Report - gifts-now.com/

Report Overview

Submitted URL
gifts-now.com/
IP
154.221.158.75
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD
Submitted
2022-10-31 07:51:08
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
hm.baidu.com	8254	2012-05-26T10:38:45Z	2023-03-10T12:46:20Z	6.7 kB	97 kB	103.235.46.191
ocsp.trust-provider.cn	unknown	2022-02-10T09:18:30Z	2023-03-10T11:35:51Z	1.4 kB	5.9 kB	47.246.44.205
pkff85.xyz	unknown	2022-07-21T06:34:54Z	2023-01-25T17:12:13Z	382 B	69 kB	104.223.155.206
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-10T11:39:59Z	338 B	729 B	23.36.76.226
p26.toutiaoimg.com	75286	2021-01-20T18:21:02Z	2023-03-10T00:28:36Z	435 B	679 kB	182.118.39.165
kmr.mjnbrt.xyz	unknown	2022-09-14T16:20:49Z	2023-02-24T07:52:52Z	377 B	85 kB	23.224.92.243
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	3.4 kB	8.9 kB	23.36.77.32
www.gifts-now.com	unknown	2020-04-20T18:17:38Z	2023-02-20T09:50:29Z	1.3 kB	3.7 kB	154.221.158.75
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-10T05:11:21Z	718 B	3.8 kB	104.18.21.226
httv6.top	unknown	2022-10-28T09:49:09Z	2022-11-11T16:47:45Z	3.9 kB	138 kB	154.219.167.85
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	66 kB	34.120.237.76
haitangtv2.top	unknown	2022-09-21T07:06:08Z	2022-11-21T03:59:01Z	611 B	6.0 MB	122.10.49.87
gifts-now.com	unknown	2020-04-20T18:17:38Z	2023-03-02T09:52:27Z	345 B	198 B	154.221.158.75
kvkddd.top	unknown	2022-05-01T11:53:48Z	2023-01-23T11:39:54Z	396 B	968 kB	104.21.233.184
523zyw.com	922633	2021-08-23T12:35:30Z	2023-03-03T09:52:17Z	14 kB	7.1 MB	137.175.59.81
gnrty.kmjkwe.xyz	unknown	2022-10-20T09:42:37Z	2023-01-12T10:55:18Z	771 B	170 kB	23.224.92.246
kmr.wdjptto.cn	unknown	2022-09-29T10:19:28Z	2022-11-09T17:32:28Z	974 B	2.4 kB	203.107.60.95
ket.kdcxhr.cn	unknown	2022-10-24T07:41:07Z	2022-11-01T02:58:43Z	1.5 kB	1.4 kB	203.107.60.95
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.160.97.225
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	2.7 kB	7.7 kB	104.18.32.68
kmf.janvoq.cn	unknown	2022-10-24T18:46:57Z	2022-11-01T17:46:25Z	700 B	13 kB	203.107.60.95
taiwtp1.com	unknown	2022-04-08T09:06:08Z	2023-03-10T00:39:27Z	375 B	437 kB	220.128.218.220
ads-6686.top	unknown	2022-09-06T10:15:05Z	2023-03-09T23:58:20Z	774 B	488 kB	104.18.28.127
ocsp2.globalsign.com	1544	2012-05-23T20:10:04Z	2023-03-10T05:13:37Z	367 B	1.9 kB	104.18.20.226
kvemm.com	222018	2021-10-18T03:51:02Z	2023-03-09T13:47:42Z	409 B	422 B	64.32.13.142
u0062.com	unknown	2021-02-01T02:45:41Z	2023-02-15T23:54:16Z	395 B	248 kB	20.255.19.235
s9.cnzz.com	40585	2012-05-24T11:08:21Z	2023-03-09T11:40:39Z	840 B	1.2 kB	220.185.164.250
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	2.0 kB	4.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
i.6v6.work	unknown	2022-04-22T17:49:00Z	2023-03-09T06:13:39Z	271 B	293 B	23.225.199.165

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-31	medium	mjnbrt.xyz	Sinkholed

JavaScript (30)

	URL	Size	First Seen	Last Seen
	www.gifts-now.com/common.js	1.8 kB	2023-03-10	2023-03-10
Pretty URL www.gifts-now.com/common.js IP 154.221.158.75 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash c205d9a10283e64e3ef64e514cc25b4d abdf9b9872d75904cfcdfb2ba8179d9d5f55e213 120e0146c7e262a2ed873177b3dfe5812ebecf32502edde689360c05ff592b0e Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 80ccc6e2a04c2182510e40ce5bd1f6de 078d624c5673ae9e05ca40b52d61abf5b8b4cfe6 e685482d8e1adce7ede389e5fb1250c3704eba4625e4d181344c6ef01b5386ed Loading...

	kmf.janvoq.cn/j/155175	16 kB	2023-03-10	2023-03-10
Pretty URL kmf.janvoq.cn/j/155175 IP 203.107.60.95 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 5ac868e0e82a997e0e3daf67243e3f3c 391634064fe06c2bc77fdb6a2eb15d271530936a ad49b62436c73bf16c0930f31fc1b9d0ccfbea1d5a21dbc213a0f6d5001f4ee7 Loading...

	httv6.top/template/m1938pc/static/js/swiper.min.js	96 kB	2023-03-07	2024-04-24
Pretty URL httv6.top/template/m1938pc/static/js/swiper.min.js IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:19 Last Seen2024-04-24 00:06:57 Times Seen1569 Hash fb13ef3e875ca3497ede35d3774be9d3 ab0743a89d522438c17ae7eaf5943fd4590ee3d0 4a10219bee747aadeeda78f166d787adf32583f361f88d44b472f6f3da798083 Loading...

	httv6.top/	254 B	2023-03-07	2023-04-02
Pretty URL httv6.top/ IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:35 Last Seen2023-04-02 21:31:12 Times Seen3 Hash 3886b99a5f1702e3ae7b42e6d977852d fb269551e217ecd157e281f89520040b04aff628 4f714efdc83be2b936cb887a57888c559da75c14c80108737f0a4b129a00e7c5 Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 50daaeb05afc0f9cc37f353d2f8ba6c7 5140bdb3ed751defabd84cddaaa7e18344e3ebec 51c41594eab5222b9dfe37cdc696f690be49b983b7973d5b357812e612022ea1 Loading...

	httv6.top/	236 B	2023-03-07	2023-04-02
Pretty URL httv6.top/ IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:35 Last Seen2023-04-02 21:31:12 Times Seen3 Hash 972172b87a1814c948b6b4e505d1493d 926456939c45384d387b86525c9fc28428a753c0 0ac2fd418c92ff77c17a60cf1edc4de15094c81e943422a8a7d0ad5ff0a7516b Loading...

	httv6.top/	110 B	2023-03-07	2024-04-20
Pretty URL httv6.top/ IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:27 Last Seen2024-04-20 19:36:52 Times Seen589 Hash d617c201d1c14420dd64584caab25720 f0ce903c41419ed3b5680ec8c4ca7cb879c1e9f8 d4120ff5140259e2d0d19bede161600b58accb36ccc617b12f58e9b13588dbc8 Loading...

	httv6.top/	12 B	2023-03-10	2023-03-10
Pretty URL httv6.top/ IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 0dcf54ba9d158af217ccc3faf993a466 0a5caaedf9df8b54f230e1580f3fd2f00494c569 aaad54a5d4067c0f907c9e76dd115e7a99ffc012deb6f80bbe0e531de68b5dd9 Loading...

	hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 8a42c0a74128cf8e07a5cdbb12d6bb2b 7e2599a3310cd22b75bacc1bf8f5e6948edcf62c 280b2f0addbfe45868db66b9952b92d11d67d282293d78d184e9183c9fb228b8 Loading...

	hm.baidu.com/hm.js?c7a86de7b493b415dc0df800703b18be	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?c7a86de7b493b415dc0df800703b18be IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 30c6dce8503f2e84957b999babed1818 d8cd2cd447938d0f032cd413e037667b662390ce c380f9d8f245c14adc92cd20445f32f926091449e050c07253661869cbd8e9a6 Loading...

	httv6.top/	10 B	2023-03-10	2023-03-10
Pretty URL httv6.top/ IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 7812c18a9e113fa24af5bee7942a7ed9 8348cca263c846eee6213ed00f123ea5f5939afc a1a6ebd9d414e18c448ec112be22757c131a47b2c3d3f59b85f413dd831a0705 Loading...

	hm.baidu.com/hm.js?c58a79351d4016ac0a3fa89e0face4a9	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?c58a79351d4016ac0a3fa89e0face4a9 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 88b1ddaceb4c5056527eacc53ad08ab3 0a49a2015f29f824bdbae8694953b41e49dab7ec 481c736b561ef545212a60365422c2eb17d29eed83bf3762b41e92bd0cfc6802 Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 85b4c62378d6e9c1c9d8cf1b4f9ab386 8fa02935d6cb511cff495a63f40dcffc68492965 e139c661d4c74b5cac1293ba4ed80787d717de5c1da5179a25c2130904c448cc Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 4cb07b9c253620f6718e277ff5f5cb35 b7a3d8d2c042767d563c3c7e1478fbfc927969d8 864b9a33adf994403163748bbd7bace3ee67ba386dfab43d092f7fe3db19d5ec Loading...

	kmf.janvoq.cn/j/155176	16 kB	2023-03-10	2023-03-10
Pretty URL kmf.janvoq.cn/j/155176 IP 203.107.60.95 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 173570df3c57af4362798837b4e2c73b 9dbdee5f601580dbef10e9e011f501c817a7d75f 9219e823a5c2ef467697c5615c3c5a5bc63c8870359ee9d9316b0c134be7f0c3 Loading...

	kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172	1.5 kB	2023-03-07	2023-03-17
Pretty URL kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172 IP 203.107.60.95 ASN #37963 Hangzhou Alibaba Advertising Co.,Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:27 Last Seen2023-03-17 12:27:52 Times Seen1 Hash 468dffc69603ccf552096e072a7ec3bd ca6fb01f835475cb968c1d181bdbb002cf953250 a34a71d131cc5e6a4bfb856012d7360730c40bc97b078f4e6380ee6ec47a3936 Loading...

	www.gifts-now.com/index.php	34 B	2023-03-08	2023-03-11
Pretty URL www.gifts-now.com/index.php IP 154.221.158.75 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:33:57 Last Seen2023-03-11 21:16:33 Times Seen1 Hash abde3f02866e5f4b2960ee48e11d85ab 8f6ac408e762e725024dd25a1057a23385991cbe 3db5040377b14c2bff186939d36bcf0ecf75d44508eeaedae3934f3089badf75 Loading...

	www.gifts-now.com/tj.js	262 B	2023-03-08	2023-03-10
Pretty URL www.gifts-now.com/tj.js IP 154.221.158.75 ASN #134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:33:57 Last Seen2023-03-10 18:07:27 Times Seen1 Hash ce71868892e6c5db85a7fb0a3ae8ea75 ac135dffcef7c78216c53f91bc24bcfef925d2ce e74af6d63d0cb6363fa11c201be422667856cf9cb864d1df5901adf2f45e756c Loading...

	httv6.top/template/m1938pc/static/js/bootstrap.min.js	40 kB	2023-03-07	2024-04-25
Pretty URL httv6.top/template/m1938pc/static/js/bootstrap.min.js IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 00:40:25 Times Seen12199 Hash 2f34b630ffe30ba2ff2b91e3f3c322a1 b16fd8226bd6bfb08e568f1b1d0a21d60247cefb 9ee2fcff6709e4d0d24b09ca0fc56aade12b4961ed9c43fd13b03248bfb57afe Loading...

	httv6.top/template/m1938pc/static/js/jquery.lazyload.min.js	3.4 kB	2023-03-07	2024-04-25
Pretty URL httv6.top/template/m1938pc/static/js/jquery.lazyload.min.js IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:48 Last Seen2024-04-25 01:43:39 Times Seen4075 Hash 112c8d1b40b3e62e883c743e9d71e0bf 338318e930487b2791a7bcf53ad4601630cc41e2 ad79ce7e34d1a788809bb853031133de2ae45f3c19ac4955dae46c7490188c2e Loading...

	httv6.top/template/m1938pc/static/js/global.js	767 B	2023-03-07	2023-03-10
Pretty URL httv6.top/template/m1938pc/static/js/global.js IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:35 Last Seen2023-03-10 18:07:27 Times Seen1 Hash 8795117d18afac921a5fc724c7b7cf53 3c21f6100162b2f7940175a1b9790c6161b04a02 fa0ae5b9ae65389a58cf363f40a8c9ddf5a26b5945f511756f1270f5d2d38fe4 Loading...

	httv6.top/	254 B	2023-03-07	2023-03-13
Pretty URL httv6.top/ IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:15 Last Seen2023-03-13 00:53:14 Times Seen1 Hash 6f99ad135c073f87ec1060fc943dea4c 10597bcc5eeb6049655cc520d71e8aa17f2d9821 c797f3b8524957f2150bcb64a68653a1028d6b4a3a40032bed769b945e837196 Loading...

	httv6.top/	386 B	2023-03-07	2024-01-24
Pretty URL httv6.top/ IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:05 Last Seen2024-01-24 07:55:37 Times Seen110 Hash b9f9d9b5a9226709c5400c5339ad9026 1489836c52e1398984a1f7f84acd9cea97bdd8ad e5776022bbe71e026ab65aad61f115b6782653431de77d5a4e77f690810dc955 Loading...

	i.6v6.work/v/?uid=387913	0 B	2023-03-07	2024-04-25
Pretty URL i.6v6.work/v/?uid=387913 IP 23.225.199.165 ASN #40065 CNSERVERS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 02:08:01 Times Seen37052692 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754	30 kB	2023-03-10	2023-03-10
Pretty URL hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754 IP 103.235.46.191 ASN #55967 Beijing Baidu Netcom Science and Technology Co., Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash e93ddbf685e15fe132771fcf33b343d6 51c5cff729363e103278467d2a6c44b8410ff411 098535285a139af3442805667a86b8e702dbedb54d21cfd113baf43f49fe97af Loading...

	httv6.top/template/m1938pc/static/js/jquery.min.js	97 kB	2023-03-07	2024-04-25
Pretty URL httv6.top/template/m1938pc/static/js/jquery.min.js IP 154.219.167.85 ASN #134548 DXTL Tseung Kwan O Service Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 00:55:59 Times Seen118683 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

		Size	First Seen	Last Seen
	#1 Eval - f8148de2d030ed9e61ac1ce233ffda23	451 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash f8148de2d030ed9e61ac1ce233ffda23 ff05a1e86fc379d284b3dc3b4bbb24ac07e73d64 6c48cb2cc3d4770612a392baa9f909956f721c6945a94129724f9561d1d2c8dc Loading...

	#2 Eval - 7b247dcb9325b540cc7319703f8b7e49	183 B	2023-03-07	2023-09-09
Pretty Observations First Seen2023-03-07 12:01:50 Last Seen2023-09-09 20:00:42 Times Seen41 Hash 7b247dcb9325b540cc7319703f8b7e49 ace272ecadd832c917e5e7efd507a19480c65e9e 07e49900713aa4ff885bb78fafee0a010f3cec1d59b2bb9682f28e8c0eef4c8b Loading...

		Size	First Seen	Last Seen
	#1 Write - c9bdd39207229e0780623a952d758738	432 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 18:07:27 Last Seen2023-03-10 18:07:27 Times Seen1 Hash c9bdd39207229e0780623a952d758738 338afc38c95533564cb9fbad96d62079e5229e40 e67ef96e4f08b58133b056375dda4383861486a0cd3e7a49af1fb8de044bfcab Loading...

HTTP Transactions (128)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
82788b8b26eeba7f492106ea47729bbb
823b2d3c336d11064a6b809057bed46bb65a7969
7671d088ba1420ffa01dbd63c5f7ab28d52d3591bc04c4cc182d1f9e64a7f2f8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7671D088BA1420FFA01DBD63C5F7AB28D52D3591BC04C4CC182D1F9E64A7F2F8"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11668
Expires: Mon, 31 Oct 2022 11:05:22 GMT
Date: Mon, 31 Oct 2022 07:50:54 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2c936a37c0ab225115a83277467091ec
d357ab9189990d3718036f67c12f467efe43552d
747c8165e4d62420f0c769d2e91ca9e7a04cfc02bd29f35ca3f74c106964c04f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5637
Cache-Control: max-age=98048
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:54 GMT
Etag: "635e4459-1d7"
Expires: Tue, 01 Nov 2022 11:05:02 GMT
Last-Modified: Sun, 30 Oct 2022 09:31:05 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2c936a37c0ab225115a83277467091ec
d357ab9189990d3718036f67c12f467efe43552d
747c8165e4d62420f0c769d2e91ca9e7a04cfc02bd29f35ca3f74c106964c04f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5637
Cache-Control: max-age=98048
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:54 GMT
Etag: "635e4459-1d7"
Expires: Tue, 01 Nov 2022 11:05:02 GMT
Last-Modified: Sun, 30 Oct 2022 09:31:05 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de47d7f9f8d5035d5490f0386442d813
fe86a705a7540c619fddd835ba720bccd2f17cfc
1b3bb62c83f8117b31f021c532a77dfea594a33ea40b5ed62dc67a29f6d15115

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B3BB62C83F8117B31F021C532A77DFEA594A33EA40B5ED62DC67A29F6D15115"
Last-Modified: Sun, 30 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9815
Expires: Mon, 31 Oct 2022 10:34:29 GMT
Date: Mon, 31 Oct 2022 07:50:54 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: L+BmtcWUus+qWqyeOC1+BKsjB67E0EBb69JiJSuzaSq6nxkIW2Se9mm1pwIfk/MlVlgcjfZP7fk=
x-amz-request-id: ZJ12B905892KHSZ8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 31 Oct 2022 07:11:28 GMT
age: 2366
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 31 Oct 2022 07:50:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

gifts-now.com/

154.221.158.75

301 Moved Permanently

0 B

URL HTTP/1.1
gifts-now.com/
IP
154.221.158.75:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 31 Oct 2022 07:50:54 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://www.gifts-now.com/index.php

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9764c875002c224f81bd966db2995460
dd384811c207f54188bd097e286b2880bfcbc28b
13d0f25b1d045a816fe13b56d04af6ae00a5e2862412c781e53e069c2d33a3a1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4134
Cache-Control: max-age=91486
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:55 GMT
Etag: "635e3097-1d7"
Expires: Tue, 01 Nov 2022 09:15:41 GMT
Last-Modified: Sun, 30 Oct 2022 08:06:47 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

www.gifts-now.com/index.php

154.221.158.75

200 OK

579 B

URL HTTP/1.1
www.gifts-now.com/index.php
IP
154.221.158.75:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (723), with CRLF line terminators
Size
579 B (579 bytes)
Hash
8250c2a8478dd0c83e02b44231fc0714
bc8c2ce71cf1d7581bf71d30a098744e33678ae3
f790fb9fbdae12a35129c07635cb9c36c6d5c2602466619665af6321a5b7b7e4

HTTP Headers

GET /index.php HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

push.services.mozilla.com/

35.160.97.225

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.97.225:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4OSGtkasqSpQZw/ZgT7sMA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GzzQNBlDIx4Qx49xapGNAVB6FFE=

www.gifts-now.com/common.js

154.221.158.75

200 OK

816 B

URL HTTP/1.1
www.gifts-now.com/common.js
IP
154.221.158.75:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
HTML document text\012- HTML document, ASCII text, with very long lines (438), with CRLF line terminators
Size
816 B (816 bytes)
Hash
1d1c08f9f0bba12a2f5c740fcd256087
aebf2bd59fbebf06a79618347426c2fe88b17a58
8fedc9ea3c046da9960343f3999fded2dd42ca994d3f0e28dbefeb8824589249

HTTP Headers

GET /common.js HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:55 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

www.gifts-now.com/tj.js

154.221.158.75

200 OK

262 B

URL HTTP/1.1
www.gifts-now.com/tj.js
IP
154.221.158.75:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
ASCII text, with CRLF line terminators
Size
262 B (262 bytes)
Hash
ce71868892e6c5db85a7fb0a3ae8ea75
ac135dffcef7c78216c53f91bc24bcfef925d2ce
e74af6d63d0cb6363fa11c201be422667856cf9cb864d1df5901adf2f45e756c

HTTP Headers

GET /tj.js HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:55 GMT
Content-Type: application/x-javascript
Content-Length: 262
Connection: keep-alive

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
25b87bbf108c9ffc7bcdb424ba28b173
6eaaafa09c0f486ef9a6d18c6dc4a300b1208854
96f044343fbc4bbc4f644b8ff6cedc05bd9eb6dd5aa06883efa9d8dc8c138a1f

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 04 Nov 2022 06:51:59 GMT
ETag: "6eaaafa09c0f486ef9a6d18c6dc4a300b1208854"
Last-Modified: Mon, 31 Oct 2022 06:52:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2723
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 762acd78cac4b50b-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
25b87bbf108c9ffc7bcdb424ba28b173
6eaaafa09c0f486ef9a6d18c6dc4a300b1208854
96f044343fbc4bbc4f644b8ff6cedc05bd9eb6dd5aa06883efa9d8dc8c138a1f

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Fri, 04 Nov 2022 06:51:59 GMT
ETag: "6eaaafa09c0f486ef9a6d18c6dc4a300b1208854"
Last-Modified: Mon, 31 Oct 2022 06:52:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2723
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 762acd78caa4b51b-OSL

www.gifts-now.com/favicon.ico

154.221.158.75

200 OK

1.2 kB

URL HTTP/1.1
www.gifts-now.com/favicon.ico
IP
154.221.158.75:0
ASN
#134175 UNIT A17,9F SILVERCORP INTL TOWER 707-713 NATHAN RD

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
7ef1f0a0093460fe46bb691578c07c95
2da3ffbbf4737ce4dae9488359de34034d1ebfbd
4c62eef22174220b8655590a77b27957f3518b4c3b7352d0b64263b80e728f2c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.gifts-now.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/index.php

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:55 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Fri, 01 Jul 2011 08:14:23 GMT
Connection: keep-alive
ETag: "4e0d81df-47e"
Expires: Sat, 05 Nov 2022 07:50:55 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes

httv6.top/

154.219.167.85

200 OK

12 kB

URL HTTP/1.1
httv6.top/
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1881), with CRLF, LF line terminators
Size
12 kB (11947 bytes)
Hash
4d9d2962a7070de2c3637b724db9e95e
0aa3afa6555792584f5194b11b30ffb00d6fe84a
90d49ae4fa0131609b3cb98f0aa6515ac43245e01fc149fcde0e82605e2f9d01

HTTP Headers

GET / HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.gifts-now.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
7b32402ec9b88916f38da681c4a8dcf5
13a1c5e157a6d03f453349e361e2125b149eae85
d43b4094553d81cbe4d094187820e3ad32b94b1ee65bbfb755d9d7ab48b10fb5

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D43B4094553D81CBE4D094187820E3AD32B94B1EE65BBFB755D9D7AB48B10FB5"
Last-Modified: Sun, 30 Oct 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10738
Expires: Mon, 31 Oct 2022 10:49:54 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
10bb93a98239b802cfec26cfddeccc4d
c4f43ee05234b55bd797f96d1659b2411b44af75
be5d3d66888797f522e871f4cfccccadcf2e6a215e73a8b58d1fffc9945a69d3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE5D3D66888797F522E871F4CFCCCCADCF2E6A215E73A8B58D1FFFC9945A69D3"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8051
Expires: Mon, 31 Oct 2022 10:05:07 GMT
Date: Mon, 31 Oct 2022 07:50:56 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3e75022-9a58-446c-bbb7-df36e9707d50.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3e75022-9a58-446c-bbb7-df36e9707d50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10432 bytes)
Hash
98f84a15204f33281179b8ab0a601819
ec9992a868e06dd7a0dd91b93028f5c868ef68e2
718da0e7a62e3ee152affeb79d9f2a4adad7ac2c036fc0e931f743c24ffec293

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3e75022-9a58-446c-bbb7-df36e9707d50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10432
x-amzn-requestid: 549a1ce4-6b2f-4be9-b243-2b1cb03314e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYvSjHd-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63535f43-71f9cf1104ec76a55b51ffa4;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 03:10:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qOOsnF9mmTO7Db1aeSK78B17zGMlg7hdvLsoi7SyFL1suP_n_pej1A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 21:47:04 GMT
age: 36232
etag: "ec9992a868e06dd7a0dd91b93028f5c868ef68e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda9e9d05-60e1-4306-8343-0c7528ff720b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4604 bytes)
Hash
edcea499342cb4ca7e3c89244dc8d849
819d9d46a49d75af68dc0cc06b3f5e9f86ec2a23
b62cd13dbfc77ef5eed5e0325d5502b2de6e24dcbe038d05a5611b00ea6105be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda9e9d05-60e1-4306-8343-0c7528ff720b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4604
x-amzn-requestid: 0c493247-ae7e-4f88-b1e5-4edb7dbed418
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajLO1Gu7IAMFWHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578bf8-282d95bb13a0e224024608bd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: iMDP-thn7HuLaQvocbtVTk2slo-zKJ3fqL-EVtuFhxV1fisNq5cBew==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 13:09:15 GMT
age: 67301
etag: "819d9d46a49d75af68dc0cc06b3f5e9f86ec2a23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8cfc555-4048-4e14-86b3-cc69eee56121.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10057 bytes)
Hash
75fc75d83e2c8db4b32c5a9fb53b31db
ff724242913f99f4d8d0d68a92b231b490072eab
fae871d41be568efd749a7b76d7d975020231053a0052df967a20b63589715ac

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8cfc555-4048-4e14-86b3-cc69eee56121.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10057
x-amzn-requestid: 11e904c9-7f64-460b-ac84-52fac380750b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a1py7G2_oAMF12Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635ef012-1bbd672d35611b964e43a108;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zxxZaQ_QoqAkE_zda-o2dfdqdbjeXdXDznweZ_pbEEHSgNvlfIw1lA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 22:10:49 GMT
etag: "ff724242913f99f4d8d0d68a92b231b490072eab"
content-type: image/jpeg
age: 34807
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb04edd3a-e1ec-40dd-a1a8-5ad9411a9313.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6834 bytes)
Hash
054c288aad0b910f70853e3920649d61
94a087d7f06f861387c93130944bd9c734b052c6
a04c4a9223abdc33116d3e9010ce483769e93a658188ee7069de3fa1dfde6160

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb04edd3a-e1ec-40dd-a1a8-5ad9411a9313.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6834
x-amzn-requestid: 0390ab0e-e6fa-4a6d-8d09-5a36285cb400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a1oX-EtNoAMFpsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635eedcc-7acdb8467bef19370baabde4;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sicpRFzG7mFuwLpX4e2mMMArx8UhqxXHsI6S0yr_OzTUTtT6cARavw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 22:13:12 GMT
age: 34664
etag: "94a087d7f06f861387c93130944bd9c734b052c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43a2ca39-70e2-4cc7-b378-65317cca7969.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9023 bytes)
Hash
55f392ea73e9746f7edb30e319646c4b
09b052e39f5493c2c2b79d92e81e510aeffbfcb4
9a5b1575ed3a943be74e212f41f122178dcf4c89ef0d78eb8cc761508cd453d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43a2ca39-70e2-4cc7-b378-65317cca7969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9023
x-amzn-requestid: 599a15c5-bd47-4c30-91e5-b445da7e66f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apwvQHCsIAMFWlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2e61-1d36740311e6b1e531d44767;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:08:17 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uchqnCPglDy6DsLjM-7A1Df4hvJ_XeKZJOyqFs7hIb27ZyP14qz-Ew==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 21:55:39 GMT
age: 35717
etag: "09b052e39f5493c2c2b79d92e81e510aeffbfcb4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9749 bytes)
Hash
4a5598b5025c779903462274690bb7e3
0f8f5bacc06a4ee8e3be25c1dc642d22b91bca5c
9b862b8885ab187323aa8f7fdd7cd712959fd7a0b02f5b74c98896be2c5eccd1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9749
x-amzn-requestid: ec256f33-dd6c-42dc-976e-970755bcb610
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a1oYkGpmoAMFtQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635eedd0-6758a6d921b2dca27986636f;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 21:34:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FuyyaxZh6Eayqcr0LtISy45sor5qV8EaJle4q8Jcbl4K1ZTKTZakkQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 21:57:36 GMT
age: 35600
etag: "0f8f5bacc06a4ee8e3be25c1dc642d22b91bca5c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

httv6.top/template/m1938pc/static/js/jquery.min.js

154.219.167.85

200 OK

38 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/js/jquery.min.js
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text, with very long lines (32077)
Size
38 kB (38004 bytes)
Hash
c0750a85ce0399accd8ded17e2564d6b
ba767d35271e9b39305f156814495650f269ddb6
9de8ff805e6807598c4c2987a8368ff4b2240606f6285902c844baf5a04655ac

HTTP Headers

GET /template/m1938pc/static/js/jquery.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-17b8b"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

httv6.top/template/m1938pc/static/js/bootstrap.min.js

154.219.167.85

200 OK

13 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/js/bootstrap.min.js
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text, with very long lines (39553)
Size
13 kB (12719 bytes)
Hash
89cfee4061db2dd37f5e2668f1c7ebfb
1ecc979a3bc78d4987cb642f3f64e80d56d57d39
dcff2dfb3ebcdba16ed0e4b9024fa681edc77ace8a686d9bd5aea6dc282e8168

HTTP Headers

GET /template/m1938pc/static/js/bootstrap.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-9b00"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

httv6.top/template/m1938pc/static/js/jquery.lazyload.min.js

154.219.167.85

200 OK

1.3 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/js/jquery.lazyload.min.js
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text, with very long lines (3309)
Size
1.3 kB (1342 bytes)
Hash
8e5f2c601d9dc5b0d53cb406774e99c9
562d3c568f650e9cc977328d440fc94c46fe9f8e
0f18d8d9a5b33df370579bebc38911b2f344a8fb99bcdd66e83a6fa48c25e01a

HTTP Headers

GET /template/m1938pc/static/js/jquery.lazyload.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765e0-d35"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

httv6.top/template/m1938pc/static/css/swiper.min.css

154.219.167.85

200 OK

3.3 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/css/swiper.min.css
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text, with very long lines (17459)
Size
3.3 kB (3288 bytes)
Hash
e73a49e6a4e9772b6add191cf694bd34
00038fe32a6e97fbbeb281939adfb363cdd5f54f
5a1a24bd85867233f36de37f59b96bfeeb4290619781494713b8216902b30988

HTTP Headers

GET /template/m1938pc/static/css/swiper.min.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-455f"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

hm.baidu.com/hm.js?c58a79351d4016ac0a3fa89e0face4a9

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?c58a79351d4016ac0a3fa89e0face4a9
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (621)
Size
11 kB (11334 bytes)
Hash
471f5b9bc3cf4d6b30874e5be1da636d
aeb80fe0f804d74288b907dce24db4aa93da272c
4f6521ce1dbdcaca94d9728e99bd07cd8af114033f5eac1b69480b4632da05e1

HTTP Headers

GET /hm.js?c58a79351d4016ac0a3fa89e0face4a9 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11334
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:56 GMT
Etag: 880836001cc8f9ab46971c3ed4b4c273
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=73DCAB5D3C070C57; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?c7a86de7b493b415dc0df800703b18be

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?c7a86de7b493b415dc0df800703b18be
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11330 bytes)
Hash
83a7b6d17e35c0408794264cf8482682
25e94ced215f35684d6c12a141bec0da52140a7a
efd3a491324ddf2db2e9fe4ec286b437f28443072d0ec0fa290c0966132ca021

HTTP Headers

GET /hm.js?c7a86de7b493b415dc0df800703b18be HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:56 GMT
Etag: 214d77d7de05538b760a33d0780677ba
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9F15E02DF0AC9105; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cdaf3e51d8854dcf7a76d35b894db673
4047f2ddeb12e946870e0683fa0a42255bce0c38
0d6fe1ba11da4a94a25eaf21feb32da63a8b0bd9cc5ea5d12a31a6c8869a5bd6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D6FE1BA11DA4A94A25EAF21FEB32DA63A8B0BD9CC5EA5D12A31A6C8869A5BD6"
Last-Modified: Sat, 29 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2707
Expires: Mon, 31 Oct 2022 08:36:04 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive

httv6.top/template/m1938pc/static/css/common.css

154.219.167.85

200 OK

1.7 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/css/common.css
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text
Size
1.7 kB (1685 bytes)
Hash
1bfc16865e4e7621e5c91f2a4505e7fe
7b556b6e7f13fc6e86ab74b1e8b539fc30d7af89
dd1cca1a3a887f0bf1af7b0c06fe6ef5f0cdfa720d9f3c7230843830ba709c26

HTTP Headers

GET /template/m1938pc/static/css/common.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-19c0"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

httv6.top/template/m1938pc/static/js/swiper.min.js

154.219.167.85

200 OK

28 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/js/swiper.min.js
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text, with very long lines (31999)
Size
28 kB (27510 bytes)
Hash
3694d961c3b4a420105cf9563c4cafe7
f75e4b2319d4bc0ea3af5ad3b8cf2e0679575767
3e5b269624b5703cb234c5217a66e9e77b5ffe6f70e2dd0425f3a8951dcba27c

HTTP Headers

GET /template/m1938pc/static/js/swiper.min.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765dc-178a3"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

httv6.top/template/m1938pc/static/js/global.js

154.219.167.85

200 OK

767 B

URL HTTP/1.1
httv6.top/template/m1938pc/static/js/global.js
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text, with very long lines (542)
Size
767 B (767 bytes)
Hash
8795117d18afac921a5fc724c7b7cf53
3c21f6100162b2f7940175a1b9790c6161b04a02
fa0ae5b9ae65389a58cf363f40a8c9ddf5a26b5945f511756f1270f5d2d38fe4

HTTP Headers

GET /template/m1938pc/static/js/global.js HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: application/javascript
Content-Length: 767
Last-Modified: Sat, 30 Jul 2022 23:27:51 GMT
Connection: keep-alive
ETag: "62e5be77-2ff"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Accept-Ranges: bytes

httv6.top/template/m1938pc/static/css/style.css

154.219.167.85

200 OK

9.6 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/css/style.css
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
assembler source, Unicode text, UTF-8 text, with very long lines (367)
Size
9.6 kB (9606 bytes)
Hash
76c3cfbf09c2924d1324d18e71e4086c
e2955681a2b3e4806b34e4953517088ae3875059
48e3528c19a5f4f1dbd10bf600f3232f614369099eabb26a55b2baada479de09

HTTP Headers

GET /template/m1938pc/static/css/style.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: text/css
Last-Modified: Thu, 03 Jun 2021 01:54:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b83650-bf0e"
Expires: Mon, 31 Oct 2022 19:50:57 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

httv6.top/template/m1938pc/static/css/bootstrap.min.css

154.219.167.85

200 OK

24 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/css/bootstrap.min.css
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
ASCII text, with very long lines (65369)
Size
24 kB (23941 bytes)
Hash
fa8eee12898882e0b97ca29c7920c483
427b362e999391c7ad6d1c37e0178a4fc906fa10
239818d1da6510c291bb39dfa0b5f5873a81a4d63ae877fe97a9053842b58cf2

HTTP Headers

GET /template/m1938pc/static/css/bootstrap.min.css HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:56 GMT
Content-Type: text/css
Last-Modified: Wed, 02 Jun 2021 11:04:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60b765da-1da6a"
Expires: Mon, 31 Oct 2022 19:50:56 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip

kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif

64.32.13.142

301 Moved Permanently

162 B

URL HTTP/2
kvemm.com/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP
64.32.13.142:0
ASN
#46844 ST-BGP

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvemm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: text/html
content-length: 162
location: https://kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=387151698&si=c58a79351d4016ac0a3fa89e0face4a9&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=387151698&si=c58a79351d4016ac0a3fa89e0face4a9&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=387151698&si=c58a79351d4016ac0a3fa89e0face4a9&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:57 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=4DAFA6C241321157; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

ads-6686.top/600X300.gif

104.18.28.127

200 OK

198 kB

URL HTTP/2
ads-6686.top/600X300.gif
IP
104.18.28.127:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 600 x 300\012- data
Size
198 kB (198208 bytes)
Hash
c67e13b07b80cf38b10f1ded8fa10ec1
78c7cb9f85fb0143beb42b74084564b3909568a8
08a27c164d5b71ff89db0c6d692ffe9f595c623d35bdf6c91239be82cee3be0d

HTTP Headers

GET /600X300.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 198208
cache-control: public, max-age=259200
cf-bgj: imgq:100,h2pri
cf-polished: origSize=207680
etag: "635ab5a8-32b40"
expires: Thu, 03 Nov 2022 07:50:56 GMT
last-modified: Thu, 27 Oct 2022 16:45:28 GMT
pragma: public
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 762acd7b8c2a0afa-OSL
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=517964362&si=c7a86de7b493b415dc0df800703b18be&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=517964362&si=c7a86de7b493b415dc0df800703b18be&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=517964362&si=c7a86de7b493b415dc0df800703b18be&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:57 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=CC66D777BD65DED6; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

httv6.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff

154.219.167.85

404 Not Found

146 B

URL HTTP/1.1
httv6.top/template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

HTTP Headers

GET /template/m1938pc/static/fonts/9a493d426e0448e59e470e76ff1be0a0.woff HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://httv6.top/template/m1938pc/static/css/style.css

HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive

ads-6686.top/960X240.gif

104.18.28.127

200 OK

289 kB

URL HTTP/2
ads-6686.top/960X240.gif
IP
104.18.28.127:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 240\012- data
Size
289 kB (288915 bytes)
Hash
4b0f5b24f468a37a52f2e35257914ceb
313c41e3db724ad393c2a44416592fbfee25246b
6e3728989c4faa9d862fa2b67e0f2c1aae763ae0c97de6a4047c6b7e03cdbdb7

HTTP Headers

GET /960X240.gif HTTP/1.1
Host: ads-6686.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 288915
cache-control: public, max-age=259200
cf-bgj: imgq:100,h2pri
cf-polished: origSize=304343
etag: "635ab5b2-4a4d7"
expires: Thu, 03 Nov 2022 07:50:56 GMT
last-modified: Thu, 27 Oct 2022 16:45:38 GMT
pragma: public
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 762acd7b8c260afa-OSL
X-Firefox-Spdy: h2

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11330 bytes)
Hash
1aee43df6928e1049bd40bdbf5fcf282
b07d99c57d0f1e6babd7c5b5cb0c46a421bf97b3
7c8a0ec169b939f1db92b6a27067bcd870028ff47e4ca0f1acabeaa69c296b46

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:56 GMT
Etag: a2168c2e1473f4715f2e7b832f38e364
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=461BD446443201C2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache12.l2de2[1,0], cache5.se1[82,81,200-0,H], cache1.se1[83,0], cache5.se1[86,0]
age: 43
x-cache: HIT TCP_REFRESH_HIT dirn:4:408558741
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9916672026574816906e, 2ff62c9916672026574816906e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache3.l2de2[1,0], cache1.se1[83,76,200-0,C], cache1.se1[77,0], cache2.se1[80,0]
age: 43
x-cache: HIT TCP_MEM_HIT dirn:2:391273414
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9616672026574928857e, 2ff62c9616672026574928857e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache3.l2de2[1,0], cache1.se1[83,80,200-0,C], cache1.se1[83,0], cache4.se1[84,0]
age: 43
x-cache: HIT TCP_MEM_HIT dirn:2:391273414
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9816672026574884453e, 2ff62c9816672026574884453e

ocsp.trust-provider.cn/

47.246.44.205

200 OK

599 B

URL HTTP/1.1
ocsp.trust-provider.cn/
IP
47.246.44.205:0
ASN
#24429 Zhejiang Taobao Network Co.,Ltd

File type
data
Size
599 B (599 bytes)
Hash
2dac562f6ddc7336b47d248296360855
a6bffce25276434b6583fcc44624b86dc074f1ff
b8f3dc513527611d6ada7a1ae251ec70127b55013c5555f5be4ad3c0add9179a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.trust-provider.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Tengine
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
date: Mon, 31 Oct 2022 07:50:14 GMT
last-modified: Sat, 29 Oct 2022 11:26:21 GMT
expires: Sat, 05 Nov 2022 11:26:20 GMT
etag: "a6bffce25276434b6583fcc44624b86dc074f1ff"
cache-control: max-age=596452,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb2
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
cf-ray: 762acc7209b0bb3d-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1667202614
via: cache19.l2de2[0,0,304-0,H], cache3.l2de2[1,0], cache1.se1[83,82,200-0,H], cache1.se1[85,0], cache2.se1[89,0]
age: 43
x-cache: HIT TCP_REFRESH_HIT dirn:2:391273414
x-swift-savetime: Mon, 31 Oct 2022 07:50:57 GMT
x-swift-cachetime: 1757
timing-allow-origin: *, *
eagleid: 2ff62c9616672026574838839e, 2ff62c9616672026574838839e

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bf068b07cf2f375b572b13d7b57592c9
b8c390fb362495b359d0598e4150257e5e18f9a3
ad347afac4434b26b203ba1fdcf7ceaaa1ada56aaede92aa57281ab8726b2c7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD347AFAC4434B26B203BA1FDCF7CEAAA1ADA56AAEDE92AA57281AB8726B2C7F"
Last-Modified: Sat, 29 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18232
Expires: Mon, 31 Oct 2022 12:54:49 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
b063d6c85ed75e48fe90a8a4db7cce6a
d66e8891c99971c9526beb9792cb62ff07088b63
42ef7f04fea73adf7becfac5cc15577e23a7214b86987039b3f6f2ffe3c7bd77

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159007
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: "635f4880-116"
Expires: Wed, 02 Nov 2022 04:01:04 GMT
Last-Modified: Mon, 31 Oct 2022 04:01:04 GMT
Server: nginx
Content-Length: 278

httv6.top/template/m1938pc/static/fonts/iconfont.woff

154.219.167.85

200 OK

2.9 kB

URL HTTP/1.1
httv6.top/template/m1938pc/static/fonts/iconfont.woff
IP
154.219.167.85:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
Web Open Font Format, TrueType, length 2924, version 1.0\012- data
Size
2.9 kB (2924 bytes)
Hash
1b05b2b67ca6e3fe976ed8d2d1aa31d5
c7055832382daf713a911d67501e26873db045f8
ac1718a88630db8d2fd67997ad9796acdc8a6a88361b2b7058832caeec4fb22d

HTTP Headers

GET /template/m1938pc/static/fonts/iconfont.woff HTTP/1.1
Host: httv6.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://httv6.top/template/m1938pc/static/css/style.css

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: font/woff
Content-Length: 2924
Last-Modified: Wed, 02 Jun 2021 11:05:00 GMT
Connection: keep-alive
ETag: "60b765dc-b6c"
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d7c196026c4d3fadc587c9276bba71d6
31fce646ab55f2f4f2b9e1bf14cd0a851e19dbd7
fa5260bcf8d246d05ce9e8013b3970c52b3b3e3cf4d44a6722e27f9ea213e986

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA5260BCF8D246D05CE9E8013B3970C52B3B3E3CF4D44A6722E27F9EA213E986"
Last-Modified: Sat, 29 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6177
Expires: Mon, 31 Oct 2022 09:33:54 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
b063d6c85ed75e48fe90a8a4db7cce6a
d66e8891c99971c9526beb9792cb62ff07088b63
42ef7f04fea73adf7becfac5cc15577e23a7214b86987039b3f6f2ffe3c7bd77

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=159007
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: "635f4880-116"
Expires: Wed, 02 Nov 2022 04:01:04 GMT
Last-Modified: Mon, 31 Oct 2022 04:01:04 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
560b4e7409ea02b2452fbc134dcb6dbe
ce9cc0352d6adbbfed631776ba4ae78aca2f11fb
0244f84174b659fd3714a6b925cb2684cbd9890863c9c27c5ad7a3fb8ea15cf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0244F84174B659FD3714A6B925CB2684CBD9890863C9C27C5AD7A3FB8EA15CF8"
Last-Modified: Sat, 29 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21588
Expires: Mon, 31 Oct 2022 13:50:45 GMT
Date: Mon, 31 Oct 2022 07:50:57 GMT
Connection: keep-alive

kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif

104.21.233.184

200 OK

967 kB

URL HTTP/2
kvkddd.top/e48970f4052a7ec9d8b871d168e2b2ab.gif
IP
104.21.233.184:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 960 x 80\012- data
Size
967 kB (966741 bytes)
Hash
e6e170a45f5089c336f21c4453d4e00f
20fcfbe9d22eb6868add8b1782234d1b888c0337
a37eaf9f04a634f3e85dcd7353eb1fa224ddefa8d1e04b65a946b3cebf97ea75

HTTP Headers

GET /e48970f4052a7ec9d8b871d168e2b2ab.gif HTTP/1.1
Host: kvkddd.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://httv6.top/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 966741
last-modified: Sat, 12 Mar 2022 15:18:45 GMT
etag: "622cb9d5-ec055"
expires: Sat, 19 Nov 2022 22:41:40 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 896957
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jIW4rMZlIK3rkQ8o0o44mgAtCxNxo4BbFHSJZOMt7r11vSQ%2FN1lW%2F8JobOMxzWY2mOnpZvLePoXFIy9PXX3UB9GslhbifUFKnSVJW9LJbX4jj2%2F0XGvM6SrUdSRZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 762acd8278f07774-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

i.6v6.work/v/?uid=387913

23.225.199.165

200 OK

23 B

URL HTTP/1.1
i.6v6.work/v/?uid=387913
IP
23.225.199.165:0
ASN
#40065 CNSERVERS

File type
Unicode text, UTF-8 text, with no line terminators
Size
23 B (23 bytes)
Hash
7ef3933d0347a8eb9b3dbf6f4b035b78
772121927ca42ae6345bcfc9eea8a0a3dcefc369
1645ef4e05613302e213e91b4ef584695a22391778e12d0dff49b0fdbd0208da

HTTP Headers

GET /v/?uid=387913 HTTP/1.1
Host: i.6v6.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1532459328&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1532459328&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=939&et=0&ja=0&ln=en-us&lo=0&rnd=1532459328&si=84c863ef954e26adfd9e72a90e4b6c5b&v=1.2.97&lv=1&sn=57788&r=0&ww=1280&ct=!!&u=http%3A%2F%2Fwww.gifts-now.com%2Findex.php&tt=%E6%9D%A5%E5%AE%BE%E5%82%A7%E8%B0%8F%E7%94%B5%E5%AD%90%E6%9C%89%E9%99%90%E5%85%AC%E5%8F%B8 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.gifts-now.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:57 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=9022575B5DCA6DEE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

523zyw.com/upload/vod/2022-04-27/165103222712.jpg

137.175.59.81

200 OK

58 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-27/165103222712.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 638x428, components 3\012- data
Size
58 kB (58523 bytes)
Hash
852364a47d1b917dc4d57f158c3a404e
50d2bb0e8d9cea663bba6d820b2a8e147400ffe6
59f7d868fb8238cad96aeef0f16883148d9b87618f89d688f947df320502cc36

HTTP Headers

GET /upload/vod/2022-04-27/165103222712.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 58523
Last-Modified: Mon, 05 Sep 2022 20:18:12 GMT
Connection: keep-alive
ETag: "63165984-e49b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11330 bytes)
Hash
aa19e033741c3aa56f43d850dd0c9ef0
abb07bea942b5b2a3c6f8d5f5d5b3712927c2ef2
5a409df19dbc46ffc308d29569a88757eff7f1f58c54e715767dd219852ed99e

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: f7b1616831fbb7fd0b01ff9165b92cf0
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=D34AEA8436EBD05F; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
02d91b1b4e74ba75cad1a60e08cbbe8c
8641ddd70c72de3f4a669184163e5d9a47653c20
bd705143bc3f79f7b153118d616ff5d4cc6a42ba901bb52319274c54c4410031

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 04:53:32 GMT
Expires: Sat, 05 Nov 2022 04:53:31 GMT
Etag: "8641ddd70c72de3f4a669184163e5d9a47653c20"
Cache-Control: max-age=420752,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd847c4ab50f-OSL

523zyw.com/upload/vod/2022-04-26/16509470434.jpg

137.175.59.81

200 OK

91 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/16509470434.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Size
91 kB (90821 bytes)
Hash
9de92e63b245c8dcf6f72b56964b4755
3dce6386a57e803cb1b745ccec458aca253eb4c7
f808ec21d31910b19151248142d5f29691effd90a805c7b2abe6b6132bc0aacc

HTTP Headers

GET /upload/vod/2022-04-26/16509470434.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 90821
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-162c5"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11330 bytes)
Hash
b7b83454f318611fb7e7c0d55cf4bff7
cd7ceb83cc77f805d4377f91870e06f22a5372d8
54abcb72771c21fa059199b08fc39d152bd68c076a1ea9b90b6b3828e0f4a7e6

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: a2168c2e1473f4715f2e7b832f38e364

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: 935c384fd6b3fc4df4144fd30dea91ae
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9A8CDFE4DD6685A9; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?84c863ef954e26adfd9e72a90e4b6c5b
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11330 bytes)
Hash
d0731b83d6f5ead4d429272fa813e7e0
6a578f9cdbdba3317fcfaa85d554893cfeb03ada
e1d5e19b73cee3810d41995d732a268ece1af305753c311ace99f242c807d272

HTTP Headers

GET /hm.js?84c863ef954e26adfd9e72a90e4b6c5b HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: a2168c2e1473f4715f2e7b832f38e364

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:57 GMT
Etag: 52cebf915db07bed1f4245675f8cc133
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=1793886ED829A1A3; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

523zyw.com/upload/vod/2021-12-12/163928244412.jpg

137.175.59.81

200 OK

99 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/163928244412.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 511x356, components 3\012- data
Size
99 kB (99257 bytes)
Hash
85ba9823524cefc88cdcea9d4116a585
be2b0673011a76984ca913fb3a0db41ec693748b
0152d506af162e87bd953652dbcbfe074c0c09f297584726b60a5f023088fe07

HTTP Headers

GET /upload/vod/2021-12-12/163928244412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 99257
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:14:04 GMT
Accept-Ranges: bytes
ETag: "93e318b3eefd71:0"

523zyw.com/upload/vod/2021-12-12/16392818798.jpg

137.175.59.81

200 OK

111 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392818798.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 793x562, components 3\012- data
Size
111 kB (110550 bytes)
Hash
910fce95ebf2d8859172907460898c34
339d377df907740580aa7842a2848cfe132d849f
1d4be13c3a9743a2bb59841ef0ba62fdd51586950f974f1822634791ddaf432e

HTTP Headers

GET /upload/vod/2021-12-12/16392818798.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 110550
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:39 GMT
Accept-Ranges: bytes
ETag: "98329462defd71:0"

523zyw.com/upload/vod/2022-04-26/165094704413.jpg

137.175.59.81

200 OK

52 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/165094704413.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Size
52 kB (52296 bytes)
Hash
9df79a1039a265e3aede2519a4dd1346
9a5ccf2fb7dafe2b3c9b23cccd2ee6541ccaf96e
4cc5901da342e358186c844766394bf6b3468f332cc7b962367324482f81ca91

HTTP Headers

GET /upload/vod/2022-04-26/165094704413.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 52296
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-cc48"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-04-26/16509470435.jpg

137.175.59.81

200 OK

165 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/16509470435.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 689x480, components 3\012- data
Size
165 kB (164598 bytes)
Hash
0dabf5dcf6e8e0f4b37173b128f0f141
c642e42f22f08bccbeba70ccee2458cf1366b613
bfe810c4bbb2917345fdddff9e3141e7dec72ae0996d86e814b96e19ed38aa47

HTTP Headers

GET /upload/vod/2022-04-26/16509470435.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 164598
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-282f6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-04-26/16509470436.jpg

137.175.59.81

200 OK

174 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/16509470436.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.00, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x404, components 3\012- data
Size
174 kB (173574 bytes)
Hash
df8962c3d72dec73d454d09db25abc43
007a628c477ad19a6673e09f247e0154a287e0bd
4fcdc49fd13e9039eb7a9587f99f7834ebd7ab78329ecc49db87f2106d86e029

HTTP Headers

GET /upload/vod/2022-04-26/16509470436.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/jpeg
Content-Length: 173574
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-2a606"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-04-28/165111874213.jpg

137.175.59.81

200 OK

5.9 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-28/165111874213.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Size
5.9 kB (5926 bytes)
Hash
fb650bbc7f5a0e5cec7c737329ef4442
f25a08b9831ec14f293d3b7dbd45e899b537c952
05e9a0bf267be2312730ba7f0ca4b8ed881e3d961a57f401ce2f747dda0d594c

HTTP Headers

GET /upload/vod/2022-04-28/165111874213.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 5926
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-1726"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
02d91b1b4e74ba75cad1a60e08cbbe8c
8641ddd70c72de3f4a669184163e5d9a47653c20
bd705143bc3f79f7b153118d616ff5d4cc6a42ba901bb52319274c54c4410031

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 29 Oct 2022 04:53:32 GMT
Expires: Sat, 05 Nov 2022 04:53:31 GMT
Etag: "8641ddd70c72de3f4a669184163e5d9a47653c20"
Cache-Control: max-age=420752,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd844802b4fd-OSL

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=971258534&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=971258534&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=971258534&si=3e4245b0fdf57a3891f74ac658409754&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=731ED34BD39EDB51; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

523zyw.com/upload/vod/2022-04-26/165094704412.jpg

137.175.59.81

200 OK

102 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/165094704412.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 543x372, components 3\012- data
Size
102 kB (102433 bytes)
Hash
417833e4145519c7404e5ed081f285f7
58c116260504f972c805859f95065eeeccaf4b8b
fa786d18376ed32f3ef1b094625ed13a7efeebdaa036f29385de16e64286aed4

HTTP Headers

GET /upload/vod/2022-04-26/165094704412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 102433
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-19021"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-04-26/165094704411.jpg

137.175.59.81

200 OK

73 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/165094704411.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Size
73 kB (72887 bytes)
Hash
15adf81b551232bb695c0c9460363555
ac39b1dbbd758a2faac745b837a1f59a8df5b508
c036d9e95b26e9c49663d4b5c122282ad271896a9bc34ff9905c0dcfd8776101

HTTP Headers

GET /upload/vod/2022-04-26/165094704411.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 72887
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-11cb7"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-04-26/16509470449.jpg

137.175.59.81

200 OK

58 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/16509470449.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Size
58 kB (57627 bytes)
Hash
0c9ef180b5dd7d1488ce96eef2aae800
916bee93c74a0cb97885cee46400958a2f727506
f4a1414a4393bf8b1105b335d64255678a279e062712be15cc7f2c78d56cfb81

HTTP Headers

GET /upload/vod/2022-04-26/16509470449.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 57627
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-e11b"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

pkff85.xyz/template/web/GG/d7.gif

104.223.155.206

200 OK

69 kB

URL HTTP/2
pkff85.xyz/template/web/GG/d7.gif
IP
104.223.155.206:0
ASN
#46573 LAYER-HOST

File type
GIF image data, version 89a, 500 x 280\012- data
Size
69 kB (68856 bytes)
Hash
1bcc24508393a5ab53d332d2b93e25f7
99dde070cdca51d44f1b34f8931d4508866d5ede
701d325b515ff965196f3f63d5ecec89a8b72461ebe106eeaf1e81eb8b5f2e4c

HTTP Headers

GET /template/web/GG/d7.gif HTTP/1.1
Host: pkff85.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 31 Oct 2022 07:50:57 GMT
content-type: image/gif
content-length: 68856
last-modified: Wed, 11 May 2022 04:36:45 GMT
etag: "627b3d5d-10cf8"
expires: Wed, 30 Nov 2022 07:50:57 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=597100050&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91

103.235.46.191

200 OK

43 B

URL HTTP/1.1
hm.baidu.com/hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=597100050&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=0&ck=0&cl=24-bit&ds=1280x1024&vl=927&et=0&ja=0&ln=en-us&lo=0&rnd=597100050&si=84c863ef954e26adfd9e72a90e4b6c5b&su=http%3A%2F%2Fwww.gifts-now.com%2F&v=1.2.97&lv=1&sn=57789&r=0&ww=1268&ct=!!&u=http%3A%2F%2Fhttv6.top%2F&tt=%E6%B5%B7%E6%A3%A0%2C%E6%B5%B7%E6%A3%A0TV%2C%E6%B5%B7%E6%A3%A0%E5%BD%B1%E8%A7%86%2C%E6%B5%B7%E6%A3%A0AV%2C%E6%B5%B7%E6%A3%A0%E7%BD%91 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Mon, 31 Oct 2022 07:50:58 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=75190344AA2F2CAE; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

523zyw.com/upload/vod/2022-04-26/165094704410.jpg

137.175.59.81

200 OK

176 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/165094704410.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 673x465, components 3\012- data
Size
176 kB (175806 bytes)
Hash
09b9c0ff84c75c1fe96e79a43c950e8d
dbcef7fec000e6f31ab3509af3346f662681c284
dd2926e3b3d1429f892b0454b05caab3492fe63b31c4aef925806afd30519525

HTTP Headers

GET /upload/vod/2022-04-26/165094704410.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 175806
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-2aebe"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11330 bytes)
Hash
7975e4399fd0dd31eb269405dc6234c8
99d2c0b8ff0052386596ec1493be71f9b0b1b293
e1bcb27b72cdedb5ac50318b11b8d42a20701f18f0e7209355eb8e9f0cf50f64

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: f7b1616831fbb7fd0b01ff9165b92cf0

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:58 GMT
Etag: a052770ae401ba7cedd70a771607b242
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=9F2E165F9684302C; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

523zyw.com/upload/vod/2022-04-27/165103222713.jpg

137.175.59.81

200 OK

84 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-27/165103222713.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Size
84 kB (83780 bytes)
Hash
1662b4fad0e47ecdfde4b0c84a747f45
78a07a40341e8476702d519b69f0591ad83fd1cc
45c7b74cce630014850010c4bacbe6aa8cb175bcdd7202b04406d0e7db4780fc

HTTP Headers

GET /upload/vod/2022-04-27/165103222713.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 83780
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-14744"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754

103.235.46.191

200 OK

11 kB

URL HTTP/1.1
hm.baidu.com/hm.js?3e4245b0fdf57a3891f74ac658409754
IP
103.235.46.191:0
ASN
#55967 Beijing Baidu Netcom Science and Technology Co., Ltd.

File type
ASCII text, with very long lines (617)
Size
11 kB (11330 bytes)
Hash
95e357750d4cb257b307034d852cb19c
288555c3c7f2fa75b0284e89a2f226a058cfb5f3
d69c697cd3ebef2b990d893ba3c86d73f20a72127fcb40138e38b8903c733b93

HTTP Headers

GET /hm.js?3e4245b0fdf57a3891f74ac658409754 HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: f7b1616831fbb7fd0b01ff9165b92cf0

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11330
Content-Type: application/javascript
Date: Mon, 31 Oct 2022 07:50:58 GMT
Etag: 9c696a2f9057988367e5a26d7ab08d30
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=758BD2AE63627893; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

523zyw.com/upload/vod/2022-04-26/16509470437.jpg

137.175.59.81

200 OK

125 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/16509470437.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 591x406, components 3\012- data
Size
125 kB (125144 bytes)
Hash
501b9be7b2a49130c4f11591a55c1603
4bbe92b6eac3f7470f4fcf6103311fc483ef0e87
c72e0d43f222c5b6c2071ee29479fe62b9d0d2b30d25abe41e1a929fef18c220

HTTP Headers

GET /upload/vod/2022-04-26/16509470437.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 125144
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-1e8d8"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-04-26/16509470438.jpg

137.175.59.81

200 OK

129 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-26/16509470438.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 661x439, components 3\012- data
Size
129 kB (128850 bytes)
Hash
28a86f472fd6453c3b1b7d8d859dce88
b61582d7d5d98a2b69954c93ed64034232e52010
5c6113edbadf10c5af08688a7a5a52c2864deb42dd949dc7cf39b0b359880798

HTTP Headers

GET /upload/vod/2022-04-26/16509470438.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 128850
Last-Modified: Mon, 05 Sep 2022 20:18:11 GMT
Connection: keep-alive
ETag: "63165983-1f752"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

kmf.janvoq.cn/j/155176

203.107.60.95

200 OK

6.0 kB

URL HTTP/1.1
kmf.janvoq.cn/j/155176
IP
203.107.60.95:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
ASCII text, with very long lines (1107)
Size
6.0 kB (6048 bytes)
Hash
e4638c80600c4b1a73fda9f2791fd115
c63c82b0bdc9c307e4f52392707dd0e54771241d
970a7ba501a2e5fdfee39eb8c163d3fcce088b930ac58337a4466e7662e4575f

HTTP Headers

GET /j/155176 HTTP/1.1
Host: kmf.janvoq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=f2b81ccff7bd71bd1934320471c49f5300574657e2ac900adb4a3346e962e895; Path=/; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Encoding: gzip
Vary: Accept-Encoding

523zyw.com/upload/vod/2022-04-27/165103222714.jpg

137.175.59.81

200 OK

362 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-04-27/165103222714.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
GIF image data, version 89a, 450 x 298\012- data
Size
362 kB (362009 bytes)
Hash
803a80fe38d4c795aa70790869936593
23a9295651ea318f5eb7f825d3669fc66e17fe8e
0a02ef4cd2040d34301c0cb561560a5c395e499cdee445507ad494e2ed3f74d8

HTTP Headers

GET /upload/vod/2022-04-27/165103222714.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 362009
Last-Modified: Sat, 06 Aug 2022 10:54:25 GMT
Connection: keep-alive
ETag: "62ee4861-58619"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif

20.255.19.235

200 OK

248 kB

URL HTTP/1.1
u0062.com/a13ccf8571ea4a7ab6b41a306a625f57.gif
IP
20.255.19.235:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 650 x 350\012- data
Size
248 kB (247851 bytes)
Hash
a9bf695dc5e2ed4a1d5e17818bb895f6
5018e0b9d477d7a536586297fbd2404fc407e295
6cd4ba0841e74acee6bcbc0933c03a0932d5e267a3a2b2af1b8f1abd6a7c0010

HTTP Headers

GET /a13ccf8571ea4a7ab6b41a306a625f57.gif HTTP/1.1
Host: u0062.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 29 May 2022 12:25:12 GMT
ETag: W/"62936628-3c8da"
Server: WAF/2.4-12.1
X-Cache-Status: HIT
Content-Encoding: gzip

523zyw.com/upload/vod/2022-02-18/164515708412.jpg

137.175.59.81

200 OK

113 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-02-18/164515708412.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 519x390, components 3\012- data
Size
113 kB (112642 bytes)
Hash
6a7a5076d7f7547e02bfeef0777f9449
88fc7770651a95098bfa1dece839c05fd92222ac
06d5b4a490068a0f951ffcf6108a7cf3fe4caca141886734ac99da2b5d1f1ff1

HTTP Headers

GET /upload/vod/2022-02-18/164515708412.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 112642
Last-Modified: Fri, 24 Jun 2022 22:00:56 GMT
Connection: keep-alive
ETag: "62b63418-1b802"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

523zyw.com/upload/vod/2022-08-23/16612599473.jpg

137.175.59.81

200 OK

62 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-08-23/16612599473.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x400, components 3\012- data
Size
62 kB (62094 bytes)
Hash
9df83c82c127ba1d02076f5094bdd83d
d432e42a756b60086953c4bf40276511991a3997
c2cee38f2ce673ecdac94c780169da4af7c50b2b6b6424cd4853f40c95eddb83

HTTP Headers

GET /upload/vod/2022-08-23/16612599473.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 62094
Connection: keep-alive
Last-Modified: Tue, 23 Aug 2022 13:05:47 GMT
Accept-Ranges: bytes
ETag: "3af3c2ff1b6d81:0"

kmf.janvoq.cn/j/155175

203.107.60.95

200 OK

6.1 kB

URL HTTP/1.1
kmf.janvoq.cn/j/155175
IP
203.107.60.95:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
ASCII text, with very long lines (1107)
Size
6.1 kB (6115 bytes)
Hash
b1d63039f91e66d31aff15412080d0c8
3b2a12b14c4d7ff4fdfc4407cde5beee01ef2d03
374640d15adac3738b73ad872fef0de14f6c14ab2ed8d4ad6241a21021e1ea34

HTTP Headers

GET /j/155175 HTTP/1.1
Host: kmf.janvoq.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=43bef31bd2018cb5096b1e96aa6584ff1435290ffcc8647b5d349a3eee967b5e; Path=/; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Encoding: gzip
Vary: Accept-Encoding

523zyw.com/upload/vod/2022-03-08/164671236411.jpg

137.175.59.81

200 OK

63 kB

URL HTTP/1.1
523zyw.com/upload/vod/2022-03-08/164671236411.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 600x420, components 3\012- data
Size
63 kB (62883 bytes)
Hash
1b0092fedfe94eec5a80894fd8b25fe7
8dfc3995b5453d73d0dd99d830ed7d70da39a645
18f0db29a80435c6db6b4473a6bec6be4f5cecfc2a309cd8d48ac775986bd30c

HTTP Headers

GET /upload/vod/2022-03-08/164671236411.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 62883
Connection: keep-alive
Last-Modified: Tue, 08 Mar 2022 04:06:05 GMT
Accept-Ranges: bytes
ETag: "3b29e0d4a132d81:0"

523zyw.com/upload/vod/2021-12-14/16394779675.jpg

137.175.59.81

200 OK

133 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-14/16394779675.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size
133 kB (132953 bytes)
Hash
555034244f1b0da4af778a48d033257a
6934657701906f56f7633b4b0937dd4e2ca3835f
2a0a89bcbb1ac43181f53296d8206528f51538a8f42505a7f2b4897989742a95

HTTP Headers

GET /upload/vod/2021-12-14/16394779675.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 132953
Connection: keep-alive
Last-Modified: Tue, 14 Dec 2021 10:32:47 GMT
Accept-Ranges: bytes
ETag: "2d2c4efd5f0d71:0"

523zyw.com/upload/vod/2021-12-12/163928246212.jpg

137.175.59.81

200 OK

139 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/163928246212.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size
139 kB (138612 bytes)
Hash
27330222b06525751920fd1ff484ce55
bf010bbc6d84c903ad2f34928ea2f1e974e487b7
de9dd0affff2081ed218a0db8e240791adfb2e3d41ed3c1125226abadd5900e4

HTTP Headers

GET /upload/vod/2021-12-12/163928246212.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 138612
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:14:22 GMT
Accept-Ranges: bytes
ETag: "d68bf2bdeefd71:0"

523zyw.com/upload/vod/2021-12-12/16392823428.jpg

137.175.59.81

200 OK

175 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392823428.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 704x480, components 3\012- data
Size
175 kB (175117 bytes)
Hash
3b81a27a4e93f2cbb3031ceb2370a91f
2872b204a686cb63f579a1c69c047bb9a72ea790
000b8dba64cc2a24b12b45d2f2466b6e8dcdd7d3c0ee6ccb70ad7ebfb7910d25

HTTP Headers

GET /upload/vod/2021-12-12/16392823428.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 175117
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:12:22 GMT
Accept-Ranges: bytes
ETag: "03c6476eefd71:0"

523zyw.com/upload/vod/2021-12-15/16395506494.jpg

137.175.59.81

200 OK

132 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-15/16395506494.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size
132 kB (131972 bytes)
Hash
b715e976ad8a00b629f8e1e7f68c1408
354b35577dd185518aeba6a5ca3fb5ca0453778c
3eed02ad338eea03bb3ca36788232036e87216ac4894df317482bebf117a8043

HTTP Headers

GET /upload/vod/2021-12-15/16395506494.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 131972
Connection: keep-alive
Last-Modified: Wed, 15 Dec 2021 06:44:10 GMT
Accept-Ranges: bytes
ETag: "9376622a7ff1d71:0"

523zyw.com/upload/vod/2021-12-19/16398863504.jpg

137.175.59.81

200 OK

148 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-19/16398863504.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 600x400, components 3\012- data
Size
148 kB (148042 bytes)
Hash
6a3a7099a42c3540feaf474dd538b77a
3e86f2dee7f72a0a997d9166c7288e194135fdc5
10de0dad0c832ea1c2811a9ad3ccee3eb7d48f0f6994ffbfd1388e622e8c5fdd

HTTP Headers

GET /upload/vod/2021-12-19/16398863504.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 148042
Connection: keep-alive
Last-Modified: Sun, 19 Dec 2021 03:59:10 GMT
Accept-Ranges: bytes
ETag: "905e20c78cf4d71:0"

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
bd1d2862bccd03fa25deaf009a680af0
0a683f293bb9aa65d0bd5d69b3c52e2a88acad2d
33ad9069f1e1d6004b974c0edff374cd5e8bd2cb553717da38714c34acc8ba36

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 28 Oct 2022 16:07:45 GMT
Expires: Fri, 04 Nov 2022 16:07:44 GMT
Etag: "0a683f293bb9aa65d0bd5d69b3c52e2a88acad2d"
Cache-Control: max-age=374804,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8bad88b50f-OSL

523zyw.com/upload/vod/2021-12-12/163928217214.jpg

137.175.59.81

200 OK

69 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/163928217214.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 728x403, components 3\012- data
Size
69 kB (69209 bytes)
Hash
37cab5f150ecf17647b8756ec0a31f4e
f9f0677e10d96aabcd5e1ba64438dc607cea7815
db17bb59bec0b53bd4fe69dfe19fbdf9ac7539b0e6212ea41adf0d1fe5790ca8

HTTP Headers

GET /upload/vod/2021-12-12/163928217214.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 69209
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:09:34 GMT
Accept-Ranges: bytes
ETag: "6afc2412eefd71:0"

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
74dee30515760f060b1933a4c6f92988
5ba4395ba3dec93b2aa0a35f77c95027b5235d1a
bbf8b4cda2bc44364de5fee48a5b2acc539f366df0c2d8ba777e250e077e8b6c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=101753
Content-Type: application/ocsp-response
Date: Mon, 31 Oct 2022 07:50:59 GMT
Etag: "635e68dc-2d7"
Expires: Tue, 01 Nov 2022 12:06:52 GMT
Last-Modified: Sun, 30 Oct 2022 12:06:52 GMT
Server: nginx
Content-Length: 727

523zyw.com/upload/vod/2021-12-12/163928188711.jpg

137.175.59.81

200 OK

8.0 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/163928188711.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 4x3, segment length 16, comment: "Lavc58.54.100", baseline, precision 8, 320x240, components 3\012- data
Size
8.0 kB (7994 bytes)
Hash
edddef503d4f0645a2917e228a96c15c
d524eab2715bea7d1667cffc9cf0d1105ae73ae0
a07bcd7573d163c984c28747d18a8af6b214a08789b6186307c2e81e8953e21a

HTTP Headers

GET /upload/vod/2021-12-12/163928188711.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 7994
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:47 GMT
Accept-Ranges: bytes
ETag: "e1c55167defd71:0"

523zyw.com/upload/vod/2021-12-12/163928217517.jpg

137.175.59.81

200 OK

120 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/163928217517.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 928x519, components 3\012- data
Size
120 kB (120259 bytes)
Hash
1bc84f957d30a26ae7e72398edc3c731
160c6f5535b65a1f8a779ce3323e652ab3ee2088
91e1d53b2356efa907f86da9f15d792e3e0dab42f5cd02e2a650f9e33acf6797

HTTP Headers

GET /upload/vod/2021-12-12/163928217517.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 120259
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:09:37 GMT
Accept-Ranges: bytes
ETag: "f4ed913eefd71:0"

523zyw.com/upload/vod/2021-12-12/16392819441.jpg

137.175.59.81

200 OK

96 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392819441.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 800x450, components 3\012- data
Size
96 kB (96418 bytes)
Hash
5869e1c25b0fc7186ce9ad30bd9ddbc5
8067df54706066f7b114aa48e30f25955fdc522d
a09b92dfda2858241ea736afac3b1bab1745558af68b8620f09db4b2cc593bbe

HTTP Headers

GET /upload/vod/2021-12-12/16392819441.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 96418
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:05:44 GMT
Accept-Ranges: bytes
ETag: "8886c89defd71:0"

523zyw.com/upload/vod/2021-12-12/16392818785.jpg

137.175.59.81

200 OK

60 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392818785.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 775x467, components 3\012- data
Size
60 kB (59944 bytes)
Hash
513d6f7c1748d8b565dc64c6bd4b7cba
5b5d4b33a33d10218b5f793654bf737662bb8c1e
2ecc9a695c38453e149d807a74e9fdac685fe496d42624e9691ab6f4da0afe0e

HTTP Headers

GET /upload/vod/2021-12-12/16392818785.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 59944
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:39 GMT
Accept-Ranges: bytes
ETag: "b9341862defd71:0"

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
f25c05896d5cbd43ef2de8b1c471133a
9b8340281356d1ed45b8ec412db72b4a826193be
fabca88615aaac1d46d59c3871985b97097b7504f8300348a1cc3f15b2262e93

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 07:58:51 GMT
Expires: Sun, 06 Nov 2022 07:58:50 GMT
Etag: "9b8340281356d1ed45b8ec412db72b4a826193be"
Cache-Control: max-age=518270,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8be8a7b4fd-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
f25c05896d5cbd43ef2de8b1c471133a
9b8340281356d1ed45b8ec412db72b4a826193be
fabca88615aaac1d46d59c3871985b97097b7504f8300348a1cc3f15b2262e93

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 30 Oct 2022 07:58:51 GMT
Expires: Sun, 06 Nov 2022 07:58:50 GMT
Etag: "9b8340281356d1ed45b8ec412db72b4a826193be"
Cache-Control: max-age=518270,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8c1e65b50f-OSL

taiwtp1.com/xin/960240.gif

220.128.218.220

200 OK

436 kB

URL HTTP/2
taiwtp1.com/xin/960240.gif
IP
220.128.218.220:0
ASN
#3462 Data Communication Business Group

File type
GIF image data, version 89a, 960 x 240\012- data
Size
436 kB (436473 bytes)
Hash
732bd86d0a1c250c8ee8f6ebf30d358e
9f8ec516e191af6504caead933e550627ed80af9
8f3edf67a76ef4c9b72fe1dc842ec813009e0fd7bb1945c96d564eb385d068ee

HTTP Headers

GET /xin/960240.gif HTTP/1.1
Host: taiwtp1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 31 Oct 2022 07:48:50 GMT
content-type: image/gif
content-length: 436473
last-modified: Thu, 20 Oct 2022 07:11:15 GMT
etag: "6350f493-6a8f9"
expires: Wed, 30 Nov 2022 07:48:50 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

523zyw.com/upload/vod/2021-12-12/16392818773.jpg

137.175.59.81

200 OK

26 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392818773.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x288, components 3\012- data
Size
26 kB (25815 bytes)
Hash
93f7729564922532163cf37cfc4c6c88
3d9f39669d91df84117462e4cdc7a44b9f216c52
1e69b39a30aea3e3812c3e0c0e64fe0c52ad21984a3c801c651ac243606c8bdd

HTTP Headers

GET /upload/vod/2021-12-12/16392818773.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 25815
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:37 GMT
Accept-Ranges: bytes
ETag: "61ec6e61defd71:0"

523zyw.com/upload/vod/2021-12-12/163928187015.jpg

137.175.59.81

200 OK

17 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/163928187015.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x288, components 3\012- data
Size
17 kB (16665 bytes)
Hash
d734ed0eda2219cec79ec0f6843518c2
72cfb95e4850c464837d43200877f226d03073a1
65b53b0900754cca0d26d6a59fe9c205d27a72bf042032cf498eae01a3ad497c

HTTP Headers

GET /upload/vod/2021-12-12/163928187015.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 16665
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:31 GMT
Accept-Ranges: bytes
ETag: "87647e5ddefd71:0"

523zyw.com/upload/vod/2021-12-12/16392818772.jpg

137.175.59.81

200 OK

98 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392818772.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, software=www.meitu.com], baseline, precision 8, 963x541, components 3\012- data
Size
98 kB (97476 bytes)
Hash
db7affd73378abb93ad4b1d80da4c819
37b4035bec5619c978b897f36177191edf18eaab
ecd6e293c5e7479fc3eaab5a34a1d97cf781579d4b7a7399a884babb05f69615

HTTP Headers

GET /upload/vod/2021-12-12/16392818772.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 97476
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:04:37 GMT
Accept-Ranges: bytes
ETag: "204661defd71:0"

523zyw.com/upload/vod/2021-12-20/16399938364.jpg

137.175.59.81

200 OK

148 kB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-20/16399938364.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 595x437, components 3\012- data
Size
148 kB (147704 bytes)
Hash
1282fd84ef7a9ccf464bc5cff32c9417
69d8524382c2ac47a92c47bdbe29c6921dd242a9
739014fa52d402f69fb9ebaf9c5cef724b38f15cbea083e93b178b7196c0751b

HTTP Headers

GET /upload/vod/2021-12-20/16399938364.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/jpeg
Content-Length: 147704
Connection: keep-alive
Last-Modified: Mon, 20 Dec 2021 09:50:36 GMT
Accept-Ranges: bytes
ETag: "91395987f5d71:0"

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
f5ecb2dc6d548ea989a21ea3fd4dcc73
ea3ca4ef6a76214d0e85f1decfd9b2e422cf7aa9
d444a9c2e7b087e829cc39dc95544ac6472f5878fb9afd3c99635f6f67b22502

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 07:42:47 GMT
Expires: Mon, 07 Nov 2022 07:42:46 GMT
Etag: "ea3ca4ef6a76214d0e85f1decfd9b2e422cf7aa9"
Cache-Control: max-age=603706,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8f6d90b4fd-OSL

haitangtv2.top/template/img/1717.gif

122.10.49.87

200 OK

2.8 MB

URL HTTP/1.1
haitangtv2.top/template/img/1717.gif
IP
122.10.49.87:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
GIF image data, version 89a, 960 x 120\012- data
Size
2.8 MB (2812930 bytes)
Hash
b84dd689257112c2eeb9ff11c1eb1de7
125c585e21293764e1e52ca97dc256af76a67fc5
bd957c468bded0806e0a7ab33334f11f4a8952467f2fa13c2c606cf0bfc0ce83

HTTP Headers

GET /template/img/1717.gif HTTP/1.1
Host: haitangtv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/gif
Content-Length: 2812930
Last-Modified: Wed, 26 Oct 2022 10:39:02 GMT
Connection: keep-alive
ETag: "63590e46-2aec02"
Expires: Wed, 30 Nov 2022 07:50:57 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
43081c15a2f0f6922a55bd21d03ea86e
2e5913c20f211bb7bf58cbd16451992c8491648c
f09ad0c1df3638c8fd36ae75cb78e949163e946d82ebf39345827fa14553f135

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 07:34:21 GMT
Expires: Mon, 07 Nov 2022 07:34:20 GMT
Etag: "2e5913c20f211bb7bf58cbd16451992c8491648c"
Cache-Control: max-age=603199,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd8ffbe8b50f-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
43081c15a2f0f6922a55bd21d03ea86e
2e5913c20f211bb7bf58cbd16451992c8491648c
f09ad0c1df3638c8fd36ae75cb78e949163e946d82ebf39345827fa14553f135

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 07:34:21 GMT
Expires: Mon, 07 Nov 2022 07:34:20 GMT
Etag: "2e5913c20f211bb7bf58cbd16451992c8491648c"
Cache-Control: max-age=603200,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 762acd900e1fb4fd-OSL

gnrty.kmjkwe.xyz/kmnbhevhfjrtetd/c.gif

23.224.92.246

200 OK

84 kB

URL HTTP/1.1
gnrty.kmjkwe.xyz/kmnbhevhfjrtetd/c.gif
IP
23.224.92.246:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 600 x 200\012- data
Size
84 kB (84426 bytes)
Hash
9921b46e46364692e3907209e1ac751d
f471461e26bf90297b4fb9c15a44b33becf7a5b7
d626c8cb11a97739ab83d2cb8d27332f3d3d3294d3a48f5036614646a59adddf

HTTP Headers

GET /kmnbhevhfjrtetd/c.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/gif
Content-Length: 84426
Last-Modified: Thu, 20 Oct 2022 08:39:59 GMT
Connection: keep-alive
ETag: "6351095f-149ca"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172

203.107.60.95

200 OK

727 B

URL HTTP/1.1
kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
IP
203.107.60.95:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
727 B (727 bytes)
Hash
783cc119a0f7a9011e903e7fe6832f22
2d7ec6bd4a5d9dc19a935048a5624a6357df5842
39ff2d9297f05eb036275ee306204390da33c110e973e39da10cdc588f49d505

HTTP Headers

GET /tj.html?type=cnzz&id=1279999172 HTTP/1.1
Host: kmr.wdjptto.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=9fd64100fb6181bba0b80ed81f8cfff262ebdd31689d2c238356bba56ba2c376; Path=/; HttpOnly
Last-Modified: Wed, 25 Nov 2020 10:32:42 GMT
Vary: Accept-Encoding
ETag: W/"5fbe32ca-694"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip

ket.kdcxhr.cn/effect.php?type=ecv&planid=30267&adsid=5964403&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv

203.107.60.95

200 OK

20 B

URL HTTP/1.1
ket.kdcxhr.cn/effect.php?type=ecv&planid=30267&adsid=5964403&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv
IP
203.107.60.95:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /effect.php?type=ecv&planid=30267&adsid=5964403&zoneid=155175&uid=11321&adtplid=1001&plantype=cpv HTTP/1.1
Host: ket.kdcxhr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=4a3b35e51fc037e336c6be167d07895ff91849d1562b6b750fb18e9208660e69; Path=/; HttpOnly
Server: nginx
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

ket.kdcxhr.cn/c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDQwMyZwbGFuaWQ9MzAyNjcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRjZjNng2LmNvbSUyRjEuaHRtbCUzRmNoYW5uZWxDb2RlJTNEZmsyOSZ2dGltZT0yMDIyLTEwLTMxIDE1OjUwOjU4JmlwPTkxLjkwLjQyLjE1NA==;bf1c5844caeaa46edcfb69eac52ce8a9;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmdpZnRzLW5vdy5jb20lMkYmeD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGaHR0djYudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTYlQjUlQjclRTYlQTMlQTAlMkMlRTYlQjUlQjclRTYlQTMlQTBUViUyQyVFNiVCNSVCNyVFNiVBMyVBMCVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNiVCNSVCNyVFNiVBMyVBMEFWJTJDJUU2JUI1JUI3JUU2JUEzJUEwJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3

203.107.60.95

200 OK

20 B

URL HTTP/1.1
ket.kdcxhr.cn/c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDQwMyZwbGFuaWQ9MzAyNjcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRjZjNng2LmNvbSUyRjEuaHRtbCUzRmNoYW5uZWxDb2RlJTNEZmsyOSZ2dGltZT0yMDIyLTEwLTMxIDE1OjUwOjU4JmlwPTkxLjkwLjQyLjE1NA==;bf1c5844caeaa46edcfb69eac52ce8a9;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmdpZnRzLW5vdy5jb20lMkYmeD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGaHR0djYudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTYlQjUlQjclRTYlQTMlQTAlMkMlRTYlQjUlQjclRTYlQTMlQTBUViUyQyVFNiVCNSVCNyVFNiVBMyVBMCVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNiVCNSVCNyVFNiVBMyVBMEFWJTJDJUU2JUI1JUI3JUU2JUEzJUEwJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3
IP
203.107.60.95:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /c.php?s=JnpvbmVpZD0xNTUxNzUmc2l0ZWlkPSZ1aWQ9MTEzMjEmYWRzaWQ9NTk2NDQwMyZwbGFuaWQ9MzAyNjcmcGxhbnR5cGU9Y3B2JnVybD1odHRwcyUzQSUyRiUyRjZjNng2LmNvbSUyRjEuaHRtbCUzRmNoYW5uZWxDb2RlJTNEZmsyOSZ2dGltZT0yMDIyLTEwLTMxIDE1OjUwOjU4JmlwPTkxLjkwLjQyLjE1NA==;bf1c5844caeaa46edcfb69eac52ce8a9;&srccpv=yes&jm=1&b=0;0&g=0;0&p=cj1odHRwJTNBJTJGJTJGd3d3LmdpZnRzLW5vdy5jb20lMkYmeD0xOzs1MDQ1MjYxNDk7TGludXggeDg2XzY0Ozs7MTY7MjQmaz0mc2U9MiZmPTAmdT1odHRwJTNBJTJGJTJGaHR0djYudG9wJTJGJmo9MCZwPTAmbT0wJnJlcz0xMjgweDEwMjQmdD0lRTYlQjUlQjclRTYlQTMlQTAlMkMlRTYlQjUlQjclRTYlQTMlQTBUViUyQyVFNiVCNSVCNyVFNiVBMyVBMCVFNSVCRCVCMSVFOCVBNyU4NiUyQyVFNiVCNSVCNyVFNiVBMyVBMEFWJTJDJUU2JUI1JUI3JUU2JUEzJUEwJUU3JUJEJTkxJmw9ZW4tVVMmYz0wJmg9OTI3 HTTP/1.1
Host: ket.kdcxhr.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST,GET,OPTIONS
Set-Cookie: aliyungf_tc=b96adf6d0c83f2a5171365ea5838b4f9f0c36b82ddd98a367ccf8db1d36b109a; Path=/; HttpOnly
region=%E6%8C%AA%E5%A8%81%2F%2F%E5%85%B6%E5%AE%83; expires=Sat, 29-Apr-2023 07:51:00 GMT; Max-Age=15552000; path=/
visitnum=1; expires=Mon, 07-Nov-2022 07:51:00 GMT; Max-Age=604800; path=/
11321_30267=re; expires=Mon, 31-Oct-2022 12:51:00 GMT; Max-Age=18000; path=/
do2click_30267=5964403%7C30267%7C11321%7C155175%7C; expires=Mon, 31-Oct-2022 10:51:00 GMT; Max-Age=10800; path=/
doEffect_30267=5964403%7C30267%7C11321%7C155175%7C; expires=Mon, 07-Nov-2022 07:51:00 GMT; Max-Age=604800; path=/
P3P: CP="Powered by Www.Zyiis.Com 2005-2016"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image

182.118.39.165

200 OK

678 kB

URL HTTP/2
p26.toutiaoimg.com/img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image
IP
182.118.39.165:0
ASN
#4837 CHINA UNICOM China169 Backbone

File type
GIF image data, version 89a, 270 x 160\012- data
Size
678 kB (677521 bytes)
Hash
94051cb1d1b77200b4462281a864b96e
e5b468a1b2f4bbdda1b6a3a0df2dcce6b3de7e06
d44d0d2dd188024b60ec38cb3f3ea10c080690175e923f90c9c2a2e862670c84

HTTP Headers

GET /img/tos-cn-i-siecs4i2o7/8c2e2faca3334d7cbd282d7fd4381cd7~noop.image HTTP/1.1
Host: p26.toutiaoimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 31 Oct 2022 07:50:59 GMT
content-type: image/gif
content-length: 677521
server: openresty
age: 8123345
cache-control: max-age=31536000
imagex-fmt: gif2gif
last-modified: Thu, 30 Dec 2021 00:07:35 GMT
nw-session-id: 2021123008073501015013614530ADE9B0dprsv01tt
nw-session-trace: 2021-12-30T08:07:35.194015393+08:00 68
x-bdcdn-cache-status: TCP_HIT
x-ccdn-cachettl: 31536000
x-length: 677521
x-powered-by: ImageX
x-response-date: Thu, 30 Dec 2021 08:07:35 GMT
x-response-lb: image
x-tt-logid: 2021123008073501015013614530ADE9B0
nginx-hit: 1
server-timing: cdn-cache;desc=HIT, edge;dur=3
via: CHN-HAzhengzhou-AREACUCC1-CACHE40[3],CHN-HAzhengzhou-AREACUCC1-CACHE35[0,TCP_HIT,1],CHN-TJ-GLOBAL1-CACHE117[7],CHN-TJ-GLOBAL1-CACHE35[0,TCP_HIT,6]
x-hcs-proxy-type: 1
x-tt-trace-host: 016a2077e03b2041825c42669e9a23cec5ee04519515486308eb42b81315658df6aa5ed29ad219c7d25626d5b022cced5274c18183adcd43889f65e87a17fde2315b0226a7e5f07d4c19094125051b3e74699be800dd629619bc2141d5fb81fc89ccc76230d7d3e4f731a9d881f3cb16c4
x-tt-trace-tag: id=26;cdn-cache=hit;type=static
accept-ranges: bytes
access-control-allow-origin: *
x-response-cache: edge_hit
x-response-cinfo: 91.90.42.154
X-Firefox-Spdy: h2

kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172

203.107.60.95

200 OK

727 B

URL HTTP/1.1
kmr.wdjptto.cn/tj.html?type=cnzz&id=1279999172
IP
203.107.60.95:0
ASN
#37963 Hangzhou Alibaba Advertising Co.,Ltd.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
727 B (727 bytes)
Hash
783cc119a0f7a9011e903e7fe6832f22
2d7ec6bd4a5d9dc19a935048a5624a6357df5842
39ff2d9297f05eb036275ee306204390da33c110e973e39da10cdc588f49d505

HTTP Headers

GET /tj.html?type=cnzz&id=1279999172 HTTP/1.1
Host: kmr.wdjptto.cn
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: aliyungf_tc=80a494cc942de839b2874dd4c251a352a3d6328020e6ca2f13ba895ef96158b1; Path=/; HttpOnly
Last-Modified: Wed, 25 Nov 2020 10:32:42 GMT
Vary: Accept-Encoding
ETag: W/"5fbe32ca-694"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Content-Encoding: gzip

kmr.mjnbrt.xyz/mnrt/kmrr.png

23.224.92.243

200 OK

85 kB

URL HTTP/1.1
kmr.mjnbrt.xyz/mnrt/kmrr.png
IP
23.224.92.243:0
ASN
#40065 CNSERVERS

File type
PNG image data, 2084 x 2084, 8-bit/color RGBA, non-interlaced\012- data
Size
85 kB (84560 bytes)
Hash
3c80359bedd35432aea1539a1edcd122
62b0eb9a7eef9b048ab55e3e8d8486a43d5ef8db
74df8ccb6d42d5ee40aaffccd0246978eca881c260c8505afb9f71f85fe17ee2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mnrt/kmrr.png HTTP/1.1
Host: kmr.mjnbrt.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/png
Content-Length: 84560
Last-Modified: Thu, 20 Oct 2022 08:39:59 GMT
Connection: keep-alive
ETag: "6351095f-14a50"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
3d17bc406e10bab281ae8e975abaeae9
c308f129a627af641bd381ab24e9cf98f75dff3a
959b331d113d7911251dc6b68143d116f31aefa141efb2b60d10202b5d177672

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 31 Oct 2022 07:51:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Fri, 04 Nov 2022 06:08:50 GMT
ETag: "c308f129a627af641bd381ab24e9cf98f75dff3a"
Last-Modified: Mon, 31 Oct 2022 06:08:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1075
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 762acd974803b4fd-OSL

haitangtv2.top/template/img/17172.gif

122.10.49.87

200 OK

3.2 MB

URL HTTP/1.1
haitangtv2.top/template/img/17172.gif
IP
122.10.49.87:0
ASN
#134548 DXTL Tseung Kwan O Service

File type
GIF image data, version 89a, 600 x 240\012- data
Size
3.2 MB (3197145 bytes)
Hash
4dff729097677e6c8875d87ecb1cc40a
b2a83ac93f0177346ba2a2ba69280db169a89d0e
fdade7b3735760517f548e086b27db22b3701015daf7d94dd94a4a284373a154

HTTP Headers

GET /template/img/17172.gif HTTP/1.1
Host: haitangtv2.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://httv6.top/

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 31 Oct 2022 07:50:57 GMT
Content-Type: image/gif
Content-Length: 3197145
Last-Modified: Thu, 27 Oct 2022 07:06:28 GMT
Connection: keep-alive
ETag: "635a2df4-30c8d9"
Expires: Wed, 30 Nov 2022 07:50:57 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes

gnrty.kmjkwe.xyz/hyjoilbsegcv/g.gif

23.224.92.246

200 OK

85 kB

URL HTTP/1.1
gnrty.kmjkwe.xyz/hyjoilbsegcv/g.gif
IP
23.224.92.246:0
ASN
#40065 CNSERVERS

File type
GIF image data, version 89a, 600 x 200\012- data
Size
85 kB (84902 bytes)
Hash
0cb399000c6ab6a24427f7f3988c0d67
28a3f6e6010d3bbfe920fc49e37654d6a26d5df0
801a92ac0b391e96d44f5ca8d85663870e08a6ccace9abaed47364e88fad2d50

HTTP Headers

GET /hyjoilbsegcv/g.gif HTTP/1.1
Host: gnrty.kmjkwe.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:59 GMT
Content-Type: image/gif
Content-Length: 84902
Last-Modified: Thu, 20 Oct 2022 08:39:58 GMT
Connection: keep-alive
ETag: "6351095e-14ba6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: POST, GET, OPTIONS
X-Cache: hit
Accept-Ranges: bytes

s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172

220.185.164.250

200 OK

20 B

URL HTTP/2
s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172
IP
220.185.164.250:0
ASN
#136190 JINHUA, ZHEJIANG Province, P.R.China.

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /z_stat.php?id=1279999172&web_id=1279999172 HTTP/1.1
Host: s9.cnzz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kmr.wdjptto.cn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 20
date: Mon, 31 Oct 2022 07:19:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/5.5.25
last-modified: Mon, 31 Oct 2022 07:19:05 GMT
cache-control: max-age=1800,s-maxage=3600
content-encoding: gzip
ali-swift-global-savetime: 1667200745
via: cache31.l2ea120-8[63,62,200-0,M], cache15.l2ea120-8[64,0], cache16.cn4100[0,0,200-0,H], cache3.cn4100[1,0]
age: 1916
x-cache: HIT TCP_MEM_HIT dirn:15:340832518
x-swift-savetime: Mon, 31 Oct 2022 07:19:05 GMT
x-swift-cachetime: 3600
timing-allow-origin: *
eagleid: dcb9a49716672026614956336e
X-Firefox-Spdy: h2

s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172

220.185.164.250

304 Not Modified

0 B

URL HTTP/2
s9.cnzz.com/z_stat.php?id=1279999172&web_id=1279999172
IP
220.185.164.250:0
ASN
#136190 JINHUA, ZHEJIANG Province, P.R.China.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /z_stat.php?id=1279999172&web_id=1279999172 HTTP/1.1
Host: s9.cnzz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kmr.wdjptto.cn/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 31 Oct 2022 07:19:05 GMT
TE: trailers

HTTP/2 304 Not Modified
server: Tengine
content-type: application/javascript
date: Mon, 31 Oct 2022 07:19:05 GMT
vary: Accept-Encoding
x-powered-by: PHP/5.5.25
last-modified: Mon, 31 Oct 2022 07:19:05 GMT
cache-control: max-age=1800,s-maxage=3600
content-encoding: gzip
ali-swift-global-savetime: 1667200745
via: cache31.l2ea120-8[63,62,200-0,M], cache15.l2ea120-8[64,0], cache16.cn4100[0,0,304-0,H], cache3.cn4100[2,0]
age: 1916
x-cache: HIT TCP_IMS_HIT dirn:15:340832518
timing-allow-origin: *
eagleid: dcb9a49716672026617677373e
X-Firefox-Spdy: h2

523zyw.com/upload/vod/2021-12-12/16392821827.jpg

137.175.59.81

200 OK

3.6 MB

URL HTTP/1.1
523zyw.com/upload/vod/2021-12-12/16392821827.jpg
IP
137.175.59.81:0
ASN
#54600 PEGTECHINC

File type
GIF image data, version 89a, 286 x 180\012- data
Size
3.6 MB (3625076 bytes)
Hash
d310607aba67aa996b3bc62292effdfd
d9f9c45611fd314a4354c24b942212eab746161e
411ebdc49e623e638e02d1b55cde9cd0689bfaf6c7f3362310137c5edbf08eb4

HTTP Headers

GET /upload/vod/2021-12-12/16392821827.jpg HTTP/1.1
Host: 523zyw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://httv6.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Tengine
Date: Mon, 31 Oct 2022 07:50:58 GMT
Content-Type: image/jpeg
Content-Length: 3625076
Connection: keep-alive
Last-Modified: Sun, 12 Dec 2021 04:09:42 GMT
Accept-Ranges: bytes
ETag: "3ef22217eefd71:0"

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d972a51-952c-4ec4-a0eb-3b423e69284a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8245 bytes)
Hash
d7f47b41eb5c37ceb8d8959fafbe7943
e4ea3edfd3db651f07d289bfbbb5249352203e8e
bec09797f1db0ea75cfa0b8393ef8dbabb0b1adc7f75802a5d04d0c139cfec8b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d972a51-952c-4ec4-a0eb-3b423e69284a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8245
x-amzn-requestid: 23e32f7a-391e-4cca-b207-f91917ede0b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNEyF-woAMFryw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-252286456e4e95440c02d166;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wSXeLVj5j_7D1GFhyS4LT6IBwpZEsykNTd8D6VIDq3tULvwjghogmA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 30 Oct 2022 11:53:18 GMT
age: 71865
etag: "e4ea3edfd3db651f07d289bfbbb5249352203e8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations