizwa.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:44 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=C13E829839FD702D; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

niugetv9.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff

38.60.24.90

404 Not Found

146 B

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

HTTP Headers

GET /template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://niugetv9.top/template/m1938pc/static/css/style.css

HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 30 Nov 2022 08:30:44 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive

niugetv9.top/template/m1938pc/static/fonts/iconfont.woff

38.60.24.90

200 OK

2.9 kB

URL HTTP/1.1
niugetv9.top/template/m1938pc/static/fonts/iconfont.woff
IP
38.60.24.90:0
ASN
#174 COGENT-174

File type
Web Open Font Format, TrueType, length 2924, version 1.0\012- data
Size
2.9 kB (2924 bytes)
Hash
1b05b2b67ca6e3fe976ed8d2d1aa31d5
c7055832382daf713a911d67501e26873db045f8
ac1718a88630db8d2fd67997ad9796acdc8a6a88361b2b7058832caeec4fb22d

HTTP Headers

GET /template/m1938pc/static/fonts/iconfont.woff HTTP/1.1
Host: niugetv9.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://niugetv9.top/template/m1938pc/static/css/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 08:30:45 GMT
Content-Type: font/woff
Content-Length: 2924
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Connection: keep-alive
ETag: "60b765dc-b6c"
Accept-Ranges: bytes

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
5619b95184df8e276ee22f798737313b
d84182ba1220b48f303954271fcc88a05541e5e2
591c1183f6882ba044100c41a9011f73a331fbd4ad20b734491f767b8b59f4c4

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: f2931af943c2ae296c85f3ab69b3bbb9
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=78E0C8D3C8A5D8BA; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
8c662e15c6f000c48aa00aa75cb03d1b
145bbc3e4a3868139310f2d47c75cd71ce92678a
39f9478ac6e284f485df8e96728af88519a97ccb31e5f5d47ade0ae45084f850

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 0c6bbe6d35bda93089fe6ac133a2952c

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:44 GMT
Etag: c1f8917af5f294917ecef21a2ad6455e
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=4C63231755D1FACD; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4e01498b0901a1fd826b6c09cd17a212
049b063b7630cbf8fb18bcb9398272eaf4a6ba1f
ffa95b4c0a09fa4d5db44e89c217cd6ba48df6a7e05e16573203af5a1d1f49cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FFA95B4C0A09FA4D5DB44E89C217CD6BA48DF6A7E05E16573203AF5A1D1F49CD"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2083
Expires: Wed, 30 Nov 2022 09:05:28 GMT
Date: Wed, 30 Nov 2022 08:30:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
58e1cdcab714767db284606599711bb6
29df717a4c00be82a7935a11dc017aceeb64f773
7da60405f867b12849e97460a454f409efab4b59fd1cebac6d805efa51cebb8a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7DA60405F867B12849E97460A454F409EFAB4B59FD1CEBAC6D805EFA51CEBB8A"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3684
Expires: Wed, 30 Nov 2022 09:32:09 GMT
Date: Wed, 30 Nov 2022 08:30:45 GMT
Connection: keep-alive

kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif

137.175.13.78

301 Moved Permanently

162 B

URL HTTP/2
kzeoo.com/68a7807de3933bf7079116fa9df99e6f.gif
IP
137.175.13.78:0
ASN
#54600 PEGTECHINC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kzeoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: text/html
content-length: 162
location: https://kvtbbb.top/68a7807de3933bf7079116fa9df99e6f.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif

45.154.215.92

301 Moved Permanently

162 B

URL HTTP/2
kvegg.com/67a0474849f4ee10ccbe3b0d2cebf337.gif
IP
45.154.215.92:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /67a0474849f4ee10ccbe3b0d2cebf337.gif HTTP/1.1
Host: kvegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:45 GMT
content-type: text/html
content-length: 162
location: https://kvtooo.top/67a0474849f4ee10ccbe3b0d2cebf337.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

niugetv3.top/img/ylf-1.gif

104.21.41.222

301 Moved Permanently

0 B

URL HTTP/1.1
niugetv3.top/img/ylf-1.gif
IP
104.21.41.222:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/ylf-1.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 08:30:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 30 Nov 2022 09:30:45 GMT
Location: https://niugetv3.top/img/ylf-1.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xHxGIzbLDm7idV53PFFDqJtLrT0E9BsQXRBepLfwJveMqzHkYnEMqxjK%2BuB7wo6k24KqyZjgu4%2BBUb1hImFt3G%2FSFDeiMEfTt7%2FEpx7YB4YpSa8%2FsYcacrG7qswU9Ms%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722390e1959b4ee-OSL
alt-svc: h2=":443"; ma=60

niugetv3.top/img/17172.gif

104.21.41.222

301 Moved Permanently

0 B

URL HTTP/1.1
niugetv3.top/img/17172.gif
IP
104.21.41.222:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/17172.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 08:30:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 30 Nov 2022 09:30:45 GMT
Location: https://niugetv3.top/img/17172.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqEa%2F743IpMFsBv0rkDphb0atgSTg7LAKzsu0PrbLwDo9pbC5u7EW73KcuYHrQSStzVLzOwyKkCPE1RK0%2B5X5Hm4yZQTOn8%2Fb%2FEOQtbn7FgeaJ3wNgjx53hZRJ2%2BbIU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722390e1b41b52d-OSL
alt-svc: h2=":443"; ma=60

niugetv3.top/img/1717.gif

104.21.41.222

301 Moved Permanently

0 B

URL HTTP/1.1
niugetv3.top/img/1717.gif
IP
104.21.41.222:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/1717.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://niugetv9.top/

HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 08:30:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 30 Nov 2022 09:30:45 GMT
Location: https://niugetv3.top/img/1717.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L2lO25RepFIT3euM1LxU8dPWA9%2BHbfftqfVgTid1kbW7WthWkfOcoM%2F3XOLUJ4PfdJPvKMNF4Wi7C6KFrmqmlEaqwmWJ8YppB%2Far4E8eyMNNFJ4jUqBgTDWyKAugWU0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722390e1f34b529-OSL
alt-svc: h2=":443"; ma=60

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2014546217&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2014546217&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=2014546217&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:45 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=EF798EC3E990ED59; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1605071894&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1605071894&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=1605071894&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.sikizwa.com%2F&v=1.3.0&lv=1&sn=30779&r=0&ww=1268&u=http%3A%2F%2Fniugetv9.top%2F&tt=%E7%89%9B%E7%89%9B%2C%E7%89%9B%E7%89%9BTV%2C%E7%89%9B%E7%89%9B%E5%BD%B1%E8%A7%86%2C%E7%89%9B%E7%89%9BAV%2C%E7%89%9B%E7%89%9B%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Wed, 30 Nov 2022 08:30:45 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=A66DBEAA89470F88; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
1f86d719fc290cff51da52fec6792537
7c4d6ff0177effc452a91ddd01b3eab5f0fab8b6
973397bcf2dc1e65645d73a79acdaf174742a55ad0d7fbe455742b866530ab10

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: f2931af943c2ae296c85f3ab69b3bbb9

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:45 GMT
Etag: 265165da59c2ab4a9f16fddb13619d02
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=B63C435B3B0A1D14; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
a406623ee7a0509bc3c078ff327572ca
221690b24bf4c03c57faec885fc6797bde9c8e49
8666d532681c3d9fce40124899eabb678e62234447f3342e6da902500a5a9594

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: c1f8917af5f294917ecef21a2ad6455e

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:45 GMT
Etag: 19d91fa485d32f1414853d07808e7530
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=80CD17B3C01CF823; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

kvevv.com/4b6dde2b3f39cee4956a18a192534906.gif

54.192.150.84

200 OK

325 kB

URL HTTP/1.1
kvevv.com/4b6dde2b3f39cee4956a18a192534906.gif
IP
54.192.150.84:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 960 x 60\012- data
Size
325 kB (325185 bytes)
Hash
f6abc830b4c6c36a82db7bc9c87d79db
deda6d00011a2f90e666ce239ce43139f8e8b2ef
eca7c8dc365cd60e9fc4076bce5e618d6cf1ed7176d2da027be2b23f065109a9

HTTP Headers

GET /4b6dde2b3f39cee4956a18a192534906.gif HTTP/1.1
Host: kvevv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 325185
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 08:06:14 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 30 Nov 2022 08:06:15 GMT
ETag: "f6abc830b4c6c36a82db7bc9c87d79db"
X-Cache: Hit from cloudfront
Via: 1.1 3d1e30eb4cc84a00e30ba5e6b067e3f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: SIN2-C1
X-Amz-Cf-Id: 1zhPKQ_upRk5L0pEp8FyecXgdY5KwHoUYjnULrWZhQT7I3eutdNNjA==
Age: 1471

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11255 bytes)
Hash
e1c32802195bdcb4db6ccbe497e44ef0
d6de2f2d8537c0c3812d7ac7841ca93b7e89ea57
3ecaac616e332d0b6d3704933d2ec02961af61b0baf11b5e9633e3a2346a11ec

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: 265165da59c2ab4a9f16fddb13619d02

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11255
Content-Type: application/javascript
Date: Wed, 30 Nov 2022 08:30:45 GMT
Etag: 4878e311b5e7cf918569ac14d02a14c7
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=017680F2A8E91BB4; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

niugetv3.top/img/ylf-1.gif

104.21.41.222

200 OK

876 kB

URL HTTP/2
niugetv3.top/img/ylf-1.gif
IP
104.21.41.222:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 980 x 120\012- data
Size
876 kB (875859 bytes)
Hash
5d8bd2cf8dfd1fdeebc625f2a664a5f5
b3cc24d971059319e859932dd124bcc4d64a7a8f
f1c047bf61b6c302e1afd72b6c49e7d5e397689109620cefdb055ce09d6483b6

HTTP Headers

GET /img/ylf-1.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: image/gif
content-length: 875859
last-modified: Fri, 18 Nov 2022 14:33:12 GMT
etag: "637797a8-d5d53"
expires: Fri, 30 Dec 2022 08:30:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rLj1Zg618iwwf5A7HoeaxcE2VUymckx7N208mmizADcrM83Oxvy1iK3%2BoZ8V%2BbdzFcDR6FORQkNx1ziZB0XRTG9IjbPhnMueioflJzY9NtFPr9YJ0rGzZouBKbpKE2Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391498eb0af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

niugetv3.top/img/17172.gif

104.21.41.222

200 OK

3.2 MB

URL HTTP/2
niugetv3.top/img/17172.gif
IP
104.21.41.222:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 600 x 240\012- data
Size
3.2 MB (3197145 bytes)
Hash
4dff729097677e6c8875d87ecb1cc40a
b2a83ac93f0177346ba2a2ba69280db169a89d0e
fdade7b3735760517f548e086b27db22b3701015daf7d94dd94a4a284373a154

HTTP Headers

GET /img/17172.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: image/gif
content-length: 3197145
last-modified: Thu, 27 Oct 2022 13:06:28 GMT
etag: "635a8254-30c8d9"
expires: Fri, 30 Dec 2022 08:30:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fkrQZSlsmKXdfE4eetrXniIg4Zyl2bkiuFIyqPM05uhYiXFSqY0EBJzQp%2BZT2AT%2BVAGVGDc1iAMtwOZjPt8lh5GdkQ2aXcTw9L2v8pPMMuOUzctaYihH%2FelEnrjm3B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391498f40af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

niugetv3.top/img/1717.gif

104.21.41.222

200 OK

2.8 MB

URL HTTP/2
niugetv3.top/img/1717.gif
IP
104.21.41.222:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 120\012- data
Size
2.8 MB (2812930 bytes)
Hash
b84dd689257112c2eeb9ff11c1eb1de7
125c585e21293764e1e52ca97dc256af76a67fc5
bd957c468bded0806e0a7ab33334f11f4a8952467f2fa13c2c606cf0bfc0ce83

HTTP Headers

GET /img/1717.gif HTTP/1.1
Host: niugetv3.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:46 GMT
content-type: image/gif
content-length: 2812930
last-modified: Wed, 26 Oct 2022 16:39:02 GMT
etag: "635962a6-2aec02"
expires: Fri, 30 Dec 2022 08:30:46 GMT
cache-control: max-age=2592000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=69ErKggYSfTyuaROcHVqiZy8PVI1DZynNXkjB%2Fji86Zs63moxZHwUh70uy9IexMhxf2gfTeZHzibUpo3Dr%2BQz%2BJCrx5F9cWaJs0PcmR3H6KNZdmJd3RttnbLBr4xFik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77223914a8f80af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe88fefcadc31dc5284c48143b9d446b
5b3cc09720489c31eeae72481bbfdb606272a9fb
47c7ed39784f221a46b7b2c9a8ce65108ad1bc6688914733afa2d7b9810f5cec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47C7ED39784F221A46B7B2C9A8CE65108AD1BC6688914733AFA2D7B9810F5CEC"
Last-Modified: Tue, 29 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18982
Expires: Wed, 30 Nov 2022 13:47:09 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
02e3a106a8f52c86b20080a6efcd0a8d
15fbb38c8a76b6df9e7c31e2abcb75b806181268
cc11ff40e33cde8fd9cb2fc2b42c7ac1ee24a4aa58f4b0db10f538f4ab413835

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC11FF40E33CDE8FD9CB2FC2B42C7AC1EE24A4AA58F4B0DB10F538F4AB413835"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8305
Expires: Wed, 30 Nov 2022 10:49:11 GMT
Date: Wed, 30 Nov 2022 08:30:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d27e0525e331a4c3ae096be1a00433af
764b36118b987432e13dd88b9b446a8ec0dc13e9
0929458f0ff0dceccb96bfc844263380c5424939c2e03a59bc4d71d764c4271c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0929458F0FF0DCECCB96BFC844263380C5424939C2E03A59BC4D71D764C4271C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4264
Expires: Wed, 30 Nov 2022 09:41:51 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
313a4af0587cf0130df762583804464b
2e81dd41e78c4b094f32575b1727a1c9207a1af1
77c2410d58d53811ae7b701ff4c501b6a21c9af6d27189170e725573ce07db2f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77C2410D58D53811AE7B701FF4C501B6A21C9AF6D27189170E725573CE07DB2F"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2154
Expires: Wed, 30 Nov 2022 09:06:41 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif

137.175.13.78

301 Moved Permanently

162 B

URL HTTP/2
kvmaa.com/cf4287991556df0490caf209d0ed91fe.gif
IP
137.175.13.78:0
ASN
#54600 PEGTECHINC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: kvmaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: text/html
content-length: 162
location: https://nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif

45.154.214.219

301 Moved Permanently

162 B

URL HTTP/2
kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP
45.154.214.219:0
ASN
#201106 Spartan Host Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: text/html
content-length: 162
location: https://kvhjjj.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
380fc74ad0e94f2ab86dea65a186385f
fdc37b5360ac431beaee656f81e4dc6ed4bd3c1c
a6b7d4eba8c5d0b14da00ed947c0cbb7540441909c0e1070b504472e5000754a

HTTP Headers

POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
9a2b6e9ee4a90ee4ae2f56876ce9c129
d80a9b33d106e60313116b163348f67478cb0437
f181c58614c12d48323e87d4f590cd9e28def3d70195dc336fa9942089ab1005

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 05:02:54 GMT
ETag: "d80a9b33d106e60313116b163348f67478cb0437"
Last-Modified: Wed, 30 Nov 2022 05:02:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1710
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a796fb4f9-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
9a2b6e9ee4a90ee4ae2f56876ce9c129
d80a9b33d106e60313116b163348f67478cb0437
f181c58614c12d48323e87d4f590cd9e28def3d70195dc336fa9942089ab1005

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 05:02:54 GMT
ETag: "d80a9b33d106e60313116b163348f67478cb0437"
Last-Modified: Wed, 30 Nov 2022 05:02:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1710
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a7fef0b49-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
b51d5d7a722f12d44f6e09089c432a85
f3c93177561702ce9c78724f852471974b249c23
d0995cec1dab88a8e5c7b7afc68c2f7796b68389dacbde4852fc139093a6a7fa

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 04:56:24 GMT
ETag: "f3c93177561702ce9c78724f852471974b249c23"
Last-Modified: Wed, 30 Nov 2022 04:56:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1367
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a7970b4f9-OSL

www.tukudhgg.vip/lm/klm01.gif

172.67.208.179

200 OK

78 kB

URL HTTP/2
www.tukudhgg.vip/lm/klm01.gif
IP
172.67.208.179:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 320 x 190\012- data
Size
78 kB (78524 bytes)
Hash
f12d32b75b26394038be19df19aea586
286e3cee23dee594ce497c1f2020ccb842e0ae69
06a090053e07f41505d1949525aa511001d14069cb8560f933d60740f9e3eba9

HTTP Headers

GET /lm/klm01.gif HTTP/1.1
Host: www.tukudhgg.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 78524
last-modified: Wed, 24 Aug 2022 10:34:37 GMT
etag: "6305febd-132bc"
expires: Sat, 24 Dec 2022 06:29:29 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 485262
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yU0Szq7%2BZbaiIlSiK1wX4Jq%2Bc%2F%2F5vquBVeutOp1oHCnqUXk1kcm9vVa9dF3%2FaMqFlhntNMnx%2B229yH0JsoRtwMA1VFV8M3oo2d7GXNs1biV6mZ36FNR8O8Q0v7T1w1nKMQ33"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391a7814b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
28b61a654e2e522f468123787d2abf83
3a8aaf795a912a321a3c9b4e6b3b1c85bc479068
d56effa2aa4f72664c100167dbb809c615a2d9a667151b1c9f5b440f3a7f65b0

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:53:05 GMT
ETag: "3a8aaf795a912a321a3c9b4e6b3b1c85bc479068"
Last-Modified: Wed, 30 Nov 2022 06:53:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 762
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7722391a898bb4f9-OSL

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
97f9aecdc46865736ab4e14f76637ee2
d19bd7b91612873a00e7a18c23c57f75c4d09379
e9241a8c0d952943a9f37bf32147822f31391e73efacc54b47db3a23c34ebe9d

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 16:34:29 GMT
Expires: Sun, 04 Dec 2022 16:34:28 GMT
Etag: "d19bd7b91612873a00e7a18c23c57f75c4d09379"
Cache-Control: max-age=374020,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391a5d19fac0-OSL

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
97f9aecdc46865736ab4e14f76637ee2
d19bd7b91612873a00e7a18c23c57f75c4d09379
e9241a8c0d952943a9f37bf32147822f31391e73efacc54b47db3a23c34ebe9d

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 16:34:29 GMT
Expires: Sun, 04 Dec 2022 16:34:28 GMT
Etag: "d19bd7b91612873a00e7a18c23c57f75c4d09379"
Cache-Control: max-age=374020,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391a5960b4f4-OSL

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d9e7f9b5c49126259a37072aef06af8b
a1d6f3cc663c4a80e6e4ebd5d74ddf2ae45eb627
f7fdf989578ef9fbba472766bf4df386df43f2189fe33460b6340a2ae0bb485e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7FDF989578EF9FBBA472766BF4DF386DF43F2189FE33460B6340A2AE0BB485E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14187
Expires: Wed, 30 Nov 2022 12:27:14 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac4867e76887aae1908b974f84a1535a
fc0266fd652c2bea414094b29b8bfde56c067180
b8cbb3a6f08134ea5fe20b617d895cec92ef2df8a76a567fb9bcb39968432124

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8CBB3A6F08134EA5FE20B617D895CEC92EF2DF8A76A567FB9BCB39968432124"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18868
Expires: Wed, 30 Nov 2022 13:45:15 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cf544ef7c11a3e0720d2ef64814ca5ac
f645d5baf08aa53e4ca6c3891236581f8f44c35c
5d3dd983185cb5de1765ead906d7c45cdf80b2f6a6563208b3e654c0a75ab5a8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D3DD983185CB5DE1765EAD906D7C45CDF80B2F6A6563208B3E654C0A75AB5A8"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1807
Expires: Wed, 30 Nov 2022 09:00:54 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac4867e76887aae1908b974f84a1535a
fc0266fd652c2bea414094b29b8bfde56c067180
b8cbb3a6f08134ea5fe20b617d895cec92ef2df8a76a567fb9bcb39968432124

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8CBB3A6F08134EA5FE20B617D895CEC92EF2DF8A76A567FB9BCB39968432124"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3644
Expires: Wed, 30 Nov 2022 09:31:31 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4a2660451f4fab38d4674a926abe5a59
4af559c5ec2e12c25ba7962902ce047f02088c0f
82550870a98650dc4eb166d822ee3e9f22bd201ee451b4401152da4377c8281b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82550870A98650DC4EB166D822EE3E9F22BD201EE451B4401152DA4377C8281B"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13414
Expires: Wed, 30 Nov 2022 12:14:21 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

www.tukky.vip/91uu/91uuspk200.gif

104.21.27.152

200 OK

330 kB

URL HTTP/2
www.tukky.vip/91uu/91uuspk200.gif
IP
104.21.27.152:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 320 x 200\012- data
Size
330 kB (329800 bytes)
Hash
c8515e829d6c15278640453ade073548
20019ae01ae180c537c65d9370dd6dff01e56346
6ca0b4ef7e96f09b8fdb715877485314fa5da8e9e9b501f7d0906609a003f894

HTTP Headers

GET /91uu/91uuspk200.gif HTTP/1.1
Host: www.tukky.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 329800
last-modified: Mon, 17 Oct 2022 03:32:11 GMT
etag: "634cccbb-50848"
expires: Sat, 24 Dec 2022 20:17:00 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 435609
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3E7TVI5VhesSzbz2ovgEJnDlYA%2B8RHo9UBhiESHZvKtoOEJPccFK7ww%2Bpt94Nho2TjA%2FXtvBvzMmvHX1gbZVH8pb6dTYkSUymYC4QxT9XCUj59mRJNMHJr%2BudRq5NFWG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391aeddbb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mjcommon.yybfxo.com/picture/11-12/640-120.gif

47.246.44.220

200 OK

345 kB

URL HTTP/1.1
mjcommon.yybfxo.com/picture/11-12/640-120.gif
IP
47.246.44.220:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 640 x 120\012- data
Size
345 kB (344895 bytes)
Hash
984a925f1fbd04da361545740121c81d
7312171a9ec8fed1d68e34a0bc40a4ff150c3944
c5dc6a8dbe82003ba31a43714fe70d5625c039b4ac8717ff01450460f854b584

HTTP Headers

GET /picture/11-12/640-120.gif HTTP/1.1
Host: mjcommon.yybfxo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Content-Type: image/gif
Content-Length: 344895
Connection: keep-alive
Date: Tue, 29 Nov 2022 15:19:28 GMT
x-oss-request-id: 63862300482D3738330D6FA1
x-oss-cdn-auth: success
Accept-Ranges: bytes
ETag: "984A925F1FBD04DA361545740121C81D"
Last-Modified: Sat, 12 Nov 2022 09:07:55 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 10366200340160173222
x-oss-storage-class: Standard
x-oss-meta-atime: 1668244058
x-oss-meta-ctime: 1668244060
x-oss-meta-gid: 1000
x-oss-meta-mode: 33261
x-oss-meta-mtime: 1668244058
x-oss-meta-uid: 1000
Content-MD5: mEqSXx+9BNo2FUV0ASHIHQ==
x-oss-server-time: 126
Ali-Swift-Global-Savetime: 1669735168
Via: cache15.l2de2[3050,3050,304-0,M], cache2.l2de2[3052,0], cache8.se1[0,0,200-0,H], cache3.se1[1,0]
Age: 61879
X-Cache: HIT TCP_MEM_HIT dirn:1:16609475
X-Swift-SaveTime: Tue, 29 Nov 2022 15:19:28 GMT
X-Swift-CacheTime: 86400
Timing-Allow-Origin: *
EagleId: 2ff62c9716697970474691647e

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c19665eb0fab82bae94ff9267071b5a6
ff3602646efe6491ba6b805ab73b0a0bfb8560b2
df36f9063b6c15da79a0e02d9098335e004583d4cf1050eed6f7fca2b7830039

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF36F9063B6C15DA79A0E02D9098335E004583D4CF1050EED6F7FCA2B7830039"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8702
Expires: Wed, 30 Nov 2022 10:55:49 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

ocsp.pki.goog/s/gts1p5/swCvH5hS9-4

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9b88ef3a164860bf62379946ef5b8d85
a15f7a8c3474cff86b398ad3601cc9ce39efae61
af7f935fbd0af125959b0cc85bcea2002e69eec41a8e42f2a8c55ffbf00ff0e8

HTTP Headers

POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b697ee50a930a06db863a2e38a8bad87
832f64ee0b1d9daf4883846604612b5c6c892517
eb1b25c36eef8ea629e206cf38961dc53eb0658c5d18ff1d1e1b84f48ad4afc5

HTTP Headers

POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b697ee50a930a06db863a2e38a8bad87
832f64ee0b1d9daf4883846604612b5c6c892517
eb1b25c36eef8ea629e206cf38961dc53eb0658c5d18ff1d1e1b84f48ad4afc5

HTTP Headers

POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/DU7TrHLJxL8
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b697ee50a930a06db863a2e38a8bad87
832f64ee0b1d9daf4883846604612b5c6c892517
eb1b25c36eef8ea629e206cf38961dc53eb0658c5d18ff1d1e1b84f48ad4afc5

HTTP Headers

POST /s/gts1p5/DU7TrHLJxL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
e97c305c122cd72602947d1eed7f3f64
99ae6f7583d688c0fe86ae6220fb1bcf28e7a2b2
c8f1097db53f2e04d72376e5705f6b1096fb173ea5ddf7faa4902401521783e0

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C8F1097DB53F2E04D72376E5705F6B1096FB173EA5DDF7FAA4902401521783E0"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16227
Expires: Wed, 30 Nov 2022 13:01:14 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

int.jstatic.xyz/happy/newyear/yiren/yiren140.gif

188.114.96.1

200 OK

47 kB

URL HTTP/2
int.jstatic.xyz/happy/newyear/yiren/yiren140.gif
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 240 x 140\012- data
Size
47 kB (47044 bytes)
Hash
eb340fa6893251f2af76ebef29cf6600
64c8dcdb9a57321c84136068a5f7a16363bc5430
962f36c8324e275fa8df04007b238d7a47d28bf3ab01d189d78271d8ea88d663

HTTP Headers

GET /happy/newyear/yiren/yiren140.gif HTTP/1.1
Host: int.jstatic.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 47044
last-modified: Sat, 01 Oct 2022 12:28:45 GMT
etag: "6338327d-b7c4"
expires: Thu, 29 Dec 2022 13:45:35 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 67512
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h51b4b06Ji0aPY7UZFhsxQeUtrkZ%2FWAklsCMJcIWWgx58wUMezpNEaox5GMX5SkO%2BRty%2Bis350fScOxxTBQMRaxsX5vHiLNlJ1h3PhvmUYovFhZIKMBH1KYY3NXxTZGa1S0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391b8b4eb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
47d72ffdfb0ddd8daa1475652e208579
160ea52d15aa4a23359518cded8208be3b3ef4c7
7fb36f311df57766805ca38b459f5b268ea84da6147095791fd94924d7a70c2b

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg

47.246.44.252

200 OK

9.2 kB

URL HTTP/2
img.alicdn.com/imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg
IP
47.246.44.252:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x360, components 3\012- data
Size
9.2 kB (9166 bytes)
Hash
43ae14560cdbc69ce960a28002f04309
4dc694c2754882f840c77807016676732c38138b
af0e248de25efb22e6edd4e1453e686154b00ce5039f94dceb2684a332ddad0e

HTTP Headers

GET /imgextra/i1/133635909329/O1CN01tjzAup2Imjb8FL1oh_!!133635909329.jpg HTTP/1.1
Host: img.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/jpeg
content-length: 9166
date: Tue, 10 May 2022 07:04:29 GMT
last-modified: Fri, 13 Aug 2021 10:28:00 GMT
picasso-ret-code: SUCCESS
request-time: 0.160
expires: Wed, 10 May 2023 07:04:29 GMT
cache-control: max-age=31536000
ali-swift-global-savetime: 1652166269
via: cache31.l2ot7-1[0,0,200-0,H], cache5.l2ot7-1[1,0], cache1.se1[0,0,200-0,H], cache1.se1[2,0]
access-control-allow-origin: *
age: 17630778
x-cache: HIT TCP_MEM_HIT dirn:2:226351109
x-swift-savetime: Wed, 31 Aug 2022 14:41:30 GMT
x-swift-cachetime: 21745379
s-rt: 2
timing-allow-origin: *
eagleid: 2ff62c9516697970476725589e
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
8f7dfdeaa0ff255bad7aa94b9abe931b
7e32d9ba838c340b3ca7c7cd731dba38ee654470
7dfb2675a73a66db2e698a6ebba72bc1932dbbc2cf1cb7a65a0b91aee84f30f7

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7DFB2675A73A66DB2E698A6EBBA72BC1932DBBC2CF1CB7A65A0B91AEE84F30F7"
Last-Modified: Tue, 29 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2591
Expires: Wed, 30 Nov 2022 09:13:58 GMT
Date: Wed, 30 Nov 2022 08:30:47 GMT
Connection: keep-alive

madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg

104.21.234.135

200 OK

46 kB

URL HTTP/2
madou8img.5100m.xyz/videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg
IP
104.21.234.135:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 600x340, components 3\012- data
Size
46 kB (46200 bytes)
Hash
8cee135b65dc2de4efafc419f4b353d0
fffc6829df1aa62783f66eca0ac618512d64dbe8
28cf9e87185f5cff027ac436cd6fe1b1b7f44e5b31df3e18c99f0898d1785932

HTTP Headers

GET /videos/202208/18/62fd405731a1d92735a7f34e/poster2.jpg HTTP/1.1
Host: madou8img.5100m.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/jpeg
content-length: 46200
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=43200
last-modified: Wed, 17 Aug 2022 19:41:16 GMT
etag: W/"b478-182ad53098f"
expires: Wed, 30 Nov 2022 17:33:51 GMT
cf-cache-status: HIT
age: 10616
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qxyZMTq4ieA81TvqPx97GvQUrcIKpG0dj736ZKdzCGG6Mv15BRg9tEBABFqMFPx0vcvVsseTcExiLlk83FUBOYMTA1aNDlacNwCUVtaNiLxgqbYXtGTjZFcsmd5%2FswjlmwrDzmz1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391bfa3972d6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

kvtooo.top/67a0474849f4ee10ccbe3b0d2cebf337.gif

188.114.96.1

200 OK

324 kB

URL HTTP/2
kvtooo.top/67a0474849f4ee10ccbe3b0d2cebf337.gif
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
324 kB (324467 bytes)
Hash
51223186e981513fc73e79a1bf5b62d1
280e6af2e99c9381a9101c6b5820bd0d5b682df1
d3437c90208ae243d19d4316d1fe074314bcb00be9f2025819f47064c76b3833

HTTP Headers

GET /67a0474849f4ee10ccbe3b0d2cebf337.gif HTTP/1.1
Host: kvtooo.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 324467
last-modified: Tue, 22 Nov 2022 18:04:15 GMT
etag: "637d0f1f-4f373"
expires: Fri, 30 Dec 2022 04:16:58 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 15229
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iVR6jlQSEfyAtMjmw4NKfPt%2BZnRJXT1ZvzMS9YzC4OD9gKcAp3g8fSVSBqabv9ziOyRBnk0iTx1wTIdAIJKCKwpDAOdVFq8H5I6Sk53J4uyZ%2BsiXuVvseK9%2FDypY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391c3bc0b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

pic.picnewsss.com/tu-2022290039/960-120.gif

23.225.139.251

200 OK

363 kB

URL HTTP/2
pic.picnewsss.com/tu-2022290039/960-120.gif
IP
23.225.139.251:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 120\012- data
Size
363 kB (362862 bytes)
Hash
c3bde1a0936121317a37c1ea11d3c59a
5c61c5caea1804742596aff4779247ca14fe0fe3
0e54eb7dcb90dc18351c3b5c97e684fee4b4b1de27f3d2e263f81103a20edd81

HTTP Headers

GET /tu-2022290039/960-120.gif HTTP/1.1
Host: pic.picnewsss.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=2592000
content-type: image/gif
date: Wed, 30 Nov 2022 05:47:59 GMT
etag: "1669787279"
expires: Fri, 30 Dec 2022 05:47:59 GMT
last-modified: Wed, 30 Nov 2022 05:47:59 GMT
server: nginx
x-cache: HIT, policy, memory
content-length: 362862
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
e1c41fb5c5fdd1f845f478aee50c3d82
953bb277d4b20658d93b1ae2218536c027a4f758
81c5ada21f6083ce7fdad2242db33ff2f1d636520903c193bdca3fba023dc12e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 04:01:13 GMT
Expires: Mon, 05 Dec 2022 04:01:12 GMT
Etag: "953bb277d4b20658d93b1ae2218536c027a4f758"
Cache-Control: max-age=415224,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391c48420b51-OSL

monaitv.me/upload/vod/2022-01-23/16429204853.jpg

137.175.72.61

200 OK

38 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-01-23/16429204853.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 938x634, components 3\012- data
Size
38 kB (37536 bytes)
Hash
aeecc5edad9ec3acd1ddf61b040e9c31
8f109b958ef65b7cf7e90293e60feabe1e327998
1bf46b0fe421f7108a86f291ff5121f45c22b7c0c4854ecc7d8d5fbe9e6ee593

HTTP Headers

GET /upload/vod/2022-01-23/16429204853.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 37536
Last-Modified: Tue, 15 Nov 2022 10:47:04 GMT
Connection: keep-alive
ETag: "63736e28-92a0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
53a9e6075e0614555254a4c3908fba86
731233b1e5b778588a42355e2123948ecf800cbb
0f348a69f07626c93e6dacdae01c1f7b6c0d94f484b9a645ce755cf565249f91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:32:10 GMT
Expires: Tue, 06 Dec 2022 04:32:09 GMT
Etag: "731233b1e5b778588a42355e2123948ecf800cbb"
Cache-Control: max-age=503481,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391da9900b51-OSL

monaitv.me/upload/vod/2022-01-21/16427415961.jpg

137.175.72.61

200 OK

45 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-01-21/16427415961.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 658x438, components 3\012- data
Size
45 kB (45203 bytes)
Hash
1cbe0c6671389df4a1255d621c3c128f
f855f5115a207d4404d16178f4300ad84d8bfd46
bae480ad0dfe46b3ebee54e0be148b614a6bdbf1ab8164620d56a93329ff8e93

HTTP Headers

GET /upload/vod/2022-01-21/16427415961.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 45203
Last-Modified: Tue, 15 Nov 2022 10:46:46 GMT
Connection: keep-alive
ETag: "63736e16-b093"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/t1eJGFHGm7w
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
380fc74ad0e94f2ab86dea65a186385f
fdc37b5360ac431beaee656f81e4dc6ed4bd3c1c
a6b7d4eba8c5d0b14da00ed947c0cbb7540441909c0e1070b504472e5000754a

HTTP Headers

POST /s/gts1p5/t1eJGFHGm7w HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

8499753.com/8499/hongse/960x60.gif

23.224.101.37

200 OK

331 kB

URL HTTP/2
8499753.com/8499/hongse/960x60.gif
IP
23.224.101.37:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 60\012- data
Size
331 kB (331043 bytes)
Hash
09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725

HTTP Headers

GET /8499/hongse/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 331043
last-modified: Sat, 12 Nov 2022 04:48:00 GMT
etag: "50d23-5ed3eb5f982bf"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

8499753.com/8499/960x60.gif

23.224.101.37

200 OK

331 kB

URL HTTP/2
8499753.com/8499/960x60.gif
IP
23.224.101.37:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 960 x 60\012- data
Size
331 kB (331043 bytes)
Hash
09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725

HTTP Headers

GET /8499/960x60.gif HTTP/1.1
Host: 8499753.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 331043
last-modified: Wed, 09 Nov 2022 06:22:39 GMT
etag: "50d23-5ed03aef4304d"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-05-05/165173678012.jpg

137.175.72.61

200 OK

73 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-05-05/165173678012.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], baseline, precision 8, 500x333, components 3\012- data
Size
73 kB (72912 bytes)
Hash
d7a6510257bb747ed9d56228502b5219
5d0fd20d55ff68c572aba2d316f40807e44eff6d
87dc3d2e149f996e8e880ec3eed1b39be86f9ed4133d5ba79289a2eac6020eb5

HTTP Headers

GET /upload/vod/2022-05-05/165173678012.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 72912
Last-Modified: Tue, 15 Nov 2022 10:48:05 GMT
Connection: keep-alive
ETag: "63736e65-11cd0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
bc50d83d2f2ed082c3720ab0bd6debe2
1d0eaf586a77cf581c998d368ce70fb61d9a81b8
476aa940ba8752a335d989b68cac5d6d7c2898c694688686c1a444990aabbe39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=108711
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63861a5f-117"
Expires: Thu, 01 Dec 2022 14:42:39 GMT
Last-Modified: Tue, 29 Nov 2022 14:42:39 GMT
Server: nginx
Content-Length: 279

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
0324565bc97b86256a8014cac8c8aea6
fac460354d5a55c454bb6761ab4ffc9aab57136b
13bcedb8a4b1fb7f5a12a53d6e2a1c7a92c90a63f9d242a9b23cce7bce4ebf01

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:00:57 GMT
last-modified: Tue, 29 Nov 2022 23:26:20 GMT
expires: Tue, 06 Dec 2022 23:26:19 GMT
etag: "fac460354d5a55c454bb6761ab4ffc9aab57136b"
cache-control: max-age=603555,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb4
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 77220d61aa8a9bd7-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795257
via: cache19.l2de2[511,511,304-0,M], cache1.l2de2[512,0], cache5.se1[0,0,200-0,H], cache3.se1[0,0], cache3.se1[3,0]
age: 1791
x-cache: HIT TCP_MEM_HIT dirn:1:311575962
x-swift-savetime: Wed, 30 Nov 2022 08:00:57 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9716697970481332189e, 2ff62c9716697970481332189e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
0c4debbb5143cd9c3be5bbf856626379
73c670b6dce2c6e85a8d4c89f58496eebb376839
f35ce8ab762c1ff0ca8bb4b2cfabb06ebe9856107642fde80e3ff8c33b5ae985

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:08:03 GMT
last-modified: Tue, 29 Nov 2022 06:55:29 GMT
expires: Tue, 06 Dec 2022 06:55:28 GMT
etag: "73c670b6dce2c6e85a8d4c89f58496eebb376839"
cache-control: max-age=600680,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 772217cfca908ff4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795683
via: cache16.l2de2[0,0,304-0,H], cache21.l2de2[0,0], cache3.se1[0,0,200-0,H], cache3.se1[1,0], cache4.se1[3,0]
age: 1365
x-cache: HIT TCP_MEM_HIT dirn:2:301886532
x-swift-savetime: Wed, 30 Nov 2022 08:15:08 GMT
x-swift-cachetime: 1375
timing-allow-origin: *, *
eagleid: 2ff62c9816697970481298025e, 2ff62c9816697970481298025e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
0324565bc97b86256a8014cac8c8aea6
fac460354d5a55c454bb6761ab4ffc9aab57136b
13bcedb8a4b1fb7f5a12a53d6e2a1c7a92c90a63f9d242a9b23cce7bce4ebf01

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:00:57 GMT
last-modified: Tue, 29 Nov 2022 23:26:20 GMT
expires: Tue, 06 Dec 2022 23:26:19 GMT
etag: "fac460354d5a55c454bb6761ab4ffc9aab57136b"
cache-control: max-age=603555,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb4
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 77220d61aa8a9bd7-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795257
via: cache19.l2de2[511,443,304-0,C], cache11.l2de2[445,0], cache3.se1[0,0,200-0,H], cache3.se1[2,0], cache7.se1[3,0]
age: 1791
x-cache: HIT TCP_MEM_HIT dirn:2:312663638
x-swift-savetime: Wed, 30 Nov 2022 08:00:57 GMT
x-swift-cachetime: 1800
timing-allow-origin: *, *
eagleid: 2ff62c9b16697970481295954e, 2ff62c9b16697970481295954e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
0c4debbb5143cd9c3be5bbf856626379
73c670b6dce2c6e85a8d4c89f58496eebb376839
f35ce8ab762c1ff0ca8bb4b2cfabb06ebe9856107642fde80e3ff8c33b5ae985

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Wed, 30 Nov 2022 08:08:03 GMT
last-modified: Tue, 29 Nov 2022 06:55:29 GMT
expires: Tue, 06 Dec 2022 06:55:28 GMT
etag: "73c670b6dce2c6e85a8d4c89f58496eebb376839"
cache-control: max-age=600680,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb3
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 772217cfca908ff4-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669795683
via: cache16.l2de2[0,0,304-0,H], cache21.l2de2[0,0], cache3.se1[0,0,200-0,H], cache3.se1[1,0], cache3.se1[3,0]
age: 1365
x-cache: HIT TCP_MEM_HIT dirn:2:301886532
x-swift-savetime: Wed, 30 Nov 2022 08:15:08 GMT
x-swift-cachetime: 1375
timing-allow-origin: *, *
eagleid: 2ff62c9716697970481342192e, 2ff62c9716697970481342192e

nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif

172.67.170.188

200 OK

318 kB

URL HTTP/2
nvhbbb.top/cf4287991556df0490caf209d0ed91fe.gif
IP
172.67.170.188:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
318 kB (317903 bytes)
Hash
fb3f1f47e7cd3c017411f4a08cb222b7
9ef0eebfa48d7d3c66398066ad781c2e4c5c2fce
864310898b7de94e28b82e0e318d801e6537365a75078d2f94b98a25c81e98a9

HTTP Headers

GET /cf4287991556df0490caf209d0ed91fe.gif HTTP/1.1
Host: nvhbbb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 317903
last-modified: Sat, 13 Aug 2022 11:03:31 GMT
etag: "62f78503-4d9cf"
expires: Thu, 29 Dec 2022 23:17:46 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 33182
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LfW74swTFHobEqDgfudPg0ol4UwKUZSnh5wAE5zo13qYlZCAmUaaSXhLqrKZ6i0dGb32pNUKhpDJ53z16AMJc5Lilcsj0M%2FqGvqhy99dWDSSi8e8dAT5deQEFVSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391f3d7bb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
60be9e248a19af148c3186ec7c1178cc
d7222300d95edc3587fed013f3f775b21b2b214b
5792630410e60ea547cb827ca0c74674486c78c72dca1b35e974b335a091d701

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5645
Cache-Control: max-age=140311
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63867fc2-2d7"
Expires: Thu, 01 Dec 2022 23:29:19 GMT
Last-Modified: Tue, 29 Nov 2022 21:55:14 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 727

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
60be9e248a19af148c3186ec7c1178cc
d7222300d95edc3587fed013f3f775b21b2b214b
5792630410e60ea547cb827ca0c74674486c78c72dca1b35e974b335a091d701

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4898
Cache-Control: max-age=139564
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63867fc2-2d7"
Expires: Thu, 01 Dec 2022 23:16:52 GMT
Last-Modified: Tue, 29 Nov 2022 21:55:14 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 727

ocsp.pki.goog/s/gts1p5/swCvH5hS9-4

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/swCvH5hS9-4
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9b88ef3a164860bf62379946ef5b8d85
a15f7a8c3474cff86b398ad3601cc9ce39efae61
af7f935fbd0af125959b0cc85bcea2002e69eec41a8e42f2a8c55ffbf00ff0e8

HTTP Headers

POST /s/gts1p5/swCvH5hS9-4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
c869d64281c645eb920c7b3574197190
8f842ce3a2f0e9bdef073a0a53e1fa963992ec47
0745f4c0330e33e02ccd8f4244f7059f5506644f5ea58374b5a430c2e4bd68c4

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0745F4C0330E33E02CCD8F4244F7059F5506644F5EA58374B5A430C2E4BD68C4"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Wed, 30 Nov 2022 10:33:01 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
60be9e248a19af148c3186ec7c1178cc
d7222300d95edc3587fed013f3f775b21b2b214b
5792630410e60ea547cb827ca0c74674486c78c72dca1b35e974b335a091d701

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5645
Cache-Control: max-age=140311
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63867fc2-2d7"
Expires: Thu, 01 Dec 2022 23:29:19 GMT
Last-Modified: Tue, 29 Nov 2022 21:55:14 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 727

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
e97c305c122cd72602947d1eed7f3f64
99ae6f7583d688c0fe86ae6220fb1bcf28e7a2b2
c8f1097db53f2e04d72376e5705f6b1096fb173ea5ddf7faa4902401521783e0

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C8F1097DB53F2E04D72376E5705F6B1096FB173EA5DDF7FAA4902401521783E0"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16226
Expires: Wed, 30 Nov 2022 13:01:14 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
8f7dfdeaa0ff255bad7aa94b9abe931b
7e32d9ba838c340b3ca7c7cd731dba38ee654470
7dfb2675a73a66db2e698a6ebba72bc1932dbbc2cf1cb7a65a0b91aee84f30f7

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7DFB2675A73A66DB2E698A6EBBA72BC1932DBBC2CF1CB7A65A0B91AEE84F30F7"
Last-Modified: Tue, 29 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Wed, 30 Nov 2022 09:13:58 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive

kvtbbb.top/68a7807de3933bf7079116fa9df99e6f.gif

172.67.147.13

200 OK

366 kB

URL HTTP/2
kvtbbb.top/68a7807de3933bf7079116fa9df99e6f.gif
IP
172.67.147.13:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 60\012- data
Size
366 kB (366444 bytes)
Hash
86371c51bf2086f3a40f0e438246b662
9da793de9c620485ee91b88413b256c69dc774c5
8155b44efd09301dca9ec4bdab8e3e6445d1564fe580edd5f7575c9289843ccf

HTTP Headers

GET /68a7807de3933bf7079116fa9df99e6f.gif HTTP/1.1
Host: kvtbbb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 366444
last-modified: Fri, 19 Aug 2022 17:02:28 GMT
etag: "62ffc224-5976c"
expires: Thu, 29 Dec 2022 16:35:55 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 57293
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2tdC%2Bf7CxxTrcSgaWXvqf8YV8ZX0UkmE8oLDYGu2z6EG3mMDmTvvuPsxwzEaXM1ECFaNJqd3sXhS%2Bcw0gIRkElAvF9PkCsPu9fj%2B6AWvMcmuaHv23Qz0U61xnVbP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7722391fab1cb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.u2765.com/images/637c9dccac84359a7f268ae1.gif

185.239.226.87

302 Found

440 kB

URL HTTP/2
img.u2765.com/images/637c9dccac84359a7f268ae1.gif
IP
185.239.226.87:0
ASN
#134835 Starry Network Limited

File type
GIF image data, version 89a, 960 x 60\012- data
Size
440 kB (439790 bytes)
Hash
07ad6948d174b603a75e166a521bbb04
d08af2d0fc9693ce636e66cbb89277875d7954f4
40853d1d4eb09490225dfe79a563bcc574195734b42387a2a4043f854bc3ca2b

HTTP Headers

GET /images/637c9dccac84359a7f268ae1.gif HTTP/1.1
Host: img.u2765.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/50372422c79c43218a1f1a337e6e6727
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
a79ac765075efd28343ced078b01042d
ca3f2283df343a6f42ce1695141b8bd11c652c86
adc914c632b1344c3a3d2ddd3edf74c9ddba10fd56f7acab760d77a2f2cbbd45

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 05:33:18 GMT
Expires: Tue, 06 Dec 2022 05:33:17 GMT
Etag: "ca3f2283df343a6f42ce1695141b8bd11c652c86"
Cache-Control: max-age=507148,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722391f9b660b51-OSL

p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6

47.246.44.229

200 OK

420 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6
IP
47.246.44.229:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
420 kB (420442 bytes)
Hash
7020ecb5ebdf5d2d41668f76d36f5982
30c768ceb1463fffc0145f1e73c808f8f6d2bb51
3a55db6e5e4fa541729efffaa932549e491e07af768e1c3c3d1dad65ae53a8bb

HTTP Headers

GET /obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 420442
date: Wed, 23 Nov 2022 19:05:33 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Wed, 23 Nov 2022 14:25:30 GMT
nw-session-id: 202211232225300101580270672D784638mtkdn02dy
nw-session-trace: 2022-11-23T22:25:30.548689345+08:00 81
x-bdcdn-cache-status: TCP_HIT
x-length: 420442
x-powered-by: ImageX
x-response-date: Wed, 23 Nov 2022 22:25:30 GMT
x-tt-logid: 202211232225300101580270672D784638
via: n132-085-052, cache5.l2de2[0,0,206-0,H], cache21.l2de2[2,0], cache21.l2de2[3,0], cache1.se1[0,0,200-0,H], cache5.se1[3,0]
x-request-ip: fdbd:dc03:15:231::134
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01e30c4ab5eb7be2436f4e80c37d0bf865ef2d9e490926580dd610aecbe3b3a013e27c67d9bdcc334baaf37a5076138f2c0511e61569a5cdf088a257cc92e49364e17f9f5ac608c83dc1ec0d4b13ce6f2b753315b127c46b57bfdd2e2fb9612211
x-response-lb: image
ali-swift-global-savetime: 1669230333
age: 566715
x-cache: HIT TCP_HIT dirn:4:464078017
x-swift-savetime: Fri, 25 Nov 2022 09:11:11 GMT
x-swift-cachetime: 31398862
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970482462448e
X-Firefox-Spdy: h2

p3.douyinpic.com/obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e

47.246.44.229

200 OK

516 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e
IP
47.246.44.229:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
516 kB (516218 bytes)
Hash
8d339af776b8da39e4e1fdb55f96b6af
d6b84760fea01429a13f8ff040172507361097c0
fd6e67ed60cceb42d84e753cce3f4c5ede43ae84f4038ffea335a840302fa2df

HTTP Headers

GET /obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 516218
date: Mon, 28 Nov 2022 12:56:26 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Mon, 28 Nov 2022 06:11:24 GMT
nw-session-id: 202211281411240101351572260E7A95E2rnj6p01dy
nw-session-trace: 2022-11-28T14:11:24.520557842+08:00 97
x-bdcdn-cache-status: TCP_HIT
x-length: 516218
x-powered-by: ImageX
x-response-date: Mon, 28 Nov 2022 14:11:24 GMT
x-tt-logid: 202211281411240101351572260E7A95E2
via: n132-078-079, cache16.l2de2[0,13,206-0,H], cache19.l2de2[15,0], cache19.l2de2[15,0], cache2.se1[0,1,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc03:8:579::167
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 015494d4cc1a514076628c47d10c6f3c8a79fbc3b70d2eb9169b9ffab2c91d5994ec73d257b37eae2c728d19f931f4de0d8b6d4b7724d5a90bd8540ce7c181f17f6116eccaefbd7d14c7f93c0e6ee128de9235bf6ffb15c725a76320e23d99276a
x-response-lb: image
ali-swift-global-savetime: 1669640186
age: 156862
x-cache: HIT TCP_HIT dirn:3:63133740
x-swift-savetime: Mon, 28 Nov 2022 15:23:46 GMT
x-swift-cachetime: 31527160
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970482472450e
X-Firefox-Spdy: h2

p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6

47.246.44.229

200 OK

385 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6
IP
47.246.44.229:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 960 x 60\012- data
Size
385 kB (384932 bytes)
Hash
6b1533d50f7375dff2f5b3969e7ec1da
6dfd13e56902faedb34a9d2e6d27e51605ddb0f1
2f235ff0c8fd65b40619ef5448206c505716aa41dcee03850c00b1352c986f7c

HTTP Headers

GET /obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 384932
date: Tue, 22 Nov 2022 10:08:41 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Tue, 22 Nov 2022 10:08:41 GMT
nw-session-id: 202211221808410101351601674FE863345mzx501dy
nw-session-trace: 2022-11-22T18:08:41.647742825+08:00 42
x-bdcdn-cache-status: TCP_MISS
x-length: 384932
x-powered-by: ImageX
x-response-date: Tue, 22 Nov 2022 18:08:41 GMT
x-tt-logid: 202211221808410101351601674FE86334
via: n132-082-090, cache8.l2de2[0,0,206-0,H], cache5.l2de2[1,0], cache5.l2de2[1,0], cache2.se1[0,0,200-0,H], cache5.se1[3,0]
x-request-ip: fdbd:dc03:8:579::167
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=3
x-tt-trace-host: 01828e55a3aae08103c59996ea14c72a4affd5f336396c83fef04801501cdc16c039bb9b50be36e4583a9a652be70d4c26d43a9fbfbc9d261778259a62d27b92becca44012ddd205b00b27dc756b3cf65e7a30213d49dde86765893b92cc85453b
x-response-lb: image
ali-swift-global-savetime: 1669111721
age: 685327
x-cache: HIT TCP_HIT dirn:6:21554454
x-swift-savetime: Tue, 22 Nov 2022 11:19:45 GMT
x-swift-cachetime: 31531736
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970482342445e
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
a888dbe61aa6b521799b9015e41a9c4a
8b5a0da67b07e0b2595c053af1ca00117f546463
5ef8b526f86af4b5b0ea72c15c270aecac3dbae7fd0bbba80db0cb536fe1cb1e

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 06:23:55 GMT
ETag: "8b5a0da67b07e0b2595c053af1ca00117f546463"
Last-Modified: Wed, 30 Nov 2022 06:23:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2230
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772239204fa5b517-OSL

ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/5B5Lw1c9RxE
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
47d72ffdfb0ddd8daa1475652e208579
160ea52d15aa4a23359518cded8208be3b3ef4c7
7fb36f311df57766805ca38b459f5b268ea84da6147095791fd94924d7a70c2b

HTTP Headers

POST /s/gts1p5/5B5Lw1c9RxE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

zerossl.ocsp.sectigo.com/

172.64.155.188

200 OK

727 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
727 B (727 bytes)
Hash
3ffc11834eea41e3af39ea3e497c8666
ee46bd051fdf8e471195404dd36519c711750688
1ec054444a9d00b943b41b05d768a3e60f379a9cc91fe33077686f2738af48d5

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 10:57:25 GMT
Expires: Mon, 05 Dec 2022 10:57:24 GMT
Etag: "ee46bd051fdf8e471195404dd36519c711750688"
Cache-Control: max-age=440195,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722392028cefac0-OSL

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3d0cb73df63ba1877b24ca16cac81a0b
ec232f5414546ed878d30df7fceb2c20dda2aecf
4bf8a28bfc0282262a05b1eb43f60e1de181cb4d0d3d30a9289a317591289013

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BF8A28BFC0282262A05B1EB43F60E1DE181CB4D0D3D30A9289A317591289013"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 14:30:48 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3d0cb73df63ba1877b24ca16cac81a0b
ec232f5414546ed878d30df7fceb2c20dda2aecf
4bf8a28bfc0282262a05b1eb43f60e1de181cb4d0d3d30a9289a317591289013

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BF8A28BFC0282262A05B1EB43F60E1DE181CB4D0D3D30A9289A317591289013"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 30 Nov 2022 14:30:48 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0a4a2b67c05626f10853822984c228ca
1ec38e19e6e9e01af282c2de745157bed73d5376
b2c684579e1f4b32b388b7da653110e1d98dbed0b04a820565a55ca7be1a60cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2C684579E1F4B32B388B7DA653110E1D98DBED0B04A820565A55CA7BE1A60CB"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=346
Expires: Wed, 30 Nov 2022 08:36:34 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive

p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3

47.246.44.229

200 OK

66 kB

URL HTTP/2
p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3
IP
47.246.44.229:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
GIF image data, version 89a, 200 x 200\012- data
Size
66 kB (65638 bytes)
Hash
9d629444f249b855a94e8a882d5ec47d
c06f98e56cf9977aaa7addb0e0acee4d982f6248
a81c159959e121cf31b8fb9fff87a139cb549a928b07ff43306ac65a2dcb6a0c

HTTP Headers

GET /obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3 HTTP/1.1
Host: p3.douyinpic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: Tengine
content-type: image/gif
content-length: 65638
date: Thu, 24 Nov 2022 17:04:00 GMT
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 24 Nov 2022 17:04:00 GMT
nw-session-id: 202211250104000102090801531EE6926Csfzgg02dy
nw-session-trace: 2022-11-25T01:04:00.722129358+08:00 73
x-bdcdn-cache-status: TCP_MISS
x-length: 65638
x-powered-by: ImageX
x-response-date: Fri, 25 Nov 2022 01:04:00 GMT
x-tt-logid: 202211250104000102090801531EE6926C
via: n204-098-054, cache10.l2de2[0,0,206-0,H], cache17.l2de2[1,0], cache17.l2de2[1,0], cache5.se1[0,0,200-0,H], cache5.se1[2,0]
x-request-ip: fdbd:dc01:26:259::153
x-tt-trace-tag: id=03;cdn-cache=hit;type=static
x-response-cinfo: 91.90.42.154
x-response-cache: edge_hit
server-timing: cdn-cache;desc=HIT,edge;dur=2
x-tt-trace-host: 01ca22b6e36e3f31e53156b8c1b9275e2a54e22ec5fa313783764a03842e9750a0a7ec1b4f7a798a21a47d5248bf2e9442c66bae0b17d8290d806bf3a82392ede5fb1912d52b89c2efd48888dfe0420c77be8fe85a874695a645e46616c04286b4
x-response-lb: image
ali-swift-global-savetime: 1669309440
age: 487608
x-cache: HIT TCP_HIT dirn:4:51967107
x-swift-savetime: Fri, 25 Nov 2022 13:07:35 GMT
x-swift-cachetime: 31463785
timing-allow-origin: *, *
access-control-allow-origin: *
eagleid: 2ff62c9916697970484172562e
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
bc50d83d2f2ed082c3720ab0bd6debe2
1d0eaf586a77cf581c998d368ce70fb61d9a81b8
476aa940ba8752a335d989b68cac5d6d7c2898c694688686c1a444990aabbe39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=108711
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "63861a5f-117"
Expires: Thu, 01 Dec 2022 14:42:39 GMT
Last-Modified: Tue, 29 Nov 2022 14:42:39 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
c869d64281c645eb920c7b3574197190
8f842ce3a2f0e9bdef073a0a53e1fa963992ec47
0745f4c0330e33e02ccd8f4244f7059f5506644f5ea58374b5a430c2e4bd68c4

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0745F4C0330E33E02CCD8F4244F7059F5506644F5EA58374B5A430C2E4BD68C4"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Wed, 30 Nov 2022 10:33:01 GMT
Date: Wed, 30 Nov 2022 08:30:48 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
fe9821b9b0061a02bdf15ca40648d578
f760581f2b33b219d7c11ca8853756821b72b94b
2ac5ad2af2cf252ebbfcd6c1ceffa365ec0c1fe7ea0c1ad58c10f5f5023fd136

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=128914
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "6386694a-117"
Expires: Thu, 01 Dec 2022 20:19:22 GMT
Last-Modified: Tue, 29 Nov 2022 20:19:22 GMT
Server: nginx
Content-Length: 279

kvhjjj.top/e48970f4052a7ec9d8b871d168e2b2ab.gif

104.21.234.216

200 OK

967 kB

URL HTTP/2
kvhjjj.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP
104.21.234.216:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 80\012- data
Size
967 kB (966741 bytes)
Hash
e6e170a45f5089c336f21c4453d4e00f
20fcfbe9d22eb6868add8b1782234d1b888c0337
a37eaf9f04a634f3e85dcd7353eb1fa224ddefa8d1e04b65a946b3cebf97ea75

HTTP Headers

GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvhjjj.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://niugetv9.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 966741
last-modified: Sat, 12 Mar 2022 15:18:45 GMT
etag: "622cb9d5-ec055"
expires: Fri, 16 Dec 2022 22:30:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1159224
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MQjPrqW5c1QwPC34VUvVEvU2sVM9KJu5LanPCNsqHuRFNc20G7gdrGq0HHor2ea%2BPJ0Ar4HUK%2FKDzMPx8S2%2Bfmvr3IpCjvgjuUfyqg9LGTJpVlDdF4Zvo%2B2J9baY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772239211ec58e0f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-09-01/16620057333.jpg

137.175.72.61

200 OK

277 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-09-01/16620057333.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1594x897, components 3\012- data
Size
277 kB (276941 bytes)
Hash
ad2a2212d840983805ef57dc5ca8dce1
3a18199ba4ed992ddb4596495d9b5a34bf72f94f
2268273be36a32192f3745f030a80ec3d11ed8d03d6d37573e6a0fec8a99b42e

HTTP Headers

GET /upload/vod/2022-09-01/16620057333.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 276941
Last-Modified: Tue, 15 Nov 2022 10:54:06 GMT
Connection: keep-alive
ETag: "63736fce-439cd"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
fe9821b9b0061a02bdf15ca40648d578
f760581f2b33b219d7c11ca8853756821b72b94b
2ac5ad2af2cf252ebbfcd6c1ceffa365ec0c1fe7ea0c1ad58c10f5f5023fd136

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 08:30:48 GMT
Etag: "6386694a-117"
Server: ECS (amb/6BB4)
Content-Length: 279

taiwtp1.com/xin/960240.gif

220.128.218.220

200 OK

436 kB

URL HTTP/2
taiwtp1.com/xin/960240.gif
IP
220.128.218.220:0
ASN
#3462 Data Communication Business Group

File type
GIF image data, version 89a, 960 x 240\012- data
Size
436 kB (436473 bytes)
Hash
732bd86d0a1c250c8ee8f6ebf30d358e
9f8ec516e191af6504caead933e550627ed80af9
8f3edf67a76ef4c9b72fe1dc842ec813009e0fd7bb1945c96d564eb385d068ee

HTTP Headers

GET /xin/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:28:20 GMT
content-type: image/gif
content-length: 436473
last-modified: Thu, 20 Oct 2022 07:11:15 GMT
etag: "6350f493-6a8f9"
expires: Fri, 30 Dec 2022 08:28:20 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

play.ncbofang4.com/20220909/Gnfm5HFp/1.jpg

137.175.72.158

200 OK

614 kB

URL HTTP/1.1
play.ncbofang4.com/20220909/Gnfm5HFp/1.jpg
IP
137.175.72.158:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x563, components 3\012- data
Size
614 kB (614177 bytes)
Hash
a31b202199e30ec328233468c6ae3831
41830c2b6a68b0dbe5889927b1e3b134caaedb5b
faab6ac849365ca31db54ba5fc40986065b9abbf373c6d65372af7e4dc0e1b32

HTTP Headers

GET /20220909/Gnfm5HFp/1.jpg HTTP/1.1
Host: play.ncbofang4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:23:24 GMT
Content-Type: image/jpeg
Content-Length: 614177
Last-Modified: Thu, 24 Nov 2022 03:43:31 GMT
Connection: keep-alive
ETag: "637ee863-95f21"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

3688qq.com/4b282cc16ec34dcba5f961c935029278.gif

103.170.15.90

200 OK

359 kB

URL HTTP/1.1
3688qq.com/4b282cc16ec34dcba5f961c935029278.gif
IP
103.170.15.90:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 60\012- data
Size
359 kB (358672 bytes)
Hash
668143938c3bb811847d83330decd423
f86300da5d773b84bc65d3c901a4767fd8566c48
a06c47f458fdbd01ba8ba0202fb615e94e2353d65098b480ede52a13a645f859

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /4b282cc16ec34dcba5f961c935029278.gif HTTP/1.1
Host: 3688qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "637e164a-57910"
Date: Sat, 26 Nov 2022 03:33:23 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 23 Nov 2022 12:47:06 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-20
Content-Length: 358672

monaitv.me/upload/vod/2022-07-20/16583211837.jpg

137.175.72.61

200 OK

351 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-07-20/16583211837.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x513, components 3\012- data
Size
351 kB (351106 bytes)
Hash
65420069ef9f7e9a57712d1f5057d687
868a2c552949d0b0ded645c398b0ce0146b5491f
80607cc199744ec5258419c2b0f551d647b15a2c1bfdf89210f9eba2594de5a1

HTTP Headers

GET /upload/vod/2022-07-20/16583211837.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 351106
Last-Modified: Tue, 15 Nov 2022 10:53:46 GMT
Connection: keep-alive
ETag: "63736fba-55b82"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ads-6686.top/960X240.gif

123.253.107.62

200 OK

2.3 MB

URL HTTP/2
ads-6686.top/960X240.gif
IP
123.253.107.62:0
ASN
#0

File type
GIF image data, version 89a, 960 x 240\012- data
Size
2.3 MB (2291400 bytes)
Hash
e95cb7b655d12501799b1e020ef32265
3fdba737a19ffd6c2c43b48dd655c5f91d92bba4
6a877f0bcfe685891a093893ce37fa8ff60d3264ecf9ebff6f6b7a6848516f71

HTTP Headers

GET /960X240.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: load-edge/2.1.1
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 2291400
last-modified: Mon, 14 Nov 2022 08:20:48 GMT
etag: "6371fa60-22f6c8"
strict-transport-security: max-age=31536000
lp-geo: edge-d196
lp-addr: 91.90.42.154
lp-request: 391d39fb-3f49-489f-87f2-9392aeb34f59
lp-id: eb1826fb35afe68119c3ad70e9bc3e88
expires: Wed, 30 Nov 2022 08:35:47 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn-xinghuatupian-cdn.com/xh/200x200.gif

154.197.20.70

200 OK

174 kB

URL HTTP/2
cdn-xinghuatupian-cdn.com/xh/200x200.gif
IP
154.197.20.70:0
ASN
#0

File type
GIF image data, version 89a, 200 x 200\012- data
Size
174 kB (173918 bytes)
Hash
244b4e49ec5bb4f58c3489cf450ecd47
9cd1a210e9b24bb4d9e3f933512066b251981426
b8daee26c934893d31997c7652c2b683191c7259692e764499c964408be0cf19

HTTP Headers

GET /xh/200x200.gif HTTP/1.1
Host: cdn-xinghuatupian-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 173918
last-modified: Sun, 02 Oct 2022 06:51:55 GMT
etag: "6339350b-2a75e"
expires: Fri, 30 Dec 2022 02:57:27 GMT
cache-control: max-age=2592000
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-04-29/165120557510.jpg

137.175.72.61

200 OK

370 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-04-29/165120557510.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 660x422, components 3\012- data
Size
370 kB (369721 bytes)
Hash
bb2a327dc8b3fc82fa9c6ecd8988518b
a4db3504f093beecd09e89c199c1511fbde74493
0f39a049cb1ab00706025059f92e940acfc344b65298486e372aefc811541476

HTTP Headers

GET /upload/vod/2022-04-29/165120557510.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 369721
Last-Modified: Tue, 15 Nov 2022 10:48:04 GMT
Connection: keep-alive
ETag: "63736e64-5a439"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ads-6686.top/600X300.gif

123.253.107.62

200 OK

2.0 MB

URL HTTP/2
ads-6686.top/600X300.gif
IP
123.253.107.62:0
ASN
#0

File type
GIF image data, version 89a, 600 x 300\012- data
Size
2.0 MB (1963053 bytes)
Hash
d30acbce9f6b70d5db3de8add527b4e4
ce6f310e4afc8b622d5b83182c1982f21a6f0948
0bd87a1b457da36aba0fdc9ed7001f5e1b1bd6821f90861faab660af7f7589d6

HTTP Headers

GET /600X300.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: load-edge/2.1.1
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 1963053
last-modified: Mon, 14 Nov 2022 07:36:41 GMT
etag: "6371f009-1df42d"
strict-transport-security: max-age=31536000
lp-geo: edge-d196
lp-addr: 91.90.42.154
lp-request: 009342cd-d003-48f2-ae3c-c1312c8e1891
lp-id: e97ef7f10ee77818d6f7a0e5a4f1e93b
expires: Wed, 30 Nov 2022 08:35:47 GMT
cache-control: max-age=300
lp-cache: HIT
lp-cache-hit: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-09-09/166271180212.jpg

137.175.72.61

200 OK

31 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-09-09/166271180212.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 998x496, components 3\012- data
Size
31 kB (30797 bytes)
Hash
02fc19d7ae6cd2928d2d79e9f29b7891
443df580fdcf92534b5d962ab90e000ab49cb95b
eb3368625b7328bbb43751ec7ededd5569bb4b2158c306772befd8625fd5cf31

HTTP Headers

GET /upload/vod/2022-09-09/166271180212.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 30797
Last-Modified: Tue, 15 Nov 2022 10:46:54 GMT
Connection: keep-alive
ETag: "63736e1e-784d"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-09-09/166271180317.jpg

137.175.72.61

200 OK

116 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-09-09/166271180317.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 999x558, components 3\012- data
Size
116 kB (116387 bytes)
Hash
c320799a53998277d9e0b15c326c2f07
4992d1028c4e232b69022b52ab579432dd737c68
4e536bd3ef7785ed13125d3c8de44126db3f7f91500e34bda7e39f0dfa54e6a8

HTTP Headers

GET /upload/vod/2022-09-09/166271180317.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 116387
Last-Modified: Tue, 15 Nov 2022 10:46:11 GMT
Connection: keep-alive
ETag: "63736df3-1c6a3"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

8499133.com/8499/150x150.gif

172.247.50.228

200 OK

135 kB

URL HTTP/2
8499133.com/8499/150x150.gif
IP
172.247.50.228:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 150 x 150\012- data
Size
135 kB (134747 bytes)
Hash
48c8ab8ae6b52201e71decda0b783d26
5817a61ac305b0b96542b5aced965e79cf67d010
011e88ae2efb7e2c7a98115adcc443c2b965206d34a45c98f7012d476de9aeb8

HTTP Headers

GET /8499/150x150.gif HTTP/1.1
Host: 8499133.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 134747
last-modified: Sun, 13 Nov 2022 10:03:32 GMT
etag: "20e5b-5ed573c48c405"
server: qq.com
x-cache-status: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

9366qq.com/d1c4e9fab26a450f81996ecd67b392b3.gif

45.61.212.123

200 OK

426 kB

URL HTTP/1.1
9366qq.com/d1c4e9fab26a450f81996ecd67b392b3.gif
IP
45.61.212.123:0
ASN
#53587 AZT

File type
GIF image data, version 89a, 960 x 60\012- data
Size
426 kB (425642 bytes)
Hash
05224c1ad7b782f551cbccdcf9f27fa5
c6ee7c8a6a149c7bd96c9e25ac1784fdbca84eb0
0b24fd89f9a5bbd8278bccf94b310be958f495b91597c0bf0c8faa7980ab5897

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /d1c4e9fab26a450f81996ecd67b392b3.gif HTTP/1.1
Host: 9366qq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "637e165c-67eaa"
Date: Sat, 26 Nov 2022 07:07:47 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Wed, 23 Nov 2022 12:47:24 GMT
Accept-Ranges: bytes
X-Cache: HIT from cloud-us2-cdnb-23
Content-Length: 425642

523zyw.com/upload/vod/2022-06-12/165504085514.jpg

137.175.72.61

200 OK

179 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-12/165504085514.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 1000x666, components 3\012- data
Size
179 kB (179353 bytes)
Hash
134e669b1e710b58dbad92fd85219662
040a39c0ff86938f1e790ef0937d4f9f0c2ad222
034ef7302f7c43998aa4185ffeb73668918940a0099f29d253c4525c662347e9

HTTP Headers

GET /upload/vod/2022-06-12/165504085514.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 179353
Connection: keep-alive
Last-Modified: Sun, 12 Jun 2022 13:34:15 GMT
Accept-Ranges: bytes
ETag: "f265ef1b617ed81:0"

523zyw.com/upload/vod/2022-06-11/165495332110.jpg

137.175.72.61

200 OK

161 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-06-11/165495332110.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 800x539, components 3\012- data
Size
161 kB (161065 bytes)
Hash
6ef63b47f6e33870ce0a20eb64930261
8fb1ab32828d1810b0fa70b32cc88cf490fd1a39
74cb76df2888f6e9bd88a930c72a3e5cbf2d2294548a4c8a76a2074bfbd95c69

HTTP Headers

GET /upload/vod/2022-06-11/165495332110.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 161065
Connection: keep-alive
Last-Modified: Sat, 11 Jun 2022 13:15:21 GMT
Accept-Ranges: bytes
ETag: "5aab24d957dd81:0"

monaitv.me/upload/vod/2022-07-22/165849653111.jpg

137.175.72.61

200 OK

464 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-07-22/165849653111.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, xresolution=110, yresolution=118, resolutionunit=2, software=www.meitu.com, datetime=2019:09:30 16:51:48], baseline, precision 8, 800x499, components 3\012- data
Size
464 kB (463866 bytes)
Hash
75844e3ed00976f4f7383a6eea0d8759
2e3a39ea44e0b82bed8a4a200736458bc94b53ff
b3303407e2da2d99fa5bcafe160e711f256aacb88dfe88d75b42b634d08521df

HTTP Headers

GET /upload/vod/2022-07-22/165849653111.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 463866
Last-Modified: Tue, 15 Nov 2022 10:48:31 GMT
Connection: keep-alive
ETag: "63736e7f-713fa"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif

103.170.15.75

200 OK

1.8 MB

URL HTTP/1.1
592773xgg.com/be2d6c93b7fe43b4b25d4a8810bc5bfc.gif
IP
103.170.15.75:0
ASN
#7483 Skycloud Computing co., Ltd.

File type
GIF image data, version 89a, 960 x 240\012- data
Size
1.8 MB (1833203 bytes)
Hash
b7b8c8d351470288a0c28f34bbdbfac6
d3f0b5bbaff9cda595c8525365618228e756d55d
bcd291e3c8c9fbccc8953982200b8ffe1804289e13f0a68b44aa189227e569d8

HTTP Headers

GET /be2d6c93b7fe43b4b25d4a8810bc5bfc.gif HTTP/1.1
Host: 592773xgg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "6364f659-1bf8f3"
Date: Thu, 24 Nov 2022 07:52:20 GMT
Content-Type: image/gif
Server: nginx
Last-Modified: Fri, 04 Nov 2022 11:24:09 GMT
Accept-Ranges: bytes
X-Cache: HIT from yd11_13-cdn-g01-la2-05
Content-Length: 1833203

monaitv.me/upload/vod/2022-09-09/16627118029.jpg

137.175.72.61

200 OK

47 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-09-09/16627118029.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 992x488, components 3\012- data
Size
47 kB (47061 bytes)
Hash
4eedcf8e2d52dc8a400ff30738caf215
d89db5850e719700dda24888f59f571e3dbca054
431d0792b638762572d713d7e733d34c0487b752dfb0bdd72b687f27b5cd24cc

HTTP Headers

GET /upload/vod/2022-09-09/16627118029.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 47061
Last-Modified: Tue, 15 Nov 2022 10:46:23 GMT
Connection: keep-alive
ETag: "63736dff-b7d5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-08-12/166030313415.jpg

137.175.72.61

200 OK

493 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-08-12/166030313415.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x550, components 3\012- data
Size
493 kB (492705 bytes)
Hash
b7efdaf4a63fa8cd6d74945228b66de9
f4c212122cd23dc301f004a9962744c4213023ec
81eb5f739f1a0fbdfcc06fae5b9251fa8a40528ddbea6484e9aa596b9bc1a0a9

HTTP Headers

GET /upload/vod/2022-08-12/166030313415.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 492705
Last-Modified: Tue, 15 Nov 2022 10:45:58 GMT
Connection: keep-alive
ETag: "63736de6-784a1"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0

43.129.255.47

200 OK

331 kB

URL HTTP/2
p.qlogo.cn/qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0
IP
43.129.255.47:0
ASN
#132203 Tencent Building, Kejizhongyi Avenue

File type
GIF image data, version 89a, 960 x 60\012- data
Size
331 kB (331043 bytes)
Hash
09f29e56330449942571a66f47f82fb5
30fc3421671176f6f724f32ee910470f03661ddc
b1a0f29b0a924b51c844351bddb87fddf9fa4ef5909f69f818e968f18413a725

HTTP Headers

GET /qqmail_head/PiajxSqBRaELqPahYLFZH9ouhuYRQGvOE6Jpic2zTvndUd2fLK5VTTWuF3XXEic6vI1DJGhfs86jaA/0 HTTP/1.1
Host: p.qlogo.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Qnginx/1.4.4
date: Wed, 30 Nov 2022 08:30:47 GMT
content-type: image/gif
content-length: 331043
vary: Accept,Origin
last-modified: Tue, 08 Nov 2022 23:42:24 GMT
cache-control: max-age=2592000
x-delay: 40036 us
x-info: real data
x-bcheck: 0_1
x-cpt: filename=0
user-returncode: 0
x-datasrc: 2
x-reqgue: 0
size: 331043
chid: 0
fid: 0
x-nws-log-uuid: 92255050-6e3c-4013-b510-7192e0c4e29b
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2022-09-09/166271180211.jpg

137.175.72.61

200 OK

106 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-09-09/166271180211.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 997x501, components 3\012- data
Size
106 kB (106318 bytes)
Hash
41c5fd42d49af84b1eef2e311d9af3af
7ed7cd318d2ac4ebdaef4721419c782673c548a8
6c92a37400bbd36b66bd392550ecdccc7666cd8e505ba97fefa0804870e7710d

HTTP Headers

GET /upload/vod/2022-09-09/166271180211.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 106318
Last-Modified: Tue, 15 Nov 2022 10:46:51 GMT
Connection: keep-alive
ETag: "63736e1b-19f4e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-09-09/166271180210.jpg

137.175.72.61

200 OK

105 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-09-09/166271180210.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1003x499, components 3\012- data
Size
105 kB (104763 bytes)
Hash
292418be8755af3cbc2fa481a2282a32
dfacfa4813ccae92f102d1db6be4fdd8c1048a04
605ac4ca2f038c94aa20c7b96aeb1e3a61e5dce05f850d80581fc11f4c81c203

HTTP Headers

GET /upload/vod/2022-09-09/166271180210.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:52 GMT
Content-Type: image/jpeg
Content-Length: 104763
Last-Modified: Tue, 15 Nov 2022 10:48:46 GMT
Connection: keep-alive
ETag: "63736e8e-1993b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2022-07-25/16587541307.jpg

137.175.72.61

200 OK

742 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-07-25/16587541307.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 1079x700, components 3\012- data
Size
742 kB (742134 bytes)
Hash
c610e020967f1c0af5981053ec8441e2
a9e34374b6b05acfb6d3e63ba50da0fc6f21279e
b25118de38677ff1936e0d6902b6f1b76c976e1a57eae595b25d9009941b329b

HTTP Headers

GET /upload/vod/2022-07-25/16587541307.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:51 GMT
Content-Type: image/jpeg
Content-Length: 742134
Last-Modified: Tue, 15 Nov 2022 10:46:41 GMT
Connection: keep-alive
ETag: "63736e11-b52f6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif

47.75.19.163

200 OK

532 kB

URL HTTP/1.1
vns86.oss-cn-hongkong.aliyuncs.com/sstu/st.gif
IP
47.75.19.163:0
ASN
#45102 Alibaba US Technology Co., Ltd.

File type
GIF image data, version 89a, 960 x 80\012- data
Size
532 kB (531945 bytes)
Hash
904c4f51a02c9f03f27ac2593d4c061e
faa7b399e3dc1e36e450636f0fafcaaca901f59e
107d811d56db4017059b2c99a4829faa9e20ce7fa395b3182bdb456ff93fbee6

HTTP Headers

GET /sstu/st.gif HTTP/1.1
Host: vns86.oss-cn-hongkong.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: image/gif
Content-Length: 531945
Connection: keep-alive
x-oss-request-id: 638714B722C82A3134897263
Accept-Ranges: bytes
ETag: "904C4F51A02C9F03F27AC2593D4C061E"
Last-Modified: Sun, 20 Nov 2022 05:06:16 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9035815038154931791
x-oss-storage-class: Standard
x-oss-version-id: CAEQPxiBgIC4ltzNpBgiIDdlODc5YmI4ZDVjNjQ3ZDk5OTI1NWRlZmIwMjk2Zjc5
Content-MD5: kExPUaAsnwPyesJZPUwGHg==
x-oss-server-time: 2

monaitv.me/upload/vod/2021-12-25/16404063220.jpg

137.175.72.61

200 OK

96 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-25/16404063220.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x557, components 3\012- data
Size
96 kB (95845 bytes)
Hash
c5d09b3062f65682c7066181a645cb64
5f5f4a70b6268b3e71f62b9551c3136615c0ba8e
164928f4839c0bd88b7767923d0b7491906b8e80ab65ddf6bbeb793adafaca69

HTTP Headers

GET /upload/vod/2021-12-25/16404063220.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 95845
Last-Modified: Tue, 15 Nov 2022 10:46:56 GMT
Connection: keep-alive
ETag: "63736e20-17665"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
40e20d544e797fc5c202ee07308440d4
b53d8d66b6de14f81e9c3264c71758fdc0f4887b
4027e22714fc5c33538c9c9234e88a9e48f510c70886e7b4da4c828e7ec8e898

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 11:50:11 GMT
Expires: Mon, 05 Dec 2022 11:50:10 GMT
Etag: "b53d8d66b6de14f81e9c3264c71758fdc0f4887b"
Cache-Control: max-age=443360,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772239278b210b51-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

55 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
HTML document, ASCII text
Size
55 B (55 bytes)
Hash
9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4344
Cache-Control: max-age=107307
Content-Type: text/html
Date: Wed, 30 Nov 2022 08:30:49 GMT
Etag: "638603ec-2d7"
Expires: Thu, 01 Dec 2022 14:19:16 GMT
Last-Modified: Tue, 29 Nov 2022 13:06:52 GMT
Server: ECS (amb/6BA2)
X-Cache: HIT
Content-Length: 55

monaitv.me/upload/vod/2022-01-30/164351545011.jpg

137.175.72.61

200 OK

21 kB

URL HTTP/1.1
monaitv.me/upload/vod/2022-01-30/164351545011.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 538x356, components 3\012- data
Size
21 kB (20661 bytes)
Hash
7df431a42de911a8f7a970cd15e56f12
b30fe0853b961e9ce73d6c8b75e616ab41f0bf9c
d51b8c3cc29cf08b7a76e6c01a2176ae3a1718c2e12bf4e753d084e8c7e400cf

HTTP Headers

GET /upload/vod/2022-01-30/164351545011.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 20661
Last-Modified: Tue, 15 Nov 2022 10:57:24 GMT
Connection: keep-alive
ETag: "63737094-50b5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

askzyimg.com/20221002/SSHz8Yis/1.jpg

198.16.55.254

200 OK

8.9 kB

URL HTTP/2
askzyimg.com/20221002/SSHz8Yis/1.jpg
IP
198.16.55.254:0
ASN
#40065 CNSERVERS

File type
JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size
8.9 kB (8941 bytes)
Hash
cab5e40f59ddaf68888493c7e377f189
e685bf72d76f79cf35b7361e21198564bc84ab6a
08a516fe2983bc9e1abbdba8807b3962b4c7d7f4d7ad7b126bc9e7c9ccf04d27

HTTP Headers

GET /20221002/SSHz8Yis/1.jpg HTTP/1.1
Host: askzyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:49 GMT
content-type: image/jpeg
content-length: 8941
last-modified: Mon, 03 Oct 2022 14:23:40 GMT
etag: "633af06c-22ed"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: public, max-age=15768000
cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2021-12-12/16392868814.jpg

137.175.72.61

200 OK

244 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/16392868814.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 739x462, components 3\012- data
Size
244 kB (243739 bytes)
Hash
185cd389bfbf621c8e8b3a57168bec3f
38d2a4fd4fa53b6a1a0285931b7059063290bc7f
675b247d0cf2ccadd778280c4200f7b80731a7fa388538a6ff982c33f99fbd29

HTTP Headers

GET /upload/vod/2021-12-12/16392868814.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 243739
Last-Modified: Tue, 15 Nov 2022 10:50:59 GMT
Connection: keep-alive
ETag: "63736f13-3b81b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif

20.78.78.186

200 OK

248 kB

URL HTTP/1.1
u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
IP
20.78.78.186:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 650 x 350\012- data
Size
248 kB (247851 bytes)
Hash
a9bf695dc5e2ed4a1d5e17818bb895f6
5018e0b9d477d7a536586297fbd2404fc407e295
6cd4ba0841e74acee6bcbc0933c03a0932d5e267a3a2b2af1b8f1abd6a7c0010

HTTP Headers

GET /a13ccf8571ea4a7ab6b41a306a625f57.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 08:30:48 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:25:12 GMT
ETag: W/"62936628-3c8da"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip

monaitv.me/upload/vod/2021-12-13/16393698094.jpg

137.175.72.61

200 OK

63 kB

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-13/16393698094.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 800x533, components 3\012- data
Size
63 kB (62905 bytes)
Hash
3babefcb616c0b719a8e47c99b6b435e
0e166bf30e4ccf20b261d6b2d4c2fc4ef49ad3b9
070905b6567376f9ba83fb281a06c4eb7433362607e25181b4d3ae24af475fb4

HTTP Headers

GET /upload/vod/2021-12-13/16393698094.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 62905
Last-Modified: Tue, 15 Nov 2022 10:48:33 GMT
Connection: keep-alive
ETag: "63736e81-f5b9"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

wap.mgivkqk.cn/sc/2118?n=ovruvary

47.246.44.172

200 OK

0 B

URL HTTP/2
wap.mgivkqk.cn/sc/2118?n=ovruvary
IP
47.246.44.172:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/2118?n=ovruvary HTTP/1.1
Host: wap.mgivkqk.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: text/javascript; charset=utf-8
date: Wed, 30 Nov 2022 08:30:48 GMT
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-origin: *
cache-control: max-age=1800
pragma: max-age=1800
strict-transport-security: max-age=31536000
via: cache25.l2hk2[7,0], cache11.l2de2[199,0], cache3.se1[221,0]
timing-allow-origin: *
eagleid: 2ff62c9716697970481922239e
X-Firefox-Spdy: h2

img.u2763.com/images/63844fadb5eb6667f536d0d4.gif

185.239.226.87

302 Found

0 B

URL HTTP/2
img.u2763.com/images/63844fadb5eb6667f536d0d4.gif
IP
185.239.226.87:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/63844fadb5eb6667f536d0d4.gif HTTP/1.1
Host: img.u2763.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/7aeb7e363bb14db5b10f6e34aa5f769e
X-Firefox-Spdy: h2

img.1200555.com/images/637e1290c967c48ec27be3de.gif

185.239.226.87

302 Found

0 B

URL HTTP/2
img.1200555.com/images/637e1290c967c48ec27be3de.gif
IP
185.239.226.87:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637e1290c967c48ec27be3de.gif HTTP/1.1
Host: img.1200555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/e153ea07a9e84b79b083849c40cc34b6
X-Firefox-Spdy: h2

wap.mgivkqk.cn/sc/2065?n=cjhxiqee

47.246.44.172

200 OK

0 B

URL HTTP/2
wap.mgivkqk.cn/sc/2065?n=cjhxiqee
IP
47.246.44.172:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sc/2065?n=cjhxiqee HTTP/1.1
Host: wap.mgivkqk.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: text/javascript; charset=utf-8
date: Wed, 30 Nov 2022 08:30:48 GMT
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
access-control-allow-origin: *
cache-control: max-age=1800
pragma: max-age=1800
strict-transport-security: max-age=31536000
via: cache22.l2hk2[7,0], cache5.l2de2[195,0], cache3.se1[216,0]
timing-allow-origin: *
eagleid: 2ff62c9716697970481832235e
X-Firefox-Spdy: h2

img.u1662.com/images/637c9e75ac84359a7f268ae4.gif

185.239.226.87

302 Found

0 B

URL HTTP/2
img.u1662.com/images/637c9e75ac84359a7f268ae4.gif
IP
185.239.226.87:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637c9e75ac84359a7f268ae4.gif HTTP/1.1
Host: img.u1662.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/52b82452019e46df91397f0a8fdcc9e6
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2021-12-12/163928814415.jpg

137.175.72.61

200 OK

0 B

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928814415.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /upload/vod/2021-12-12/163928814415.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 392438
Last-Modified: Tue, 15 Nov 2022 10:50:47 GMT
Connection: keep-alive
ETag: "63736f07-5fcf6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif

120.77.166.72

200 OK

0 B

URL HTTP/1.1
sz88.oss-cn-shenzhen.aliyuncs.com/af/q960x80-6.gif
IP
120.77.166.72:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /af/q960x80-6.gif HTTP/1.1
Host: sz88.oss-cn-shenzhen.aliyuncs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: AliyunOSS
Date: Wed, 30 Nov 2022 08:30:47 GMT
Content-Type: image/gif
Content-Length: 562130
Connection: keep-alive
x-oss-request-id: 638714B77D8D3F3430251A0B
Accept-Ranges: bytes
ETag: "8BEED805EF37D0FA42646C105C8AADD8"
Last-Modified: Tue, 27 Sep 2022 07:43:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15479893720264865523
x-oss-storage-class: Standard
Content-Disposition: attachment
x-oss-force-download: true
Content-MD5: i+7YBe830PpCZGwQXIqt2A==
x-oss-server-time: 3

kjimg10.360buyimg.com/ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif

182.140.218.3

200 OK

0 B

URL HTTP/2
kjimg10.360buyimg.com/ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif
IP
182.140.218.3:0
ASN
#38283 CHINANET SiChuan Telecom Internet Data Center

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ott/jfs/t1/120993/16/33030/1021535/6380d2dbE2ee6e05e/c45dd20fdac2727b.gif HTTP/1.1
Host: kjimg10.360buyimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:48 GMT
content-type: image/gif
content-length: 1021535
cache-control: max-age=315360000
expires: Mon, 22 Nov 2032 14:51:41 GMT
last-modified: Fri, 25 Nov 2022 14:36:11 GMT
age: 409148
via: http/1.1 ORI-CLOUD-HUN-MIX-25 (jcs [cHs f ]), http/1.1 SCchengdu-CT-11-MIX-25 (jcs [cRs f ])
access-control-allow-origin: *
timing-allow-origin: *
x-trace: 200-1669387901977-0-0-0-12-12;200;200-1669775197602-0-0-0-4-4;200-1669797048560-0-0-0-1-1
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2021-12-12/163928882117.jpg

137.175.72.61

200 OK

0 B

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928882117.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /upload/vod/2021-12-12/163928882117.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 367385
Last-Modified: Tue, 15 Nov 2022 10:50:46 GMT
Connection: keep-alive
ETag: "63736f06-59b19"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image

120.52.95.234

200 OK

0 B

URL HTTP/2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP
120.52.95.234:0
ASN
#133119 China Unicom IP network

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 08:30:49 GMT
content-type: image/gif
content-length: 677521
set-cookie: hccesp_lttk=AAAAAgAAAAAAAAAFAAAAAQAAAAeBwwi0wpEfjDtjEGdD0lQu5M4hrZWjTLCHLQtgu4fMEQAAAAAAAAAAAAAAQG/YMWON4yiLYz+0/xuncnX7dFc2Xm3dsqBtwDNWfGsMbX1awkDMrHc/0D/KLEZ7s+PYXpIMWgKULvnrBb/CES8=; Expires=Thu, 30 Nov 2023 08:30:49 GMT; path=/;
server: openresty
age: 13668704
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=6
via: CHN-HElangfang-AREACUCC1-CACHE5[6],CHN-HElangfang-AREACUCC1-CACHE35[0,TCP_HIT,2],CHN-TJ-GLOBAL1-CACHE60[39],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,36]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

8644aaw.com/a.gif

60.244.96.178

200 OK

0 B

URL HTTP/2
8644aaw.com/a.gif
IP
60.244.96.178:0
ASN
#24154 Asia Pacific Broadband Fixed Lines Co., Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /a.gif HTTP/1.1
Host: 8644aaw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 08:30:43 GMT
content-type: image/gif
content-length: 397051
last-modified: Wed, 05 Oct 2022 08:47:42 GMT
etag: "633d44ae-60efb"
expires: Fri, 30 Dec 2022 08:30:43 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

img.1170555.com/images/637e12abc967c48ec27be3df.gif

185.239.226.87

302 Found

0 B

URL HTTP/2
img.1170555.com/images/637e12abc967c48ec27be3df.gif
IP
185.239.226.87:0
ASN
#134835 Starry Network Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/637e12abc967c48ec27be3df.gif HTTP/1.1
Host: img.1170555.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
referrer-policy: no-referrer
cache-control: max-age=3600
location: https://p3.douyinpic.com/obj/tos-cn-i-dy/47aedc0691794d95b123bb4f8e114de3
X-Firefox-Spdy: h2

monaitv.me/upload/vod/2021-12-12/163928684210.jpg

137.175.72.61

200 OK

0 B

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928684210.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /upload/vod/2021-12-12/163928684210.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 349052
Last-Modified: Tue, 15 Nov 2022 10:51:43 GMT
Connection: keep-alive
ETag: "63736f3f-5537c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

monaitv.me/upload/vod/2021-12-12/163928619412.jpg

137.175.72.61

200 OK

0 B

URL HTTP/1.1
monaitv.me/upload/vod/2021-12-12/163928619412.jpg
IP
137.175.72.61:0
ASN
#54600 PEGTECHINC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /upload/vod/2021-12-12/163928619412.jpg HTTP/1.1
Host: monaitv.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://niugetv9.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Wed, 30 Nov 2022 08:30:53 GMT
Content-Type: image/jpeg
Content-Length: 371911
Last-Modified: Tue, 15 Nov 2022 10:46:35 GMT
Connection: keep-alive
ETag: "63736e0b-5acc7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations